Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Windows Analysis Report
Vanderweil Engineers, LLP..pdf

Overview

General Information

Sample name:Vanderweil Engineers, LLP..pdf
Analysis ID:1417269
MD5:3a478ee70557616882e8cf9be5ee37f3
SHA1:2940dcfce145430bf9b457068a0164dd5b8ac737
SHA256:dd61d8007c2119ed33dde9bfed0886e6dff4e35fbcf5be7395b6bbffc74d9dfd
Infos:

Detection

HtmlDropper, HTMLPhisher
Score:64
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Yara detected Html Dropper
Yara detected HtmlPhish10
Phishing site detected (based on image similarity)
Phishing site detected (based on logo match)
HTML body contains low number of good links
HTML title does not match URL
IP address seen in connection with other malware
Invalid 'sign-in options' or 'sign-up' link found
Shows file infection / information gathering behavior (enumerates multiple directory for files)

Classification

Process Tree

  • System is w7x64
  • AcroRd32.exe (PID: 2856 cmdline: "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\user\Desktop\Vanderweil Engineers, LLP..pdf" MD5: 2F8D93826B8CBF9290BC57535C7A6817)
    • RdrCEF.exe (PID: 2588 cmdline: "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043 MD5: 326A645391A97C760B60C558A35BB068)
  • chrome.exe (PID: 3652 cmdline: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --start-maximized "https://prident-group.com/" MD5: FFA2B8E17F645BCC20F0E0201FEF83ED)
    • chrome.exe (PID: 3828 cmdline: "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1448 --field-trial-handle=1280,i,13602845175421175850,11116694525089090820,131072 /prefetch:8 MD5: FFA2B8E17F645BCC20F0E0201FEF83ED)
  • cleanup

Malware Configuration

No configs have been found

Yara Signatures

HTML

SourceRuleDescriptionAuthorStrings
0.1.pages.csvJoeSecurity_HtmlDropper_3Yara detected Html DropperJoe Security
    0.1.pages.csvJoeSecurity_HtmlPhish_10Yara detected HtmlPhish_10Joe Security

      Sigma Signatures

      Sigma detected: Modification of IE Registry Settings
      Source: Registry Key setAuthor: frack113: Data: Details: 46 00 00 00 2A 00 00 00 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00 00 02 00 00 00 C0 A8 02 16 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 , EventID: 13, EventType: SetValue, Image: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe, ProcessId: 2856, TargetObject: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings

      Snort Signatures

      No Snort rule has matched

      Joe Sandbox Signatures

      Click to jump to signature section

      Show All Signature Results

      Phishing

      barindex
      Yara detected HtmlPhish10
      Source: Yara matchFile source: 0.1.pages.csv, type: HTML
      Phishing site detected (based on image similarity)
      Source: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eMatcher: Found strong image similarity, brand: MICROSOFT
      Phishing site detected (based on logo match)
      Source: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eMatcher: Template: microsoft matched
      Source: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eHTTP Parser: Number of links: 0
      Source: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eHTTP Parser: Title: 65c50b91764ef537b0caff1950fed8cf6605c5e808f40 does not match URL
      Source: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eHTTP Parser: Invalid link: get a new Microsoft account
      Source: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eHTTP Parser: No favicon
      Source: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eHTTP Parser: No <meta name="author".. found
      Source: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eHTTP Parser: No <meta name="copyright".. found
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1961238311Jump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1961238311\model-info.pbJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1961238311\model.tfliteJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1449008672Jump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1449008672\model-info.pbJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1449008672\model.tfliteJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_392935131Jump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_392935131\model-info.pbJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_392935131\model.tfliteJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\GoogleJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\GoogleUpdaterJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\chrome_BITS_3652_285079514Jump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeDirectory queried: number of queries: 1011
      Source: Joe Sandbox ViewIP Address: 239.255.255.250 239.255.255.250
      Source: Joe Sandbox ViewIP Address: 5.42.65.39 5.42.65.39
      Source: Joe Sandbox ViewIP Address: 5.42.65.39 5.42.65.39
      Source: global trafficHTTP traffic detected: GET / HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Upgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9
      Source: global trafficHTTP traffic detected: GET /77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e HTTP/1.1Host: prident-group.comConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9Sec-Fetch-Site: noneSec-Fetch-Mode: navigateSec-Fetch-User: ?1Sec-Fetch-Dest: documentsec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0sec-ch-ua-platform: "Windows"Accept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /jq/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e83988d HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /boot/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839891 HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /js/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839892 HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: scriptReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /1 HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: */*Sec-Fetch-Site: same-originSec-Fetch-Mode: corsSec-Fetch-Dest: emptyReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /favicon.ico HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /APP-c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf05f/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf060 HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: text/css,*/*;q=0.1Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: styleReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /o/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf419 HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /ASSETS/img/m_.svg HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /ASSETS/img/sig-op.svg HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /x/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf065 HTTP/1.1Host: prident-group.comConnection: keep-alivesec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"sec-ch-ua-mobile: ?0User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36sec-ch-ua-platform: "Windows"Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8Sec-Fetch-Site: same-originSec-Fetch-Mode: no-corsSec-Fetch-Dest: imageReferer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5eAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /1 HTTP/1.1Host: prident-group.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /o/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf419 HTTP/1.1Host: prident-group.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /ASSETS/img/sig-op.svg HTTP/1.1Host: prident-group.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /ASSETS/img/m_.svg HTTP/1.1Host: prident-group.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: global trafficHTTP traffic detected: GET /x/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf065 HTTP/1.1Host: prident-group.comConnection: keep-aliveUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36Accept: */*Sec-Fetch-Site: noneSec-Fetch-Mode: corsSec-Fetch-Dest: emptyAccept-Encoding: gzip, deflate, brAccept-Language: en-US,en;q=0.9Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
      Source: unknownDNS traffic detected: queries for: prident-group.com
      Source: global trafficHTTP traffic detected: HTTP/1.1 404 Not FoundDate: Thu, 28 Mar 2024 19:32:58 GMTServer: ApacheContent-Length: 315Connection: closeContent-Type: text/html; charset=iso-8859-1
      Source: Vanderweil Engineers, LLP..pdfString found in binary or memory: https://deptwoosinc.com/)
      Source: chromecache_121.5.drString found in binary or memory: https://getbootstrap.com/)
      Source: chromecache_121.5.drString found in binary or memory: https://github.com/twbs/bootstrap/blob/master/LICENSE)
      Source: chromecache_121.5.drString found in binary or memory: https://github.com/twbs/bootstrap/graphs/contributors)
      Source: Vanderweil Engineers, LLP..pdfString found in binary or memory: https://prident-group.com/)
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49168
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49167
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49166
      Source: unknownNetwork traffic detected: HTTP traffic on port 49164 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49183 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49181 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49164
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49163
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49184
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49183
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49182
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49181
      Source: unknownNetwork traffic detected: HTTP traffic on port 49195 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49168 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49170 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49193 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49176 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49166 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49174 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49178 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49184 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49163 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49179
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49178
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49177
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49176
      Source: unknownNetwork traffic detected: HTTP traffic on port 49182 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49175
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49174
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49173
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49195
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49171
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49193
      Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 49170
      Source: unknownNetwork traffic detected: HTTP traffic on port 49175 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49171 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49167 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49173 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49177 -> 443
      Source: unknownNetwork traffic detected: HTTP traffic on port 49179 -> 443
      Source: classification engineClassification label: mal64.phis.troj.winPDF@32/44@6/5
      Source: Vanderweil Engineers, LLP..pdfInitial sample: https://prident-group.com/
      Source: Vanderweil Engineers, LLP..pdfInitial sample: https://deptwoosinc.com/
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeFile created: C:\Program Files\ChromiumTemp3652_1961238311Jump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeFile created: C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIconsJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeFile created: C:\Users\user\AppData\Local\Temp\acrord32_sbxJump to behavior
      Source: unknownProcess created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\user\Desktop\Vanderweil Engineers, LLP..pdf"
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
      Source: unknownProcess created: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --start-maximized "https://prident-group.com/"
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1448 --field-trial-handle=1280,i,13602845175421175850,11116694525089090820,131072 /prefetch:8
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess created: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043Jump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1448 --field-trial-handle=1280,i,13602845175421175850,11116694525089090820,131072 /prefetch:8Jump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeProcess created: unknown unknownJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeAutomated click: Next
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeAutomated click: Next
      Source: Window RecorderWindow detected: More than 3 window changes detected
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1961238311Jump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1961238311\model-info.pbJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1961238311\model.tfliteJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1449008672Jump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1449008672\model-info.pbJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_1449008672\model.tfliteJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_392935131Jump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_392935131\model-info.pbJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\ChromiumTemp3652_392935131\model.tfliteJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\GoogleJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\Google\GoogleUpdaterJump to behavior
      Source: C:\Program Files (x86)\Google\Chrome\Application\chrome.exeDirectory created: C:\Program Files\chrome_BITS_3652_285079514Jump to behavior
      Source: Vanderweil Engineers, LLP..pdfInitial sample: PDF keyword /JS count = 0
      Source: Vanderweil Engineers, LLP..pdfInitial sample: PDF keyword /JavaScript count = 0
      Source: Vanderweil Engineers, LLP..pdfInitial sample: PDF keyword /EmbeddedFile count = 0

      Data Obfuscation

      barindex
      Yara detected Html Dropper
      Source: Yara matchFile source: 0.1.pages.csv, type: HTML
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exeProcess information set: NOOPENFILEERRORBOXJump to behavior
      Source: C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exeDirectory queried: number of queries: 1011

      Mitre Att&ck Matrix

      ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
      Gather Victim Identity InformationAcquire Infrastructure1
      Spearphishing Link      		Windows Management InstrumentationPath Interception1
      Process Injection      		3
      Masquerading      		OS Credential Dumping1
      File and Directory Discovery      		Remote ServicesData from Local System1
      Encrypted Channel      		Exfiltration Over Other Network MediumAbuse Accessibility Features
      CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization Scripts1
      Process Injection      		LSASS MemoryApplication Window DiscoveryRemote Desktop ProtocolData from Removable Media3
      Non-Application Layer Protocol      		Exfiltration Over BluetoothNetwork Denial of Service
      Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account ManagerQuery RegistrySMB/Windows Admin SharesData from Network Shared Drive4
      Application Layer Protocol      		Automated ExfiltrationData Encrypted for Impact
      Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin HookBinary PaddingNTDSSystem Network Configuration DiscoveryDistributed Component Object ModelInput Capture3
      Ingress Tool Transfer      		Traffic DuplicationData Destruction

      Behavior Graph

      Hide Legend

      Legend:

      • Process
      • Signature
      • Created File
      • DNS/IP Info
      • Is Dropped
      • Is Windows Process
      • Number of created Registry Values
      • Number of created Files
      • Visual Basic
      • Delphi
      • Java
      • .Net C# or VB.NET
      • C, C++ or other language
      • Is malicious
      • Internet

      Screenshots

      Thumbnails

      This section contains all screenshots as thumbnails, including those not shown in the slideshow.


      windows-stand

      Antivirus, Machine Learning and Genetic Malware Detection

      Initial Sample

      No Antivirus matches

      Dropped Files

      No Antivirus matches

      Unpacked PE Files

      No Antivirus matches

      Domains

      No Antivirus matches

      URLs

      SourceDetectionScannerLabelLink
      https://prident-group.com/js/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e8398920%Avira URL Cloudsafe
      https://deptwoosinc.com/)0%Avira URL Cloudsafe
      https://prident-group.com/10%Avira URL Cloudsafe
      https://prident-group.com/x/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf0650%Avira URL Cloudsafe
      https://prident-group.com/jq/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e83988d0%Avira URL Cloudsafe
      https://prident-group.com/ASSETS/img/sig-op.svg0%Avira URL Cloudsafe
      https://prident-group.com/boot/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e8398910%Avira URL Cloudsafe
      https://prident-group.com/o/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf4190%Avira URL Cloudsafe
      https://prident-group.com/0%Avira URL Cloudsafe
      https://prident-group.com/ASSETS/img/m_.svg0%Avira URL Cloudsafe
      https://prident-group.com/favicon.ico0%Avira URL Cloudsafe
      https://prident-group.com/)0%Avira URL Cloudsafe
      https://prident-group.com/APP-c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf05f/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf0600%Avira URL Cloudsafe

      Domains and IPs

      Contacted Domains

      NameIPActiveMaliciousAntivirus DetectionReputation
      prident-group.com
      		5.42.65.39
      		truefalse
        		unknown
        www.google.com
        		142.251.167.147
        		truefalse
          		high

          Contacted URLs

          NameMaliciousAntivirus DetectionReputation
          https://prident-group.com/1false
          • Avira URL Cloud: safe
          		unknown
          https://prident-group.com/js/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839892false
          • Avira URL Cloud: safe
          		unknown
          https://prident-group.com/x/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf065false
          • Avira URL Cloud: safe
          		unknown
          https://prident-group.com/boot/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839891false
          • Avira URL Cloud: safe
          		unknown
          https://prident-group.com/ASSETS/img/sig-op.svgfalse
          • Avira URL Cloud: safe
          		unknown
          https://prident-group.com/jq/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e83988dfalse
          • Avira URL Cloud: safe
          		unknown
          https://prident-group.com/false
          • Avira URL Cloud: safe
          		unknown
          https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5etrue
            		unknown
            https://prident-group.com/o/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf419false
            • Avira URL Cloud: safe
            		unknown
            https://prident-group.com/ASSETS/img/m_.svgfalse
            • Avira URL Cloud: safe
            		unknown
            https://prident-group.com/favicon.icofalse
            • Avira URL Cloud: safe
            		unknown
            https://prident-group.com/APP-c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf05f/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf060false
            • Avira URL Cloud: safe
            		unknown

            URLs from Memory and Binaries

            NameSourceMaliciousAntivirus DetectionReputation
            https://github.com/twbs/bootstrap/graphs/contributors)chromecache_121.5.drfalse
              		high
              https://deptwoosinc.com/)Vanderweil Engineers, LLP..pdffalse
              • Avira URL Cloud: safe
              		unknown
              https://github.com/twbs/bootstrap/blob/master/LICENSE)chromecache_121.5.drfalse
                		high
                https://getbootstrap.com/)chromecache_121.5.drfalse
                  		high
                  https://prident-group.com/)Vanderweil Engineers, LLP..pdffalse
                  • Avira URL Cloud: safe
                  		unknown

                  World Map of Contacted IPs

                  • No. of IPs < 25%
                  • 25% < No. of IPs < 50%
                  • 50% < No. of IPs < 75%
                  • 75% < No. of IPs

                  Public IPs

                  IPDomainCountryFlagASNASN NameMalicious
                  239.255.255.250
                  		unknownReserved
                  		unknownunknownfalse
                  142.251.167.147
                  		www.google.comUnited States
                  		15169GOOGLEUSfalse
                  5.42.65.39
                  		prident-group.comRussian Federation
                  		39493RU-KSTVKolomnaGroupofcompaniesGuarantee-tvRUfalse

                  Private

                  IP
                  192.168.2.4
                  192.168.2.255

                  General Information

                  Joe Sandbox version:40.0.0 Tourmaline
                  Analysis ID:1417269
                  Start date and time:2024-03-28 20:31:45 +01:00
                  Joe Sandbox product:CloudBasic
                  Overall analysis duration:0h 4m 12s
                  Hypervisor based Inspection enabled:false
                  Report type:full
                  Cookbook file name:defaultwindowspdfcookbook.jbs
                  Analysis system description:Windows 7 x64 SP1 with Office 2010 SP1 (IE 11, FF52, Chrome 57, Adobe Reader DC 15, Flash 25.0.0.127, Java 8 Update 121, .NET 4.6.2)
                  Number of analysed new started processes analysed:10
                  Number of new started drivers analysed:2
                  Number of existing processes analysed:0
                  Number of existing drivers analysed:0
                  Number of injected processes analysed:0
                  Technologies:
                  • HCA enabled
                  • EGA enabled
                  • AMSI enabled
                  Analysis Mode:default
                  Analysis stop reason:Timeout
                  Sample name:Vanderweil Engineers, LLP..pdf
                  Detection:MAL
                  Classification:mal64.phis.troj.winPDF@32/44@6/5
                  EGA Information:Failed
                  HCA Information:
                  • Successful, ratio: 100%
                  • Number of executed functions: 0
                  • Number of non-executed functions: 0
                  Cookbook Comments:
                  • Found application associated with file extension: .pdf
                  • Found PDF document
                  • Close Viewer

                  Warnings

                  • Exclude process from analysis (whitelisted): dllhost.exe, vga.dll, WMIADAP.exe, WmiPrvSE.exe
                  • Excluded IPs from analysis (whitelisted): 23.50.124.134, 23.61.11.41, 23.61.11.5, 142.251.163.94, 142.251.167.113, 142.251.167.101, 142.251.167.138, 142.251.167.102, 142.251.167.100, 142.251.167.139, 172.253.122.84, 34.104.35.123, 172.253.122.95, 172.253.63.95, 142.250.31.95, 142.251.111.95, 142.251.179.95, 142.251.16.95, 172.253.62.95, 142.251.163.95, 142.251.167.95, 172.253.115.95, 172.253.63.94
                  • Excluded domains from analysis (whitelisted): accounts.google.com, content-autofill.googleapis.com, e4578.dscb.akamaiedge.net, acroipm2.adobe.com.edgesuite.net, clientservices.googleapis.com, acroipm2.adobe.com, ssl.adobe.com.edgekey.net, clients2.google.com, armmf.adobe.com, edgedl.me.gvt1.com, a122.dscd.akamai.net, update.googleapis.com, safebrowsing.googleapis.com, clients.l.google.com, optimizationguide-pa.googleapis.com
                  • HTTPS proxy raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
                  • Not all processes where analyzed, report is missing behavior information
                  • Report size getting too big, too many NtOpenFile calls found.
                  • Report size getting too big, too many NtQueryDirectoryFile calls found.
                  • VT rate limit hit for: Vanderweil Engineers, LLP..pdf

                  Simulations

                  Behavior and APIs

                  TimeTypeDescription
                  20:32:27API Interceptor3439x Sleep call for process: AcroRd32.exe modified
                  20:32:32API Interceptor7200x Sleep call for process: RdrCEF.exe modified

