Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
https://ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top/u/hs-schmalkalden.de

Overview

General Information

Sample URL:https://ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top/u/hs-schmalkalden.de
Analysis ID:1525217
Infos:
Errors
  • URL not reachable

Detection

Score:1
Range:0 - 100
Whitelisted:false
Confidence:80%

Signatures

Detected non-DNS traffic on DNS port
Stores files to the Windows start menu directory

Classification

Process Tree

  • System is w10x64
  • chrome.exe (PID: 3640 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
    • chrome.exe (PID: 3436 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2244 --field-trial-handle=2164,i,3349396247227516795,7502699321134445247,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • chrome.exe (PID: 4816 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top/u/hs-schmalkalden.de" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

No yara matches

Sigma Signatures

No Sigma rule has matched

Suricata Signatures

No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: unknownHTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.5:49715 version: TLS 1.2
Source: global trafficTCP traffic: 192.168.2.5:60271 -> 1.1.1.1:53
Source: unknownTCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknownTCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknownTCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknownTCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknownTCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknownTCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknownTCP traffic detected without corresponding DNS query: 23.1.237.91
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownTCP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global trafficHTTP traffic detected: GET /rules/other-Win32-v19.bundle HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule224902v2s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120600v4s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120608v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120402v21s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120609v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120611v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120610v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120613v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120612v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120614v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120615v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120616v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120617v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120619v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120618v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120620v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120621v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120623v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120622v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120624v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120625v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120628v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120626v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120627v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120629v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120630v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120632v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120631v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120633v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120634v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120637v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120636v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120638v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120639v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120640v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120642v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120643v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120641v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120635v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120644v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120645v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120646v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120647v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120648v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120650v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120649v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120651v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120652v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120653v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120654v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120655v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120657v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120656v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120658v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficHTTP traffic detected: GET /rules/rule120659v0s19.xml HTTP/1.1Connection: Keep-AliveAccept-Encoding: gzipUser-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)Host: otelrules.azureedge.net
Source: global trafficDNS traffic detected: DNS query: ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top
Source: global trafficDNS traffic detected: DNS query: google.com
Source: global trafficDNS traffic detected: DNS query: www.google.com
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49740
Source: unknownNetwork traffic detected: HTTP traffic on port 60277 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60283 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49720 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60286 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49739
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49738
Source: unknownNetwork traffic detected: HTTP traffic on port 49717 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49737
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49735
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49734
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49733
Source: unknownNetwork traffic detected: HTTP traffic on port 49675 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49732
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49731
Source: unknownNetwork traffic detected: HTTP traffic on port 49732 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60297 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49703 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60280 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49728 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60294 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49729
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49728
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49727
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49726
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49725
Source: unknownNetwork traffic detected: HTTP traffic on port 49735 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49674 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49721
Source: unknownNetwork traffic detected: HTTP traffic on port 60275 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49720
Source: unknownNetwork traffic detected: HTTP traffic on port 49731 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49712 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60298 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60282
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60281
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60280
Source: unknownNetwork traffic detected: HTTP traffic on port 60281 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49729 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60279
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60278
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60277
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60276
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60275
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60274
Source: unknownNetwork traffic detected: HTTP traffic on port 60284 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60273
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60272
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49719
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49718
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49717
Source: unknownNetwork traffic detected: HTTP traffic on port 49715 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60272 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49715
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49712
Source: unknownNetwork traffic detected: HTTP traffic on port 49734 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60278 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60295 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60293
Source: unknownNetwork traffic detected: HTTP traffic on port 49726 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60292
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60291
Source: unknownNetwork traffic detected: HTTP traffic on port 49740 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60290
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60289
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60288
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60287
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60286
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60285
Source: unknownNetwork traffic detected: HTTP traffic on port 60292 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60284
Source: unknownNetwork traffic detected: HTTP traffic on port 60289 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60283
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49703
Source: unknownNetwork traffic detected: HTTP traffic on port 49737 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49733 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60273 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60296 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49727 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60298
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60297
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60296
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60295
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 60294
Source: unknownNetwork traffic detected: HTTP traffic on port 60293 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60276 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49721 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60290 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60287 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49718 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49739 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60279 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49725 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49719 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60291 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60288 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49738 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60274 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 49673 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60282 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 60285 -> 443
Source: unknownHTTPS traffic detected: 13.107.246.60:443 -> 192.168.2.5:49715 version: TLS 1.2
Source: classification engineClassification label: unknown1.win@19/6@17/3
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome AppsJump to behavior
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2244 --field-trial-handle=2164,i,3349396247227516795,7502699321134445247,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknownProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top/u/hs-schmalkalden.de"
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2244 --field-trial-handle=2164,i,3349396247227516795,7502699321134445247,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
Source: Google Drive.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: YouTube.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Sheets.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Gmail.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Slides.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Docs.lnk.0.drLNK file: ..\..\..\..\..\..\..\..\..\Program Files\Google\Chrome\Application\chrome_proxy.exe
Source: Window RecorderWindow detected: More than 3 window changes detected
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome AppsJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnkJump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exeFile created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnkJump to behavior

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid AccountsWindows Management Instrumentation1
Registry Run Keys / Startup Folder		1
Process Injection		1
Masquerading		OS Credential DumpingSystem Service DiscoveryRemote ServicesData from Local System1
Encrypted Channel		Exfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization Scripts1
Registry Run Keys / Startup Folder		1
Process Injection		LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable Media2
Non-Application Layer Protocol		Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive3
Application Layer Protocol		Automated ExfiltrationData Encrypted for Impact
Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin HookBinary PaddingNTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput Capture1
Ingress Tool Transfer		Traffic DuplicationData Destruction

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Is Windows Process
  • Number of created Registry Values
  • Number of created Files
  • Visual Basic
  • Delphi
  • Java
  • .Net C# or VB.NET
  • C, C++ or other language
  • Is malicious
  • Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

No Antivirus matches

Dropped Files

No Antivirus matches

Unpacked PE Files

No Antivirus matches

Domains

No Antivirus matches

URLs

No Antivirus matches

Domains and IPs

Contacted Domains

NameIPActiveMaliciousAntivirus DetectionReputation
google.com
142.250.185.174
truefalse
    		unknown
    www.google.com
    		142.250.184.228
    		truefalse
      		unknown
      s-part-0032.t-0009.t-msedge.net
      		13.107.246.60
      		truefalse
        		unknown
        fp2e7a.wpc.phicdn.net
        		192.229.221.95
        		truefalse
          		unknown
          ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top
          		unknown
          		unknownfalse
            		unknown

            World Map of Contacted IPs

            • No. of IPs < 25%
            • 25% < No. of IPs < 50%
            • 50% < No. of IPs < 75%
            • 75% < No. of IPs

            Public IPs

            IPDomainCountryFlagASNASN NameMalicious
            239.255.255.250
            		unknownReserved
            		unknownunknownfalse
            142.250.184.228
            		www.google.comUnited States
            		15169GOOGLEUSfalse

            Private

            IP
            192.168.2.5

            General Information

            Joe Sandbox version:41.0.0 Charoite
            Analysis ID:1525217
            Start date and time:2024-10-03 21:41:29 +02:00
            Joe Sandbox product:CloudBasic
            Overall analysis duration:0h 2m 6s
            Hypervisor based Inspection enabled:false
            Report type:full
            Cookbook file name:browseurl.jbs
            Sample URL:https://ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top/u/hs-schmalkalden.de
            Analysis system description:Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
            Number of analysed new started processes analysed:6
            Number of new started drivers analysed:0
            Number of existing processes analysed:0
            Number of existing drivers analysed:0
            Number of injected processes analysed:0
            Technologies:
            • HCA enabled
            • EGA enabled
            • AMSI enabled
            Analysis Mode:default
            Analysis stop reason:Timeout
            Detection:UNKNOWN
            Classification:unknown1.win@19/6@17/3
            EGA Information:Failed
            HCA Information:
            • Successful, ratio: 100%
            • Number of executed functions: 0
            • Number of non-executed functions: 0
            Cookbook Comments:
            • URL browsing timeout or error

            Errors

            • URL not reachable

            Warnings

            • Exclude process from analysis (whitelisted): dllhost.exe, SIHClient.exe, svchost.exe
            • Excluded IPs from analysis (whitelisted): 172.217.16.195, 142.250.186.142, 108.177.15.84, 34.104.35.123, 184.28.90.27, 4.175.87.197, 93.184.221.240, 192.229.221.95, 13.95.31.18, 13.85.23.206, 20.3.187.198
            • Excluded domains from analysis (whitelisted): slscr.update.microsoft.com, otelrules.afd.azureedge.net, clientservices.googleapis.com, fs-wildcard.microsoft.com.edgekey.net, fs-wildcard.microsoft.com.edgekey.net.globalredir.akadns.net, wu.azureedge.net, clients2.google.com, ocsp.digicert.com, e16604.g.akamaiedge.net, bg.apr-52dd2-0503.edgecastdns.net, cs11.wpc.v0cdn.net, ocsp.edge.digicert.com, glb.cws.prod.dcat.dsp.trafficmanager.net, sls.update.microsoft.com, hlb.apr-52dd2-0.edgecastdns.net, prod.fs.microsoft.com.akadns.net, wu-b-net.trafficmanager.net, glb.sls.prod.dcat.dsp.trafficmanager.net, fs.microsoft.com, accounts.google.com, otelrules.azureedge.net, ctldl.windowsupdate.com.delivery.microsoft.com, wu.ec.azureedge.net, ctldl.windowsupdate.com, fe3cr.delivery.mp.microsoft.com, fe3.delivery.mp.microsoft.com, edgedl.me.gvt1.com, azureedge-t-prod.trafficmanager.net, clients.l.google.com
            • Not all processes where analyzed, report is missing behavior information
            • Report size getting too big, too many NtSetInformationFile calls found.
            • Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
            • VT rate limit hit for: https://ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top/u/hs-schmalkalden.de

            Simulations

            Behavior and APIs

            No simulations

            Joe Sandbox View / Context

            IPs

            No context

            Domains

            No context

            ASNs

            No context

            JA3 Fingerprints

            No context

            Dropped Files

            No context

            Created / dropped Files

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 18:42:26 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2677
            Entropy (8bit):3.9738137100442312
            Encrypted:false
            SSDEEP:48:83WdGTim7HzidAKZdA19ehwiZUklqehAy+3:8D7p/y
            MD5:38CD7B81351D0192D743841AA40AF364
            SHA1:44F45CF8FAAB4DC0C71082F415D2D823DFB586FC
            SHA-256:DDC6AA18CCB96CC0CF32A2929A1C4B6B1D741C4A964388DD4F483C1182ECD956
            SHA-512:1C98EF01DBFDC1D955E98F8F98EAE4BACD36C493E485DE628DF92713C53BAD23956652703BCE3257B3A722624A4A6AFF6CA771E57ED7029E64F1EF3A3DB59D25
            Malicious:false
            Reputation:low
            Preview:L..................F.@.. ...$+.,.....e._....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.ICYL.....B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VCYL.....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VCYL.....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VCYL............................"&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VCYM............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i............y.N.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 18:42:26 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2679
            Entropy (8bit):3.9915628352629935
            Encrypted:false
            SSDEEP:48:8ydGTim7HzidAKZdA1weh/iZUkAQkqehvy+2:8f779Qay
            MD5:2F5B7124EB0DAB511D62341529F85B4E
            SHA1:76C0C60D366DA16E233E1DF875AB9797081A0B16
            SHA-256:6765743A0A19EB381428061C908DF443FA9DD7C32D22BF50EBA4AAC0A1AFC142
            SHA-512:DC1D1D00D46E082DE5335AC0F4248794460C8A1593F0D9D17DD8FA1CC776A3E4A275EE773493F4005C1CE65126768BCA501180F7F8EBD32F0FBC5292EB099034
            Malicious:false
            Reputation:low
            Preview:L..................F.@.. ...$+.,......_....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.ICYL.....B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VCYL.....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VCYL.....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VCYL............................"&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VCYM............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i............y.N.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 4 12:54:07 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2693
            Entropy (8bit):4.002369945888438
            Encrypted:false
            SSDEEP:48:8x/dGTimsHzidAKZdA14tseh7sFiZUkmgqeh7sZy+BX:8xs7+nby
            MD5:5EF6DDA40E061EB1CF9987B0BA656446
            SHA1:50E3F68CC9143329D94F5411CDF13C4B20F5613F
            SHA-256:C477D98BE5511CB9E3A2693BA137B9D98751E8129FB75B1D7A06CDFAAFDE0CF0
            SHA-512:FBB7EC51B515C0F7209FE9A7C519CAA784E0F581501F1CD9486ADE5EBB8D7202658247F8C568247834CE713BE45A3E826839CED651DE594FB72068376CA459BE
            Malicious:false
            Reputation:low
            Preview:L..................F.@.. ...$+.,......e>....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.ICYL.....B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VCYL.....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VCYL.....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VCYL............................"&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VDW.n...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i............y.N.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 18:42:25 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2681
            Entropy (8bit):3.9879923794824426
            Encrypted:false
            SSDEEP:48:8idGTim7HzidAKZdA1vehDiZUkwqehTy+R:8P7YRy
            MD5:78A4530BC42AF796DBFD58D871106241
            SHA1:F02E4F2A86C317C18925D761DB111D94FA81BF37
            SHA-256:57A9300449340EE17B7C50EEACAE2C46C209069444F61C58725CF6562A7ED88C
            SHA-512:382DD7CDF228AED2EADF575E0A94998A31438E588139FDF57EFF0B79F7BC936ECD554BBAB9F9EA4F11894865A80417CEFC9B318087CF6D386EFA4CFF7CFA5CCE
            Malicious:false
            Reputation:low
            Preview:L..................F.@.. ...$+.,....P.._....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.ICYL.....B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VCYL.....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VCYL.....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VCYL............................"&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VCYM............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i............y.N.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 18:42:26 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2681
            Entropy (8bit):3.9782192767738844
            Encrypted:false
            SSDEEP:48:8wdGTim7HzidAKZdA1hehBiZUk1W1qehFy+C:8p7I9ly
            MD5:C9CA1E99D1BFAD3C8FC6491B8EFFE7E4
            SHA1:5D9D7B4A1AE9BA6E47DE9F8E91B2FB92B44EA051
            SHA-256:2C5CEF81D66A4F8B55C140A8DFC9627FC8CB88AF4D8EF7F8FAEBE245A80C3FA6
            SHA-512:0E2339ED6B22644E2E2EA377DD68D450C6093D0CEF00990345DCFBE12C953FCD22A9D48834D632CD7C6388E3FB0FA854A72320286A2BB68E5697F9398538B9BE
            Malicious:false
            Reputation:low
            Preview:L..................F.@.. ...$+.,....)._....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.ICYL.....B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VCYL.....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VCYL.....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VCYL............................"&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VCYM............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i............y.N.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