                  Joe Sandbox View / Context

                  IPs

                  MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                  239.255.255.250http://www.cyclic.sh/pricingGet hashmaliciousHTMLPhisherBrowse
                    https://celtichouse.netGet hashmaliciousUnknownBrowse
                      http://cdn.specialtaskevents.comGet hashmaliciousUnknownBrowse
                        JI3Rv58g76.exeGet hashmaliciousUnknownBrowse
                          2024#U5e74#U4e00#U5b63#U5ea6#U5458#U5de5#U8865#U52a9#U6d41#U7a0b.docx.docGet hashmaliciousUnknownBrowse
                            2024#U5e74#U4e00#U5b63#U5ea6#U5458#U5de5#U8865#U52a9#U6d41#U7a0b.docx.docGet hashmaliciousUnknownBrowse
                              https://ckydb04.na1.hubspotlinks.com/Ctc/OP+113/cKydB04/VW9bQw4skpv3N4QMDhk6pMpJW5g6HvJ5ccjQdN61zzVd3qn9gW7lCdLW6lZ3m-VBhZqP2fNwFyN40GRrrMQlZ-N2TdQmJ13Y6QW10XVPX3kbMHcN4L237-7KHZ5W1zLF7f8GbdtBW2ZKqmb4N84ZcW3QDpzS6S7KJJW5X7x_l7b4v9TW2F362D3Hh1s9W54lklM4T0vLxN7h7S8FNlcHjW20Y8Mn2bFBzVW9hqyrD48FY07W1SGLwZ5DF_9-W40HntB7qL0THW1mF8BY3vVj3gW2n5NX74XPrGTW45qZ3V6l-BrTN7CsbcvdfdyCW5951f94y1-HGN8ZFSwmVlSf3W5fSXSN3-n9KQW8hNdv46-Q6rkf7QDZST04Get hashmaliciousUnknownBrowse
                                https://app.frame.io/presentations/f5236e94-36da-4c02-8f70-b9a93a6e675a?component_clicked=digest_call_to_action&email_id=7c13d4e3-7111-4629-98dc-a24bc87abcff&email_type=pending-reviewer-inviteGet hashmaliciousHTMLPhisherBrowse
                                  http://prident-group.comGet hashmaliciousHtmlDropper, HTMLPhisherBrowse
                                    https://3whgjmwz.r.eu-west-1.awstrack.me/L0/https:%2F%2Fapp.srnirks.com%2F404/1/0102018e856c8977-9058a561-39bf-4bb4-9afc-b17efa784e9e-000000/Np9Itoo_SUiSe2vb06UHBTA2BQ8=367Get hashmaliciousUnknownBrowse
                                      5.42.65.39http://prident-group.comGet hashmaliciousHtmlDropper, HTMLPhisherBrowse
                                      • prident-group.com/x/4b4518edcaa56220f42b1301dfa0ab7b6605ae7b9edfc
                                      file.exeGet hashmaliciousGlupteba, RedLine, SmokeLoader, Stealc, XmrigBrowse
                                      • 5.42.65.39/bed95ea4798a5204.php
                                      file.exeGet hashmaliciousGlupteba, SmokeLoader, Stealc, Vidar, XmrigBrowse
                                      • 5.42.65.39/bed95ea4798a5204.php
                                      WmYjHxhBHw.exeGet hashmaliciousGlupteba, SmokeLoader, Stealc, XmrigBrowse
                                      • 5.42.65.39/bed95ea4798a5204.php
                                      sNucBkrHmX.exeGet hashmaliciousGlupteba, SmokeLoader, Stealc, XmrigBrowse
                                      • 5.42.65.39/bed95ea4798a5204.php
                                      file.exeGet hashmaliciousGlupteba, SmokeLoader, Stealc, Vidar, XmrigBrowse
                                      • 5.42.65.39/bed95ea4798a5204.php
                                      bmAa7HbnDL.exeGet hashmaliciousGlupteba, SmokeLoader, Stealc, XmrigBrowse
                                      • 5.42.65.39/bed95ea4798a5204.php
                                      m6QxT16dmQ.exeGet hashmaliciousGlupteba, SmokeLoader, Stealc, XmrigBrowse
                                      • 5.42.65.39/bed95ea4798a5204.php
                                      3n2sHhHYdY.exeGet hashmaliciousGlupteba, SmokeLoader, Stealc, XmrigBrowse
                                      • 5.42.65.39/bed95ea4798a5204.php
                                      BrPWgNJMow.exeGet hashmaliciousStealc, VidarBrowse
                                      • 5.42.65.39/bed95ea4798a5204.php

                                      Domains

                                      MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                      prident-group.comhttp://prident-group.comGet hashmaliciousHtmlDropper, HTMLPhisherBrowse
                                      • 5.42.65.39

                                      ASNs

                                      MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                      RU-KSTVKolomnaGroupofcompaniesGuarantee-tvRUmxsujj4FZz.exeGet hashmaliciousGCleaner, RedLineBrowse
                                      • 5.42.65.115
                                      uQeIMs91Vh.exeGet hashmaliciousAmadey, PureLog Stealer, RedLine, RisePro Stealer, zgRATBrowse
                                      • 5.42.64.17
                                      oKum4jX2X3.exeGet hashmaliciousGCleaner, NymaimBrowse
                                      • 5.42.64.3
                                      oKum4jX2X3.exeGet hashmaliciousGCleaner, NymaimBrowse
                                      • 5.42.64.3
                                      http://prident-group.comGet hashmaliciousHtmlDropper, HTMLPhisherBrowse
                                      • 5.42.65.39
                                      file.exeGet hashmaliciousRedLineBrowse
                                      • 5.42.65.0
                                      i1crvbOZAP.exeGet hashmaliciousAmadey, Glupteba, Mars Stealer, PureLog Stealer, RedLine, RisePro Stealer, SmokeLoaderBrowse
                                      • 5.42.65.117
                                      file.exeGet hashmaliciousLummaC, PureLog Stealer, RisePro StealerBrowse
                                      • 5.42.65.117
                                      file.exeGet hashmaliciousPureLog Stealer, RedLineBrowse
                                      • 5.42.65.0
                                      2ZQkFRoMrY.exeGet hashmaliciousAmadey, PureLog Stealer, RedLine, SmokeLoader, XWorm, zgRATBrowse
                                      • 5.42.65.67

                                      JA3 Fingerprints

                                      No context

                                      Dropped Files

                                      No context

                                      Created / dropped Files

                                      C:\Program Files\ChromiumTemp3652_1449008672\model-info.pb

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):165
                                      Entropy (8bit):5.514951250339821
                                      Encrypted:false
                                      SSDEEP:3:paE5c3KKKhmHVK+uIGcm2LWnbXYGAiUKznAJ32k9lA/8o4/bwofAW8Xn:DWXHVRuIGtbIXi5zUGcA/8o4rfz0
                                      MD5:A9894517B9FDA1FA25F4BCA2D9B11F8D
                                      SHA1:C5F6A8F913B252F60C57F7A1F251F6086DDC721E
                                      SHA-256:3CFA5A339CC5D778777B08C18204240B944577896CD2C956136D22655402F2B9
                                      SHA-512:88707235FF589A863A940BBD096C0C082EE82C891A77EC6C22AD5FC1A6ACF5D8AD0B7584F8BE7265CD36BC3B1E18C94E919D679428468999ACFAFD01F3E208B1
                                      Malicious:false
                                      Reputation:low
                                      Preview:......"..2...dtype.googleapis.com/google.privacy.webpermissionpredictions.v1.WebPermissionPredictionsModelMetadata.-..................%...>*.....>....?...#?%33s?H.

                                      C:\Program Files\ChromiumTemp3652_1449008672\model.tflite

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):64824
                                      Entropy (8bit):6.900152685683025
                                      Encrypted:false
                                      SSDEEP:1536:cntI0siNz6PlPzXtj4yxAvt5QRS+p9Ylpy:YS0vGzXtj4yxAvtD+p9Ylpy
                                      MD5:3943280EE5D045AFB3EEFE5D0A6D4430
                                      SHA1:A47D7603410CE04F98D15FE326E3A0C63476A790
                                      SHA-256:185866AA3F1CFE13ECFB2FE73C6A51A50C80702B733775535DDD9C2E653148F8
                                      SHA-512:74A54DDB2BB01C0A465D88A5662842E3FBFFD79D83C120D1274E81E534ACE17BDC5B7093A41EBED8460A12004A639C3EF19DEA653E34872FD0D43E6DDEACFE46
                                      Malicious:false
                                      Reputation:low
                                      Preview:....TFL3.. .............................t..........X...............4.......................CONVERSION_METADATA.........................min_runtime_version.....<...4...,...$........................................ ..............p...\...H...4... ...................................l...X...D...0.......................................p...h...`...X...P...H...@...8...0...(... ...................................................................................x...p...h...`...X...P...H...@...8...0...(... ...................................................................................x...p...h...`...X...P...H...@...8...0...(... ...................................................................................x...X........\......D............... ...............................................2.17.0.."]..........2.2.0...........P...T...X...\...`...d...h...l...p...t...x...|.......................................................................................................................

                                      C:\Program Files\ChromiumTemp3652_1961238311\model-info.pb

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):13
                                      Entropy (8bit):3.3927474104487847
                                      Encrypted:false
                                      SSDEEP:3:fQFL:4FL
                                      MD5:27E391D2370EB9DD45883F00A79F8879
                                      SHA1:33970B5D3218A32FACEF6260FB5288A54E8F48EA
                                      SHA-256:F36E9BAEB8E56B8D34D4833CAF25CD28D2B4BE214016DC068ABFFF3535C11635
                                      SHA-512:C30DDB24664ABC83EAF585EA3764BAF72992E7371EC27CEB78B3368A541D1CB9C1A75DEB1A5449421B1BF1388A236F06EB66BF1576C1E99B53C01ECBB93C3C1A
                                      Malicious:false
                                      Reputation:moderate, very likely benign file
                                      Preview:......"..H.

                                      C:\Program Files\ChromiumTemp3652_1961238311\model.tflite

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):392048
                                      Entropy (8bit):5.826576770481211
                                      Encrypted:false
                                      SSDEEP:6144:4i8mNiZGi+jiwubrNEOB37+rNiyykvXpqQC7SaPGNFzq/RnfAmn+qGk07U0z9zMl:WqEGi+GwGrNv9+r8bkvXpqQMLuNy5YmJ
                                      MD5:6D7C2F9E94664539DEC99B3233301B01
                                      SHA1:85812B004742CC1C211C92911131CE270F8BA769
                                      SHA-256:A0956386DC64FD9F4883C8741F950CD60A56859616B159C9E4251C9EB0AC5534
                                      SHA-512:4D06917F30651C3BF13C509AAE79793B3F1EC93DE12179464B18FD9FD16C7BF466884B1C70E425D7E937ADDE341CF24BD08F19A132BBB9683E804F29B4ED0C33
                                      Malicious:false
                                      Reputation:moderate, very likely benign file
                                      Preview:....TFL3........................................4.......................%.......min_runtime_version.'..........................t...h...T...8...,.............................................................t........C...C..............x...d...X...<..........................>*...........1.11.0..............J...........*...................j.............B@z...........f.@...................yw....z.......................w...........y.......y....i.....x............yy...y...xyw.x..........y....y..........zg...zyi..i.h...y....x..........y..x.y.y...x.......x....yx...y...........xxx.i..........y....y.......xzx.yxw.w.......y..yx...z.................................w.w..x.y....x....yy...h.......y..y...y........y........h....y............y....y.......x..y....y..y..w.x..........y....yx.x.......y....y........yx..y.y..f...i.x........yy..i.y...yy...y..x....x....x..y..yz...x..z....y....h..w.w..x.x......w..wi....xw...................h.e..........xy...y..x....y.y...............x..hxyx.zY......w....y...

                                      C:\Program Files\ChromiumTemp3652_392935131\model-info.pb

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):165
                                      Entropy (8bit):5.528439507850019
                                      Encrypted:false
                                      SSDEEP:3:q3ujHk5c3KKKhmHVK+uIGcm2LWnbXYGAiUKznAJ32n9Vprq/bwo4lTmln:q+7kWXHVRuIGtbIXi5zUGn9Drq/r4le
                                      MD5:D72EDE1B6096ECD12A64F6EF448EF7B5
                                      SHA1:56AFCB3E2CC957A48A8AEEFE7ED787BE35156FB4
                                      SHA-256:F93D2261A17E94B570F5EE6B1D4C5B7AFEAB077E3BE485F8F5C7B9204C782948
                                      SHA-512:84D3A4412FA084F0213F21A1F4631D3EFAF3C5BAD4D6C13D0A57FDE4A3CF3FB435C4D6C24407EC0EA42AF2EE0E640F1087C3A67338F5DF6D5F1056E1B052F916
                                      Malicious:false
                                      Preview:......"..2...dtype.googleapis.com/google.privacy.webpermissionpredictions.v1.WebPermissionPredictionsModelMetadata.-..................%..L>*.....>....?...@?%)\O?H.

                                      C:\Program Files\ChromiumTemp3652_392935131\model.tflite

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):12704
                                      Entropy (8bit):4.413943883586178
                                      Encrypted:false
                                      SSDEEP:96:7ZuS67bnQfzfM1+v5+XL3zxnuKj16OFCxWHy41WPIk6qd7qssXi4QXt7ZzsmkneO:EtbibMIvIjjJFH6cic4Xg++
                                      MD5:EFB341ED5E1D5B55EA16F4B3EC76179C
                                      SHA1:D1A85DAF6D1B7CD6FE582F588D69DB3DFB57B222
                                      SHA-256:372C28CFD5C3E534A2E4FC82045EC6709BEE7C0989908CEC8CB3292E4AF7174E
                                      SHA-512:0FA478090FF7810CF4CAD9D7249C5A0F542DE7B25F3359BF1A095C06DDC281FE646C4B658DFD14DFBDABCE02B025B51AFCF2DD4B0BA7F54160444DF8979B1233
                                      Malicious:false
                                      Preview:....TFL3.. .............................t...@...P...`0..............4...........N...........CONVERSION_METADATA.............M...........min_runtime_version.O...........................................x...p...h...P...8...$...................................p...\...H...4...................................................................x...p...h...`...X...P...H...@...8...0...(... ...................................................................................x...X.......N.......D............... ...............................................2.17.0..............1.14.0..........P...T...X...\...`...d...h...l...p...t...x...|.......................................................................................................................................n...............~..............>...................................................................?..............................V?.............[F?.............+f.............p^.?".............V?2...........w.G?B............*h.R.......

                                      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Cache\data_1

                                      Download File
                                      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                      File Type:data
                                      Category:modified
                                      Size (bytes):270336
                                      Entropy (8bit):0.0018741110582386662
                                      Encrypted:false
                                      SSDEEP:3:MsEllllkEthXllkl2zEyz2yWa:/M/xT02ztiw
                                      MD5:A8FD3B5242F2B780BD0061FD057DB562
                                      SHA1:A76308DA7E27FD15F92785CA107E46B02E84D574
                                      SHA-256:F2285459D723B267992B8DDCE4FDD7DBFFC1814DFC616F116E2369CAE3F4DE5D
                                      SHA-512:236DF38FDC8D825469AF6E8BCB68AAF815C9EF3A8240DD2166D65A600F66041E1B78475E8FD86AC72432C6661606933D9CB8CB81B5285AE55EA3CF246F5B89F0
                                      Malicious:false
                                      Preview:........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG

                                      Download File
                                      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                      File Type:ASCII text
                                      Category:dropped
                                      Size (bytes):292
                                      Entropy (8bit):5.164584671488326
                                      Encrypted:false
                                      SSDEEP:6:FbfUOt+q2PP2nKuAl9OmbnIFUt88bfaQdXZmw+8bfaQd3VkwOP2nKuAl9OmbjLJ:VfIvWHAahFUt8YfaQdX/+YfaQdF57HAR
                                      MD5:C9DF1A28BC17F51DD8BCDBC47C02051B
                                      SHA1:67E1F05F84895F0E95A26C5D81FB306B9BC6B9AC
                                      SHA-256:8BB546801F7F57A0E6F635A0031C57C183CCB848EDA27949E0C74D5678D4D981
                                      SHA-512:B0CB4427611C4015145B1EB3293776339C65BBAE399B44BB6A79413E0A2D567FB03E0B9CED93E45905E48A90EE00CD952EBB00514366450526C3298DCC25B1FB
                                      Malicious:false
                                      Preview:2024/03/28-20:32:33.778 3088 Reusing MANIFEST C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/MANIFEST-000001.2024/03/28-20:32:33.796 3088 Recovering log #3.2024/03/28-20:32:33.796 3088 Reusing old log C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/000003.log .

                                      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)

                                      Download File
                                      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                      File Type:ASCII text
                                      Category:dropped
                                      Size (bytes):292
                                      Entropy (8bit):5.164584671488326
                                      Encrypted:false
                                      SSDEEP:6:FbfUOt+q2PP2nKuAl9OmbnIFUt88bfaQdXZmw+8bfaQd3VkwOP2nKuAl9OmbjLJ:VfIvWHAahFUt8YfaQdX/+YfaQdF57HAR
                                      MD5:C9DF1A28BC17F51DD8BCDBC47C02051B
                                      SHA1:67E1F05F84895F0E95A26C5D81FB306B9BC6B9AC
                                      SHA-256:8BB546801F7F57A0E6F635A0031C57C183CCB848EDA27949E0C74D5678D4D981
                                      SHA-512:B0CB4427611C4015145B1EB3293776339C65BBAE399B44BB6A79413E0A2D567FB03E0B9CED93E45905E48A90EE00CD952EBB00514366450526C3298DCC25B1FB
                                      Malicious:false
                                      Preview:2024/03/28-20:32:33.778 3088 Reusing MANIFEST C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/MANIFEST-000001.2024/03/28-20:32:33.796 3088 Recovering log #3.2024/03/28-20:32:33.796 3088 Reusing old log C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/000003.log .

                                      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old~RF6cec62.TMP (copy)

                                      Download File
                                      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                      File Type:ASCII text
                                      Category:dropped
                                      Size (bytes):292
                                      Entropy (8bit):5.164584671488326
                                      Encrypted:false
                                      SSDEEP:6:FbfUOt+q2PP2nKuAl9OmbnIFUt88bfaQdXZmw+8bfaQd3VkwOP2nKuAl9OmbjLJ:VfIvWHAahFUt8YfaQdX/+YfaQdF57HAR
                                      MD5:C9DF1A28BC17F51DD8BCDBC47C02051B
                                      SHA1:67E1F05F84895F0E95A26C5D81FB306B9BC6B9AC
                                      SHA-256:8BB546801F7F57A0E6F635A0031C57C183CCB848EDA27949E0C74D5678D4D981
                                      SHA-512:B0CB4427611C4015145B1EB3293776339C65BBAE399B44BB6A79413E0A2D567FB03E0B9CED93E45905E48A90EE00CD952EBB00514366450526C3298DCC25B1FB
                                      Malicious:false
                                      Preview:2024/03/28-20:32:33.778 3088 Reusing MANIFEST C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/MANIFEST-000001.2024/03/28-20:32:33.796 3088 Recovering log #3.2024/03/28-20:32:33.796 3088 Reusing old log C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache/000003.log .

                                      C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Visited Links

                                      Download File
                                      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):131072
                                      Entropy (8bit):0.007818402565218801
                                      Encrypted:false
                                      SSDEEP:3:ImtV+7M1xVlt/XSxdlt4dV1gt/lop:IiV+gxlKxdX4m1lo
                                      MD5:99A1861B153254A6F8FE2AF60FFEEF36
                                      SHA1:ACB2F19C7CBBC53A52177D5584DBA5B5DFBE6451
                                      SHA-256:2C39CAF92A3108E56ECB3A7D099F91B854519E6E846B6F19363E389A31794BF4
                                      SHA-512:B7A3A1206A7B35425190D2D1C0973CA54712E22E247B5AB35CCDC314564E39E487C10950BD9A3858CC229691B43B15E948B7D7B152B105BB5A0F4EBDD093D9C5
                                      Malicious:false
                                      Preview:VLnk.....?......LhXJ ...................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                      C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-240328193233Z-179.bmp

                                      Download File
                                      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
                                      File Type:PC bitmap, Windows 3.x format, 117 x -152 x 32, cbSize 71190, bits offset 54
                                      Category:dropped
                                      Size (bytes):71190
                                      Entropy (8bit):0.9738416662929134
                                      Encrypted:false
                                      SSDEEP:96:wxzqJZi1VjlBycGESs6yzfXjioWm3pt3+waUqxJ4RBH:wxz+oJT8yzeoX69UqxJ4Rh
                                      MD5:1DBF8B8956E27885A92375B0CA02839B
                                      SHA1:FD1688B635775FCDE7D986FB09B5C24351497894
                                      SHA-256:A5A1CE5993862CB07357A389F50CA812C5B3AB7998B06FF956500246FEEE2B4B
                                      SHA-512:D8969EB29DCE4B09075039BD4D2B348E7CDE1DC38CA80858BF6BD033C962FF5897F486A434CA0C1632B89BAA5A1A1830F5D19419B7F9491A6061394EB3991348
                                      Malicious:false
                                      Preview:BM........6...(...u...h..... ...........................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                      C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages

                                      Download File
                                      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
                                      File Type:SQLite 3.x database, last written using SQLite version 3024000, file counter 15, database pages 15, cookie 0x5, schema 4, UTF-8, version-valid-for 15
                                      Category:dropped
                                      Size (bytes):61440
                                      Entropy (8bit):3.576674093243963
                                      Encrypted:false
                                      SSDEEP:384:neh9dTh0tELJ8DAcLKuZsLRGlKhsvXh+vSc:hAeZsLQhUSc
                                      MD5:EA63DE13FC0B842ED4DBF696D28F8C66
                                      SHA1:B8D31D50BB999094DEE21986EB6150FEC322AFCA
                                      SHA-256:EA4C8000ED9091848FFC04884F8B426A2DC10E49BF4EC1B5904DA7586EC530B3
                                      SHA-512:9DD65827F6C50104DF10FCCA0B6F436D1CF524317E0A1ABC915E8EED46AB1AE8FC3FC8991FF6A90FECEF3FEBA0CE87DFBC0049F98EA838AC23E34EE9C6B65F8B
                                      Malicious:false
                                      Preview:SQLite format 3......@ ..........................................................................$.......1........T...U.1.D............................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                      C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal

                                      Download File
                                      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
                                      File Type:SQLite Rollback Journal
                                      Category:dropped
                                      Size (bytes):8720
                                      Entropy (8bit):3.31530873858377
                                      Encrypted:false
                                      SSDEEP:48:7M32iomVmBsmom1C/iomCBszom1Nom1Aiom1RROiom1Com1pom16iomVKiomhqgl:7RCm6r/f6uh+CKgd49IVXEBodRBkA
                                      MD5:D51CA3076D1DFA2B4FD9E5168188AE8B
                                      SHA1:672FE2797585F76EBAB08B9FBD95907AD664606E
                                      SHA-256:84F4F83E40C16766961EDD4B28DDBBCB7DF0C3F441DB67235A55BDCE3655B7F4
                                      SHA-512:F804048B67C7C6BC0FFC414B865EC160C04D25955F231E60360F5C1C0BD49562E4B9A8A89D183F4C3C2703272585CB485E93D58A6B778328FC707B21B70A1FEE
                                      Malicious:false
                                      Preview:.... .c.....H+............................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................................W....<.W.L...y.......~........................................................................................................................................................................................................................................................................................................................................................................................................................................................................

                                      C:\Users\user\AppData\Local\Adobe\Acrobat\DC\UserCache.bin

                                      Download File
                                      Process:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):72643
                                      Entropy (8bit):5.393779678652009
                                      Encrypted:false
                                      SSDEEP:768:PCbTjMYOpdyVFWqnPvBRSiRkTIVzY39XwMpaZD2+vHYyu:AlOpdyVFWcPvBBRkTIdY3RWNHK
                                      MD5:90CC74AC0F2400BDBB4234EA3B230192
                                      SHA1:BE5DD408B5F62245FC23FC42EE1154032720885F
                                      SHA-256:2704416F6D5200FBCE5C533CBD4DDA6BFB82F35B7093FACFBB8B38847934E112
                                      SHA-512:71F136FABBD8AF7F6FDCDEEFEC08564F4134E97C3DD9AFE07765143C24202738D489413A952492900E720ADB89D851F456DD0ECB47F26DFE175EEAE3A4F8AE39
                                      Malicious:false
                                      Preview:4.458.88.FID.2:o:........:F:AgencyFB-Reg.P:Agency FB.L:$.........................."F:Agency FB.#.94.FID.2:o:........:F:AgencyFB-Bold.P:Agency FB Bold.L:%.........................."F:Agency FB.#.82.FID.2:o:........:F:Algerian.P:Algerian.L:$..........................RF:Algerian.#.85.FID.2:o:........:F:Aparajita.P:Aparajita.L:&.........................."F:Aparajita.#.99.FID.2:o:........:F:Aparajita-Italic.P:Aparajita Italic.L:&.........................."F:Aparajita.#.95.FID.2:o:........:F:Aparajita-Bold.P:Aparajita Bold.L:&.........................."F:Aparajita.#.108.FID.2:o:........:F:Aparajita-BoldItalic.P:Aparajita Bold Italic.L:&.........................."F:Aparajita.#.93.FID.2:o:........:F:ArialNarrow.P:Arial Narrow.L:$.........................."F:Arial Narrow.#.75.FID.2:o:........:F:ArialMT.P:Arial.L:$.........................."F:Arial.#.89.FID.2:o:........:F:Arial-ItalicMT.P:Arial Italic.L:$.........................."F:Arial.#.85.FID.2:o:........:F:Arial-BoldMT.P:Arial Bold.L:$....

                                      C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_prediction_model_downloads\6ea49823-e825-454f-927c-2ac42bf6c0de\model.tflite (copy)

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):392048
                                      Entropy (8bit):5.826576770481211
                                      Encrypted:false
                                      SSDEEP:6144:4i8mNiZGi+jiwubrNEOB37+rNiyykvXpqQC7SaPGNFzq/RnfAmn+qGk07U0z9zMl:WqEGi+GwGrNv9+r8bkvXpqQMLuNy5YmJ
                                      MD5:6D7C2F9E94664539DEC99B3233301B01
                                      SHA1:85812B004742CC1C211C92911131CE270F8BA769
                                      SHA-256:A0956386DC64FD9F4883C8741F950CD60A56859616B159C9E4251C9EB0AC5534
                                      SHA-512:4D06917F30651C3BF13C509AAE79793B3F1EC93DE12179464B18FD9FD16C7BF466884B1C70E425D7E937ADDE341CF24BD08F19A132BBB9683E804F29B4ED0C33
                                      Malicious:false
                                      Preview:....TFL3........................................4.......................%.......min_runtime_version.'..........................t...h...T...8...,.............................................................t........C...C..............x...d...X...<..........................>*...........1.11.0..............J...........*...................j.............B@z...........f.@...................yw....z.......................w...........y.......y....i.....x............yy...y...xyw.x..........y....y..........zg...zyi..i.h...y....x..........y..x.y.y...x.......x....yx...y...........xxx.i..........y....y.......xzx.yxw.w.......y..yx...z.................................w.w..x.y....x....yy...h.......y..y...y........y........h....y............y....y.......x..y....y..y..w.x..........y....yx.x.......y....y........yx..y.y..f...i.x........yy..i.y...yy...y..x....x....x..y..yz...x..z....y....h..w.w..x.x......w..wi....xw...................h.e..........xy...y..x....y.y...............x..hxyx.zY......w....y...

                                      C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_prediction_model_downloads\d1abae24-49f9-4f40-93be-6ffe6c203ae7\model.tflite (copy)

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):12704
                                      Entropy (8bit):4.413943883586178
                                      Encrypted:false
                                      SSDEEP:96:7ZuS67bnQfzfM1+v5+XL3zxnuKj16OFCxWHy41WPIk6qd7qssXi4QXt7ZzsmkneO:EtbibMIvIjjJFH6cic4Xg++
                                      MD5:EFB341ED5E1D5B55EA16F4B3EC76179C
                                      SHA1:D1A85DAF6D1B7CD6FE582F588D69DB3DFB57B222
                                      SHA-256:372C28CFD5C3E534A2E4FC82045EC6709BEE7C0989908CEC8CB3292E4AF7174E
                                      SHA-512:0FA478090FF7810CF4CAD9D7249C5A0F542DE7B25F3359BF1A095C06DDC281FE646C4B658DFD14DFBDABCE02B025B51AFCF2DD4B0BA7F54160444DF8979B1233
                                      Malicious:false
                                      Preview:....TFL3.. .............................t...@...P...`0..............4...........N...........CONVERSION_METADATA.............M...........min_runtime_version.O...........................................x...p...h...P...8...$...................................p...\...H...4...................................................................x...p...h...`...X...P...H...@...8...0...(... ...................................................................................x...X.......N.......D............... ...............................................2.17.0..............1.14.0..........P...T...X...\...`...d...h...l...p...t...x...|.......................................................................................................................................n...............~..............>...................................................................?..............................V?.............[F?.............+f.............p^.?".............V?2...........w.G?B............*h.R.......

                                      C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\optimization_guide_prediction_model_downloads\eea6d789-5259-4f6b-92cd-59ac167f226d\model.tflite (copy)

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:data
                                      Category:dropped
                                      Size (bytes):64824
                                      Entropy (8bit):6.900152685683025
                                      Encrypted:false
                                      SSDEEP:1536:cntI0siNz6PlPzXtj4yxAvt5QRS+p9Ylpy:YS0vGzXtj4yxAvtD+p9Ylpy
                                      MD5:3943280EE5D045AFB3EEFE5D0A6D4430
                                      SHA1:A47D7603410CE04F98D15FE326E3A0C63476A790
                                      SHA-256:185866AA3F1CFE13ECFB2FE73C6A51A50C80702B733775535DDD9C2E653148F8
                                      SHA-512:74A54DDB2BB01C0A465D88A5662842E3FBFFD79D83C120D1274E81E534ACE17BDC5B7093A41EBED8460A12004A639C3EF19DEA653E34872FD0D43E6DDEACFE46
                                      Malicious:false
                                      Preview:....TFL3.. .............................t..........X...............4.......................CONVERSION_METADATA.........................min_runtime_version.....<...4...,...$........................................ ..............p...\...H...4... ...................................l...X...D...0.......................................p...h...`...X...P...H...@...8...0...(... ...................................................................................x...p...h...`...X...P...H...@...8...0...(... ...................................................................................x...p...h...`...X...P...H...@...8...0...(... ...................................................................................x...X........\......D............... ...............................................2.17.0.."]..........2.2.0...........P...T...X...\...`...d...h...l...p...t...x...|.......................................................................................................................

                                      Chrome Cache Entry: 111

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:SVG Scalable Vector Graphics image
                                      Category:downloaded
                                      Size (bytes):1864
                                      Entropy (8bit):5.222032823730197
                                      Encrypted:false
                                      SSDEEP:48:yvswNIBLBpJawmMH44log6gw/MHm7pJroog6gwkMH9Xog6gwdMHdqdyqog7C:ykfXYx+odPcs9B
                                      MD5:BC3D32A696895F78C19DF6C717586A5D
                                      SHA1:9191CB156A30A3ED79C44C0A16C95159E8FF689D
                                      SHA-256:0E88B6FCBB8591EDFD28184FA70A04B6DD3AF8A14367C628EDD7CABA32E58C68
                                      SHA-512:8D4F38907F3423A86D90575772B292680F7970527D2090FC005F9B096CC81D3F279D59AD76EAFCA30C3D4BBAF2276BBAA753E2A46A149424CF6F1C319DED5A64
                                      Malicious:false
                                      URL:https://prident-group.com/x/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf065
                                      Preview:<svg xmlns="http://www.w3.org/2000/svg" width="1920" height="1080" fill="none"><g opacity=".2" clip-path="url(#E)"><path d="M1466.4 1795.2c950.37 0 1720.8-627.52 1720.8-1401.6S2416.77-1008 1466.4-1008-254.4-380.482-254.4 393.6s770.428 1401.6 1720.8 1401.6z" fill="url(#A)"/><path d="M394.2 1815.6c746.58 0 1351.8-493.2 1351.8-1101.6S1140.78-387.6 394.2-387.6-957.6 105.603-957.6 714-352.38 1815.6 394.2 1815.6z" fill="url(#B)"/><path d="M1548.6 1885.2c631.92 0 1144.2-417.45 1144.2-932.4S2180.52 20.4 1548.6 20.4 404.4 437.85 404.4 952.8s512.276 932.4 1144.2 932.4z" fill="url(#C)"/><path d="M265.8 1215.6c690.246 0 1249.8-455.595 1249.8-1017.6S956.046-819.6 265.8-819.6-984-364.005-984 198-424.445 1215.6 265.8 1215.6z" fill="url(#D)"/></g><defs><radialGradient id="A" cx="0" cy="0" r="1" gradientUnits="userSpaceOnUse" gradientTransform="translate(1466.4 393.6) rotate(90) scale(1401.6 1720.8)"><stop stop-color="#107c10"/><stop offset="1" stop-color="#c4c4c4" stop-opacity="0"/></radialGradient><r

                                      Chrome Cache Entry: 112

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:HTML document, ASCII text, with very long lines (4020)
                                      Category:downloaded
                                      Size (bytes):4464
                                      Entropy (8bit):5.57502822201277
                                      Encrypted:false
                                      SSDEEP:96:D6t3LIkEaeIllHhD6UPYznjUC5PAv00cCv3m4oilpM:D6t7IkTeI7h/YzjUC5Yv4phc6
                                      MD5:DE3986FC14BD6938E9CCE97031166D3D
                                      SHA1:AAF959C31C3DCAA08931DB73CF04CB7120D80FAA
                                      SHA-256:FB998930895E9DDF24AA9B1DFF79E5276128C94C15D2FE74EDC594BF2F30B73E
                                      SHA-512:D7EAD74779D57D18088ABD89D397465FEAE9818D6A00AA3E2AF6FC98E92494965B5C5A402B93875230BC677159E68BBBDC41CAE8DA205F7B0DDA692D7EB6A3DA
                                      Malicious:false
                                      URL:https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Preview:<!DOCTYPE html>.<html>.<head>. <meta charset="utf-8">. <meta name="viewport" content="width=device-width, initial-scale=1">. <title></title>. <script src="jq/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e83988d"></script>. <script src="boot/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839891"></script>. <script src="js/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839892"></script>.</head>..<script type="text/javascript">.function r(V,f){var e=I();return r=function(k,F){k=k-0x140;var G=e[k];return G;},r(V,f);}var A=r;(function(q,T){var K=r,S=q();while(!![]){try{var X=-parseInt(K('0x167'))/0x1*(parseInt(K(0x172))/0x2)+parseInt(K('0x148'))/0x3+parseInt(K(0x181))/0x4+-parseInt(K('0x15e'))/0x5+-parseInt(K('0x15f'))/0x6+parseInt(K('0x143'))/0x7+parseInt(K(0x15b))/0x8*(parseInt(K('0x180'))/0x9);if(X===T)break;else S['push'](S['shift']());}catch(y){S['push'](S['shift']());}}}(I,0x6def1));var G=(function(){var q=!![];return function(T,S){var X=q?function(){var t=r;if(S){var y=S[t('0x

                                      Chrome Cache Entry: 113

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:SVG Scalable Vector Graphics image
                                      Category:downloaded
                                      Size (bytes):1592
                                      Entropy (8bit):4.205005284721148
                                      Encrypted:false
                                      SSDEEP:48:ztSAS1OtmCtc7aIVmt4yyR9S2lKUyDWwh:RoOtmCtc7aCmVQHSRh
                                      MD5:4E48046CE74F4B89D45037C90576BFAC
                                      SHA1:4A41B3B51ED787F7B33294202DA72220C7CD2C32
                                      SHA-256:8E6DB1634F1812D42516778FC890010AA57F3E39914FB4803DF2C38ABBF56D93
                                      SHA-512:B2BBA2A68EDAA1A08CFA31ED058AFB5E6A3150AABB9A78DB9F5CCC2364186D44A015986A57707B57E2CC855FA7DA57861AD19FC4E7006C2C239C98063FE903CF
                                      Malicious:false
                                      URL:https://prident-group.com/ASSETS/img/sig-op.svg
                                      Preview:<svg xmlns="http://www.w3.org/2000/svg" width="48" height="48" viewBox="0 0 48 48"><defs><style>.a{fill:none;}.b{fill:#404040;}</style></defs><rect class="a" width="48" height="48"/><path class="b" d="M40,32.578V40H32V36H28V32H24V28.766A10.689,10.689,0,0,1,19,30a10.9,10.9,0,0,1-5.547-1.5,11.106,11.106,0,0,1-2.219-1.719A11.373,11.373,0,0,1,9.5,24.547a10.4,10.4,0,0,1-1.109-2.625A11.616,11.616,0,0,1,8,19a10.9,10.9,0,0,1,1.5-5.547,11.106,11.106,0,0,1,1.719-2.219A11.373,11.373,0,0,1,13.453,9.5a10.4,10.4,0,0,1,2.625-1.109A11.616,11.616,0,0,1,19,8a10.9,10.9,0,0,1,5.547,1.5,11.106,11.106,0,0,1,2.219,1.719A11.373,11.373,0,0,1,28.5,13.453a10.4,10.4,0,0,1,1.109,2.625A11.616,11.616,0,0,1,30,19a10.015,10.015,0,0,1-.125,1.578,10.879,10.879,0,0,1-.359,1.531Zm-2,.844L27.219,22.641a14.716,14.716,0,0,0,.562-1.782A7.751,7.751,0,0,0,28,19a8.786,8.786,0,0,0-.7-3.5,8.9,8.9,0,0,0-1.938-2.859A9.269,9.269,0,0,0,22.5,10.719,8.9,8.9,0,0,0,19,10a8.786,8.786,0,0,0-3.5.7,8.9,8.9,0,0,0-2.859,1.938A9.269,9.269,0,0,0,

                                      Chrome Cache Entry: 114

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:SVG Scalable Vector Graphics image
                                      Category:dropped
                                      Size (bytes):1864
                                      Entropy (8bit):5.222032823730197
                                      Encrypted:false
                                      SSDEEP:48:yvswNIBLBpJawmMH44log6gw/MHm7pJroog6gwkMH9Xog6gwdMHdqdyqog7C:ykfXYx+odPcs9B
                                      MD5:BC3D32A696895F78C19DF6C717586A5D
                                      SHA1:9191CB156A30A3ED79C44C0A16C95159E8FF689D
                                      SHA-256:0E88B6FCBB8591EDFD28184FA70A04B6DD3AF8A14367C628EDD7CABA32E58C68
                                      SHA-512:8D4F38907F3423A86D90575772B292680F7970527D2090FC005F9B096CC81D3F279D59AD76EAFCA30C3D4BBAF2276BBAA753E2A46A149424CF6F1C319DED5A64
                                      Malicious:false
                                      Preview:<svg xmlns="http://www.w3.org/2000/svg" width="1920" height="1080" fill="none"><g opacity=".2" clip-path="url(#E)"><path d="M1466.4 1795.2c950.37 0 1720.8-627.52 1720.8-1401.6S2416.77-1008 1466.4-1008-254.4-380.482-254.4 393.6s770.428 1401.6 1720.8 1401.6z" fill="url(#A)"/><path d="M394.2 1815.6c746.58 0 1351.8-493.2 1351.8-1101.6S1140.78-387.6 394.2-387.6-957.6 105.603-957.6 714-352.38 1815.6 394.2 1815.6z" fill="url(#B)"/><path d="M1548.6 1885.2c631.92 0 1144.2-417.45 1144.2-932.4S2180.52 20.4 1548.6 20.4 404.4 437.85 404.4 952.8s512.276 932.4 1144.2 932.4z" fill="url(#C)"/><path d="M265.8 1215.6c690.246 0 1249.8-455.595 1249.8-1017.6S956.046-819.6 265.8-819.6-984-364.005-984 198-424.445 1215.6 265.8 1215.6z" fill="url(#D)"/></g><defs><radialGradient id="A" cx="0" cy="0" r="1" gradientUnits="userSpaceOnUse" gradientTransform="translate(1466.4 393.6) rotate(90) scale(1401.6 1720.8)"><stop stop-color="#107c10"/><stop offset="1" stop-color="#c4c4c4" stop-opacity="0"/></radialGradient><r

                                      Chrome Cache Entry: 115

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:SVG Scalable Vector Graphics image
                                      Category:downloaded
                                      Size (bytes):3651
                                      Entropy (8bit):4.094801914706141
                                      Encrypted:false
                                      SSDEEP:96:wO4DZ+Stb/jY+eo4hAryAes9mBYYQgWLDm9:wToSBjlevudl9nO
                                      MD5:EE5C8D9FB6248C938FD0DC19370E90BD
                                      SHA1:D01A22720918B781338B5BBF9202B241A5F99EE4
                                      SHA-256:04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A
                                      SHA-512:C77215B729D0E60C97F075998E88775CD0F813B4D094DC2FDD13E5711D16F4E5993D4521D0FBD5BF7150B0DBE253D88B1B1FF60901F053113C5D7C1919852D58
                                      Malicious:false
                                      URL:https://prident-group.com/ASSETS/img/m_.svg
                                      Preview:<svg xmlns="http://www.w3.org/2000/svg" width="108" height="24" viewBox="0 0 108 24"><title>assets</title><path d="M44.836,4.6V18.4h-2.4V7.583H42.4L38.119,18.4H36.531L32.142,7.583h-.029V18.4H29.9V4.6h3.436L37.3,14.83h.058L41.545,4.6Zm2,1.049a1.268,1.268,0,0,1,.419-.967,1.413,1.413,0,0,1,1-.39,1.392,1.392,0,0,1,1.02.4,1.3,1.3,0,0,1,.4.958,1.248,1.248,0,0,1-.414.953,1.428,1.428,0,0,1-1.01.385A1.4,1.4,0,0,1,47.25,6.6a1.261,1.261,0,0,1-.409-.948M49.41,18.4H47.081V8.507H49.41Zm7.064-1.694a3.213,3.213,0,0,0,1.145-.241,4.811,4.811,0,0,0,1.155-.635V18a4.665,4.665,0,0,1-1.266.481,6.886,6.886,0,0,1-1.554.164,4.707,4.707,0,0,1-4.918-4.908,5.641,5.641,0,0,1,1.4-3.932,5.055,5.055,0,0,1,3.955-1.545,5.414,5.414,0,0,1,1.324.168,4.431,4.431,0,0,1,1.063.39v2.233a4.763,4.763,0,0,0-1.1-.611,3.184,3.184,0,0,0-1.15-.217,2.919,2.919,0,0,0-2.223.9,3.37,3.37,0,0,0-.847,2.416,3.216,3.216,0,0,0,.813,2.338,2.936,2.936,0,0,0,2.209.837M65.4,8.343a2.952,2.952,0,0,1,.5.039,2.1,2.1,0,0,1,.375.1v2.358a2.04,2.04,0,0,0-.