            Download File
            Process:C:\Program Files\Google\Chrome\Application\chrome.exe
            File Type:MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Thu Oct 3 18:42:25 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
            Category:dropped
            Size (bytes):2683
            Entropy (8bit):3.989371721722647
            Encrypted:false
            SSDEEP:48:8g/dGTim7HzidAKZdA1duT+ehOuTbbiZUk5OjqehOuTbby+yT+:8h7mT/TbxWOvTbby7T
            MD5:7673396BBF6CCF9DE57E3CDBEE25CE46
            SHA1:6B6A3167AE51DF536F90B176CCAA6888A36064B2
            SHA-256:3BDA64C97079DF89848EA7AF0BC12FA8B5F178A63890075C30CB6FC7CCE26D85
            SHA-512:BD4C989D2BE5480080BCC1FF549773A473224DC55B02B92664CF4CEB1DC71E262FA43DAB7630A15742F45AD3E1AE53442D07473956F5FAF049FFC7B7F5B91C7A
            Malicious:false
            Reputation:low
            Preview:L..................F.@.. ...$+.,......_....N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....DWWn..PROGRA~1..t......O.ICYL.....B...............J......SX.P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VCYL.....L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VCYL.....M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VCYL............................"&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VCYM............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i............y.N.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

            Static File Info

            No static file info

            Network Behavior

            Network Port Distribution

            TCP Packets

            TimestampSource PortDest PortSource IPDest IP
            Oct 3, 2024 21:42:20.066663027 CEST49674443192.168.2.523.1.237.91
            Oct 3, 2024 21:42:20.066745996 CEST49675443192.168.2.523.1.237.91
            Oct 3, 2024 21:42:20.176044941 CEST49673443192.168.2.523.1.237.91
            Oct 3, 2024 21:42:29.567507029 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:29.567538023 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:29.567630053 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:29.568238974 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:29.568252087 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:29.674604893 CEST49675443192.168.2.523.1.237.91
            Oct 3, 2024 21:42:29.674634933 CEST49674443192.168.2.523.1.237.91
            Oct 3, 2024 21:42:29.783750057 CEST49673443192.168.2.523.1.237.91
            Oct 3, 2024 21:42:30.213380098 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:30.235071898 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:30.235105038 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:30.238924980 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:30.239008904 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:30.295321941 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:30.295588970 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:30.345676899 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:30.345705986 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:30.392535925 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:31.550012112 CEST4434970323.1.237.91192.168.2.5
            Oct 3, 2024 21:42:31.550525904 CEST49703443192.168.2.523.1.237.91
            Oct 3, 2024 21:42:39.128088951 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:39.128125906 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.128211021 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:39.128690958 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:39.128711939 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.788678885 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.788764000 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:39.791219950 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:39.791229963 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.791536093 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.822143078 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:39.867393970 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.920283079 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.920351982 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.920373917 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.920413971 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.920427084 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:39.920444012 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:39.920484066 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:39.920494080 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.005558968 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.005577087 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.005624056 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.005671978 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.005678892 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.005742073 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.007060051 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.007108927 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.007152081 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.007160902 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.007193089 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.007200956 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.091517925 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.091538906 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.091587067 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.091597080 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.091628075 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.091646910 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.092344046 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.092360973 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.092426062 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.092434883 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.092457056 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.092474937 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.092890024 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.092905998 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.092977047 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.092983961 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.093087912 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.096277952 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.096293926 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.096352100 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.096358061 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.096396923 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.118671894 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:40.118731022 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:40.118788004 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:40.178560972 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.178628922 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.178632975 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.178657055 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.178688049 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.178702116 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.178893089 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.178936005 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.178962946 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.178971052 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.178998947 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.179016113 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.179033041 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.179074049 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.179099083 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.179105043 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.179146051 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.179146051 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.179696083 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.179738998 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.179764986 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.179770947 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.179802895 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.179826021 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.180479050 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.180521965 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.180560112 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.180566072 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.180598974 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.180608988 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.180696011 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.180737019 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.180757999 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.180764914 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.180799007 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.180814981 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.180839062 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.180892944 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.180900097 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.180974960 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.180982113 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.181025982 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.184587002 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.189070940 CEST49715443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.189076900 CEST4434971513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.316543102 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.316591024 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.316677094 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.317939997 CEST49718443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.317982912 CEST4434971813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.318048954 CEST49718443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.320043087 CEST49719443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.320090055 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.320318937 CEST49719443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.320897102 CEST49720443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.320919037 CEST4434972013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.321043968 CEST49720443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.321666002 CEST49720443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.321680069 CEST4434972013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.322031975 CEST49719443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.322045088 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.322150946 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.322174072 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.322216988 CEST49718443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.322230101 CEST4434971813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.323008060 CEST49721443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.323055029 CEST4434972113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.323172092 CEST49721443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.323363066 CEST49721443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.323376894 CEST4434972113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.963601112 CEST4434972013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.964329004 CEST49720443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.964360952 CEST4434972013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.964792967 CEST49720443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.964801073 CEST4434972013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.964879990 CEST4434971813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.965214968 CEST49718443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.965275049 CEST4434971813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.965635061 CEST49718443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.965648890 CEST4434971813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.989454985 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.989952087 CEST49719443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.989967108 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.990451097 CEST49719443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.990456104 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.996196032 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.997376919 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.997422934 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:40.997972012 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:40.997984886 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.000106096 CEST4434972113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.000406981 CEST49721443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.000446081 CEST4434972113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.000829935 CEST49721443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.000838995 CEST4434972113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.067600965 CEST4434972013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.067689896 CEST4434972013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.067727089 CEST4434971813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.067753077 CEST4434971813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.067755938 CEST49720443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.067797899 CEST4434971813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.067810059 CEST49718443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.067873955 CEST49718443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.068192005 CEST49720443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.068218946 CEST4434972013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.068234921 CEST49720443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.068243027 CEST4434972013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.069230080 CEST49718443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.069266081 CEST4434971813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.071909904 CEST49725443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.072030067 CEST4434972513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.072108030 CEST49725443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.073427916 CEST49726443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.073452950 CEST4434972613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.073592901 CEST49726443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.073910952 CEST49726443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.073910952 CEST49725443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.073944092 CEST4434972613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.073976994 CEST4434972513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.091996908 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.092017889 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.092077971 CEST49719443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.092097044 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.092447042 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.092509031 CEST49719443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.093321085 CEST49719443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.093333960 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.093347073 CEST49719443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.093352079 CEST4434971913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.099647999 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.099668026 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.099725962 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.099764109 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.099822044 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.100004911 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.100048065 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.100481987 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.101353884 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.101353884 CEST49717443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.101381063 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.101393938 CEST4434971713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.103127956 CEST49727443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.103163958 CEST4434972713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.103272915 CEST49727443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.104859114 CEST4434972113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.104912996 CEST4434972113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.104963064 CEST49721443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.109472036 CEST49727443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.109487057 CEST4434972713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.109523058 CEST49721443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.109523058 CEST49721443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.109550953 CEST4434972113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.109561920 CEST4434972113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.110867023 CEST49728443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.110915899 CEST4434972813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.111062050 CEST49728443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.113415003 CEST49728443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.113440037 CEST4434972813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.149909973 CEST49729443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.149959087 CEST4434972913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.150027990 CEST49729443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.150294065 CEST49729443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.150310993 CEST4434972913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.153107882 CEST49712443192.168.2.5142.250.184.228
            Oct 3, 2024 21:42:41.153130054 CEST44349712142.250.184.228192.168.2.5
            Oct 3, 2024 21:42:41.636727095 CEST4434972613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.642218113 CEST49726443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.642297029 CEST4434972613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.644596100 CEST49726443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.644610882 CEST4434972613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.729572058 CEST4434972513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.733072996 CEST49725443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.733108044 CEST4434972513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.733710051 CEST49725443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.733722925 CEST4434972513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.743880987 CEST4434972613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.743947983 CEST4434972613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.744007111 CEST49726443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.745523930 CEST49726443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.745549917 CEST4434972613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.745577097 CEST49726443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.745590925 CEST4434972613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.752763987 CEST49731443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.752821922 CEST4434973113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.752897978 CEST49731443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.754888058 CEST49731443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.754915953 CEST4434973113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.772023916 CEST4434972813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.790213108 CEST4434972713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.795346022 CEST4434972913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.813127041 CEST49728443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.813188076 CEST4434972813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.813736916 CEST49728443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.813750029 CEST4434972813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.815056086 CEST49727443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.815079927 CEST4434972713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.815705061 CEST49729443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.815732956 CEST4434972913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.815776110 CEST49727443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.815781116 CEST4434972713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.816284895 CEST49729443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.816297054 CEST4434972913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.835105896 CEST4434972513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.835257053 CEST4434972513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.835325003 CEST49725443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.835558891 CEST49725443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.835589886 CEST4434972513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.835614920 CEST49725443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.835628033 CEST4434972513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.862206936 CEST49732443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.862251043 CEST4434973213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.862315893 CEST49732443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.907073975 CEST49732443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.907089949 CEST4434973213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.911648989 CEST4434972813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.911711931 CEST4434972813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.911861897 CEST49728443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.912031889 CEST49728443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.912056923 CEST4434972813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.912091017 CEST49728443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.912100077 CEST4434972813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.914344072 CEST4434972913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.914484978 CEST4434972913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.914541006 CEST49729443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.915024042 CEST49733443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.915071011 CEST4434973313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.915134907 CEST49733443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.915350914 CEST49733443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.915374041 CEST4434973313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.915688992 CEST49729443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.915707111 CEST4434972913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.915719032 CEST49729443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.915724993 CEST4434972913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.918400049 CEST49734443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.918418884 CEST4434973413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.918493032 CEST49734443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.918582916 CEST4434972713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.918653011 CEST4434972713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.918690920 CEST49727443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.918730974 CEST49734443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.918756008 CEST4434973413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.919549942 CEST49727443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.919549942 CEST49727443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.919560909 CEST4434972713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.919569016 CEST4434972713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.922274113 CEST49735443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.922291994 CEST4434973513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:41.922350883 CEST49735443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.922745943 CEST49735443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:41.922755957 CEST4434973513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.406436920 CEST4434973113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.406940937 CEST49731443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.406981945 CEST4434973113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.408854008 CEST49731443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.408860922 CEST4434973113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.508287907 CEST4434973113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.508371115 CEST4434973113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.508435965 CEST49731443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.508635998 CEST49731443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.508666039 CEST4434973113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.508683920 CEST49731443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.508693933 CEST4434973113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.511363029 CEST49737443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.511398077 CEST4434973713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.511646032 CEST49737443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.511761904 CEST49737443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.511773109 CEST4434973713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.557583094 CEST4434973313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.558024883 CEST4434973213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.558191061 CEST49733443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.558217049 CEST4434973313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.558518887 CEST49732443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.558532000 CEST4434973213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.559866905 CEST49733443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.559870958 CEST49732443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.559875965 CEST4434973313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.559878111 CEST4434973213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.566960096 CEST4434973513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.567344904 CEST49735443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.567358971 CEST4434973513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.567790031 CEST49735443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.567799091 CEST4434973513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.604183912 CEST4434973413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.604753971 CEST49734443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.604818106 CEST4434973413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.605190992 CEST49734443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.605206013 CEST4434973413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.658870935 CEST4434973313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.658946037 CEST4434973313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.659061909 CEST49733443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.659192085 CEST49733443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.659229040 CEST4434973313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.659255028 CEST49733443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.659271002 CEST4434973313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.659430027 CEST4434973213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.659501076 CEST4434973213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.659578085 CEST49732443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.659661055 CEST49732443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.659679890 CEST4434973213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.662467957 CEST49738443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.662509918 CEST4434973813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.662714958 CEST49738443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.662812948 CEST49739443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.662844896 CEST4434973913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.662859917 CEST49738443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.662872076 CEST4434973813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.662906885 CEST49739443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.663074017 CEST49739443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.663091898 CEST4434973913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.671515942 CEST4434973513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.671581030 CEST4434973513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.671639919 CEST49735443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.671816111 CEST49735443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.671832085 CEST4434973513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.671844006 CEST49735443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.671849966 CEST4434973513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.674206972 CEST49740443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.674237967 CEST4434974013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.674303055 CEST49740443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.674449921 CEST49740443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.674462080 CEST4434974013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.681619883 CEST6027153192.168.2.51.1.1.1
            Oct 3, 2024 21:42:42.688088894 CEST53602711.1.1.1192.168.2.5
            Oct 3, 2024 21:42:42.688158989 CEST6027153192.168.2.51.1.1.1
            Oct 3, 2024 21:42:42.688191891 CEST6027153192.168.2.51.1.1.1
            Oct 3, 2024 21:42:42.693219900 CEST53602711.1.1.1192.168.2.5
            Oct 3, 2024 21:42:42.715507030 CEST4434973413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.715589046 CEST4434973413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.715759039 CEST49734443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.715833902 CEST49734443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.715852976 CEST4434973413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.715873957 CEST49734443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.715886116 CEST4434973413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.718684912 CEST60272443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.718732119 CEST4436027213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:42.719060898 CEST60272443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.719244003 CEST60272443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:42.719271898 CEST4436027213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.153268099 CEST53602711.1.1.1192.168.2.5
            Oct 3, 2024 21:42:43.153850079 CEST6027153192.168.2.51.1.1.1
            Oct 3, 2024 21:42:43.162995100 CEST53602711.1.1.1192.168.2.5
            Oct 3, 2024 21:42:43.163067102 CEST6027153192.168.2.51.1.1.1