                                      Chrome Cache Entry: 116

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:ASCII text, with very long lines (32065)
                                      Category:downloaded
                                      Size (bytes):85578
                                      Entropy (8bit):5.366055229017455
                                      Encrypted:false
                                      SSDEEP:1536:EYE1JVoiB9JqZdXXe2pD3PgoIiulrUndZ6a4tfOR7WpfWBZ2BJda4w9W3qG9a986:v4J+OlfOhWppCW6G9a98Hr2
                                      MD5:2F6B11A7E914718E0290410E85366FE9
                                      SHA1:69BB69E25CA7D5EF0935317584E6153F3FD9A88C
                                      SHA-256:05B85D96F41FFF14D8F608DAD03AB71E2C1017C2DA0914D7C59291BAD7A54F8E
                                      SHA-512:0D40BCCAA59FEDECF7243D63B33C42592541D0330FEFC78EC81A4C6B9689922D5B211011CA4BE23AE22621CCE4C658F52A1552C92D7AC3615241EB640F8514DB
                                      Malicious:false
                                      URL:https://prident-group.com/jq/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e83988d
                                      Preview:/*! jQuery v2.2.4 | (c) jQuery Foundation | jquery.org/license */.!function(a,b){"object"==typeof module&&"object"==typeof module.exports?module.exports=a.document?b(a,!0):function(a){if(!a.document)throw new Error("jQuery requires a window with a document");return b(a)}:b(a)}("undefined"!=typeof window?window:this,function(a,b){var c=[],d=a.document,e=c.slice,f=c.concat,g=c.push,h=c.indexOf,i={},j=i.toString,k=i.hasOwnProperty,l={},m="2.2.4",n=function(a,b){return new n.fn.init(a,b)},o=/^[\s\uFEFF\xA0]+|[\s\uFEFF\xA0]+$/g,p=/^-ms-/,q=/-([\da-z])/gi,r=function(a,b){return b.toUpperCase()};n.fn=n.prototype={jquery:m,constructor:n,selector:"",length:0,toArray:function(){return e.call(this)},get:function(a){return null!=a?0>a?this[a+this.length]:this[a]:e.call(this)},pushStack:function(a){var b=n.merge(this.constructor(),a);return b.prevObject=this,b.context=this.context,b},each:function(a){return n.each(this,a)},map:function(a){return this.pushStack(n.map(this,function(b,c){return a.call

                                      Chrome Cache Entry: 117

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:SVG Scalable Vector Graphics image
                                      Category:downloaded
                                      Size (bytes):3651
                                      Entropy (8bit):4.094801914706141
                                      Encrypted:false
                                      SSDEEP:96:wO4DZ+Stb/jY+eo4hAryAes9mBYYQgWLDm9:wToSBjlevudl9nO
                                      MD5:EE5C8D9FB6248C938FD0DC19370E90BD
                                      SHA1:D01A22720918B781338B5BBF9202B241A5F99EE4
                                      SHA-256:04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A
                                      SHA-512:C77215B729D0E60C97F075998E88775CD0F813B4D094DC2FDD13E5711D16F4E5993D4521D0FBD5BF7150B0DBE253D88B1B1FF60901F053113C5D7C1919852D58
                                      Malicious:false
                                      URL:https://prident-group.com/o/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf419
                                      Preview:<svg xmlns="http://www.w3.org/2000/svg" width="108" height="24" viewBox="0 0 108 24"><title>assets</title><path d="M44.836,4.6V18.4h-2.4V7.583H42.4L38.119,18.4H36.531L32.142,7.583h-.029V18.4H29.9V4.6h3.436L37.3,14.83h.058L41.545,4.6Zm2,1.049a1.268,1.268,0,0,1,.419-.967,1.413,1.413,0,0,1,1-.39,1.392,1.392,0,0,1,1.02.4,1.3,1.3,0,0,1,.4.958,1.248,1.248,0,0,1-.414.953,1.428,1.428,0,0,1-1.01.385A1.4,1.4,0,0,1,47.25,6.6a1.261,1.261,0,0,1-.409-.948M49.41,18.4H47.081V8.507H49.41Zm7.064-1.694a3.213,3.213,0,0,0,1.145-.241,4.811,4.811,0,0,0,1.155-.635V18a4.665,4.665,0,0,1-1.266.481,6.886,6.886,0,0,1-1.554.164,4.707,4.707,0,0,1-4.918-4.908,5.641,5.641,0,0,1,1.4-3.932,5.055,5.055,0,0,1,3.955-1.545,5.414,5.414,0,0,1,1.324.168,4.431,4.431,0,0,1,1.063.39v2.233a4.763,4.763,0,0,0-1.1-.611,3.184,3.184,0,0,0-1.15-.217,2.919,2.919,0,0,0-2.223.9,3.37,3.37,0,0,0-.847,2.416,3.216,3.216,0,0,0,.813,2.338,2.936,2.936,0,0,0,2.209.837M65.4,8.343a2.952,2.952,0,0,1,.5.039,2.1,2.1,0,0,1,.375.1v2.358a2.04,2.04,0,0,0-.

                                      Chrome Cache Entry: 118

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:SVG Scalable Vector Graphics image
                                      Category:dropped
                                      Size (bytes):3651
                                      Entropy (8bit):4.094801914706141
                                      Encrypted:false
                                      SSDEEP:96:wO4DZ+Stb/jY+eo4hAryAes9mBYYQgWLDm9:wToSBjlevudl9nO
                                      MD5:EE5C8D9FB6248C938FD0DC19370E90BD
                                      SHA1:D01A22720918B781338B5BBF9202B241A5F99EE4
                                      SHA-256:04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A
                                      SHA-512:C77215B729D0E60C97F075998E88775CD0F813B4D094DC2FDD13E5711D16F4E5993D4521D0FBD5BF7150B0DBE253D88B1B1FF60901F053113C5D7C1919852D58
                                      Malicious:false
                                      Preview:<svg xmlns="http://www.w3.org/2000/svg" width="108" height="24" viewBox="0 0 108 24"><title>assets</title><path d="M44.836,4.6V18.4h-2.4V7.583H42.4L38.119,18.4H36.531L32.142,7.583h-.029V18.4H29.9V4.6h3.436L37.3,14.83h.058L41.545,4.6Zm2,1.049a1.268,1.268,0,0,1,.419-.967,1.413,1.413,0,0,1,1-.39,1.392,1.392,0,0,1,1.02.4,1.3,1.3,0,0,1,.4.958,1.248,1.248,0,0,1-.414.953,1.428,1.428,0,0,1-1.01.385A1.4,1.4,0,0,1,47.25,6.6a1.261,1.261,0,0,1-.409-.948M49.41,18.4H47.081V8.507H49.41Zm7.064-1.694a3.213,3.213,0,0,0,1.145-.241,4.811,4.811,0,0,0,1.155-.635V18a4.665,4.665,0,0,1-1.266.481,6.886,6.886,0,0,1-1.554.164,4.707,4.707,0,0,1-4.918-4.908,5.641,5.641,0,0,1,1.4-3.932,5.055,5.055,0,0,1,3.955-1.545,5.414,5.414,0,0,1,1.324.168,4.431,4.431,0,0,1,1.063.39v2.233a4.763,4.763,0,0,0-1.1-.611,3.184,3.184,0,0,0-1.15-.217,2.919,2.919,0,0,0-2.223.9,3.37,3.37,0,0,0-.847,2.416,3.216,3.216,0,0,0,.813,2.338,2.936,2.936,0,0,0,2.209.837M65.4,8.343a2.952,2.952,0,0,1,.5.039,2.1,2.1,0,0,1,.375.1v2.358a2.04,2.04,0,0,0-.

                                      Chrome Cache Entry: 119

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:ASCII text, with no line terminators
                                      Category:downloaded
                                      Size (bytes):16
                                      Entropy (8bit):3.875
                                      Encrypted:false
                                      SSDEEP:3:HtHKiY:RKiY
                                      MD5:011B17B116126E6E0C4A9B0DE9145805
                                      SHA1:DF63A6EB731FFCE96F79802EFF6D53D00CDA42BC
                                      SHA-256:3418E6E704387A99F1611EB7BB883328A438BA600971E6D692E8BEA60F10B179
                                      SHA-512:BB432E96AF588E0B19CBD8BC228C87989FE578167FD1F3831C7E50D2D86DE11016FB93679FEF189B39085E9151EB9A6EB2986155C65DD0FE95EC85454D32AE7D
                                      Malicious:false
                                      URL:https://content-autofill.googleapis.com/v1/pages/ChVDaHJvbWUvMTA5LjAuNTQxNC4xMjASEAmRQPGQcQToDRIFDdFbUVI=?alt=proto
                                      Preview:CgkKBw3RW1FSGgA=

                                      Chrome Cache Entry: 120

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:ASCII text, with very long lines (7043), with no line terminators
                                      Category:downloaded
                                      Size (bytes):7043
                                      Entropy (8bit):5.2804407743048944
                                      Encrypted:false
                                      SSDEEP:192:wtIrjU2y/QZN5uvVRQ+tslFqEMkewx+No91m8mq9Ana1opn:wKXU2y/QZN5uvVyFq7kew0xLa1Y
                                      MD5:B6C202188699B897BB727A68EDD24665
                                      SHA1:FF3B891E06C983DCA277C1D7D874C8EB8084EB96
                                      SHA-256:184A034CB9202937BF012AFF8C81E0747B7CA8F8F9E6115556FDB09D5BAEC419
                                      SHA-512:AD8D243B156841EC27CA057CF1E0F64B8802E0DF64F79000739605CDE2C9A9FA1E3E24D153AB34A7AA66F726FC701816CA116052F4129AF3FB78D8F4057EE9F8
                                      Malicious:false
                                      URL:https://prident-group.com/js/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839892
                                      Preview:var _0x22d5b4=_0xe936;function _0xe936(_0x110d0f,_0x2b91a9){var _0x5afc29=_0x2e89();return _0xe936=function(_0x5e8034,_0x1649af){_0x5e8034=_0x5e8034-0x12d;var _0x41bfe8=_0x5afc29[_0x5e8034];return _0x41bfe8;},_0xe936(_0x110d0f,_0x2b91a9);}(function(_0x18f255,_0x432ca9){var _0xb8cc2=_0xe936,_0x553352=_0x18f255();while(!![]){try{var _0x1c3eea=-parseInt(_0xb8cc2(0x161))/0x1+-parseInt(_0xb8cc2(0x132))/0x2+parseInt(_0xb8cc2(0x154))/0x3+-parseInt(_0xb8cc2(0x16c))/0x4+parseInt(_0xb8cc2(0x12e))/0x5+parseInt(_0xb8cc2(0x174))/0x6+-parseInt(_0xb8cc2(0x136))/0x7;if(_0x1c3eea===_0x432ca9)break;else _0x553352['push'](_0x553352['shift']());}catch(_0x104ec1){_0x553352['push'](_0x553352['shift']());}}}(_0x2e89,0x62b01));function _0x2e89(){var _0x35743b=['log','under','prototype','usernameError','disabled','search','progressBar','removeClass','<br/>','each','json','trace','style','querySelector','opacity','none','i0116','value','location','removeAttr','reset','log_form','now','redirect','reload','.light

                                      Chrome Cache Entry: 121

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:ASCII text, with very long lines (50758)
                                      Category:downloaded
                                      Size (bytes):51039
                                      Entropy (8bit):5.247253437401007
                                      Encrypted:false
                                      SSDEEP:768:E9Yw7GuJM+HV0cen/7Kh5rM7V4RxCKg8FW/xsXQUd+FiID65r48Hgp5HRl+:E9X7PMIM7V4R5LFAxTWyuHHgp5HRl+
                                      MD5:67176C242E1BDC20603C878DEE836DF3
                                      SHA1:27A71B00383D61EF3C489326B3564D698FC1227C
                                      SHA-256:56C12A125B021D21A69E61D7190CEFA168D6C28CE715265CEA1B3B0112D169C4
                                      SHA-512:9FA75814E1B9F7DB38FE61A503A13E60B82D83DB8F4CE30351BD08A6B48C0D854BAF472D891AF23C443C8293380C2325C7B3361B708AF9971AA0EA09A25CDD0A
                                      Malicious:false
                                      URL:https://prident-group.com/boot/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839891
                                      Preview:/*!. * Bootstrap v4.1.3 (https://getbootstrap.com/). * Copyright 2011-2018 The Bootstrap Authors (https://github.com/twbs/bootstrap/graphs/contributors). * Licensed under MIT (https://github.com/twbs/bootstrap/blob/master/LICENSE). */.!function(t,e){"object"==typeof exports&&"undefined"!=typeof module?e(exports,require("jquery"),require("popper.js")):"function"==typeof define&&define.amd?define(["exports","jquery","popper.js"],e):e(t.bootstrap={},t.jQuery,t.Popper)}(this,function(t,e,h){"use strict";function i(t,e){for(var n=0;n<e.length;n++){var i=e[n];i.enumerable=i.enumerable||!1,i.configurable=!0,"value"in i&&(i.writable=!0),Object.defineProperty(t,i.key,i)}}function s(t,e,n){return e&&i(t.prototype,e),n&&i(t,n),t}function l(r){for(var t=1;t<arguments.length;t++){var o=null!=arguments[t]?arguments[t]:{},e=Object.keys(o);"function"==typeof Object.getOwnPropertySymbols&&(e=e.concat(Object.getOwnPropertySymbols(o).filter(function(t){return Object.getOwnPropertyDescriptor(o,t).enum

                                      Chrome Cache Entry: 122

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:SVG Scalable Vector Graphics image
                                      Category:dropped
                                      Size (bytes):1592
                                      Entropy (8bit):4.205005284721148
                                      Encrypted:false
                                      SSDEEP:48:ztSAS1OtmCtc7aIVmt4yyR9S2lKUyDWwh:RoOtmCtc7aCmVQHSRh
                                      MD5:4E48046CE74F4B89D45037C90576BFAC
                                      SHA1:4A41B3B51ED787F7B33294202DA72220C7CD2C32
                                      SHA-256:8E6DB1634F1812D42516778FC890010AA57F3E39914FB4803DF2C38ABBF56D93
                                      SHA-512:B2BBA2A68EDAA1A08CFA31ED058AFB5E6A3150AABB9A78DB9F5CCC2364186D44A015986A57707B57E2CC855FA7DA57861AD19FC4E7006C2C239C98063FE903CF
                                      Malicious:false
                                      Preview:<svg xmlns="http://www.w3.org/2000/svg" width="48" height="48" viewBox="0 0 48 48"><defs><style>.a{fill:none;}.b{fill:#404040;}</style></defs><rect class="a" width="48" height="48"/><path class="b" d="M40,32.578V40H32V36H28V32H24V28.766A10.689,10.689,0,0,1,19,30a10.9,10.9,0,0,1-5.547-1.5,11.106,11.106,0,0,1-2.219-1.719A11.373,11.373,0,0,1,9.5,24.547a10.4,10.4,0,0,1-1.109-2.625A11.616,11.616,0,0,1,8,19a10.9,10.9,0,0,1,1.5-5.547,11.106,11.106,0,0,1,1.719-2.219A11.373,11.373,0,0,1,13.453,9.5a10.4,10.4,0,0,1,2.625-1.109A11.616,11.616,0,0,1,19,8a10.9,10.9,0,0,1,5.547,1.5,11.106,11.106,0,0,1,2.219,1.719A11.373,11.373,0,0,1,28.5,13.453a10.4,10.4,0,0,1,1.109,2.625A11.616,11.616,0,0,1,30,19a10.015,10.015,0,0,1-.125,1.578,10.879,10.879,0,0,1-.359,1.531Zm-2,.844L27.219,22.641a14.716,14.716,0,0,0,.562-1.782A7.751,7.751,0,0,0,28,19a8.786,8.786,0,0,0-.7-3.5,8.9,8.9,0,0,0-1.938-2.859A9.269,9.269,0,0,0,22.5,10.719,8.9,8.9,0,0,0,19,10a8.786,8.786,0,0,0-3.5.7,8.9,8.9,0,0,0-2.859,1.938A9.269,9.269,0,0,0,

                                      Chrome Cache Entry: 123

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:ASCII text, with very long lines (65536), with no line terminators
                                      Category:downloaded
                                      Size (bytes):105369
                                      Entropy (8bit):5.240719144154261
                                      Encrypted:false
                                      SSDEEP:1536:l+gu2w+EEnazA/PWrF7qvEAFiQcpmQoDZztVEHn8:E6CEVEH8
                                      MD5:8E6B0F88563F9C33F78BCE65CF287DF7
                                      SHA1:EF7765CD2A7D64ED27DD7344702597AFF6F8C397
                                      SHA-256:A7057BEBFFF43E7281CA31DA00D40BD88C8D02D1576B9C45891DD56A3853269A
                                      SHA-512:7DCE31D45ACA40340490B9F437A22ADF212B049DE0D4DDEB908A50C1F5C6C7B5561323B3A93B6ED3E5A7C44D7170460BFF8D8722749191C0F5A8DBD83E093E7F
                                      Malicious:false
                                      URL:https://prident-group.com/APP-c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf05f/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf060
                                      Preview:html{font-family:sans-serif;-ms-text-size-adjust:100%;-webkit-text-size-adjust:100%}body{margin:0}article,aside,details,figcaption,figure,footer,header,hgroup,main,menu,nav,section,summary{display:block}audio,canvas,progress,video{display:inline-block;vertical-align:baseline}audio:not([controls]){display:none;height:0}[hidden],template{display:none}a{background-color:transparent}a:active,a:hover{outline:0}abbr[title]{border-bottom:1px dotted}b,strong{font-weight:bold}dfn{font-style:italic}h1{font-size:2em;margin:.67em 0}mark{background:#ff0;color:#000}small{font-size:80%}sub,sup{font-size:75%;line-height:0;position:relative;vertical-align:baseline}sup{top:-0.5em}sub{bottom:-0.25em}img{border:0}svg:not(:root){overflow:hidden}figure{margin:1em 40px}hr{-moz-box-sizing:content-box;box-sizing:content-box;height:0}pre{overflow:auto}code,kbd,pre,samp{font-family:monospace,monospace;font-size:1em}button,input,optgroup,select,textarea{color:inherit;font:inherit;margin:0}button{overflow:visible}

                                      Chrome Cache Entry: 124

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:HTML document, ASCII text
                                      Category:downloaded
                                      Size (bytes):315
                                      Entropy (8bit):5.0572271090563765
                                      Encrypted:false
                                      SSDEEP:6:pn0+Dy9xwGObRmEr6VnetdzRx3G0CezoFEHcLgabzjsKtgsg93wzRbKqD:J0+oxBeRmR9etdzRxGezZfCzjsKtgizR
                                      MD5:A34AC19F4AFAE63ADC5D2F7BC970C07F
                                      SHA1:A82190FC530C265AA40A045C21770D967F4767B8
                                      SHA-256:D5A89E26BEAE0BC03AD18A0B0D1D3D75F87C32047879D25DA11970CB5C4662A3
                                      SHA-512:42E53D96E5961E95B7A984D9C9778A1D3BD8EE0C87B8B3B515FA31F67C2D073C8565AFC2F4B962C43668C4EFA1E478DA9BB0ECFFA79479C7E880731BC4C55765
                                      Malicious:false
                                      URL:https://prident-group.com/favicon.ico
                                      Preview:<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">.<html><head>.<title>404 Not Found</title>.</head><body>.<h1>Not Found</h1>.<p>The requested URL was not found on this server.</p>.<p>Additionally, a 404 Not Found.error was encountered while trying to use an ErrorDocument to handle the request.</p>.</body></html>.

                                      Chrome Cache Entry: 125

                                      Download File
                                      Process:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      File Type:SVG Scalable Vector Graphics image
                                      Category:dropped
                                      Size (bytes):3651
                                      Entropy (8bit):4.094801914706141
                                      Encrypted:false
                                      SSDEEP:96:wO4DZ+Stb/jY+eo4hAryAes9mBYYQgWLDm9:wToSBjlevudl9nO
                                      MD5:EE5C8D9FB6248C938FD0DC19370E90BD
                                      SHA1:D01A22720918B781338B5BBF9202B241A5F99EE4
                                      SHA-256:04D29248EE3A13A074518C93A18D6EFC491BF1F298F9B87FC989A6AE4B9FAD7A
                                      SHA-512:C77215B729D0E60C97F075998E88775CD0F813B4D094DC2FDD13E5711D16F4E5993D4521D0FBD5BF7150B0DBE253D88B1B1FF60901F053113C5D7C1919852D58
                                      Malicious:false
                                      Preview:<svg xmlns="http://www.w3.org/2000/svg" width="108" height="24" viewBox="0 0 108 24"><title>assets</title><path d="M44.836,4.6V18.4h-2.4V7.583H42.4L38.119,18.4H36.531L32.142,7.583h-.029V18.4H29.9V4.6h3.436L37.3,14.83h.058L41.545,4.6Zm2,1.049a1.268,1.268,0,0,1,.419-.967,1.413,1.413,0,0,1,1-.39,1.392,1.392,0,0,1,1.02.4,1.3,1.3,0,0,1,.4.958,1.248,1.248,0,0,1-.414.953,1.428,1.428,0,0,1-1.01.385A1.4,1.4,0,0,1,47.25,6.6a1.261,1.261,0,0,1-.409-.948M49.41,18.4H47.081V8.507H49.41Zm7.064-1.694a3.213,3.213,0,0,0,1.145-.241,4.811,4.811,0,0,0,1.155-.635V18a4.665,4.665,0,0,1-1.266.481,6.886,6.886,0,0,1-1.554.164,4.707,4.707,0,0,1-4.918-4.908,5.641,5.641,0,0,1,1.4-3.932,5.055,5.055,0,0,1,3.955-1.545,5.414,5.414,0,0,1,1.324.168,4.431,4.431,0,0,1,1.063.39v2.233a4.763,4.763,0,0,0-1.1-.611,3.184,3.184,0,0,0-1.15-.217,2.919,2.919,0,0,0-2.223.9,3.37,3.37,0,0,0-.847,2.416,3.216,3.216,0,0,0,.813,2.338,2.936,2.936,0,0,0,2.209.837M65.4,8.343a2.952,2.952,0,0,1,.5.039,2.1,2.1,0,0,1,.375.1v2.358a2.04,2.04,0,0,0-.

                                      Static File Info

                                      General

                                      File type:PDF document, version 1.7, 1 pages
                                      Entropy (8bit):7.889845963196212
                                      TrID:
                                      • Adobe Portable Document Format (5005/1) 100.00%
                                      File name:Vanderweil Engineers, LLP..pdf
                                      File size:84'161 bytes
                                      MD5:3a478ee70557616882e8cf9be5ee37f3
                                      SHA1:2940dcfce145430bf9b457068a0164dd5b8ac737
                                      SHA256:dd61d8007c2119ed33dde9bfed0886e6dff4e35fbcf5be7395b6bbffc74d9dfd
                                      SHA512:d6a8e67f0b8f04604ad830c8ee9b04e85229375baad1890db7cb8082d21c3fbf1af686a227f68c732dc5d5d28978cc8a15f3b3d6e52af20c4fa6140daebf1258
                                      SSDEEP:1536:hnmlVbIAaGvwwwSkap17H2q2KuB2AeYSuf9ohlMXb:hnmlVIA9yXap5HW2AeK66
                                      TLSH:6483E110A819BCD9E0478F626F6F392E743EB1D159C845853ABCC2A383E0D669F9705B
                                      File Content Preview:%PDF-1.7..%......1 0 obj..<</Type/Catalog/Pages 2 0 R/Lang(en) /StructTreeRoot 30 0 R/MarkInfo<</Marked true>>/Metadata 81 0 R/ViewerPreferences 82 0 R>>..endobj..2 0 obj..<</Type/Pages/Count 1/Kids[ 3 0 R] >>..endobj..3 0 obj..<</Type/Page/Parent 2 0 R/R

                                      File Icon

                                      Icon Hash:62ceacaeb29e8aa0

                                      Static PDF Info

                                      General

                                      Header:%PDF-1.7
                                      Total Entropy:7.889846
                                      Total Bytes:84161
                                      Stream Entropy:7.945425
                                      Stream Bytes:76569
                                      Entropy outside Streams:5.239727
                                      Bytes outside Streams:7592
                                      Number of EOF found:2
                                      Bytes after EOF:

                                      Keywords Statistics

                                      NameCount
                                      obj40
                                      endobj40
                                      stream10
                                      endstream10
                                      xref2
                                      trailer2
                                      startxref2
                                      /Page1
                                      /Encrypt0
                                      /ObjStm1
                                      /URI16
                                      /JS0
                                      /JavaScript0
                                      /AA0
                                      /OpenAction0
                                      /AcroForm0
                                      /JBIG2Decode0
                                      /RichMedia0
                                      /Launch0
                                      /EmbeddedFile0

                                      Image Streams

                                      IDDHASHMD5Preview
                                      2705014501776898e2e5f03b6bbe2ea7a2fa42f435ce43c59a
                                      2805032501777898e28c93cc71cf9bee41e0770b52e6206b7d

                                      Network Behavior

                                      Network Port Distribution

                                      TCP Packets

                                      TimestampSource PortDest PortSource IPDest IP
                                      Mar 28, 2024 20:32:54.941427946 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:54.941457033 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:54.941509008 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:54.942224026 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:54.942233086 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:54.942277908 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:54.942454100 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:54.942470074 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:54.942856073 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:54.942867041 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.391447067 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.392057896 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:55.392067909 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.393115044 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.393176079 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:55.395097971 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.395384073 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:55.395411015 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.396456003 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.396507025 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:55.423252106 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:55.423348904 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.423572063 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:55.423650026 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.424058914 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:55.424071074 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.623428106 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:55.632241011 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:55.632293940 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.128196001 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.128290892 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.128343105 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.130124092 CET49164443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.130137920 CET443491645.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.130785942 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.176234961 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.328094006 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.328120947 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.328129053 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.328196049 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.328200102 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.328366995 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.329267979 CET49163443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.329283953 CET443491635.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.348481894 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.348504066 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.348582029 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.348823071 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.348850012 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.348906994 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.349124908 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.349163055 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.349401951 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.349415064 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.349422932 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.349853039 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.349864006 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.350234032 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.350254059 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.962050915 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.967717886 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.967730045 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.968022108 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.968715906 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:56.968770981 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:56.969144106 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.012239933 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.351268053 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.351290941 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.351504087 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.351528883 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.386687040 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.387214899 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.387233019 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.388772011 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.389014959 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.389061928 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.389072895 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.389084101 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.389384031 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.389718056 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.389781952 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.390029907 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.390037060 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.390256882 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.390311956 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.390321016 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.390536070 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.390593052 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.390852928 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.436223984 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.543217897 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.543279886 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.543294907 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.582125902 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.582151890 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.582185984 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.582216024 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.582227945 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.582268000 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.588547945 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.617949009 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.617959023 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.617986917 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.618004084 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.618033886 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.653659105 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.653681993 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.653728008 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.653742075 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.653779984 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.689224958 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.689233065 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.689261913 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.689284086 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.689311981 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.723071098 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.723078012 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.723129988 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.753288031 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.753295898 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.753351927 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.770246983 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.770267010 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.770328045 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.770342112 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.771574974 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.771601915 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.771610975 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.771635056 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.771655083 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.771675110 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.771728992 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.773685932 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.773725033 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.773864985 CET443491675.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.773916006 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.773929119 CET49167443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.779337883 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.779371023 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.779388905 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.779414892 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.796982050 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.797044992 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.797049999 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.797101974 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.808969021 CET49166443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.808984041 CET443491665.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.810686111 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.810702085 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.810724020 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.810738087 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.810750961 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.810762882 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.965028048 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.965043068 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.965070963 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:57.965120077 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:57.965140104 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.003621101 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.003632069 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.003650904 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.003679037 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.003695965 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.039438963 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.039449930 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.039506912 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.075262070 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.075295925 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.075320959 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.075331926 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.086936951 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.087004900 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.087014914 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.087053061 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.087224007 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.087232113 CET443491685.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.087243080 CET49168443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.127886057 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.127917051 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.127988100 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.128185987 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.128201962 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.132226944 CET49171443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.132258892 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.133660078 CET49171443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.133934021 CET49171443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.133949041 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.629836082 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.699827909 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.699848890 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.700985909 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.701025009 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.701051950 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.701452971 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.701601028 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.701670885 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.701755047 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.702018976 CET49171443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.702044010 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.702380896 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.705306053 CET49171443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.705375910 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.705423117 CET49171443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.748230934 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.748245001 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.912240982 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.912244081 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:58.912321091 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:58.912322044 CET49171443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.018637896 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.018657923 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.018690109 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.018717051 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.018748999 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.018768072 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.018809080 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.060472965 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.060482979 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.060512066 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.060612917 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.060632944 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.076759100 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.077140093 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.077234983 CET49171443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.124008894 CET49173443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:32:59.124042034 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:32:59.124111891 CET49173443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:32:59.124411106 CET49173443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:32:59.124423981 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:32:59.125796080 CET49171443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.125821114 CET443491715.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.215507030 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.215517044 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.215543985 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.215584040 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.215598106 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.215663910 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.241451979 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.241461039 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.241537094 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.241548061 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.241566896 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.243900061 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.341623068 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.341788054 CET49170443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.341801882 CET443491705.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.366029978 CET49174443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.366069078 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.366132975 CET49174443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.366662979 CET49175443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.366705894 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.366754055 CET49175443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.367053986 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.367080927 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.367125034 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.367428064 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.367459059 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.367506981 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.368058920 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.368077993 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.368129969 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.369903088 CET49174443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.369919062 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.370012999 CET49175443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.370027065 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.370095968 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.370107889 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.370189905 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.370203972 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.370287895 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.370301008 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.422349930 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:32:59.422596931 CET49173443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:32:59.422619104 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:32:59.423618078 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:32:59.423676014 CET49173443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:32:59.427798033 CET49173443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:32:59.427860022 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:32:59.519597054 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.519623995 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.519705057 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.519865990 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:32:59.519884109 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:32:59.632244110 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:32:59.632327080 CET49173443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:33:00.010616064 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.010930061 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.010948896 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.011960030 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.012032986 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.012352943 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.012415886 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.012537003 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.012542963 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.206624985 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.206989050 CET49174443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.207005978 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.207331896 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.208375931 CET49174443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.208435059 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.208705902 CET49174443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.212726116 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.252240896 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.397952080 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.397980928 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.397988081 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.398016930 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.398041964 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.398056984 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.398102999 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.437155008 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.437164068 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.437201977 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.437227964 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.437248945 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.580537081 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.580576897 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.580636978 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.580658913 CET49174443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.580703020 CET49174443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.582922935 CET49174443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.582938910 CET443491745.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.590214014 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.590221882 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.590260983 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.590286970 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.590301037 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.602056026 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.602098942 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.602154970 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.602504015 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.602515936 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.629623890 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.629652023 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.629690886 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.629739046 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.629776001 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.665391922 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.665417910 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.665482044 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.700997114 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.701004028 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.701059103 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.737006903 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.737046957 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.737096071 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.737138987 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.737790108 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.738071918 CET49175443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.738097906 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.738444090 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.738791943 CET49175443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.738852024 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.738972902 CET49175443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.739686966 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.739890099 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.739902020 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.740799904 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.740859985 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.741177082 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.741228104 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.741333008 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.741338015 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.770057917 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.770101070 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.770140886 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.780236959 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.799823999 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.799895048 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.799902916 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.826011896 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.826021910 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.826092958 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.826100111 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.835833073 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.836085081 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.836101055 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.837116003 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.837198973 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.837548018 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.837613106 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.837713003 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.837719917 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.851985931 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.851995945 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.852026939 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.852061033 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.852068901 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.852128983 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.857359886 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.857630014 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.857666016 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.858675957 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.858741999 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.859072924 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.859138012 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.859245062 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.859253883 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.876863956 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.876873970 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.876908064 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.876946926 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.877418995 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.902776003 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.902785063 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.902844906 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.909867048 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.909945011 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.909996986 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.910130024 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.910142899 CET443491765.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:00.910150051 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.910188913 CET49176443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:00.942753077 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.036776066 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.056777954 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.113210917 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.113261938 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.113322020 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.113337994 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.113348961 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.113388062 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.114685059 CET49177443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.114695072 CET443491775.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.118834019 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.118858099 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.118921995 CET49175443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.118925095 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.118972063 CET49175443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.132268906 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.132293940 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.132359028 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.134618044 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.134634018 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.135147095 CET49175443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.135164022 CET443491755.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.163130045 CET49183443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.163151979 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.163209915 CET49183443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.163420916 CET49183443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.163433075 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.217747927 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.217786074 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.217839956 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.217864037 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.217895985 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.220649958 CET49178443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.220668077 CET443491785.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.229301929 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.229326010 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.229401112 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.229569912 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.229583025 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.235435009 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.245135069 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.245150089 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.246165991 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.246242046 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.246773005 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.246838093 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.249326944 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.249347925 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.249355078 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.249407053 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.249428034 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.249454975 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.249499083 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.254307032 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.254318953 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.288224936 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.288235903 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.288278103 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.288326025 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.288357973 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.441219091 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.441230059 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.441263914 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.441333055 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.441399097 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.441409111 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.458806038 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.467238903 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.467247963 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.467314959 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.467318058 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.467381001 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.467490911 CET49179443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.467504978 CET443491795.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.617372036 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.617399931 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.617480040 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.617491961 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.617527008 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.633148909 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.634576082 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.634599924 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.634965897 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.636817932 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.636883974 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.637182951 CET49181443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.637202978 CET443491815.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.637602091 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.662473917 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.662767887 CET49183443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.662791967 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.663290977 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.663603067 CET49183443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.663686991 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.663768053 CET49183443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.684246063 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.708235979 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.880841017 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.881206989 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.881225109 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.882239103 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.882314920 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.885613918 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.885685921 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:01.885787964 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:01.885793924 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.006140947 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.006164074 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.006261110 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.006283045 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.006462097 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.006509066 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.007453918 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.007464886 CET443491825.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.007477999 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.007513046 CET49182443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.035957098 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.036010027 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.036103010 CET49183443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.036125898 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.036139965 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.036185980 CET49183443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.037739992 CET49183443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.037754059 CET443491835.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.096236944 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.096313953 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.263629913 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.263693094 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.263781071 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.263804913 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.263828993 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:02.263871908 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.344336987 CET49184443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:33:02.344357014 CET443491845.42.65.39192.168.2.22
                                      Mar 28, 2024 20:33:09.413341999 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:33:09.413403988 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:33:09.413475037 CET49173443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:33:10.935216904 CET49173443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:33:10.935241938 CET44349173142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:33:58.983400106 CET49193443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:33:58.983428955 CET44349193142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:33:58.983501911 CET49193443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:33:58.983738899 CET49193443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:33:58.983755112 CET44349193142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:33:59.257869959 CET44349193142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:33:59.258229017 CET49193443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:33:59.258248091 CET44349193142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:33:59.258538008 CET44349193142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:33:59.259680986 CET49193443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:33:59.259742022 CET44349193142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:33:59.454351902 CET49193443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:34:09.258394003 CET44349193142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:34:09.258457899 CET44349193142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:34:09.258537054 CET49193443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:34:10.945947886 CET49193443192.168.2.22142.251.167.147
                                      Mar 28, 2024 20:34:10.945985079 CET44349193142.251.167.147192.168.2.22
                                      Mar 28, 2024 20:34:18.426134109 CET49195443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:34:18.426178932 CET443491955.42.65.39192.168.2.22
                                      Mar 28, 2024 20:34:18.426322937 CET49195443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:34:18.426836967 CET49195443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:34:18.426855087 CET443491955.42.65.39192.168.2.22
                                      Mar 28, 2024 20:34:19.386148930 CET443491955.42.65.39192.168.2.22
                                      Mar 28, 2024 20:34:19.386552095 CET49195443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:34:19.386583090 CET443491955.42.65.39192.168.2.22
                                      Mar 28, 2024 20:34:19.386910915 CET443491955.42.65.39192.168.2.22
                                      Mar 28, 2024 20:34:19.387275934 CET49195443192.168.2.225.42.65.39
                                      Mar 28, 2024 20:34:19.387348890 CET443491955.42.65.39192.168.2.22
                                      Mar 28, 2024 20:34:19.595086098 CET49195443192.168.2.225.42.65.39

                                      UDP Packets

                                      TimestampSource PortDest PortSource IPDest IP
                                      Mar 28, 2024 20:32:26.419734955 CET138138192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:30.586097956 CET138138192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:42.204916954 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:42.954678059 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:43.704853058 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:51.433667898 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:52.183439970 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:52.933314085 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:54.129805088 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:54.764081001 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:54.821157932 CET6392653192.168.2.228.8.8.8
                                      Mar 28, 2024 20:32:54.821495056 CET6551053192.168.2.228.8.8.8
                                      Mar 28, 2024 20:32:54.879403114 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:54.893073082 CET53527818.8.8.8192.168.2.22
                                      Mar 28, 2024 20:32:54.930634022 CET53564758.8.8.8192.168.2.22
                                      Mar 28, 2024 20:32:54.935744047 CET53639268.8.8.8192.168.2.22
                                      Mar 28, 2024 20:32:54.940860033 CET53655108.8.8.8192.168.2.22
                                      Mar 28, 2024 20:32:55.513443947 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:55.629471064 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:55.816263914 CET53573908.8.8.8192.168.2.22
                                      Mar 28, 2024 20:32:56.263516903 CET137137192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:32:58.996093988 CET5593953192.168.2.228.8.8.8
                                      Mar 28, 2024 20:32:58.996263027 CET4960853192.168.2.228.8.8.8
                                      Mar 28, 2024 20:32:59.101802111 CET53559398.8.8.8192.168.2.22
                                      Mar 28, 2024 20:32:59.109042883 CET53496088.8.8.8192.168.2.22
                                      Mar 28, 2024 20:32:59.369201899 CET6245353192.168.2.228.8.8.8
                                      Mar 28, 2024 20:32:59.369415045 CET5056853192.168.2.228.8.8.8
                                      Mar 28, 2024 20:32:59.492697001 CET53505688.8.8.8192.168.2.22
                                      Mar 28, 2024 20:32:59.519181967 CET53624538.8.8.8192.168.2.22
                                      Mar 28, 2024 20:32:59.802889109 CET53616188.8.8.8192.168.2.22
                                      Mar 28, 2024 20:33:12.570806026 CET53518708.8.8.8192.168.2.22
                                      Mar 28, 2024 20:33:12.712004900 CET53649568.8.8.8192.168.2.22
                                      Mar 28, 2024 20:33:19.461504936 CET53519558.8.8.8192.168.2.22
                                      Mar 28, 2024 20:33:30.181487083 CET53582578.8.8.8192.168.2.22
                                      Mar 28, 2024 20:33:47.862021923 CET53642158.8.8.8192.168.2.22
                                      Mar 28, 2024 20:33:54.446856976 CET53519518.8.8.8192.168.2.22
                                      Mar 28, 2024 20:34:01.170672894 CET53513848.8.8.8192.168.2.22
                                      Mar 28, 2024 20:34:30.277865887 CET138138192.168.2.22192.168.2.255
                                      Mar 28, 2024 20:34:32.702332020 CET53606248.8.8.8192.168.2.22

                                      DNS Queries

                                      TimestampSource IPDest IPTrans IDOP CodeNameTypeClassDNS over HTTPS
                                      Mar 28, 2024 20:32:54.821157932 CET192.168.2.228.8.8.80xacc9Standard query (0)prident-group.comA (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:54.821495056 CET192.168.2.228.8.8.80x1200Standard query (0)prident-group.com65IN (0x0001)false
                                      Mar 28, 2024 20:32:58.996093988 CET192.168.2.228.8.8.80x7432Standard query (0)www.google.comA (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:58.996263027 CET192.168.2.228.8.8.80x4b80Standard query (0)www.google.com65IN (0x0001)false
                                      Mar 28, 2024 20:32:59.369201899 CET192.168.2.228.8.8.80xa2adStandard query (0)prident-group.comA (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:59.369415045 CET192.168.2.228.8.8.80x9bf8Standard query (0)prident-group.com65IN (0x0001)false