            Oct 3, 2024 21:42:43.190819025 CEST4434973713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.191329002 CEST49737443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.191354990 CEST4434973713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.191832066 CEST49737443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.191840887 CEST4434973713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.296791077 CEST4434973713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.296942949 CEST4434973713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.297066927 CEST49737443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.297168970 CEST49737443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.297169924 CEST49737443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.297190905 CEST4434973713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.297200918 CEST4434973713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.299894094 CEST60273443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.299956083 CEST4436027313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.300081015 CEST60273443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.300148964 CEST60273443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.300157070 CEST4436027313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.340708017 CEST4434973913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.341407061 CEST49739443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.341418982 CEST4434973913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.341692924 CEST49739443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.341697931 CEST4434973913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.341869116 CEST4434974013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.342325926 CEST4434973813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.342391968 CEST49740443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.342411041 CEST4434974013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.342787027 CEST49738443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.342823029 CEST4434973813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.342909098 CEST49740443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.342915058 CEST4434974013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.343010902 CEST49738443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.343017101 CEST4434973813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.365369081 CEST4436027213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.366103888 CEST60272443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.366103888 CEST60272443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.366147041 CEST4436027213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.366172075 CEST4436027213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.445293903 CEST4434973813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.445360899 CEST4434973813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.445575953 CEST49738443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.445575953 CEST49738443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.445692062 CEST49738443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.445710897 CEST4434973813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.446602106 CEST4434974013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.446655989 CEST4434974013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.446779013 CEST49740443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.446852922 CEST49740443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.446852922 CEST49740443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.446872950 CEST4434974013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.446882963 CEST4434974013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.447454929 CEST4434973913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.447536945 CEST4434973913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.447789907 CEST49739443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.448131084 CEST49739443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.448146105 CEST4434973913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.448260069 CEST49739443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.448271036 CEST4434973913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.448637962 CEST60274443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.448682070 CEST4436027413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.449441910 CEST60274443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.449692965 CEST60274443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.449719906 CEST4436027413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.449801922 CEST60275443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.449875116 CEST4436027513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.450007915 CEST60275443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.450417995 CEST60275443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.450417995 CEST60276443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.450443983 CEST4436027513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.450510979 CEST4436027613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.450668097 CEST60276443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.450668097 CEST60276443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.450754881 CEST4436027613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.466489077 CEST4436027213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.466557980 CEST4436027213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.466701031 CEST60272443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.466701031 CEST60272443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.466806889 CEST60272443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.466830015 CEST4436027213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.468703985 CEST60277443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.468727112 CEST4436027713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.468875885 CEST60277443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.469008923 CEST60277443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.469022036 CEST4436027713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.950366020 CEST4436027313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.951368093 CEST60273443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.951407909 CEST4436027313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:43.951437950 CEST60273443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:43.951462030 CEST4436027313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.051587105 CEST4436027313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.051644087 CEST4436027313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.051702976 CEST60273443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.051912069 CEST60273443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.051912069 CEST60273443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.051929951 CEST4436027313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.051939964 CEST4436027313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.054419041 CEST60278443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.054444075 CEST4436027813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.054636955 CEST60278443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.054661989 CEST60278443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.054666042 CEST4436027813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.085278988 CEST4436027613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.086200953 CEST60276443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.086200953 CEST60276443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.086231947 CEST4436027613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.086250067 CEST4436027613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.091464996 CEST4436027413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.092180967 CEST60274443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.092180967 CEST60274443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.092195988 CEST4436027413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.092204094 CEST4436027413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.092458010 CEST4436027513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.092859983 CEST60275443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.092890978 CEST4436027513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.093086958 CEST60275443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.093092918 CEST4436027513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.153805017 CEST4436027713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.154386044 CEST60277443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.154403925 CEST4436027713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.154783964 CEST60277443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.154789925 CEST4436027713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.184951067 CEST4436027613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.185009003 CEST4436027613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.185256004 CEST60276443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.185332060 CEST60276443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.185332060 CEST60276443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.185354948 CEST4436027613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.185365915 CEST4436027613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.188247919 CEST60279443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.188273907 CEST4436027913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.188576937 CEST60279443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.188576937 CEST60279443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.188601017 CEST4436027913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.192318916 CEST4436027413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.192364931 CEST4436027413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.192600012 CEST60274443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.192600012 CEST60274443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.193133116 CEST60274443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.193161964 CEST4436027413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.194029093 CEST4436027513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.194092989 CEST4436027513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.194286108 CEST60275443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.194286108 CEST60275443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.194587946 CEST60275443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.194606066 CEST4436027513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.195017099 CEST60280443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.195066929 CEST4436028013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.196111917 CEST60281443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.196151972 CEST4436028113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.196208000 CEST60280443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.196263075 CEST60281443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.196402073 CEST60280443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.196403980 CEST60281443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.196418047 CEST4436028013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.196424961 CEST4436028113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.271349907 CEST4436027713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.271444082 CEST4436027713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.271645069 CEST60277443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.271719933 CEST60277443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.271719933 CEST60277443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.271738052 CEST4436027713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.271749020 CEST4436027713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.274255037 CEST60282443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.274296045 CEST4436028213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.274414062 CEST60282443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.274514914 CEST60282443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.274522066 CEST4436028213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.752441883 CEST4436027813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.753103971 CEST60278443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.753129005 CEST4436027813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.753515959 CEST60278443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.753520966 CEST4436027813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.850168943 CEST4436028013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.850756884 CEST60280443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.850795031 CEST4436028013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.851162910 CEST60280443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.851171017 CEST4436028013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.867005110 CEST4436027913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.867458105 CEST60279443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.867494106 CEST4436027913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.867872953 CEST60279443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.867878914 CEST4436027913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.890320063 CEST4436027813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.890381098 CEST4436027813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.890532017 CEST60278443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.890616894 CEST60278443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.890639067 CEST4436027813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.890656948 CEST60278443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.890662909 CEST4436027813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.893641949 CEST60283443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.893697023 CEST4436028313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.893904924 CEST60283443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.894062042 CEST60283443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.894083023 CEST4436028313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.900912046 CEST4436028113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.901245117 CEST60281443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.901274920 CEST4436028113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.901606083 CEST60281443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.901612997 CEST4436028113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.967542887 CEST4436028213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.968040943 CEST60282443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.968065977 CEST4436028213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.968446016 CEST60282443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.968451977 CEST4436028213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.993230104 CEST4436028013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.993292093 CEST4436028013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.993350029 CEST60280443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.993516922 CEST60280443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.993541956 CEST4436028013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.993558884 CEST60280443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.993567944 CEST4436028013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.996273994 CEST60284443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.996315956 CEST4436028413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.996329069 CEST4436027913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.996377945 CEST4436027913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.996397972 CEST60284443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.996445894 CEST60279443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.996573925 CEST60284443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.996586084 CEST4436028413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.996618032 CEST60279443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.996639967 CEST4436027913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.996656895 CEST60279443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.996663094 CEST4436027913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:44.998661995 CEST60285443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:44.998692036 CEST4436028513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.002521992 CEST60285443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.002521992 CEST60285443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.002546072 CEST4436028513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.026774883 CEST4436028113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.026849985 CEST4436028113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.026892900 CEST60281443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.027044058 CEST60281443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.027060986 CEST4436028113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.027072906 CEST60281443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.027079105 CEST4436028113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.029257059 CEST60286443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.029277086 CEST4436028613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.029453039 CEST60286443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.029705048 CEST60286443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.029712915 CEST4436028613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.068448067 CEST4436028213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.068517923 CEST4436028213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.068558931 CEST60282443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.068708897 CEST60282443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.068717957 CEST4436028213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.068730116 CEST60282443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.068734884 CEST4436028213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.071557045 CEST60287443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.071605921 CEST4436028713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.071702957 CEST60287443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.071791887 CEST60287443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.071803093 CEST4436028713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.653616905 CEST4436028513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.654762030 CEST60285443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.654789925 CEST4436028513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.655225992 CEST60285443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.655231953 CEST4436028513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.670970917 CEST4436028413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.671396017 CEST60284443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.671422958 CEST4436028413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.672166109 CEST60284443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.672179937 CEST4436028413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.683685064 CEST4436028613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.684370041 CEST60286443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.684379101 CEST4436028613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.684878111 CEST60286443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.684880972 CEST4436028613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.741220951 CEST4436028713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.742100954 CEST60287443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.742100954 CEST60287443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.742130995 CEST4436028713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.742151976 CEST4436028713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.765611887 CEST4436028513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.765672922 CEST4436028513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.765825033 CEST60285443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.771245003 CEST60285443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.771245003 CEST60285443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.771262884 CEST4436028513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.771270990 CEST4436028513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.774524927 CEST60288443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.774573088 CEST4436028813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.774748087 CEST60288443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.774775982 CEST60288443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.774781942 CEST4436028813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.775039911 CEST4436028413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.775192976 CEST4436028413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.775285959 CEST60284443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.775285959 CEST60284443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.775326014 CEST60284443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.775342941 CEST4436028413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.790591955 CEST60289443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.790636063 CEST4436028913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.790838003 CEST60289443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.791088104 CEST60289443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.791102886 CEST4436028913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.792330027 CEST4436028613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.792407990 CEST4436028613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.792562962 CEST60286443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.792562962 CEST60286443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.793533087 CEST60286443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.793545008 CEST4436028613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.806564093 CEST60290443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.806580067 CEST4436029013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.806662083 CEST60290443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.806823969 CEST60290443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.806833982 CEST4436029013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.847829103 CEST4436028713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.847903013 CEST4436028713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.848050117 CEST60287443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.848140955 CEST60287443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.848140955 CEST60287443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.848167896 CEST4436028713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.848181009 CEST4436028713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.854664087 CEST60291443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.854707003 CEST4436029113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:45.854794025 CEST60291443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.854954004 CEST60291443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:45.854964972 CEST4436029113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.451154947 CEST4436028813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.451668024 CEST60288443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.451688051 CEST4436028813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.452275991 CEST60288443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.452280998 CEST4436028813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.458278894 CEST4436029013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.458695889 CEST60290443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.458720922 CEST4436029013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.459096909 CEST60290443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.459104061 CEST4436029013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.712126970 CEST4436028813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.712205887 CEST4436029013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.712210894 CEST4436028813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.712275982 CEST60288443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.712282896 CEST4436029013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.712352037 CEST60290443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.712385893 CEST60288443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.712403059 CEST4436028813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.712412119 CEST60288443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.712416887 CEST4436028813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.712937117 CEST60290443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.712958097 CEST4436029013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.712970018 CEST60290443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.712975979 CEST4436029013.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.714234114 CEST4436029113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.714829922 CEST60291443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.714837074 CEST4436029113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.715315104 CEST60291443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.715318918 CEST4436029113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.716451883 CEST60292443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.716485977 CEST4436029213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.716615915 CEST60292443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.716734886 CEST60292443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.716754913 CEST4436029213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.716936111 CEST60293443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.716984034 CEST4436029313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.717050076 CEST60293443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.717139006 CEST60293443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.717156887 CEST4436029313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.718736887 CEST4436028913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.719089985 CEST60289443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.719099998 CEST4436028913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.719711065 CEST60289443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.719717979 CEST4436028913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.817045927 CEST4436029113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.817106009 CEST4436029113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.817187071 CEST60291443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.817373037 CEST60291443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.817388058 CEST4436029113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.817397118 CEST60291443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.817401886 CEST4436029113.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.819979906 CEST60294443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.820079088 CEST4436029413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.820156097 CEST60294443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.820291996 CEST60294443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.820321083 CEST4436029413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.821507931 CEST4436028913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.821654081 CEST4436028913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.821749926 CEST60289443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.821837902 CEST60289443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.821837902 CEST60289443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.821851015 CEST4436028913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.821858883 CEST4436028913.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.823688030 CEST60295443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.823714018 CEST4436029513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:46.823848009 CEST60295443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.823997974 CEST60295443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:46.824022055 CEST4436029513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.283576965 CEST4436028313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.284560919 CEST60283443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.284560919 CEST60283443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.284600019 CEST4436028313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.284616947 CEST4436028313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.551378965 CEST4436028313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.551443100 CEST4436028313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.551713943 CEST60283443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.551713943 CEST60283443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.552448034 CEST60283443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.552469969 CEST4436028313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.552810907 CEST4436029213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.553302050 CEST4436029313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.553348064 CEST60292443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.553369045 CEST4436029213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.553749084 CEST60292443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.553756952 CEST4436029213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.554029942 CEST60293443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.554063082 CEST4436029313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.554299116 CEST60293443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.554306030 CEST4436029313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.554858923 CEST60296443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.554900885 CEST4436029613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.555140972 CEST60296443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.555183887 CEST60296443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.555188894 CEST4436029613.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.653695107 CEST4436029213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.653753042 CEST4436029213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.654005051 CEST60292443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.654046059 CEST60292443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.654061079 CEST4436029213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.654122114 CEST60292443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.654129028 CEST4436029213.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.656759024 CEST60297443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.656788111 CEST4436029713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.656869888 CEST60297443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.657336950 CEST60297443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.657350063 CEST4436029713.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.658404112 CEST4436029313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.658462048 CEST4436029313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.658705950 CEST60293443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.658729076 CEST60293443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.658729076 CEST60293443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.658742905 CEST4436029313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.658751011 CEST4436029313.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.660861969 CEST60298443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.660868883 CEST4436029813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.661011934 CEST60298443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.661124945 CEST60298443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.661135912 CEST4436029813.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.730557919 CEST4436029413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.730972052 CEST60294443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.730989933 CEST4436029413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.731396914 CEST60294443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.731401920 CEST4436029413.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.734325886 CEST4436029513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.734785080 CEST60295443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.734798908 CEST4436029513.107.246.60192.168.2.5
            Oct 3, 2024 21:42:47.735001087 CEST60295443192.168.2.513.107.246.60
            Oct 3, 2024 21:42:47.735004902 CEST4436029513.107.246.60192.168.2.5