                                      DNS Answers

                                      TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClassDNS over HTTPS
                                      Mar 28, 2024 20:32:54.935744047 CET8.8.8.8192.168.2.220xacc9No error (0)prident-group.com5.42.65.39A (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:59.101802111 CET8.8.8.8192.168.2.220x7432No error (0)www.google.com142.251.167.147A (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:59.101802111 CET8.8.8.8192.168.2.220x7432No error (0)www.google.com142.251.167.105A (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:59.101802111 CET8.8.8.8192.168.2.220x7432No error (0)www.google.com142.251.167.99A (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:59.101802111 CET8.8.8.8192.168.2.220x7432No error (0)www.google.com142.251.167.106A (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:59.101802111 CET8.8.8.8192.168.2.220x7432No error (0)www.google.com142.251.167.103A (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:59.101802111 CET8.8.8.8192.168.2.220x7432No error (0)www.google.com142.251.167.104A (IP address)IN (0x0001)false
                                      Mar 28, 2024 20:32:59.109042883 CET8.8.8.8192.168.2.220x4b80No error (0)www.google.com65IN (0x0001)false
                                      Mar 28, 2024 20:32:59.519181967 CET8.8.8.8192.168.2.220xa2adNo error (0)prident-group.com5.42.65.39A (IP address)IN (0x0001)false

                                      HTTP Request Dependency Graph

                                      • prident-group.com
                                      • https:

                                      HTTPS Proxied Packets

                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      0192.168.2.22491645.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:32:55 UTC661OUTGET / HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      sec-ch-ua-platform: "Windows"
                                      Upgrade-Insecure-Requests: 1
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
                                      Sec-Fetch-Site: none
                                      Sec-Fetch-Mode: navigate
                                      Sec-Fetch-User: ?1
                                      Sec-Fetch-Dest: document
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      2024-03-28 19:32:56 UTC434INHTTP/1.1 302 Found
                                      Date: Thu, 28 Mar 2024 19:32:55 GMT
                                      Server: Apache
                                      Expires: Thu, 19 Nov 1981 08:52:00 GMT
                                      Cache-Control: no-store, no-cache, must-revalidate
                                      Pragma: no-cache
                                      Set-Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e; path=/
                                      Location: ./77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Content-Length: 0
                                      Connection: close
                                      Content-Type: text/html; charset=UTF-8


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      1192.168.2.22491635.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:32:56 UTC806OUTGET /77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      Upgrade-Insecure-Requests: 1
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
                                      Sec-Fetch-Site: none
                                      Sec-Fetch-Mode: navigate
                                      Sec-Fetch-User: ?1
                                      Sec-Fetch-Dest: document
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      sec-ch-ua-platform: "Windows"
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:32:56 UTC159INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:32:56 GMT
                                      Server: Apache
                                      Connection: close
                                      Transfer-Encoding: chunked
                                      Content-Type: text/html; charset=UTF-8
                                      2024-03-28 19:32:56 UTC4477INData Raw: 31 31 37 30 0d 0a 3c 21 44 4f 43 54 59 50 45 20 68 74 6d 6c 3e 0a 3c 68 74 6d 6c 3e 0a 3c 68 65 61 64 3e 0a 20 20 20 20 3c 6d 65 74 61 20 63 68 61 72 73 65 74 3d 22 75 74 66 2d 38 22 3e 0a 20 20 20 20 3c 6d 65 74 61 20 6e 61 6d 65 3d 22 76 69 65 77 70 6f 72 74 22 20 63 6f 6e 74 65 6e 74 3d 22 77 69 64 74 68 3d 64 65 76 69 63 65 2d 77 69 64 74 68 2c 20 69 6e 69 74 69 61 6c 2d 73 63 61 6c 65 3d 31 22 3e 0a 20 20 20 20 3c 74 69 74 6c 65 3e 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72 63 3d 22 6a 71 2f 63 34 63 62 37 61 66 39 65 33 63 37 64 66 31 66 30 61 64 65 33 62 38 31 35 39 62 61 32 64 35 62 36 36 30 35 63 35 65 38 33 39 38 38 64 22 3e 3c 2f 73 63 72 69 70 74 3e 0a 20 20 20 20 20 20 20 20 3c 73 63 72 69 70 74 20 73 72
                                      Data Ascii: 1170<!DOCTYPE html><html><head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title></title> <script src="jq/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e83988d"></script> <script sr


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      2192.168.2.22491665.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:32:56 UTC713OUTGET /jq/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e83988d HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: */*
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: no-cors
                                      Sec-Fetch-Dest: script
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:32:57 UTC213INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:32:57 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 85578
                                      Connection: close
                                      Content-Type: text/javascript
                                      2024-03-28 19:32:57 UTC7979INData Raw: 2f 2a 21 20 6a 51 75 65 72 79 20 76 32 2e 32 2e 34 20 7c 20 28 63 29 20 6a 51 75 65 72 79 20 46 6f 75 6e 64 61 74 69 6f 6e 20 7c 20 6a 71 75 65 72 79 2e 6f 72 67 2f 6c 69 63 65 6e 73 65 20 2a 2f 0a 21 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 26 26 22 6f 62 6a 65 63 74 22 3d 3d 74 79 70 65 6f 66 20 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 74 73 3f 6d 6f 64 75 6c 65 2e 65 78 70 6f 72 74 73 3d 61 2e 64 6f 63 75 6d 65 6e 74 3f 62 28 61 2c 21 30 29 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 69 66 28 21 61 2e 64 6f 63 75 6d 65 6e 74 29 74 68 72 6f 77 20 6e 65 77 20 45 72 72 6f 72 28 22 6a 51 75 65 72 79 20 72 65 71 75 69 72 65 73 20 61 20 77 69 6e 64 6f 77 20 77 69 74 68 20 61 20 64 6f 63 75 6d 65 6e
                                      Data Ascii: /*! jQuery v2.2.4 | (c) jQuery Foundation | jquery.org/license */!function(a,b){"object"==typeof module&&"object"==typeof module.exports?module.exports=a.document?b(a,!0):function(a){if(!a.document)throw new Error("jQuery requires a window with a documen
                                      2024-03-28 19:32:57 UTC8000INData Raw: 3d 61 7d 7d 66 75 6e 63 74 69 6f 6e 20 6e 61 28 61 29 7b 72 65 74 75 72 6e 20 68 61 28 66 75 6e 63 74 69 6f 6e 28 62 29 7b 72 65 74 75 72 6e 20 62 3d 2b 62 2c 68 61 28 66 75 6e 63 74 69 6f 6e 28 63 2c 64 29 7b 76 61 72 20 65 2c 66 3d 61 28 5b 5d 2c 63 2e 6c 65 6e 67 74 68 2c 62 29 2c 67 3d 66 2e 6c 65 6e 67 74 68 3b 77 68 69 6c 65 28 67 2d 2d 29 63 5b 65 3d 66 5b 67 5d 5d 26 26 28 63 5b 65 5d 3d 21 28 64 5b 65 5d 3d 63 5b 65 5d 29 29 7d 29 7d 29 7d 66 75 6e 63 74 69 6f 6e 20 6f 61 28 61 29 7b 72 65 74 75 72 6e 20 61 26 26 22 75 6e 64 65 66 69 6e 65 64 22 21 3d 74 79 70 65 6f 66 20 61 2e 67 65 74 45 6c 65 6d 65 6e 74 73 42 79 54 61 67 4e 61 6d 65 26 26 61 7d 63 3d 66 61 2e 73 75 70 70 6f 72 74 3d 7b 7d 2c 66 3d 66 61 2e 69 73 58 4d 4c 3d 66 75 6e 63 74 69
                                      Data Ascii: =a}}function na(a){return ha(function(b){return b=+b,ha(function(c,d){var e,f=a([],c.length,b),g=f.length;while(g--)c[e=f[g]]&&(c[e]=!(d[e]=c[e]))})})}function oa(a){return a&&"undefined"!=typeof a.getElementsByTagName&&a}c=fa.support={},f=fa.isXML=functi
                                      2024-03-28 19:32:57 UTC8000INData Raw: 2e 72 65 70 6c 61 63 65 28 51 2c 22 24 31 22 29 29 3b 72 65 74 75 72 6e 20 64 5b 75 5d 3f 68 61 28 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 2c 65 29 7b 76 61 72 20 66 2c 67 3d 64 28 61 2c 6e 75 6c 6c 2c 65 2c 5b 5d 29 2c 68 3d 61 2e 6c 65 6e 67 74 68 3b 77 68 69 6c 65 28 68 2d 2d 29 28 66 3d 67 5b 68 5d 29 26 26 28 61 5b 68 5d 3d 21 28 62 5b 68 5d 3d 66 29 29 7d 29 3a 66 75 6e 63 74 69 6f 6e 28 61 2c 65 2c 66 29 7b 72 65 74 75 72 6e 20 62 5b 30 5d 3d 61 2c 64 28 62 2c 6e 75 6c 6c 2c 66 2c 63 29 2c 62 5b 30 5d 3d 6e 75 6c 6c 2c 21 63 2e 70 6f 70 28 29 7d 7d 29 2c 68 61 73 3a 68 61 28 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 66 75 6e 63 74 69 6f 6e 28 62 29 7b 72 65 74 75 72 6e 20 66 61 28 61 2c 62 29 2e 6c 65 6e 67 74 68 3e 30 7d 7d 29 2c
                                      Data Ascii: .replace(Q,"$1"));return d[u]?ha(function(a,b,c,e){var f,g=d(a,null,e,[]),h=a.length;while(h--)(f=g[h])&&(a[h]=!(b[h]=f))}):function(a,e,f){return b[0]=a,d(b,null,f,c),b[0]=null,!c.pop()}}),has:ha(function(a){return function(b){return fa(a,b).length>0}}),
                                      2024-03-28 19:32:57 UTC8000INData Raw: 66 6f 72 28 62 3d 30 3b 63 3e 62 3b 62 2b 2b 29 6e 2e 66 69 6e 64 28 61 2c 65 5b 62 5d 2c 64 29 3b 72 65 74 75 72 6e 20 64 3d 74 68 69 73 2e 70 75 73 68 53 74 61 63 6b 28 63 3e 31 3f 6e 2e 75 6e 69 71 75 65 28 64 29 3a 64 29 2c 64 2e 73 65 6c 65 63 74 6f 72 3d 74 68 69 73 2e 73 65 6c 65 63 74 6f 72 3f 74 68 69 73 2e 73 65 6c 65 63 74 6f 72 2b 22 20 22 2b 61 3a 61 2c 64 7d 2c 66 69 6c 74 65 72 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 70 75 73 68 53 74 61 63 6b 28 7a 28 74 68 69 73 2c 61 7c 7c 5b 5d 2c 21 31 29 29 7d 2c 6e 6f 74 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 74 68 69 73 2e 70 75 73 68 53 74 61 63 6b 28 7a 28 74 68 69 73 2c 61 7c 7c 5b 5d 2c 21 30 29 29 7d 2c 69 73 3a 66 75 6e 63 74 69 6f 6e 28
                                      Data Ascii: for(b=0;c>b;b++)n.find(a,e[b],d);return d=this.pushStack(c>1?n.unique(d):d),d.selector=this.selector?this.selector+" "+a:a,d},filter:function(a){return this.pushStack(z(this,a||[],!1))},not:function(a){return this.pushStack(z(this,a||[],!0))},is:function(
                                      2024-03-28 19:32:57 UTC8000INData Raw: 22 2d 24 26 22 29 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 2c 63 3d 61 2e 67 65 74 41 74 74 72 69 62 75 74 65 28 64 29 2c 22 73 74 72 69 6e 67 22 3d 3d 74 79 70 65 6f 66 20 63 29 7b 74 72 79 7b 63 3d 22 74 72 75 65 22 3d 3d 3d 63 3f 21 30 3a 22 66 61 6c 73 65 22 3d 3d 3d 63 3f 21 31 3a 22 6e 75 6c 6c 22 3d 3d 3d 63 3f 6e 75 6c 6c 3a 2b 63 2b 22 22 3d 3d 3d 63 3f 2b 63 3a 50 2e 74 65 73 74 28 63 29 3f 6e 2e 70 61 72 73 65 4a 53 4f 4e 28 63 29 3a 63 3b 0a 7d 63 61 74 63 68 28 65 29 7b 7d 4f 2e 73 65 74 28 61 2c 62 2c 63 29 7d 65 6c 73 65 20 63 3d 76 6f 69 64 20 30 3b 72 65 74 75 72 6e 20 63 7d 6e 2e 65 78 74 65 6e 64 28 7b 68 61 73 44 61 74 61 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 4f 2e 68 61 73 44 61 74 61 28 61 29 7c 7c 4e 2e 68 61
                                      Data Ascii: "-$&").toLowerCase(),c=a.getAttribute(d),"string"==typeof c){try{c="true"===c?!0:"false"===c?!1:"null"===c?null:+c+""===c?+c:P.test(c)?n.parseJSON(c):c;}catch(e){}O.set(a,b,c)}else c=void 0;return c}n.extend({hasData:function(a){return O.hasData(a)||N.ha
                                      2024-03-28 19:32:57 UTC8000INData Raw: 6f 64 65 7c 7c 74 68 69 73 29 69 66 28 31 3d 3d 3d 69 2e 6e 6f 64 65 54 79 70 65 26 26 28 69 2e 64 69 73 61 62 6c 65 64 21 3d 3d 21 30 7c 7c 22 63 6c 69 63 6b 22 21 3d 3d 61 2e 74 79 70 65 29 29 7b 66 6f 72 28 64 3d 5b 5d 2c 63 3d 30 3b 68 3e 63 3b 63 2b 2b 29 66 3d 62 5b 63 5d 2c 65 3d 66 2e 73 65 6c 65 63 74 6f 72 2b 22 20 22 2c 76 6f 69 64 20 30 3d 3d 3d 64 5b 65 5d 26 26 28 64 5b 65 5d 3d 66 2e 6e 65 65 64 73 43 6f 6e 74 65 78 74 3f 6e 28 65 2c 74 68 69 73 29 2e 69 6e 64 65 78 28 69 29 3e 2d 31 3a 6e 2e 66 69 6e 64 28 65 2c 74 68 69 73 2c 6e 75 6c 6c 2c 5b 69 5d 29 2e 6c 65 6e 67 74 68 29 2c 64 5b 65 5d 26 26 64 2e 70 75 73 68 28 66 29 3b 64 2e 6c 65 6e 67 74 68 26 26 67 2e 70 75 73 68 28 7b 65 6c 65 6d 3a 69 2c 68 61 6e 64 6c 65 72 73 3a 64 7d 29 7d
                                      Data Ascii: ode||this)if(1===i.nodeType&&(i.disabled!==!0||"click"!==a.type)){for(d=[],c=0;h>c;c++)f=b[c],e=f.selector+" ",void 0===d[e]&&(d[e]=f.needsContext?n(e,this).index(i)>-1:n.find(e,this,null,[i]).length),d[e]&&d.push(f);d.length&&g.push({elem:i,handlers:d})}
                                      2024-03-28 19:32:57 UTC8000INData Raw: 65 61 63 68 28 7b 61 70 70 65 6e 64 54 6f 3a 22 61 70 70 65 6e 64 22 2c 70 72 65 70 65 6e 64 54 6f 3a 22 70 72 65 70 65 6e 64 22 2c 69 6e 73 65 72 74 42 65 66 6f 72 65 3a 22 62 65 66 6f 72 65 22 2c 69 6e 73 65 72 74 41 66 74 65 72 3a 22 61 66 74 65 72 22 2c 72 65 70 6c 61 63 65 41 6c 6c 3a 22 72 65 70 6c 61 63 65 57 69 74 68 22 7d 2c 66 75 6e 63 74 69 6f 6e 28 61 2c 62 29 7b 6e 2e 66 6e 5b 61 5d 3d 66 75 6e 63 74 69 6f 6e 28 61 29 7b 66 6f 72 28 76 61 72 20 63 2c 64 3d 5b 5d 2c 65 3d 6e 28 61 29 2c 66 3d 65 2e 6c 65 6e 67 74 68 2d 31 2c 68 3d 30 3b 66 3e 3d 68 3b 68 2b 2b 29 63 3d 68 3d 3d 3d 66 3f 74 68 69 73 3a 74 68 69 73 2e 63 6c 6f 6e 65 28 21 30 29 2c 6e 28 65 5b 68 5d 29 5b 62 5d 28 63 29 2c 67 2e 61 70 70 6c 79 28 64 2c 63 2e 67 65 74 28 29 29 3b
                                      Data Ascii: each({appendTo:"append",prependTo:"prepend",insertBefore:"before",insertAfter:"after",replaceAll:"replaceWith"},function(a,b){n.fn[a]=function(a){for(var c,d=[],e=n(a),f=e.length-1,h=0;f>=h;h++)c=h===f?this:this.clone(!0),n(e[h])[b](c),g.apply(d,c.get());
                                      2024-03-28 19:32:57 UTC8000INData Raw: 65 6d 2e 70 61 72 65 6e 74 4e 6f 64 65 26 26 28 61 2e 65 6c 65 6d 5b 61 2e 70 72 6f 70 5d 3d 61 2e 6e 6f 77 29 7d 7d 2c 6e 2e 65 61 73 69 6e 67 3d 7b 6c 69 6e 65 61 72 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 20 61 7d 2c 73 77 69 6e 67 3a 66 75 6e 63 74 69 6f 6e 28 61 29 7b 72 65 74 75 72 6e 2e 35 2d 4d 61 74 68 2e 63 6f 73 28 61 2a 4d 61 74 68 2e 50 49 29 2f 32 7d 2c 5f 64 65 66 61 75 6c 74 3a 22 73 77 69 6e 67 22 7d 2c 6e 2e 66 78 3d 52 61 2e 70 72 6f 74 6f 74 79 70 65 2e 69 6e 69 74 2c 6e 2e 66 78 2e 73 74 65 70 3d 7b 7d 3b 76 61 72 20 53 61 2c 54 61 2c 55 61 3d 2f 5e 28 3f 3a 74 6f 67 67 6c 65 7c 73 68 6f 77 7c 68 69 64 65 29 24 2f 2c 56 61 3d 2f 71 75 65 75 65 48 6f 6f 6b 73 24 2f 3b 66 75 6e 63 74 69 6f 6e 20 57 61 28 29 7b 72 65 74
                                      Data Ascii: em.parentNode&&(a.elem[a.prop]=a.now)}},n.easing={linear:function(a){return a},swing:function(a){return.5-Math.cos(a*Math.PI)/2},_default:"swing"},n.fx=Ra.prototype.init,n.fx.step={};var Sa,Ta,Ua=/^(?:toggle|show|hide)$/,Va=/queueHooks$/;function Wa(){ret
                                      2024-03-28 19:32:57 UTC8000INData Raw: 6e 2e 70 72 6f 70 46 69 78 5b 61 5d 7c 7c 61 5d 7d 29 7d 7d 29 2c 6e 2e 65 78 74 65 6e 64 28 7b 70 72 6f 70 3a 66 75 6e 63 74 69 6f 6e 28 61 2c 62 2c 63 29 7b 76 61 72 20 64 2c 65 2c 66 3d 61 2e 6e 6f 64 65 54 79 70 65 3b 69 66 28 33 21 3d 3d 66 26 26 38 21 3d 3d 66 26 26 32 21 3d 3d 66 29 72 65 74 75 72 6e 20 31 3d 3d 3d 66 26 26 6e 2e 69 73 58 4d 4c 44 6f 63 28 61 29 7c 7c 28 62 3d 6e 2e 70 72 6f 70 46 69 78 5b 62 5d 7c 7c 62 2c 65 3d 6e 2e 70 72 6f 70 48 6f 6f 6b 73 5b 62 5d 29 2c 0a 76 6f 69 64 20 30 21 3d 3d 63 3f 65 26 26 22 73 65 74 22 69 6e 20 65 26 26 76 6f 69 64 20 30 21 3d 3d 28 64 3d 65 2e 73 65 74 28 61 2c 63 2c 62 29 29 3f 64 3a 61 5b 62 5d 3d 63 3a 65 26 26 22 67 65 74 22 69 6e 20 65 26 26 6e 75 6c 6c 21 3d 3d 28 64 3d 65 2e 67 65 74 28 61
                                      Data Ascii: n.propFix[a]||a]})}}),n.extend({prop:function(a,b,c){var d,e,f=a.nodeType;if(3!==f&&8!==f&&2!==f)return 1===f&&n.isXMLDoc(a)||(b=n.propFix[b]||b,e=n.propHooks[b]),void 0!==c?e&&"set"in e&&void 0!==(d=e.set(a,c,b))?d:a[b]=c:e&&"get"in e&&null!==(d=e.get(a
                                      2024-03-28 19:32:57 UTC8000INData Raw: 29 3b 69 66 28 6b 5b 31 5d 29 66 6f 72 28 67 20 69 6e 20 61 2e 63 6f 6e 76 65 72 74 65 72 73 29 6a 5b 67 2e 74 6f 4c 6f 77 65 72 43 61 73 65 28 29 5d 3d 61 2e 63 6f 6e 76 65 72 74 65 72 73 5b 67 5d 3b 66 3d 6b 2e 73 68 69 66 74 28 29 3b 77 68 69 6c 65 28 66 29 69 66 28 61 2e 72 65 73 70 6f 6e 73 65 46 69 65 6c 64 73 5b 66 5d 26 26 28 63 5b 61 2e 72 65 73 70 6f 6e 73 65 46 69 65 6c 64 73 5b 66 5d 5d 3d 62 29 2c 21 69 26 26 64 26 26 61 2e 64 61 74 61 46 69 6c 74 65 72 26 26 28 62 3d 61 2e 64 61 74 61 46 69 6c 74 65 72 28 62 2c 61 2e 64 61 74 61 54 79 70 65 29 29 2c 69 3d 66 2c 66 3d 6b 2e 73 68 69 66 74 28 29 29 69 66 28 22 2a 22 3d 3d 3d 66 29 66 3d 69 3b 65 6c 73 65 20 69 66 28 22 2a 22 21 3d 3d 69 26 26 69 21 3d 3d 66 29 7b 69 66 28 67 3d 6a 5b 69 2b 22
                                      Data Ascii: );if(k[1])for(g in a.converters)j[g.toLowerCase()]=a.converters[g];f=k.shift();while(f)if(a.responseFields[f]&&(c[a.responseFields[f]]=b),!i&&d&&a.dataFilter&&(b=a.dataFilter(b,a.dataType)),i=f,f=k.shift())if("*"===f)f=i;else if("*"!==i&&i!==f){if(g=j[i+"