            UDP Packets

            TimestampSource PortDest PortSource IPDest IP
            Oct 3, 2024 21:42:24.990920067 CEST53519521.1.1.1192.168.2.5
            Oct 3, 2024 21:42:24.990997076 CEST53573731.1.1.1192.168.2.5
            Oct 3, 2024 21:42:26.064275980 CEST53510381.1.1.1192.168.2.5
            Oct 3, 2024 21:42:26.359167099 CEST6510053192.168.2.51.1.1.1
            Oct 3, 2024 21:42:26.359376907 CEST4946553192.168.2.51.1.1.1
            Oct 3, 2024 21:42:26.549251080 CEST53651001.1.1.1192.168.2.5
            Oct 3, 2024 21:42:26.549923897 CEST4975453192.168.2.51.1.1.1
            Oct 3, 2024 21:42:26.653223991 CEST53494651.1.1.1192.168.2.5
            Oct 3, 2024 21:42:26.653819084 CEST5767753192.168.2.51.1.1.1
            Oct 3, 2024 21:42:26.812295914 CEST53497541.1.1.1192.168.2.5
            Oct 3, 2024 21:42:26.813240051 CEST5024553192.168.2.51.1.1.1
            Oct 3, 2024 21:42:26.831779003 CEST53576771.1.1.1192.168.2.5
            Oct 3, 2024 21:42:27.278434992 CEST53502451.1.1.1192.168.2.5
            Oct 3, 2024 21:42:27.347078085 CEST6539153192.168.2.58.8.8.8
            Oct 3, 2024 21:42:27.347300053 CEST6236253192.168.2.51.1.1.1
            Oct 3, 2024 21:42:27.355056047 CEST53623621.1.1.1192.168.2.5
            Oct 3, 2024 21:42:27.355817080 CEST53653918.8.8.8192.168.2.5
            Oct 3, 2024 21:42:28.620073080 CEST6162753192.168.2.51.1.1.1
            Oct 3, 2024 21:42:28.621278048 CEST5977653192.168.2.51.1.1.1
            Oct 3, 2024 21:42:28.799432993 CEST53616271.1.1.1192.168.2.5
            Oct 3, 2024 21:42:28.800327063 CEST6533253192.168.2.51.1.1.1
            Oct 3, 2024 21:42:29.087733984 CEST53597761.1.1.1192.168.2.5
            Oct 3, 2024 21:42:29.088438034 CEST5386153192.168.2.51.1.1.1
            Oct 3, 2024 21:42:29.102011919 CEST53538611.1.1.1192.168.2.5
            Oct 3, 2024 21:42:29.308573008 CEST53653321.1.1.1192.168.2.5
            Oct 3, 2024 21:42:29.507406950 CEST5130553192.168.2.51.1.1.1
            Oct 3, 2024 21:42:29.507652998 CEST5158853192.168.2.51.1.1.1
            Oct 3, 2024 21:42:29.515319109 CEST53515881.1.1.1192.168.2.5
            Oct 3, 2024 21:42:29.515816927 CEST53513051.1.1.1192.168.2.5
            Oct 3, 2024 21:42:34.512516022 CEST5061053192.168.2.51.1.1.1
            Oct 3, 2024 21:42:34.513535976 CEST6027053192.168.2.51.1.1.1
            Oct 3, 2024 21:42:34.805972099 CEST53506101.1.1.1192.168.2.5
            Oct 3, 2024 21:42:34.806708097 CEST6514553192.168.2.51.1.1.1
            Oct 3, 2024 21:42:34.975090027 CEST53602701.1.1.1192.168.2.5
            Oct 3, 2024 21:42:34.990230083 CEST53651451.1.1.1192.168.2.5
            Oct 3, 2024 21:42:35.000983953 CEST5411053192.168.2.51.1.1.1
            Oct 3, 2024 21:42:35.185388088 CEST53541101.1.1.1192.168.2.5
            Oct 3, 2024 21:42:42.681242943 CEST53496471.1.1.1192.168.2.5
            Oct 3, 2024 21:42:43.213232040 CEST53638831.1.1.1192.168.2.5

            ICMP Packets

            TimestampSource IPDest IPChecksumCodeType
            Oct 3, 2024 21:42:24.991122961 CEST192.168.2.51.1.1.1c22d(Port unreachable)Destination Unreachable
            Oct 3, 2024 21:42:26.832659960 CEST192.168.2.51.1.1.1c204(Port unreachable)Destination Unreachable

            DNS Queries

            TimestampSource IPDest IPTrans IDOP CodeNameTypeClassDNS over HTTPS
            Oct 3, 2024 21:42:26.359167099 CEST192.168.2.51.1.1.10xdfd0Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:26.359376907 CEST192.168.2.51.1.1.10x5c67Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top65IN (0x0001)false
            Oct 3, 2024 21:42:26.549923897 CEST192.168.2.51.1.1.10x3843Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:26.653819084 CEST192.168.2.51.1.1.10x196bStandard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top65IN (0x0001)false
            Oct 3, 2024 21:42:26.813240051 CEST192.168.2.51.1.1.10xbfb9Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:27.347078085 CEST192.168.2.58.8.8.80xcd29Standard query (0)google.comA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:27.347300053 CEST192.168.2.51.1.1.10x51a3Standard query (0)google.comA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:28.620073080 CEST192.168.2.51.1.1.10x4615Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:28.621278048 CEST192.168.2.51.1.1.10x12d6Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top65IN (0x0001)false
            Oct 3, 2024 21:42:28.800327063 CEST192.168.2.51.1.1.10xcd4dStandard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:29.088438034 CEST192.168.2.51.1.1.10x32a5Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top65IN (0x0001)false
            Oct 3, 2024 21:42:29.507406950 CEST192.168.2.51.1.1.10x4296Standard query (0)www.google.comA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:29.507652998 CEST192.168.2.51.1.1.10x25a7Standard query (0)www.google.com65IN (0x0001)false
            Oct 3, 2024 21:42:34.512516022 CEST192.168.2.51.1.1.10x3137Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:34.513535976 CEST192.168.2.51.1.1.10x2438Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top65IN (0x0001)false
            Oct 3, 2024 21:42:34.806708097 CEST192.168.2.51.1.1.10xcdd3Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:35.000983953 CEST192.168.2.51.1.1.10x64f1Standard query (0)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topA (IP address)IN (0x0001)false

            DNS Answers

            TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClassDNS over HTTPS
            Oct 3, 2024 21:42:26.549251080 CEST1.1.1.1192.168.2.50xdfd0Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenoneA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:26.653223991 CEST1.1.1.1192.168.2.50x5c67Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenone65IN (0x0001)false
            Oct 3, 2024 21:42:26.812295914 CEST1.1.1.1192.168.2.50x3843Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenoneA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:26.831779003 CEST1.1.1.1192.168.2.50x196bServer failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenone65IN (0x0001)false
            Oct 3, 2024 21:42:27.278434992 CEST1.1.1.1192.168.2.50xbfb9Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenoneA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:27.355056047 CEST1.1.1.1192.168.2.50x51a3No error (0)google.com142.250.185.174A (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:27.355817080 CEST8.8.8.8192.168.2.50xcd29No error (0)google.com142.250.184.206A (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:28.799432993 CEST1.1.1.1192.168.2.50x4615Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenoneA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:29.087733984 CEST1.1.1.1192.168.2.50x12d6Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenone65IN (0x0001)false
            Oct 3, 2024 21:42:29.102011919 CEST1.1.1.1192.168.2.50x32a5Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenone65IN (0x0001)false
            Oct 3, 2024 21:42:29.308573008 CEST1.1.1.1192.168.2.50xcd4dServer failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenoneA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:29.515319109 CEST1.1.1.1192.168.2.50x25a7No error (0)www.google.com65IN (0x0001)false
            Oct 3, 2024 21:42:29.515816927 CEST1.1.1.1192.168.2.50x4296No error (0)www.google.com142.250.184.228A (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:34.805972099 CEST1.1.1.1192.168.2.50x3137Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenoneA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:34.975090027 CEST1.1.1.1192.168.2.50x2438Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenone65IN (0x0001)false
            Oct 3, 2024 21:42:34.990230083 CEST1.1.1.1192.168.2.50xcdd3Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenoneA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:35.185388088 CEST1.1.1.1192.168.2.50x64f1Server failure (2)ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.topnonenoneA (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:39.127123117 CEST1.1.1.1192.168.2.50xa0e0No error (0)shed.dual-low.s-part-0032.t-0009.t-msedge.nets-part-0032.t-0009.t-msedge.netCNAME (Canonical name)IN (0x0001)false
            Oct 3, 2024 21:42:39.127123117 CEST1.1.1.1192.168.2.50xa0e0No error (0)s-part-0032.t-0009.t-msedge.net13.107.246.60A (IP address)IN (0x0001)false
            Oct 3, 2024 21:42:40.336847067 CEST1.1.1.1192.168.2.50x8e76No error (0)fp2e7a.wpc.2be4.phicdn.netfp2e7a.wpc.phicdn.netCNAME (Canonical name)IN (0x0001)false
            Oct 3, 2024 21:42:40.336847067 CEST1.1.1.1192.168.2.50x8e76No error (0)fp2e7a.wpc.phicdn.net192.229.221.95A (IP address)IN (0x0001)false

            HTTP Request Dependency Graph

            • otelrules.azureedge.net

            HTTPS Proxied Packets

            Session IDSource IPSource PortDestination IPDestination Port
            0192.168.2.54971513.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:39 UTC195OUTGET /rules/other-Win32-v19.bundle HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:39 UTC540INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:39 GMT
            Content-Type: text/plain
            Content-Length: 218853
            Connection: close
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Cache-Control: public
            Last-Modified: Mon, 30 Sep 2024 13:16:38 GMT
            ETag: "0x8DCE1521DF74B57"
            x-ms-request-id: 90766f9b-701e-006f-578c-15afc4000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194239Z-15767c5fc55ncqdn59ub6rndq00000000b6g000000007b86
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:39 UTC15844INData Raw: 31 30 30 30 76 35 2b 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 30 30 30 22 20 56 3d 22 35 22 20 44 43 3d 22 45 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 54 65 6c 65 6d 65 74 72 79 2e 52 75 6c 65 45 72 72 6f 72 73 41 67 67 72 65 67 61 74 65 64 22 20 41 54 54 3d 22 66 39 39 38 63 63 35 62 61 34 64 34 34 38 64 36 61 31 65 38 65 39 31 33 66 66 31 38 62 65 39 34 2d 64 64 31 32 32 65 30 61 2d 66 63 66 38 2d 34 64 63 35 2d 39 64 62 62 2d 36 61 66 61 63 35 33 32 35 31 38 33 2d 37 34 30 35 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 53 3d 22 37 30 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 50 53 50 20 50 53 55 22 20
            Data Ascii: 1000v5+<?xml version="1.0" encoding="utf-8"?><R Id="1000" V="5" DC="ESM" EN="Office.Telemetry.RuleErrorsAggregated" ATT="f998cc5ba4d448d6a1e8e913ff18be94-dd122e0a-fcf8-4dc5-9dbb-6afac5325183-7405" SP="CriticalBusinessImpact" S="70" DL="A" DCa="PSP PSU"
            2024-10-03 19:42:40 UTC16384INData Raw: 22 30 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 34 30 30 22 20 54 3d 22 49 33 32 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 42 22 20 49 3d 22 35 22 20 4f 3d 22 66 61 6c 73 65 22 3e 0d 0a 20 20 20 20 3c 4f 20 54 3d 22 41 4e 44 22 3e 0d 0a 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 47 45 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 2f 3e
            Data Ascii: "0" /> </L> <R> <V V="400" T="I32" /> </R> </O> </R> </O> </C> <C T="B" I="5" O="false"> <O T="AND"> <L> <O T="GE"> <L> <S T="1" F="0" />
            2024-10-03 19:42:40 UTC16384INData Raw: 20 20 3c 53 54 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 31 22 20 2f 3e 0d 0a 20 20 3c 2f 53 54 3e 0d 0a 3c 2f 52 3e 0d 0a 3c 24 21 23 3e 31 30 38 32 30 76 33 2b 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 30 38 32 30 22 20 56 3d 22 33 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 4f 75 74 6c 6f 6f 6b 2e 44 65 73 6b 74 6f 70 2e 43 6f 6e 74 61 63 74 43 61 72 64 50 72 6f 70 65 72 74 69 65 73 43 6f 75 6e 74 73 22 20 41 54 54 3d 22 64 38 30 37 36 30 39 32 37 36 37 34 34 32 34 35 62 61 66 38 31 62 66 37 62 63 38 30 33 33 66 36 2d 32 32 36 38 65 33 37 34 2d 37 37 36 36 2d 34 39 37 36 2d 62 65 34 34 2d 62 36 61 64 35 62 64 64 63 35 62 36 2d 37 38 31
            Data Ascii: <ST> <S T="1" /> </ST></R><$!#>10820v3+<?xml version="1.0" encoding="utf-8"?><R Id="10820" V="3" DC="SM" EN="Office.Outlook.Desktop.ContactCardPropertiesCounts" ATT="d807609276744245baf81bf7bc8033f6-2268e374-7766-4976-be44-b6ad5bddc5b6-781
            2024-10-03 19:42:40 UTC16384INData Raw: 20 54 3d 22 55 36 34 22 20 49 3d 22 38 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 45 76 65 6e 74 73 5f 41 76 67 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 32 22 20 46 3d 22 41 76 65 72 61 67 65 22 20 2f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 39 22 20 4f 3d 22 74 72 75 65 22 20 4e 3d 22 50 75 72 67 65 64 5f 41 67 65 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 34 22 20 46 3d 22 43 6f 75 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 30 22 20 4f 3d 22 74 72 75 65 22 20 4e 3d 22 50 75 72 67 65 64 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22 35 22 20 46 3d 22 43 6f 75 6e 74 22 20 2f 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20
            Data Ascii: T="U64" I="8" O="false" N="Events_Avg"> <S T="2" F="Average" /> </C> <C T="U32" I="9" O="true" N="Purged_Age"> <S T="4" F="Count" /> </C> <C T="U32" I="10" O="true" N="Purged_Count"> <S T="5" F="Count" /> </C> <C T="U32"
            2024-10-03 19:42:40 UTC16384INData Raw: 22 30 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 43 6f 75 6e 74 5f 43 72 65 61 74 65 43 61 72 64 5f 56 61 6c 69 64 50 65 72 73 6f 6e 61 5f 46 61 6c 73 65 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 43 6f 75 6e 74 5f 43 72 65 61 74 65 43 61 72 64 5f 56 61 6c 69 64 4d 61 6e 61 67 65 72 5f 46 61 6c 73 65 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 32 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 43 6f
            Data Ascii: "0" O="false" N="Count_CreateCard_ValidPersona_False"> <C> <S T="10" /> </C> </C> <C T="U32" I="1" O="false" N="Count_CreateCard_ValidManager_False"> <C> <S T="11" /> </C> </C> <C T="U32" I="2" O="false" N="Co
            2024-10-03 19:42:40 UTC16384INData Raw: 20 20 20 20 3c 53 20 54 3d 22 33 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 39 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 50 61 69 6e 74 5f 49 4d 73 6f 50 65 72 73 6f 6e 61 5f 57 61 73 4e 75 6c 6c 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 33 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 32 30 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 50 61 69 6e 74 5f 49 4d 73 6f 50 65 72 73 6f 6e 61 5f 4e 75 6c 6c 5f 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 33 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a
            Data Ascii: <S T="31" /> </C> </C> <C T="U32" I="19" O="false" N="Paint_IMsoPersona_WasNull_Count"> <C> <S T="32" /> </C> </C> <C T="U32" I="20" O="false" N="Paint_IMsoPersona_Null_Count"> <C> <S T="33" /> </C>
            2024-10-03 19:42:40 UTC16384INData Raw: 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 52 65 74 72 69 65 76 61 6c 4d 69 6c 6c 69 73 65 63 6f 6e 64 73 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 32 30 30 22 20 54 3d 22 49 36 34 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 4c 54 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 52 65 74 72 69 65 76 61 6c 4d 69 6c 6c 69 73 65 63
            Data Ascii: <S T="3" F="RetrievalMilliseconds" /> </L> <R> <V V="200" T="I64" /> </R> </O> </L> <R> <O T="LT"> <L> <S T="3" F="RetrievalMillisec
            2024-10-03 19:42:40 UTC16384INData Raw: 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 30 22 20 54 3d 22 49 33 32 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 3c 2f 46 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 30 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 4f 63 6f 6d 32 49 55 43 4f 66 66 69 63 65 49 6e 74 65 67 72 61 74 69 6f 6e 46 69 72 73 74 43 61 6c 6c 53 75 63 63 65 73 73 43 6f 75 6e 74 22 3e 0d 0a 20 20 20 20 3c 43 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 43 3e 0d 0a 20 20 3c 2f 43 3e 0d 0a 20 20 3c 43 20 54 3d 22 55 33 32 22 20 49 3d 22 31 22 20 4f 3d 22 66 61 6c 73 65 22 20 4e 3d 22 4f 63 6f 6d 32 49 55 43 4f 66 66 69 63 65 49 6e
            Data Ascii: R> <V V="0" T="I32" /> </R> </O> </F> </S> <C T="U32" I="0" O="false" N="Ocom2IUCOfficeIntegrationFirstCallSuccessCount"> <C> <S T="9" /> </C> </C> <C T="U32" I="1" O="false" N="Ocom2IUCOfficeIn
            2024-10-03 19:42:40 UTC16384INData Raw: 52 3e 0d 0a 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 3c 2f 46 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 36 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 41 4e 44 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 54 65 6e 61 6e 74 20 65 6e 61 62 6c 65 64 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 33 22 20 46 3d 22 55 73 65 72 20 65 6e 61 62 6c 65 64 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20
            Data Ascii: R> </O> </F> <F T="6"> <O T="AND"> <L> <S T="3" F="Tenant enabled" /> </L> <R> <O T="EQ"> <L> <S T="3" F="User enabled" /> </L>
            2024-10-03 19:42:40 UTC16384INData Raw: 54 3d 22 36 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 32 22 20 46 3d 22 48 74 74 70 53 74 61 74 75 73 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 4c 3e 0d 0a 20 20 20 20 20 20 20 20 3c 52 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 56 20 56 3d 22 34 30 34 22 20 54 3d 22 55 33 32 22 20 2f 3e 0d 0a 20 20 20 20 20 20 20 20 3c 2f 52 3e 0d 0a 20 20 20 20 20 20 3c 2f 4f 3e 0d 0a 20 20 20 20 3c 2f 46 3e 0d 0a 20 20 20 20 3c 46 20 54 3d 22 37 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 41 4e 44 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 4f 20 54 3d 22 47 45 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c
            Data Ascii: T="6"> <O T="EQ"> <L> <S T="2" F="HttpStatus" /> </L> <R> <V V="404" T="U32" /> </R> </O> </F> <F T="7"> <O T="AND"> <L> <O T="GE"> <


            Session IDSource IPSource PortDestination IPDestination Port
            1192.168.2.54972013.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:40 UTC192OUTGET /rules/rule224902v2s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:41 GMT
            Content-Type: text/xml
            Content-Length: 450
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:27:25 GMT
            ETag: "0x8DC582BD4C869AE"
            x-ms-request-id: b9d87bc4-001e-008d-138c-15d91e000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194241Z-15767c5fc55gq5fmm10nm5qqr80000000bkg00000000egpz
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC450INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 32 32 34 39 30 32 22 20 56 3d 22 32 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 31 30 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 55 54 53 20 54 3d 22 32 22 20 49 64 3d 22 62 62 72 35 71 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 53 20 54 3d 22 33 22 20 47 3d 22 7b 61 33 36 61 39 37 30 64 2d 34 35 61 39 2d 34 65 30 64 2d 39 63 61 62 2d 32 61 32 33 35 63 63 39 64 37 63 36 7d 22 20 2f 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 47 22 20 49 3d 22 30 22 20 4f 3d 22 66 61 6c 73 65 4e
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="224902" V="2" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120100" /> <UTS T="2" Id="bbr5q" /> <SS T="3" G="{a36a970d-45a9-4e0d-9cab-2a235cc9d7c6}" /> </S> <C T="G" I="0" O="falseN


            Session IDSource IPSource PortDestination IPDestination Port
            2192.168.2.54971813.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:40 UTC192OUTGET /rules/rule120600v4s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC563INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:40 GMT
            Content-Type: text/xml
            Content-Length: 2980
            Connection: close
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:10 GMT
            ETag: "0x8DC582BA80D96A1"
            x-ms-request-id: b9d87bc3-001e-008d-128c-15d91e000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194240Z-15767c5fc55xsgnlxyxy40f4m00000000b8000000000vd6f
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC2980INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 30 22 20 56 3d 22 34 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 2e 53 79 73 74 65 6d 48 65 61 6c 74 68 4d 65 74 61 64 61 74 61 44 65 76 69 63 65 43 6f 6e 73 6f 6c 69 64 61 74 65 64 22 20 41 54 54 3d 22 63 64 38 33 36 36 32 36 36 31 31 63 34 63 61 61 61 38 66 63 35 62 32 65 37 32 38 65 65 38 31 64 2d 33 62 36 64 36 63 34 35 2d 36 33 37 37 2d 34 62 66 35 2d 39 37 39 32 2d 64 62 66 38 65 31 38 38 31 30 38 38 2d 37 35 32 31 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 42 75 73 69 6e 65 73 73 49 6d 70 61 63 74 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 44 43 22 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120600" V="4" DC="SM" EN="Office.System.SystemHealthMetadataDeviceConsolidated" ATT="cd836626611c4caaa8fc5b2e728ee81d-3b6d6c45-6377-4bf5-9792-dbf8e1881088-7521" SP="CriticalBusinessImpact" DL="A" DCa="DC"


            Session IDSource IPSource PortDestination IPDestination Port
            3192.168.2.54971913.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:40 UTC192OUTGET /rules/rule120608v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC563INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:41 GMT
            Content-Type: text/xml
            Content-Length: 2160
            Connection: close
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:03 GMT
            ETag: "0x8DC582BA3B95D81"
            x-ms-request-id: 39d43082-801e-00ac-658c-15fd65000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194241Z-15767c5fc5546rn6ch9zv310e000000004c000000000pqdr
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC2160INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 44 43 61 3d 22 50 53 55 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 32 22 20 52 3d 22 31 32 30 36 37 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 33 22 20 52 3d 22 31 32 30 36 31 30 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 34 22 20 52 3d 22 31 32 30 36 31 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 35 22 20 52 3d 22 31 32 30 36 31 34 22 20 2f 3e 0d 0a 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120608" V="0" DC="SM" T="Subrule" DCa="PSU" xmlns=""> <S> <R T="1" R="120609" /> <R T="2" R="120679" /> <R T="3" R="120610" /> <R T="4" R="120612" /> <R T="5" R="120614" />