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      3192.168.2.22491685.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:32:57 UTC715OUTGET /boot/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839891 HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: */*
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: no-cors
                                      Sec-Fetch-Dest: script
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:32:57 UTC213INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:32:57 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 51039
                                      Connection: close
                                      Content-Type: text/javascript
                                      2024-03-28 19:32:57 UTC7979INData Raw: 2f 2a 21 0a 20 20 2a 20 42 6f 6f 74 73 74 72 61 70 20 76 34 2e 31 2e 33 20 28 68 74 74 70 73 3a 2f 2f 67 65 74 62 6f 6f 74 73 74 72 61 70 2e 63 6f 6d 2f 29 0a 20 20 2a 20 43 6f 70 79 72 69 67 68 74 20 32 30 31 31 2d 32 30 31 38 20 54 68 65 20 42 6f 6f 74 73 74 72 61 70 20 41 75 74 68 6f 72 73 20 28 68 74 74 70 73 3a 2f 2f 67 69 74 68 75 62 2e 63 6f 6d 2f 74 77 62 73 2f 62 6f 6f 74 73 74 72 61 70 2f 67 72 61 70 68 73 2f 63 6f 6e 74 72 69 62 75 74 6f 72 73 29 0a 20 20 2a 20 4c 69 63 65 6e 73 65 64 20 75 6e 64 65 72 20 4d 49 54 20 28 68 74 74 70 73 3a 2f 2f 67 69 74 68 75 62 2e 63 6f 6d 2f 74 77 62 73 2f 62 6f 6f 74 73 74 72 61 70 2f 62 6c 6f 62 2f 6d 61 73 74 65 72 2f 4c 49 43 45 4e 53 45 29 0a 20 20 2a 2f 0a 21 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 22
                                      Data Ascii: /*! * Bootstrap v4.1.3 (https://getbootstrap.com/) * Copyright 2011-2018 The Bootstrap Authors (https://github.com/twbs/bootstrap/graphs/contributors) * Licensed under MIT (https://github.com/twbs/bootstrap/blob/master/LICENSE) */!function(t,e){"
                                      2024-03-28 19:32:57 UTC8000INData Raw: 2e 6e 65 78 74 29 2e 62 69 6e 64 28 74 68 69 73 29 2c 74 68 69 73 2e 5f 63 6f 6e 66 69 67 2e 69 6e 74 65 72 76 61 6c 29 29 7d 2c 74 2e 74 6f 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 74 68 69 73 3b 74 68 69 73 2e 5f 61 63 74 69 76 65 45 6c 65 6d 65 6e 74 3d 74 68 69 73 2e 5f 65 6c 65 6d 65 6e 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 28 58 29 3b 76 61 72 20 6e 3d 74 68 69 73 2e 5f 67 65 74 49 74 65 6d 49 6e 64 65 78 28 74 68 69 73 2e 5f 61 63 74 69 76 65 45 6c 65 6d 65 6e 74 29 3b 69 66 28 21 28 74 3e 74 68 69 73 2e 5f 69 74 65 6d 73 2e 6c 65 6e 67 74 68 2d 31 7c 7c 74 3c 30 29 29 69 66 28 74 68 69 73 2e 5f 69 73 53 6c 69 64 69 6e 67 29 50 28 74 68 69 73 2e 5f 65 6c 65 6d 65 6e 74 29 2e 6f 6e 65 28 51 2e 53 4c 49 44 2c 66 75 6e 63 74 69
                                      Data Ascii: .next).bind(this),this._config.interval))},t.to=function(t){var e=this;this._activeElement=this._element.querySelector(X);var n=this._getItemIndex(this._activeElement);if(!(t>this._items.length-1||t<0))if(this._isSliding)P(this._element).one(Q.SLID,functi
                                      2024-03-28 19:32:57 UTC8000INData Raw: 6e 74 29 3b 76 61 72 20 65 3d 27 5b 64 61 74 61 2d 74 6f 67 67 6c 65 3d 22 63 6f 6c 6c 61 70 73 65 22 5d 5b 64 61 74 61 2d 70 61 72 65 6e 74 3d 22 27 2b 74 68 69 73 2e 5f 63 6f 6e 66 69 67 2e 70 61 72 65 6e 74 2b 27 22 5d 27 2c 69 3d 5b 5d 2e 73 6c 69 63 65 2e 63 61 6c 6c 28 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 41 6c 6c 28 65 29 29 3b 72 65 74 75 72 6e 20 73 74 28 69 29 2e 65 61 63 68 28 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 6e 2e 5f 61 64 64 41 72 69 61 41 6e 64 43 6f 6c 6c 61 70 73 65 64 43 6c 61 73 73 28 61 2e 5f 67 65 74 54 61 72 67 65 74 46 72 6f 6d 45 6c 65 6d 65 6e 74 28 65 29 2c 5b 65 5d 29 7d 29 2c 74 7d 2c 74 2e 5f 61 64 64 41 72 69 61 41 6e 64 43 6f 6c 6c 61 70 73 65 64 43 6c 61 73 73 3d 66 75 6e 63 74 69 6f 6e 28 74 2c 65 29 7b 69
                                      Data Ascii: nt);var e='[data-toggle="collapse"][data-parent="'+this._config.parent+'"]',i=[].slice.call(t.querySelectorAll(e));return st(i).each(function(t,e){n._addAriaAndCollapsedClass(a._getTargetFromElement(e),[e])}),t},t._addAriaAndCollapsedClass=function(t,e){i
                                      2024-03-28 19:32:57 UTC8000INData Raw: 74 69 6f 6e 20 72 28 74 2c 65 29 7b 74 68 69 73 2e 5f 63 6f 6e 66 69 67 3d 74 68 69 73 2e 5f 67 65 74 43 6f 6e 66 69 67 28 65 29 2c 74 68 69 73 2e 5f 65 6c 65 6d 65 6e 74 3d 74 2c 74 68 69 73 2e 5f 64 69 61 6c 6f 67 3d 74 2e 71 75 65 72 79 53 65 6c 65 63 74 6f 72 28 75 65 29 2c 74 68 69 73 2e 5f 62 61 63 6b 64 72 6f 70 3d 6e 75 6c 6c 2c 74 68 69 73 2e 5f 69 73 53 68 6f 77 6e 3d 21 31 2c 74 68 69 73 2e 5f 69 73 42 6f 64 79 4f 76 65 72 66 6c 6f 77 69 6e 67 3d 21 31 2c 74 68 69 73 2e 5f 69 67 6e 6f 72 65 42 61 63 6b 64 72 6f 70 43 6c 69 63 6b 3d 21 31 2c 74 68 69 73 2e 5f 73 63 72 6f 6c 6c 62 61 72 57 69 64 74 68 3d 30 7d 76 61 72 20 74 3d 72 2e 70 72 6f 74 6f 74 79 70 65 3b 72 65 74 75 72 6e 20 74 2e 74 6f 67 67 6c 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b
                                      Data Ascii: tion r(t,e){this._config=this._getConfig(e),this._element=t,this._dialog=t.querySelector(ue),this._backdrop=null,this._isShown=!1,this._isBodyOverflowing=!1,this._ignoreBackdropClick=!1,this._scrollbarWidth=0}var t=r.prototype;return t.toggle=function(t){
                                      2024-03-28 19:32:58 UTC8000INData Raw: 72 3a 21 28 53 65 3d 7b 61 6e 69 6d 61 74 69 6f 6e 3a 22 62 6f 6f 6c 65 61 6e 22 2c 74 65 6d 70 6c 61 74 65 3a 22 73 74 72 69 6e 67 22 2c 74 69 74 6c 65 3a 22 28 73 74 72 69 6e 67 7c 65 6c 65 6d 65 6e 74 7c 66 75 6e 63 74 69 6f 6e 29 22 2c 74 72 69 67 67 65 72 3a 22 73 74 72 69 6e 67 22 2c 64 65 6c 61 79 3a 22 28 6e 75 6d 62 65 72 7c 6f 62 6a 65 63 74 29 22 2c 68 74 6d 6c 3a 22 62 6f 6f 6c 65 61 6e 22 2c 73 65 6c 65 63 74 6f 72 3a 22 28 73 74 72 69 6e 67 7c 62 6f 6f 6c 65 61 6e 29 22 2c 70 6c 61 63 65 6d 65 6e 74 3a 22 28 73 74 72 69 6e 67 7c 66 75 6e 63 74 69 6f 6e 29 22 2c 6f 66 66 73 65 74 3a 22 28 6e 75 6d 62 65 72 7c 73 74 72 69 6e 67 29 22 2c 63 6f 6e 74 61 69 6e 65 72 3a 22 28 73 74 72 69 6e 67 7c 65 6c 65 6d 65 6e 74 7c 62 6f 6f 6c 65 61 6e 29 22
                                      Data Ascii: r:!(Se={animation:"boolean",template:"string",title:"(string|element|function)",trigger:"string",delay:"(number|object)",html:"boolean",selector:"(string|boolean)",placement:"(string|function)",offset:"(number|string)",container:"(string|element|boolean)"
                                      2024-03-28 19:32:58 UTC8000INData Raw: 6f 6e 28 29 7b 76 61 72 20 74 3d 70 65 28 74 68 69 73 2e 67 65 74 54 69 70 45 6c 65 6d 65 6e 74 28 29 29 2c 65 3d 74 2e 61 74 74 72 28 22 63 6c 61 73 73 22 29 2e 6d 61 74 63 68 28 62 65 29 3b 6e 75 6c 6c 21 3d 3d 65 26 26 65 2e 6c 65 6e 67 74 68 26 26 74 2e 72 65 6d 6f 76 65 43 6c 61 73 73 28 65 2e 6a 6f 69 6e 28 22 22 29 29 7d 2c 74 2e 5f 68 61 6e 64 6c 65 50 6f 70 70 65 72 50 6c 61 63 65 6d 65 6e 74 43 68 61 6e 67 65 3d 66 75 6e 63 74 69 6f 6e 28 74 29 7b 76 61 72 20 65 3d 74 2e 69 6e 73 74 61 6e 63 65 3b 74 68 69 73 2e 74 69 70 3d 65 2e 70 6f 70 70 65 72 2c 74 68 69 73 2e 5f 63 6c 65 61 6e 54 69 70 43 6c 61 73 73 28 29 2c 74 68 69 73 2e 61 64 64 41 74 74 61 63 68 6d 65 6e 74 43 6c 61 73 73 28 74 68 69 73 2e 5f 67 65 74 41 74 74 61 63 68 6d 65 6e 74 28
                                      Data Ascii: on(){var t=pe(this.getTipElement()),e=t.attr("class").match(be);null!==e&&e.length&&t.removeClass(e.join(""))},t._handlePopperPlacementChange=function(t){var e=t.instance;this.tip=e.popper,this._cleanTipClass(),this.addAttachmentClass(this._getAttachment(
                                      2024-03-28 19:32:58 UTC3060INData Raw: 3d 22 73 68 6f 77 22 2c 6a 6e 3d 22 2e 64 72 6f 70 64 6f 77 6e 22 2c 48 6e 3d 22 2e 6e 61 76 2c 20 2e 6c 69 73 74 2d 67 72 6f 75 70 22 2c 4c 6e 3d 22 2e 61 63 74 69 76 65 22 2c 52 6e 3d 22 3e 20 6c 69 20 3e 20 2e 61 63 74 69 76 65 22 2c 78 6e 3d 27 5b 64 61 74 61 2d 74 6f 67 67 6c 65 3d 22 74 61 62 22 5d 2c 20 5b 64 61 74 61 2d 74 6f 67 67 6c 65 3d 22 70 69 6c 6c 22 5d 2c 20 5b 64 61 74 61 2d 74 6f 67 67 6c 65 3d 22 6c 69 73 74 22 5d 27 2c 57 6e 3d 22 2e 64 72 6f 70 64 6f 77 6e 2d 74 6f 67 67 6c 65 22 2c 55 6e 3d 22 3e 20 2e 64 72 6f 70 64 6f 77 6e 2d 6d 65 6e 75 20 2e 61 63 74 69 76 65 22 2c 71 6e 3d 66 75 6e 63 74 69 6f 6e 28 29 7b 66 75 6e 63 74 69 6f 6e 20 69 28 74 29 7b 74 68 69 73 2e 5f 65 6c 65 6d 65 6e 74 3d 74 7d 76 61 72 20 74 3d 69 2e 70 72 6f
                                      Data Ascii: ="show",jn=".dropdown",Hn=".nav, .list-group",Ln=".active",Rn="> li > .active",xn='[data-toggle="tab"], [data-toggle="pill"], [data-toggle="list"]',Wn=".dropdown-toggle",Un="> .dropdown-menu .active",qn=function(){function i(t){this._element=t}var t=i.pro


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      4192.168.2.22491675.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:32:57 UTC713OUTGET /js/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5e839892 HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: */*
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: no-cors
                                      Sec-Fetch-Dest: script
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:32:57 UTC212INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:32:57 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 7043
                                      Connection: close
                                      Content-Type: text/javascript
                                      2024-03-28 19:32:57 UTC7043INData Raw: 76 61 72 20 5f 30 78 32 32 64 35 62 34 3d 5f 30 78 65 39 33 36 3b 66 75 6e 63 74 69 6f 6e 20 5f 30 78 65 39 33 36 28 5f 30 78 31 31 30 64 30 66 2c 5f 30 78 32 62 39 31 61 39 29 7b 76 61 72 20 5f 30 78 35 61 66 63 32 39 3d 5f 30 78 32 65 38 39 28 29 3b 72 65 74 75 72 6e 20 5f 30 78 65 39 33 36 3d 66 75 6e 63 74 69 6f 6e 28 5f 30 78 35 65 38 30 33 34 2c 5f 30 78 31 36 34 39 61 66 29 7b 5f 30 78 35 65 38 30 33 34 3d 5f 30 78 35 65 38 30 33 34 2d 30 78 31 32 64 3b 76 61 72 20 5f 30 78 34 31 62 66 65 38 3d 5f 30 78 35 61 66 63 32 39 5b 5f 30 78 35 65 38 30 33 34 5d 3b 72 65 74 75 72 6e 20 5f 30 78 34 31 62 66 65 38 3b 7d 2c 5f 30 78 65 39 33 36 28 5f 30 78 31 31 30 64 30 66 2c 5f 30 78 32 62 39 31 61 39 29 3b 7d 28 66 75 6e 63 74 69 6f 6e 28 5f 30 78 31 38 66
                                      Data Ascii: var _0x22d5b4=_0xe936;function _0xe936(_0x110d0f,_0x2b91a9){var _0x5afc29=_0x2e89();return _0xe936=function(_0x5e8034,_0x1649af){_0x5e8034=_0x5e8034-0x12d;var _0x41bfe8=_0x5afc29[_0x5e8034];return _0x41bfe8;},_0xe936(_0x110d0f,_0x2b91a9);}(function(_0x18f


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      5192.168.2.22491705.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:32:58 UTC662OUTGET /1 HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: */*
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: cors
                                      Sec-Fetch-Dest: empty
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:32:59 UTC269INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:32:58 GMT
                                      Server: Apache
                                      Expires: Thu, 19 Nov 1981 08:52:00 GMT
                                      Cache-Control: no-store, no-cache, must-revalidate
                                      Pragma: no-cache
                                      Connection: close
                                      Transfer-Encoding: chunked
                                      Content-Type: text/html; charset=UTF-8
                                      2024-03-28 19:32:59 UTC7923INData Raw: 31 66 36 30 0d 0a 20 20 20 20 3c 68 74 6d 6c 20 64 69 72 3d 22 6c 74 72 22 20 63 6c 61 73 73 3d 22 63 34 63 62 37 61 66 39 65 33 63 37 64 66 31 66 30 61 64 65 33 62 38 31 35 39 62 61 32 64 35 62 36 36 30 35 63 35 65 61 64 66 30 35 61 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 36 35 63 35 30 62 39 31 37 36 34 65 66 35 33 37 62 30 63 61 66 66 31 39 35 30 66 65 64 38 63 66 36 36 30 35 63 35 65 38 30 38 66 34 30 20 20 20 20 20 20 20 20 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61
                                      Data Ascii: 1f60 <html dir="ltr" class="c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf05a" lang="en"> <head> <title> 65c50b91764ef537b0caff1950fed8cf6605c5e808f40 </title> <meta http-equiv="Content-Type" content="text/html; cha
                                      2024-03-28 19:32:59 UTC115INData Raw: 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 62 3c 2f 73 70 61 6e 3e 72 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61
                                      Data Ascii: px; max-height: 0.03px; font-size: 0.02px;">b</span>r<span style="display: inline; color: rgba(26, 125, 117, 0); ma
                                      2024-03-28 19:32:59 UTC2INData Raw: 0d 0a
                                      Data Ascii:
                                      2024-03-28 19:32:59 UTC8192INData Raw: 31 66 66 38 0d 0a 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 62 3c 2f 73 70 61 6e 3e 65 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 62 3c 2f 73 70 61 6e 3e 73 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c
                                      Data Ascii: 1ff8x-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">b</span>e<span style="display: inline; color: rgba(26, 125, 117, 0); max-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">b</span>s<span style="display: inline; color: rgba(26, 125, 117,
                                      2024-03-28 19:32:59 UTC6INData Raw: 31 66 66 38 0d 0a
                                      Data Ascii: 1ff8
                                      2024-03-28 19:32:59 UTC8184INData Raw: 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 62 3c 2f 73 70 61 6e 3e 6f 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 62 3c 2f 73 70 61 6e 3e 6e 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b
                                      Data Ascii: color: rgba(26, 125, 117, 0); max-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">b</span>o<span style="display: inline; color: rgba(26, 125, 117, 0); max-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">b</span>n<span style="display: inline;
                                      2024-03-28 19:32:59 UTC2INData Raw: 0d 0a
                                      Data Ascii:
                                      2024-03-28 19:32:59 UTC5430INData Raw: 31 35 32 39 0d 0a 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 4f 3c 2f 73 70 61 6e 3e 61 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 4f 3c 2f 73 70 61 6e 3e 67 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f
                                      Data Ascii: 1529(26, 125, 117, 0); max-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">O</span>a<span style="display: inline; color: rgba(26, 125, 117, 0); max-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">O</span>g<span style="display: inline; colo