            Session IDSource IPSource PortDestination IPDestination Port
            4192.168.2.54971713.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:40 UTC193OUTGET /rules/rule120402v21s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC563INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:41 GMT
            Content-Type: text/xml
            Content-Length: 3788
            Connection: close
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Vary: Accept-Encoding
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:17 GMT
            ETag: "0x8DC582BAC2126A6"
            x-ms-request-id: 1cc2ff82-e01e-0071-478c-1508e7000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194241Z-15767c5fc55gs96cphvgp5f5vc0000000b8g00000000x5ad
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC3788INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 34 30 32 22 20 56 3d 22 32 31 22 20 44 43 3d 22 53 4d 22 20 45 4e 3d 22 4f 66 66 69 63 65 2e 53 79 73 74 65 6d 2e 53 79 73 74 65 6d 48 65 61 6c 74 68 55 6e 67 72 61 63 65 66 75 6c 41 70 70 45 78 69 74 44 65 73 6b 74 6f 70 22 20 41 54 54 3d 22 63 64 38 33 36 36 32 36 36 31 31 63 34 63 61 61 61 38 66 63 35 62 32 65 37 32 38 65 65 38 31 64 2d 33 62 36 64 36 63 34 35 2d 36 33 37 37 2d 34 62 66 35 2d 39 37 39 32 2d 64 62 66 38 65 31 38 38 31 30 38 38 2d 37 35 32 31 22 20 53 50 3d 22 43 72 69 74 69 63 61 6c 43 65 6e 73 75 73 22 20 44 4c 3d 22 41 22 20 44 43 61 3d 22 50 53 50 22 20 78 6d 6c 6e 73 3d 22 22
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120402" V="21" DC="SM" EN="Office.System.SystemHealthUngracefulAppExitDesktop" ATT="cd836626611c4caaa8fc5b2e728ee81d-3b6d6c45-6377-4bf5-9792-dbf8e1881088-7521" SP="CriticalCensus" DL="A" DCa="PSP" xmlns=""


            Session IDSource IPSource PortDestination IPDestination Port
            5192.168.2.54972113.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:40 UTC192OUTGET /rules/rule120609v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:41 GMT
            Content-Type: text/xml
            Content-Length: 408
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:33 GMT
            ETag: "0x8DC582BB56D3AFB"
            x-ms-request-id: 4b0a31e7-c01e-00ad-448c-15a2b9000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194241Z-15767c5fc552g4w83buhsr3htc0000000bfg00000000d921
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC408INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 30 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 38 32 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 44 64 5d 5b 45 65 5d 5b 4c 6c 5d 5b 4c 6c 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120609" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120682" /> <SR T="2" R="^([Dd][Ee][Ll][Ll])"> <S T="1" F="0" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">


            Session IDSource IPSource PortDestination IPDestination Port
            6192.168.2.54972613.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:41 UTC192OUTGET /rules/rule120611v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:41 GMT
            Content-Type: text/xml
            Content-Length: 415
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:56 GMT
            ETag: "0x8DC582B9F6F3512"
            x-ms-request-id: 757ce4f4-401e-000a-128c-154a7b000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194241Z-15767c5fc55w69c2zvnrz0gmgw0000000btg000000002cyz
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC415INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4c 6c 5d 5b 45 65 5d 5b 4e 6e 5d 5b 4f 6f 5d 5b 56 76 5d 5b 4f 6f 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120611" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120609" /> <SR T="2" R="([Ll][Ee][Nn][Oo][Vv][Oo])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tru


            Session IDSource IPSource PortDestination IPDestination Port
            7192.168.2.54972513.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:41 UTC192OUTGET /rules/rule120610v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:41 GMT
            Content-Type: text/xml
            Content-Length: 474
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:46 GMT
            ETag: "0x8DC582B9964B277"
            x-ms-request-id: aa8826a4-b01e-0053-608c-15cdf8000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194241Z-15767c5fc554w2fgapsyvy8ua00000000b10000000007vdf
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC474INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 30 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120610" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120609" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            8192.168.2.54972813.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:41 UTC192OUTGET /rules/rule120613v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:41 GMT
            Content-Type: text/xml
            Content-Length: 632
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:35 GMT
            ETag: "0x8DC582BB6E3779E"
            x-ms-request-id: 3a0dc1eb-601e-0032-608c-15eebb000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194241Z-15767c5fc554w2fgapsyvy8ua00000000b2g0000000025ff
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC632INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 48 68 5d 5b 50 70 5d 28 5b 5e 45 5d 7c 24 29 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 33 22 20 52 3d 22 28 5b 48 68 5d 5b 45 65 5d 5b 57 77 5d 5b 4c 6c 5d 5b 45 65 5d
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120613" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120611" /> <SR T="2" R="^([Hh][Pp]([^E]|$))"> <S T="1" F="1" M="Ignore" /> </SR> <SR T="3" R="([Hh][Ee][Ww][Ll][Ee]


            Session IDSource IPSource PortDestination IPDestination Port
            9192.168.2.54972713.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:41 UTC192OUTGET /rules/rule120612v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:41 GMT
            Content-Type: text/xml
            Content-Length: 471
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:25 GMT
            ETag: "0x8DC582BB10C598B"
            x-ms-request-id: 24b39cfc-301e-0096-2a8c-15e71d000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194241Z-15767c5fc55tsfp92w7yna557w0000000bfg00000000f7yd
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC471INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120612" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120611" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            10192.168.2.54972913.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:41 UTC192OUTGET /rules/rule120614v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:41 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:41 GMT
            Content-Type: text/xml
            Content-Length: 467
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:08 GMT
            ETag: "0x8DC582BA6C038BC"
            x-ms-request-id: b2393cc3-501e-005b-768c-15d7f7000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194241Z-15767c5fc55n4msds84xh4z67w000000054g00000000gq1m
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:41 UTC467INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120614" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120613" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            11192.168.2.54973113.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:42 UTC192OUTGET /rules/rule120615v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:42 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:42 GMT
            Content-Type: text/xml
            Content-Length: 407
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:42 GMT
            ETag: "0x8DC582BBAD04B7B"
            x-ms-request-id: 023e3708-a01e-003d-568c-1598d7000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194242Z-15767c5fc55n4msds84xh4z67w000000058g000000001zpx
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:42 UTC407INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 53 73 5d 5b 55 75 5d 5b 53 73 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120615" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120613" /> <SR T="2" R="([Aa][Ss][Uu][Ss])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">


            Session IDSource IPSource PortDestination IPDestination Port
            12192.168.2.54973213.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:42 UTC192OUTGET /rules/rule120616v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:42 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:42 GMT
            Content-Type: text/xml
            Content-Length: 486
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:29 GMT
            ETag: "0x8DC582BB344914B"
            x-ms-request-id: 1cc301c6-e01e-0071-6b8c-1508e7000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194242Z-15767c5fc55gq5fmm10nm5qqr80000000bgg00000000p2tu
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:42 UTC486INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120616" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120615" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            13192.168.2.54973313.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:42 UTC192OUTGET /rules/rule120617v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:42 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:42 GMT
            Content-Type: text/xml
            Content-Length: 427
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:02 GMT
            ETag: "0x8DC582BA310DA18"
            x-ms-request-id: 1cc301ca-e01e-0071-6f8c-1508e7000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194242Z-15767c5fc554wklc0x4mc5pq0w0000000bqg00000000tw6k
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:42 UTC427INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4d 6d 5d 5b 49 69 5d 5b 43 63 5d 5b 52 72 5d 5b 4f 6f 5d 5b 53 73 5d 5b 4f 6f 5d 5b 46 66 5d 5b 54 74 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120617" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120615" /> <SR T="2" R="([Mm][Ii][Cc][Rr][Oo][Ss][Oo][Ff][Tt])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W"


            Session IDSource IPSource PortDestination IPDestination Port
            14192.168.2.54973513.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:42 UTC192OUTGET /rules/rule120619v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:42 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:42 GMT
            Content-Type: text/xml
            Content-Length: 407
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:41 GMT
            ETag: "0x8DC582B9698189B"
            x-ms-request-id: 023e3944-a01e-003d-708c-1598d7000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194242Z-15767c5fc55v7j95gq2uzq37a00000000bsg000000005uhc
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:42 UTC407INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 43 63 5d 5b 45 65 5d 5b 52 72 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120619" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120617" /> <SR T="2" R="([Aa][Cc][Ee][Rr])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true">


            Session IDSource IPSource PortDestination IPDestination Port
            15192.168.2.54973413.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:42 UTC192OUTGET /rules/rule120618v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:42 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:42 GMT
            Content-Type: text/xml
            Content-Length: 486
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:30 GMT
            ETag: "0x8DC582B9018290B"
            x-ms-request-id: e0871f45-901e-00a0-0d8c-156a6d000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194242Z-15767c5fc554w2fgapsyvy8ua00000000b0g000000008w15
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:42 UTC486INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 31 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120618" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120617" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            16192.168.2.54973713.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:43 UTC192OUTGET /rules/rule120620v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:43 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:43 GMT
            Content-Type: text/xml
            Content-Length: 469
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:41 GMT
            ETag: "0x8DC582BBA701121"
            x-ms-request-id: a68dfe67-f01e-0052-588c-159224000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194243Z-15767c5fc55gq5fmm10nm5qqr80000000bn000000000961u
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:43 UTC469INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120620" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120619" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            17192.168.2.54973913.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:43 UTC192OUTGET /rules/rule120621v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:43 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:43 GMT
            Content-Type: text/xml
            Content-Length: 415
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:03 GMT
            ETag: "0x8DC582BA41997E3"
            x-ms-request-id: c54fb296-901e-008f-528c-1567a6000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194243Z-15767c5fc55472x4k7dmphmadg0000000b70000000005h10
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:43 UTC415INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 31 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 56 76 5d 5b 4d 6d 5d 5b 57 77 5d 5b 41 61 5d 5b 52 72 5d 5b 45 65 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120621" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120619" /> <SR T="2" R="([Vv][Mm][Ww][Aa][Rr][Ee])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tru


            Session IDSource IPSource PortDestination IPDestination Port
            18192.168.2.54974013.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:43 UTC192OUTGET /rules/rule120623v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:43 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:43 GMT
            Content-Type: text/xml
            Content-Length: 464
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:43 GMT
            ETag: "0x8DC582B97FB6C3C"
            x-ms-request-id: dc68ccfc-201e-006e-438c-15bbe3000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194243Z-15767c5fc55d6fcl6x6bw8cpdc0000000bb000000000hmfr
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:43 UTC464INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 47 67 5d 5b 49 69 5d 5b 47 67 5d 5b 41 61 5d 5b 42 62 5d 5b 59 79 5d 5b 54 74 5d 5b 45 65 5d 20 5b 54 74 5d 5b 45 65 5d 5b 43 63 5d 5b 48 68 5d 5b 4e 6e 5d 5b 4f 6f 5d 5b 4c 6c 5d 5b 4f 6f 5d 5b 47 67 5d 5b 59 79 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120623" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120621" /> <SR T="2" R="([Gg][Ii][Gg][Aa][Bb][Yy][Tt][Ee] [Tt][Ee][Cc][Hh][Nn][Oo][Ll][Oo][Gg][Yy])"> <S T="1" F="1" M="Ignor


            Session IDSource IPSource PortDestination IPDestination Port
            19192.168.2.54973813.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:43 UTC192OUTGET /rules/rule120622v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:43 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:43 GMT
            Content-Type: text/xml
            Content-Length: 477
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:38 GMT
            ETag: "0x8DC582BB8CEAC16"
            x-ms-request-id: 24b39fc0-301e-0096-298c-15e71d000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194243Z-15767c5fc55rv8zjq9dg0musxg0000000bm000000000129s
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:43 UTC477INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120622" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120621" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            20192.168.2.56027213.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:43 UTC192OUTGET /rules/rule120624v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:43 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:43 GMT
            Content-Type: text/xml
            Content-Length: 494
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:35 GMT
            ETag: "0x8DC582BB7010D66"
            x-ms-request-id: 79ade187-001e-0065-788c-150b73000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194243Z-15767c5fc55rg5b7sh1vuv8t7n0000000bvg000000006rxx
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:43 UTC494INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120624" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120623" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            21192.168.2.56027313.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:43 UTC192OUTGET /rules/rule120625v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:44 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:43 GMT
            Content-Type: text/xml
            Content-Length: 419
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:42 GMT
            ETag: "0x8DC582B9748630E"
            x-ms-request-id: 0da94923-701e-0097-168c-15b8c1000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194243Z-15767c5fc55whfstvfw43u8fp40000000bm000000000fex4
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:44 UTC419INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 46 66 5d 5b 55 75 5d 5b 4a 6a 5d 5b 49 69 5d 5b 54 74 5d 5b 53 73 5d 5b 55 75 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120625" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120623" /> <SR T="2" R="([Ff][Uu][Jj][Ii][Tt][Ss][Uu])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=


            Session IDSource IPSource PortDestination IPDestination Port
            22192.168.2.56027613.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:44 UTC192OUTGET /rules/rule120628v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:44 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:44 GMT
            Content-Type: text/xml
            Content-Length: 468
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:51 GMT
            ETag: "0x8DC582B9C8E04C8"
            x-ms-request-id: 09e6f7ee-001e-0034-548c-15dd04000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194244Z-15767c5fc55ncqdn59ub6rndq00000000b4000000000grms
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:44 UTC468INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120628" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120627" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            23192.168.2.56027413.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:44 UTC192OUTGET /rules/rule120626v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:44 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:44 GMT
            Content-Type: text/xml
            Content-Length: 472
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:53 GMT
            ETag: "0x8DC582B9DACDF62"
            x-ms-request-id: 8e9c869d-201e-000c-4b8c-1579c4000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194244Z-15767c5fc55rg5b7sh1vuv8t7n0000000bqg00000000tx83
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:44 UTC472INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120626" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120625" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            24192.168.2.56027513.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:44 UTC192OUTGET /rules/rule120627v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:44 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:44 GMT
            Content-Type: text/xml
            Content-Length: 404
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:54 GMT
            ETag: "0x8DC582B9E8EE0F3"
            x-ms-request-id: 4f10c824-e01e-0085-1c8c-15c311000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194244Z-15767c5fc55852fxfeh7csa2dn0000000bf0000000003cgy
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:44 UTC404INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 4e 6e 5d 5b 45 65 5d 5b 43 63 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 20 3c 53
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120627" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120625" /> <SR T="2" R="^([Nn][Ee][Cc])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true"> <S


            Session IDSource IPSource PortDestination IPDestination Port
            25192.168.2.56027713.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:44 UTC192OUTGET /rules/rule120629v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:44 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:44 GMT
            Content-Type: text/xml
            Content-Length: 428
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:17 GMT
            ETag: "0x8DC582BAC4F34CA"
            x-ms-request-id: 82f8b22c-c01e-0014-5a8c-15a6a3000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194244Z-15767c5fc55sdcjq8ksxt4n9mc00000000wg000000001nr4
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:44 UTC428INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 32 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4d 6d 5d 5b 49 69 5d 5b 43 63 5d 5b 52 72 5d 5b 4f 6f 5d 2d 5b 53 73 5d 5b 54 74 5d 5b 41 61 5d 5b 52 72 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120629" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120627" /> <SR T="2" R="([Mm][Ii][Cc][Rr][Oo]-[Ss][Tt][Aa][Rr])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W"


            Session IDSource IPSource PortDestination IPDestination Port
            26192.168.2.56027813.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:44 UTC192OUTGET /rules/rule120630v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:44 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:44 GMT
            Content-Type: text/xml
            Content-Length: 499
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:45 GMT
            ETag: "0x8DC582B98CEC9F6"
            x-ms-request-id: 30fd46b0-d01e-00a1-368c-1535b1000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194244Z-15767c5fc55lghvzbxktxfqntw0000000b1g00000000vkw1
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:44 UTC499INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120630" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120629" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            27192.168.2.56028013.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:44 UTC192OUTGET /rules/rule120632v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:44 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:44 GMT
            Content-Type: text/xml
            Content-Length: 471
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:33 GMT
            ETag: "0x8DC582BB5815C4C"
            x-ms-request-id: 75493038-e01e-00aa-508c-15ceda000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194244Z-15767c5fc55rg5b7sh1vuv8t7n0000000bv0000000009q5p
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:44 UTC471INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120632" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120631" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            28192.168.2.56027913.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:44 UTC192OUTGET /rules/rule120631v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:44 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:44 GMT
            Content-Type: text/xml
            Content-Length: 415
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:44 GMT
            ETag: "0x8DC582B988EBD12"
            x-ms-request-id: 6a901ce3-301e-005d-708c-15e448000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194244Z-15767c5fc55472x4k7dmphmadg0000000b800000000024e1
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:44 UTC415INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 32 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 48 68 5d 5b 55 75 5d 5b 41 61 5d 5b 57 77 5d 5b 45 65 5d 5b 49 69 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120631" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120629" /> <SR T="2" R="([Hh][Uu][Aa][Ww][Ee][Ii])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tru


            Session IDSource IPSource PortDestination IPDestination Port
            29192.168.2.56028113.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:44 UTC192OUTGET /rules/rule120633v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:45 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:44 GMT
            Content-Type: text/xml
            Content-Length: 419
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:29 GMT
            ETag: "0x8DC582BB32BB5CB"
            x-ms-request-id: c2ca9d4d-801e-0035-458c-15752a000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194244Z-15767c5fc55rg5b7sh1vuv8t7n0000000bwg0000000046s1
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:45 UTC419INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 53 73 5d 5b 41 61 5d 5b 4d 6d 5d 5b 53 73 5d 5b 55 75 5d 5b 4e 6e 5d 5b 47 67 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120633" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120631" /> <SR T="2" R="([Ss][Aa][Mm][Ss][Uu][Nn][Gg])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=


            Session IDSource IPSource PortDestination IPDestination Port
            30192.168.2.56028213.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:44 UTC192OUTGET /rules/rule120634v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:45 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:45 GMT
            Content-Type: text/xml
            Content-Length: 494
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:38 GMT
            ETag: "0x8DC582BB8972972"
            x-ms-request-id: 831ef799-b01e-0098-7b8c-15cead000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194245Z-15767c5fc55kg97hfq5uqyxxaw0000000be000000000hu5x
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:45 UTC494INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120634" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120633" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            31192.168.2.56028513.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:45 UTC192OUTGET /rules/rule120637v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:45 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:45 GMT
            Content-Type: text/xml
            Content-Length: 427
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:12 GMT
            ETag: "0x8DC582BA909FA21"
            x-ms-request-id: eccf174e-001e-0079-238c-1512e8000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194245Z-15767c5fc554wklc0x4mc5pq0w0000000bq000000000w27b
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:45 UTC427INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 50 70 5d 5b 41 61 5d 5b 4e 6e 5d 5b 41 61 5d 5b 53 73 5d 5b 4f 6f 5d 5b 4e 6e 5d 5b 49 69 5d 5b 43 63 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120637" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120635" /> <SR T="2" R="([Pp][Aa][Nn][Aa][Ss][Oo][Nn][Ii][Cc])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W"


            Session IDSource IPSource PortDestination IPDestination Port
            32192.168.2.56028413.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:45 UTC192OUTGET /rules/rule120636v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:45 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:45 GMT
            Content-Type: text/xml
            Content-Length: 472
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:52 GMT
            ETag: "0x8DC582B9D43097E"
            x-ms-request-id: 4b0a3852-c01e-00ad-3b8c-15a2b9000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194245Z-15767c5fc554wklc0x4mc5pq0w0000000brg00000000q7qc
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:45 UTC472INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120636" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120635" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            33192.168.2.56028613.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:45 UTC192OUTGET /rules/rule120638v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:45 UTC491INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:45 GMT
            Content-Type: text/xml
            Content-Length: 486
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:35 GMT
            ETag: "0x8DC582B92FCB436"
            x-ms-request-id: 76615707-c01e-0082-6a8c-15af72000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194245Z-15767c5fc55fdfx81a30vtr1fw0000000bxg0000000003w3
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            X-Cache-Info: L1_T2
            Accept-Ranges: bytes
            2024-10-03 19:42:45 UTC486INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120638" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120637" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            34192.168.2.56028713.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:45 UTC192OUTGET /rules/rule120639v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:45 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:45 GMT
            Content-Type: text/xml
            Content-Length: 423
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:36 GMT
            ETag: "0x8DC582BB7564CE8"
            x-ms-request-id: bb2e28bd-501e-0016-0b8c-15181b000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194245Z-15767c5fc55gq5fmm10nm5qqr80000000bm000000000caku
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:45 UTC423INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 44 64 5d 5b 59 79 5d 5b 4e 6e 5d 5b 41 61 5d 5b 42 62 5d 5b 4f 6f 5d 5b 4f 6f 5d 5b 4b 6b 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120639" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120637" /> <SR T="2" R="([Dd][Yy][Nn][Aa][Bb][Oo][Oo][Kk])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0


            Session IDSource IPSource PortDestination IPDestination Port
            35192.168.2.56028813.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:46 UTC192OUTGET /rules/rule120640v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:46 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:46 GMT
            Content-Type: text/xml
            Content-Length: 478
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:48 GMT
            ETag: "0x8DC582B9B233827"
            x-ms-request-id: 4da5bf60-a01e-0070-668c-15573b000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194246Z-15767c5fc554l9xf959gp9cb1s00000005kg00000000pspp
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:46 UTC478INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120640" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120639" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            36192.168.2.56029013.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:46 UTC192OUTGET /rules/rule120642v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:46 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:46 GMT
            Content-Type: text/xml
            Content-Length: 468
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:24 GMT
            ETag: "0x8DC582BB046B576"
            x-ms-request-id: 8789ddbb-a01e-0084-6a8c-159ccd000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194246Z-15767c5fc55xsgnlxyxy40f4m00000000bcg00000000bu2z
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:46 UTC468INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120642" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120641" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            37192.168.2.56029113.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:46 UTC192OUTGET /rules/rule120643v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:46 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:46 GMT
            Content-Type: text/xml
            Content-Length: 400
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:28 GMT
            ETag: "0x8DC582BB2D62837"
            x-ms-request-id: 9bed673a-001e-0046-278c-15da4b000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194246Z-15767c5fc55d6fcl6x6bw8cpdc0000000bf0000000002f7m
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:46 UTC400INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 4c 6c 5d 5b 47 67 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 20 3c 53 20 54 3d 22
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120643" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120641" /> <SR T="2" R="^([Ll][Gg])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true"> <S T="


            Session IDSource IPSource PortDestination IPDestination Port
            38192.168.2.56028913.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:46 UTC192OUTGET /rules/rule120641v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:46 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:46 GMT
            Content-Type: text/xml
            Content-Length: 404
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:39 GMT
            ETag: "0x8DC582B95C61A3C"
            x-ms-request-id: 0dcb6c6d-e01e-0003-668c-150fa8000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194246Z-15767c5fc5546rn6ch9zv310e000000004f000000000amgh
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:46 UTC404INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 4d 6d 5d 5b 53 73 5d 5b 49 69 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75 65 22 3e 0d 0a 20 20 20 20 3c 53
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120641" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120639" /> <SR T="2" R="^([Mm][Ss][Ii])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="true"> <S


            Session IDSource IPSource PortDestination IPDestination Port
            39192.168.2.56028313.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:47 UTC192OUTGET /rules/rule120635v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:47 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:47 GMT
            Content-Type: text/xml
            Content-Length: 420
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:53 GMT
            ETag: "0x8DC582B9DAE3EC0"
            x-ms-request-id: a7623418-001e-00a2-348c-15d4d5000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194247Z-15767c5fc55ncqdn59ub6rndq00000000b6g000000007bfd
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:47 UTC420INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 33 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 33 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 54 74 5d 5b 4f 6f 5d 5b 53 73 5d 5b 48 68 5d 5b 49 69 5d 5b 42 62 5d 5b 41 61 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120635" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120633" /> <SR T="2" R="^([Tt][Oo][Ss][Hh][Ii][Bb][Aa])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O


            Session IDSource IPSource PortDestination IPDestination Port
            40192.168.2.56029213.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:47 UTC192OUTGET /rules/rule120644v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:47 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:47 GMT
            Content-Type: text/xml
            Content-Length: 479
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:37 GMT
            ETag: "0x8DC582BB7D702D0"
            x-ms-request-id: 772ea1ab-e01e-003c-188c-15c70b000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194247Z-15767c5fc55lghvzbxktxfqntw0000000b7g000000006g4h
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:47 UTC479INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120644" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120643" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            41192.168.2.56029313.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:47 UTC192OUTGET /rules/rule120645v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:47 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:47 GMT
            Content-Type: text/xml
            Content-Length: 425
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:40 GMT
            ETag: "0x8DC582BBA25094F"
            x-ms-request-id: 3a0dcc46-601e-0032-6c8c-15eebb000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194247Z-15767c5fc55xsgnlxyxy40f4m00000000b9000000000ryen
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:47 UTC425INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 4d 6d 5d 5b 41 61 5d 5b 5a 7a 5d 5b 4f 6f 5d 5b 4e 6e 5d 20 5b 45 65 5d 5b 43 63 5d 32 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120645" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120643" /> <SR T="2" R="([Aa][Mm][Aa][Zz][Oo][Nn] [Ee][Cc]2)"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I=


            Session IDSource IPSource PortDestination IPDestination Port
            42192.168.2.56029413.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:47 UTC192OUTGET /rules/rule120646v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:47 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:47 GMT
            Content-Type: text/xml
            Content-Length: 475
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:28 GMT
            ETag: "0x8DC582BB2BE84FD"
            x-ms-request-id: 15fe0b87-a01e-0002-3b8c-155074000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194247Z-15767c5fc55whfstvfw43u8fp40000000bn000000000af00
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:47 UTC475INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120646" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120645" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            43192.168.2.56029513.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:47 UTC192OUTGET /rules/rule120647v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:47 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:47 GMT
            Content-Type: text/xml
            Content-Length: 448
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:29 GMT
            ETag: "0x8DC582BB389F49B"
            x-ms-request-id: 1f480944-c01e-002b-018c-156e00000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194247Z-15767c5fc55rv8zjq9dg0musxg0000000beg00000000gew3
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:47 UTC448INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 41 61 5d 5b 50 70 5d 5b 41 61 5d 5b 43 63 5d 5b 48 68 5d 5b 45 65 5d 20 5b 53 73 5d 5b 4f 6f 5d 5b 46 66 5d 5b 54 74 5d 5b 57 77 5d 5b 41 61 5d 5b 52 72 5d 5b 45 65 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120647" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120645" /> <SR T="2" R="([Aa][Pp][Aa][Cc][Hh][Ee] [Ss][Oo][Ff][Tt][Ww][Aa][Rr][Ee])"> <S T="1" F="1" M="Ignore" /> </SR>


            Session IDSource IPSource PortDestination IPDestination Port
            44192.168.2.56029613.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:48 UTC192OUTGET /rules/rule120648v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:48 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:48 GMT
            Content-Type: text/xml
            Content-Length: 491
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:44 GMT
            ETag: "0x8DC582B98B88612"
            x-ms-request-id: c54fbac1-901e-008f-588c-1567a6000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194248Z-15767c5fc55tsfp92w7yna557w0000000bg000000000b62t
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:48 UTC491INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120648" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120647" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            45192.168.2.56029813.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:48 UTC192OUTGET /rules/rule120650v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:48 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:48 GMT
            Content-Type: text/xml
            Content-Length: 479
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:44 GMT
            ETag: "0x8DC582B989EE75B"
            x-ms-request-id: 76252b1b-c01e-0066-488c-15a1ec000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194248Z-15767c5fc55lghvzbxktxfqntw0000000b6000000000cpzv
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:48 UTC479INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 30 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120650" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120649" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            46192.168.2.56029713.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:48 UTC192OUTGET /rules/rule120649v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:48 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:48 GMT
            Content-Type: text/xml
            Content-Length: 416
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:21 GMT
            ETag: "0x8DC582BAEA4B445"
            x-ms-request-id: 75858473-001e-000b-318c-1515a7000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194248Z-15767c5fc554wklc0x4mc5pq0w0000000bs000000000pakq
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:48 UTC416INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 34 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 5e 28 5b 46 66 5d 5b 45 65 5d 5b 44 64 5d 5b 4f 6f 5d 5b 52 72 5d 5b 41 61 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120649" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120647" /> <SR T="2" R="^([Ff][Ee][Dd][Oo][Rr][Aa])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tr


            Session IDSource IPSource PortDestination IPDestination Port
            47192.168.2.56029913.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:48 UTC192OUTGET /rules/rule120651v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:48 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:48 GMT
            Content-Type: text/xml
            Content-Length: 415
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:10 GMT
            ETag: "0x8DC582BA80D96A1"
            x-ms-request-id: b9a197f6-401e-0078-3b8c-154d34000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194248Z-15767c5fc55qdcd62bsn50hd6s0000000b9g00000000a0cz
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:48 UTC415INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 31 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 34 39 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 47 67 5d 5b 4f 6f 5d 5b 4f 6f 5d 5b 47 67 5d 5b 4c 6c 5d 5b 45 65 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d 22 74 72 75
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120651" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120649" /> <SR T="2" R="([Gg][Oo][Oo][Gg][Ll][Ee])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O="tru


            Session IDSource IPSource PortDestination IPDestination Port
            48192.168.2.56030013.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:48 UTC192OUTGET /rules/rule120652v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:48 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:48 GMT
            Content-Type: text/xml
            Content-Length: 471
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:43 GMT
            ETag: "0x8DC582B97E6FCDD"
            x-ms-request-id: b83a8dc4-f01e-003f-308c-15d19d000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194248Z-15767c5fc55gs96cphvgp5f5vc0000000bcg00000000ce77
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:48 UTC471INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 32 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120652" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120651" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            49192.168.2.56030113.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:49 UTC192OUTGET /rules/rule120653v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:49 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:49 GMT
            Content-Type: text/xml
            Content-Length: 419
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:51 GMT
            ETag: "0x8DC582B9C710B28"
            x-ms-request-id: 2f8443ca-b01e-0070-308c-151cc0000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194249Z-15767c5fc55d6fcl6x6bw8cpdc0000000bbg00000000gcw6
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:49 UTC419INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 33 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 31 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 49 69 5d 5b 4e 6e 5d 5b 4e 6e 5d 5b 4f 6f 5d 5b 54 74 5d 5b 45 65 5d 5b 4b 6b 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120653" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120651" /> <SR T="2" R="([Ii][Nn][Nn][Oo][Tt][Ee][Kk])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=


            Session IDSource IPSource PortDestination IPDestination Port
            50192.168.2.56030213.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:49 UTC192OUTGET /rules/rule120654v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:49 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:49 GMT
            Content-Type: text/xml
            Content-Length: 477
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:05 GMT
            ETag: "0x8DC582BA54DCC28"
            x-ms-request-id: 7be6812e-d01e-008e-528c-15387a000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194249Z-15767c5fc55852fxfeh7csa2dn0000000bbg00000000h26w
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:49 UTC477INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 34 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120654" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120653" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            51192.168.2.56030313.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:49 UTC192OUTGET /rules/rule120655v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:49 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:49 GMT
            Content-Type: text/xml
            Content-Length: 419
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:37 GMT
            ETag: "0x8DC582BB7F164C3"
            x-ms-request-id: 1f480aea-c01e-002b-028c-156e00000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194249Z-15767c5fc55qkvj6n60pxm9mbw00000000rg000000001thf
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:49 UTC419INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 35 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 33 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4e 6e 5d 5b 49 69 5d 5b 4d 6d 5d 5b 42 62 5d 5b 4f 6f 5d 5b 58 78 5d 5b 58 78 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120655" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120653" /> <SR T="2" R="([Nn][Ii][Mm][Bb][Oo][Xx][Xx])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=


            Session IDSource IPSource PortDestination IPDestination Port
            52192.168.2.56030513.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:49 UTC192OUTGET /rules/rule120657v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:49 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:49 GMT
            Content-Type: text/xml
            Content-Length: 419
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:25:57 GMT
            ETag: "0x8DC582B9FF95F80"
            x-ms-request-id: 16d3a614-701e-0032-288c-15a540000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194249Z-15767c5fc55xsgnlxyxy40f4m00000000bag00000000kxrr
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:49 UTC419INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 37 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4e 6e 5d 5b 55 75 5d 5b 54 74 5d 5b 41 61 5d 5b 4e 6e 5d 5b 49 69 5d 5b 58 78 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 3c 2f 53 52 3e 0d 0a 20 20 3c 2f 53 3e 0d 0a 20 20 3c 43 20 54 3d 22 57 22 20 49 3d 22 30 22 20 4f 3d
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120657" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120655" /> <SR T="2" R="([Nn][Uu][Tt][Aa][Nn][Ii][Xx])"> <S T="1" F="1" M="Ignore" /> </SR> </S> <C T="W" I="0" O=


            Session IDSource IPSource PortDestination IPDestination Port
            53192.168.2.56030413.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:49 UTC192OUTGET /rules/rule120656v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:49 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:49 GMT
            Content-Type: text/xml
            Content-Length: 477
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:04 GMT
            ETag: "0x8DC582BA48B5BDD"
            x-ms-request-id: 7be6821c-d01e-008e-398c-15387a000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194249Z-15767c5fc55lghvzbxktxfqntw0000000b6000000000cq15
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:49 UTC477INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 36 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 35 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120656" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120655" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            54192.168.2.56030613.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:49 UTC192OUTGET /rules/rule120658v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:49 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:49 GMT
            Content-Type: text/xml
            Content-Length: 472
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:34 GMT
            ETag: "0x8DC582BB650C2EC"
            x-ms-request-id: aa883537-b01e-0053-4c8c-15cdf8000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194249Z-15767c5fc55dtdv4d4saq7t47n0000000b8000000000dmh0
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:49 UTC472INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 38 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 54 48 20 54 3d 22 32 22 3e 0d 0a 20 20 20 20 20 20 3c 4f 20 54 3d 22 45 51 22 3e 0d 0a 20 20 20 20 20 20 20 20 3c 4c 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 3c 55 20 54 3d 22 45 71 75 61 6c 73 4e 75 6c 6c 22 3e 0d 0a 20 20 20 20 20 20 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 30 22 20 4d 3d 22 49 67 6e 6f 72 65 22 20 2f 3e 0d 0a 20 20 20 20 20 20
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120658" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120657" /> <TH T="2"> <O T="EQ"> <L> <U T="EqualsNull"> <S T="1" F="0" M="Ignore" />


            Session IDSource IPSource PortDestination IPDestination Port
            55192.168.2.56030713.107.246.60443
            TimestampBytes transferredDirectionData
            2024-10-03 19:42:49 UTC192OUTGET /rules/rule120659v0s19.xml HTTP/1.1
            Connection: Keep-Alive
            Accept-Encoding: gzip
            User-Agent: Microsoft Office/16.0 (Windows NT 10.0; 16.0.16827; Pro)
            Host: otelrules.azureedge.net
            2024-10-03 19:42:50 UTC470INHTTP/1.1 200 OK
            Date: Thu, 03 Oct 2024 19:42:49 GMT
            Content-Type: text/xml
            Content-Length: 468
            Connection: close
            Cache-Control: public, max-age=604800, immutable
            Last-Modified: Tue, 09 Apr 2024 00:26:30 GMT
            ETag: "0x8DC582BB3EAF226"
            x-ms-request-id: cce0beff-001e-0082-398c-155880000000
            x-ms-version: 2018-03-28
            x-azure-ref: 20241003T194249Z-15767c5fc55rg5b7sh1vuv8t7n0000000bvg000000006s82
            x-fd-int-roxy-purgeid: 0
            X-Cache: TCP_HIT
            Accept-Ranges: bytes
            2024-10-03 19:42:50 UTC468INData Raw: ef bb bf 3c 3f 78 6d 6c 20 76 65 72 73 69 6f 6e 3d 22 31 2e 30 22 20 65 6e 63 6f 64 69 6e 67 3d 22 75 74 66 2d 38 22 3f 3e 0d 0a 3c 52 20 49 64 3d 22 31 32 30 36 35 39 22 20 56 3d 22 30 22 20 44 43 3d 22 53 4d 22 20 54 3d 22 53 75 62 72 75 6c 65 22 20 78 6d 6c 6e 73 3d 22 22 3e 0d 0a 20 20 3c 53 3e 0d 0a 20 20 20 20 3c 52 20 54 3d 22 31 22 20 52 3d 22 31 32 30 36 35 37 22 20 2f 3e 0d 0a 20 20 20 20 3c 53 52 20 54 3d 22 32 22 20 52 3d 22 28 5b 4f 6f 5d 5b 50 70 5d 5b 45 65 5d 5b 4e 6e 5d 5b 53 73 5d 5b 54 74 5d 5b 41 61 5d 5b 43 63 5d 5b 4b 6b 5d 20 5b 46 66 5d 5b 4f 6f 5d 5b 55 75 5d 5b 4e 6e 5d 5b 44 64 5d 5b 41 61 5d 5b 54 74 5d 5b 49 69 5d 5b 4f 6f 5d 5b 4e 6e 5d 29 22 3e 0d 0a 20 20 20 20 20 20 3c 53 20 54 3d 22 31 22 20 46 3d 22 31 22 20 4d 3d 22 49
            Data Ascii: <?xml version="1.0" encoding="utf-8"?><R Id="120659" V="0" DC="SM" T="Subrule" xmlns=""> <S> <R T="1" R="120657" /> <SR T="2" R="([Oo][Pp][Ee][Nn][Ss][Tt][Aa][Cc][Kk] [Ff][Oo][Uu][Nn][Dd][Aa][Tt][Ii][Oo][Nn])"> <S T="1" F="1" M="I


            Statistics

            CPU Usage

            Click to jump to process

            Memory Usage

            Click to jump to process

            Behavior

            Click to jump to process

            System Behavior

            General

            Target ID:0
            Start time:15:42:20
            Start date:03/10/2024
            Path:C:\Program Files\Google\Chrome\Application\chrome.exe
            Wow64 process (32bit):false
            Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
            Imagebase:0x7ff715980000
            File size:3'242'272 bytes
            MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
            Has elevated privileges:true
            Has administrator privileges:true
            Programmed in:C, C++ or other language
            Reputation:low
            Has exited:false

            General

            Target ID:2
            Start time:15:42:23
            Start date:03/10/2024
            Path:C:\Program Files\Google\Chrome\Application\chrome.exe
            Wow64 process (32bit):false
            Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2244 --field-trial-handle=2164,i,3349396247227516795,7502699321134445247,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
            Imagebase:0x7ff715980000
            File size:3'242'272 bytes
            MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
            Has elevated privileges:true
            Has administrator privileges:true
            Programmed in:C, C++ or other language
            Reputation:low
            Has exited:false

            General

            Target ID:3
            Start time:15:42:25
            Start date:03/10/2024
            Path:C:\Program Files\Google\Chrome\Application\chrome.exe
            Wow64 process (32bit):false
            Commandline:"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://ag7midxamzdshh8dizdt-gea5hxewecng4zxzdcgm.top/u/hs-schmalkalden.de"
            Imagebase:0x7ff715980000
            File size:3'242'272 bytes
            MD5 hash:45DE480806D1B5D462A7DDE4DCEFC4E4
            Has elevated privileges:true
            Has administrator privileges:true
            Programmed in:C, C++ or other language
            Reputation:low
            Has exited:true

            Disassembly

            No disassembly