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      6192.168.2.22491715.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:32:58 UTC736OUTGET /favicon.ico HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: no-cors
                                      Sec-Fetch-Dest: image
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:32:59 UTC164INHTTP/1.1 404 Not Found
                                      Date: Thu, 28 Mar 2024 19:32:58 GMT
                                      Server: Apache
                                      Content-Length: 315
                                      Connection: close
                                      Content-Type: text/html; charset=iso-8859-1
                                      2024-03-28 19:32:59 UTC315INData Raw: 3c 21 44 4f 43 54 59 50 45 20 48 54 4d 4c 20 50 55 42 4c 49 43 20 22 2d 2f 2f 49 45 54 46 2f 2f 44 54 44 20 48 54 4d 4c 20 32 2e 30 2f 2f 45 4e 22 3e 0a 3c 68 74 6d 6c 3e 3c 68 65 61 64 3e 0a 3c 74 69 74 6c 65 3e 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 3c 2f 74 69 74 6c 65 3e 0a 3c 2f 68 65 61 64 3e 3c 62 6f 64 79 3e 0a 3c 68 31 3e 4e 6f 74 20 46 6f 75 6e 64 3c 2f 68 31 3e 0a 3c 70 3e 54 68 65 20 72 65 71 75 65 73 74 65 64 20 55 52 4c 20 77 61 73 20 6e 6f 74 20 66 6f 75 6e 64 20 6f 6e 20 74 68 69 73 20 73 65 72 76 65 72 2e 3c 2f 70 3e 0a 3c 70 3e 41 64 64 69 74 69 6f 6e 61 6c 6c 79 2c 20 61 20 34 30 34 20 4e 6f 74 20 46 6f 75 6e 64 0a 65 72 72 6f 72 20 77 61 73 20 65 6e 63 6f 75 6e 74 65 72 65 64 20 77 68 69 6c 65 20 74 72 79 69 6e 67 20 74 6f 20 75 73 65
                                      Data Ascii: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"><html><head><title>404 Not Found</title></head><body><h1>Not Found</h1><p>The requested URL was not found on this server.</p><p>Additionally, a 404 Not Founderror was encountered while trying to use


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      7192.168.2.22491765.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:00 UTC774OUTGET /APP-c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf05f/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf060 HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: text/css,*/*;q=0.1
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: no-cors
                                      Sec-Fetch-Dest: style
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:00 UTC207INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:00 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 105369
                                      Connection: close
                                      Content-Type: text/css
                                      2024-03-28 19:33:00 UTC7985INData Raw: 68 74 6d 6c 7b 66 6f 6e 74 2d 66 61 6d 69 6c 79 3a 73 61 6e 73 2d 73 65 72 69 66 3b 2d 6d 73 2d 74 65 78 74 2d 73 69 7a 65 2d 61 64 6a 75 73 74 3a 31 30 30 25 3b 2d 77 65 62 6b 69 74 2d 74 65 78 74 2d 73 69 7a 65 2d 61 64 6a 75 73 74 3a 31 30 30 25 7d 62 6f 64 79 7b 6d 61 72 67 69 6e 3a 30 7d 61 72 74 69 63 6c 65 2c 61 73 69 64 65 2c 64 65 74 61 69 6c 73 2c 66 69 67 63 61 70 74 69 6f 6e 2c 66 69 67 75 72 65 2c 66 6f 6f 74 65 72 2c 68 65 61 64 65 72 2c 68 67 72 6f 75 70 2c 6d 61 69 6e 2c 6d 65 6e 75 2c 6e 61 76 2c 73 65 63 74 69 6f 6e 2c 73 75 6d 6d 61 72 79 7b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 7d 61 75 64 69 6f 2c 63 61 6e 76 61 73 2c 70 72 6f 67 72 65 73 73 2c 76 69 64 65 6f 7b 64 69 73 70 6c 61 79 3a 69 6e 6c 69 6e 65 2d 62 6c 6f 63 6b 3b 76 65 72
                                      Data Ascii: html{font-family:sans-serif;-ms-text-size-adjust:100%;-webkit-text-size-adjust:100%}body{margin:0}article,aside,details,figcaption,figure,footer,header,hgroup,main,menu,nav,section,summary{display:block}audio,canvas,progress,video{display:inline-block;ver
                                      2024-03-28 19:33:00 UTC8000INData Raw: 74 65 78 74 2d 6d 61 78 6c 69 6e 65 73 2d 31 2c 68 36 2e 74 65 78 74 2d 6d 61 78 6c 69 6e 65 73 2d 31 7b 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 74 65 78 74 2d 6f 76 65 72 66 6c 6f 77 3a 65 6c 6c 69 70 73 69 73 3b 6d 61 78 2d 68 65 69 67 68 74 3a 31 33 2e 36 33 36 70 78 3b 6d 61 78 2d 68 65 69 67 68 74 3a 2e 38 35 32 32 35 72 65 6d 7d 2e 74 65 78 74 2d 63 61 70 74 69 6f 6e 2d 61 6c 74 2e 74 65 78 74 2d 6d 61 78 6c 69 6e 65 73 2d 32 2c 68 36 2e 74 65 78 74 2d 6d 61 78 6c 69 6e 65 73 2d 32 7b 6d 61 78 2d 68 65 69 67 68 74 3a 32 35 2e 36 33 36 70 78 3b 6d 61 78 2d 68 65 69 67 68 74 3a 31 2e 36 30 32 32 35 72 65 6d 7d 2e 74 65 78 74 2d 63 61 70 74 69 6f 6e 2d 61 6c 74 2e 74 65 78 74 2d 6d 61 78 6c 69 6e 65 73 2d 33 2c 68 36 2e 74 65 78 74 2d
                                      Data Ascii: text-maxlines-1,h6.text-maxlines-1{white-space:nowrap;text-overflow:ellipsis;max-height:13.636px;max-height:.85225rem}.text-caption-alt.text-maxlines-2,h6.text-maxlines-2{max-height:25.636px;max-height:1.60225rem}.text-caption-alt.text-maxlines-3,h6.text-
                                      2024-03-28 19:33:00 UTC8000INData Raw: 73 6d 2d 32 30 7b 77 69 64 74 68 3a 38 33 2e 33 33 33 33 33 25 7d 2e 63 6f 6c 2d 73 6d 2d 32 31 7b 77 69 64 74 68 3a 38 37 2e 35 25 7d 2e 63 6f 6c 2d 73 6d 2d 32 32 7b 77 69 64 74 68 3a 39 31 2e 36 36 36 36 37 25 7d 2e 63 6f 6c 2d 73 6d 2d 32 33 7b 77 69 64 74 68 3a 39 35 2e 38 33 33 33 33 25 7d 2e 63 6f 6c 2d 73 6d 2d 32 34 7b 77 69 64 74 68 3a 31 30 30 25 7d 2e 63 6f 6c 2d 73 6d 2d 70 75 6c 6c 2d 30 7b 72 69 67 68 74 3a 61 75 74 6f 7d 2e 63 6f 6c 2d 73 6d 2d 70 75 6c 6c 2d 31 7b 72 69 67 68 74 3a 34 2e 31 36 36 36 37 25 7d 2e 63 6f 6c 2d 73 6d 2d 70 75 6c 6c 2d 32 7b 72 69 67 68 74 3a 38 2e 33 33 33 33 33 25 7d 2e 63 6f 6c 2d 73 6d 2d 70 75 6c 6c 2d 33 7b 72 69 67 68 74 3a 31 32 2e 35 25 7d 2e 63 6f 6c 2d 73 6d 2d 70 75 6c 6c 2d 34 7b 72 69 67 68 74 3a
                                      Data Ascii: sm-20{width:83.33333%}.col-sm-21{width:87.5%}.col-sm-22{width:91.66667%}.col-sm-23{width:95.83333%}.col-sm-24{width:100%}.col-sm-pull-0{right:auto}.col-sm-pull-1{right:4.16667%}.col-sm-pull-2{right:8.33333%}.col-sm-pull-3{right:12.5%}.col-sm-pull-4{right:
                                      2024-03-28 19:33:00 UTC8000INData Raw: 6c 67 2d 70 75 73 68 2d 31 39 7b 6c 65 66 74 3a 37 39 2e 31 36 36 36 37 25 7d 2e 63 6f 6c 2d 6c 67 2d 70 75 73 68 2d 32 30 7b 6c 65 66 74 3a 38 33 2e 33 33 33 33 33 25 7d 2e 63 6f 6c 2d 6c 67 2d 70 75 73 68 2d 32 31 7b 6c 65 66 74 3a 38 37 2e 35 25 7d 2e 63 6f 6c 2d 6c 67 2d 70 75 73 68 2d 32 32 7b 6c 65 66 74 3a 39 31 2e 36 36 36 36 37 25 7d 2e 63 6f 6c 2d 6c 67 2d 70 75 73 68 2d 32 33 7b 6c 65 66 74 3a 39 35 2e 38 33 33 33 33 25 7d 2e 63 6f 6c 2d 6c 67 2d 70 75 73 68 2d 32 34 7b 6c 65 66 74 3a 31 30 30 25 7d 2e 63 6f 6c 2d 6c 67 2d 6f 66 66 73 65 74 2d 30 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 30 7d 2e 63 6f 6c 2d 6c 67 2d 6f 66 66 73 65 74 2d 31 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 34 2e 31 36 36 36 37 25 7d 2e 63 6f 6c 2d 6c 67 2d 6f 66 66 73 65 74
                                      Data Ascii: lg-push-19{left:79.16667%}.col-lg-push-20{left:83.33333%}.col-lg-push-21{left:87.5%}.col-lg-push-22{left:91.66667%}.col-lg-push-23{left:95.83333%}.col-lg-push-24{left:100%}.col-lg-offset-0{margin-left:0}.col-lg-offset-1{margin-left:4.16667%}.col-lg-offset
                                      2024-03-28 19:33:00 UTC8000INData Raw: 2d 6d 73 2d 69 6e 70 75 74 2d 70 6c 61 63 65 68 6f 6c 64 65 72 2c 69 6e 70 75 74 5b 74 79 70 65 3d 22 6d 6f 6e 74 68 22 5d 3a 2d 6d 73 2d 69 6e 70 75 74 2d 70 6c 61 63 65 68 6f 6c 64 65 72 2c 69 6e 70 75 74 5b 74 79 70 65 3d 22 6e 75 6d 62 65 72 22 5d 3a 2d 6d 73 2d 69 6e 70 75 74 2d 70 6c 61 63 65 68 6f 6c 64 65 72 2c 69 6e 70 75 74 5b 74 79 70 65 3d 22 70 61 73 73 77 6f 72 64 22 5d 3a 2d 6d 73 2d 69 6e 70 75 74 2d 70 6c 61 63 65 68 6f 6c 64 65 72 2c 69 6e 70 75 74 5b 74 79 70 65 3d 22 73 65 61 72 63 68 22 5d 3a 2d 6d 73 2d 69 6e 70 75 74 2d 70 6c 61 63 65 68 6f 6c 64 65 72 2c 69 6e 70 75 74 5b 74 79 70 65 3d 22 74 65 6c 22 5d 3a 2d 6d 73 2d 69 6e 70 75 74 2d 70 6c 61 63 65 68 6f 6c 64 65 72 2c 69 6e 70 75 74 5b 74 79 70 65 3d 22 74 65 78 74 22 5d 3a 2d
                                      Data Ascii: -ms-input-placeholder,input[type="month"]:-ms-input-placeholder,input[type="number"]:-ms-input-placeholder,input[type="password"]:-ms-input-placeholder,input[type="search"]:-ms-input-placeholder,input[type="tel"]:-ms-input-placeholder,input[type="text"]:-
                                      2024-03-28 19:33:00 UTC8000INData Raw: 32 29 7d 73 65 6c 65 63 74 7b 62 6f 72 64 65 72 3a 32 70 78 20 73 6f 6c 69 64 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 34 29 3b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6c 69 70 3a 70 61 64 64 69 6e 67 2d 62 6f 78 3b 63 6f 6c 6f 72 3a 23 30 30 30 7d 73 65 6c 65 63 74 3a 66 6f 63 75 73 20 6f 70 74 69 6f 6e 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 66 66 7d 73 65 6c 65 63 74 3a 68 6f 76 65 72 7b 62 6f 72 64 65 72 2d 63 6f 6c 6f 72 3a 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 36 29 7d 73 65 6c 65 63 74 3a 61 63 74 69 76 65 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 66 66 7d 73 65 6c 65 63 74 5b 6d 75 6c 74 69 70 6c 65 5d 3a 66 6f 63 75 73 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 66 66 7d 73 65 6c 65 63 74 5b 64
                                      Data Ascii: 2)}select{border:2px solid rgba(0,0,0,0.4);background-clip:padding-box;color:#000}select:focus option{background-color:#fff}select:hover{border-color:rgba(0,0,0,0.6)}select:active{background-color:#fff}select[multiple]:focus{background-color:#fff}select[d
                                      2024-03-28 19:33:00 UTC8000INData Raw: 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 3b 74 65 78 74 2d 6f 76 65 72 66 6c 6f 77 3a 65 6c 6c 69 70 73 69 73 3b 6d 61 78 2d 68 65 69 67 68 74 3a 31 36 2e 33 36 33 32 70 78 3b 6d 61 78 2d 68 65 69 67 68 74 3a 31 2e 30 32 32 37 72 65 6d 7d 2e 73 65 63 74 69 6f 6e 20 2e 68 65 61 64 65 72 2d 61 63 74 69 6f 6e 2e 74 65 78 74 2d 6d 61 78 6c 69 6e 65 73 2d 32 7b 6d 61 78 2d 68 65 69 67 68 74 3a 33 30 2e 33 36 33 32 70 78 3b 6d 61 78 2d 68 65 69 67 68 74 3a 31 2e 38 39 37 37 72 65 6d 7d 2e 73 65 63 74 69 6f 6e 20 2e 68 65 61 64 65 72 2d 61 63 74 69 6f 6e 2e 74 65 78 74 2d 6d 61 78 6c 69 6e 65 73 2d 33 7b 6d 61 78 2d 68 65 69 67 68 74 3a 34 34 2e 33 36 33 32 70 78 3b 6d 61 78 2d 68 65 69 67 68 74 3a 32 2e 37 37 32 37 72 65 6d 7d 2e 73 65 63 74 69 6f 6e
                                      Data Ascii: hite-space:nowrap;text-overflow:ellipsis;max-height:16.3632px;max-height:1.0227rem}.section .header-action.text-maxlines-2{max-height:30.3632px;max-height:1.8977rem}.section .header-action.text-maxlines-3{max-height:44.3632px;max-height:2.7727rem}.section
                                      2024-03-28 19:33:00 UTC8000INData Raw: 6f 6e 3a 61 62 73 6f 6c 75 74 65 3b 7a 2d 69 6e 64 65 78 3a 31 30 37 30 3b 64 69 73 70 6c 61 79 3a 62 6c 6f 63 6b 3b 76 69 73 69 62 69 6c 69 74 79 3a 76 69 73 69 62 6c 65 7d 2e 74 6f 6f 6c 74 69 70 2d 69 6e 6e 65 72 7b 74 65 78 74 2d 64 65 63 6f 72 61 74 69 6f 6e 3a 6e 6f 6e 65 7d 2e 74 6f 6f 6c 74 69 70 20 2e 74 6f 6f 6c 74 69 70 2d 69 6e 6e 65 72 7b 62 61 63 6b 67 72 6f 75 6e 64 3a 23 66 32 66 32 66 32 3b 63 6f 6c 6f 72 3a 23 30 30 30 3b 62 6f 72 64 65 72 3a 31 70 78 20 73 6f 6c 69 64 20 23 63 63 63 3b 70 61 64 64 69 6e 67 3a 35 70 78 20 38 70 78 20 37 70 78 20 38 70 78 3b 6d 61 78 2d 77 69 64 74 68 3a 33 32 30 70 78 7d 2e 63 6c 65 61 72 66 69 78 3a 62 65 66 6f 72 65 2c 2e 63 6c 65 61 72 66 69 78 3a 61 66 74 65 72 7b 63 6f 6e 74 65 6e 74 3a 22 20 22 3b
                                      Data Ascii: on:absolute;z-index:1070;display:block;visibility:visible}.tooltip-inner{text-decoration:none}.tooltip .tooltip-inner{background:#f2f2f2;color:#000;border:1px solid #ccc;padding:5px 8px 7px 8px;max-width:320px}.clearfix:before,.clearfix:after{content:" ";
                                      2024-03-28 19:33:00 UTC8000INData Raw: 2e 63 62 20 23 73 69 67 6e 75 70 2c 62 6f 64 79 2e 63 62 20 23 69 64 41 5f 4d 53 41 63 63 4c 65 61 72 6e 4d 6f 72 65 7b 77 68 69 74 65 2d 73 70 61 63 65 3a 6e 6f 77 72 61 70 7d 62 6f 64 79 2e 63 62 20 2e 6d 6f 64 61 6c 44 69 61 6c 6f 67 43 6f 6e 74 65 6e 74 7b 77 69 64 74 68 3a 31 30 30 25 3b 70 6f 73 69 74 69 6f 6e 3a 72 65 6c 61 74 69 76 65 3b 6d 61 72 67 69 6e 3a 30 20 61 75 74 6f 7d 62 6f 64 79 2e 63 62 20 2e 69 6d 67 2d 63 65 6e 74 69 70 65 64 65 7b 77 69 64 74 68 3a 31 30 30 25 3b 6d 61 78 2d 77 69 64 74 68 3a 32 36 36 70 78 3b 68 65 69 67 68 74 3a 61 75 74 6f 7d 62 6f 64 79 2e 63 62 20 2e 61 6c 69 67 6e 2d 63 65 6e 74 65 72 7b 6d 61 72 67 69 6e 2d 6c 65 66 74 3a 61 75 74 6f 3b 6d 61 72 67 69 6e 2d 72 69 67 68 74 3a 61 75 74 6f 3b 64 69 73 70 6c 61
                                      Data Ascii: .cb #signup,body.cb #idA_MSAccLearnMore{white-space:nowrap}body.cb .modalDialogContent{width:100%;position:relative;margin:0 auto}body.cb .img-centipede{width:100%;max-width:266px;height:auto}body.cb .align-center{margin-left:auto;margin-right:auto;displa
                                      2024-03-28 19:33:00 UTC8000INData Raw: 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 23 66 66 66 3b 2d 77 65 62 6b 69 74 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 32 70 78 20 36 70 78 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 32 29 3b 2d 6d 6f 7a 2d 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 32 70 78 20 36 70 78 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 32 29 3b 62 6f 78 2d 73 68 61 64 6f 77 3a 30 20 32 70 78 20 36 70 78 20 72 67 62 61 28 30 2c 30 2c 30 2c 30 2e 32 29 3b 70 61 64 64 69 6e 67 2d 6c 65 66 74 3a 34 34 70 78 3b 70 61 64 64 69 6e 67 2d 72 69 67 68 74 3a 34 34 70 78 7d 2e 70 72 6f 6d 6f 74 65 64 2d 66 65 64 2d 63 72 65 64 2d 63 6f 6e 74 65 6e 74 2e 74 72 61 6e 73 70 61 72 65 6e 74 2d 6c 69 67 68 74 62 6f 78 7b 62 61 63 6b 67 72 6f 75 6e 64 2d 63 6f 6c 6f 72 3a 72 67 62 61 28 32 35 35 2c 32
                                      Data Ascii: kground-color:#fff;-webkit-box-shadow:0 2px 6px rgba(0,0,0,0.2);-moz-box-shadow:0 2px 6px rgba(0,0,0,0.2);box-shadow:0 2px 6px rgba(0,0,0,0.2);padding-left:44px;padding-right:44px}.promoted-fed-cred-content.transparent-lightbox{background-color:rgba(255,2


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      8192.168.2.22491745.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:00 UTC772OUTGET /o/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf419 HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: no-cors
                                      Sec-Fetch-Dest: image
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:00 UTC233INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:00 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 3651
                                      Vary: Accept-Encoding
                                      Connection: close
                                      Content-Type: image/svg+xml
                                      2024-03-28 19:33:00 UTC3651INData Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 77 69 64 74 68 3d 22 31 30 38 22 20 68 65 69 67 68 74 3d 22 32 34 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 31 30 38 20 32 34 22 3e 3c 74 69 74 6c 65 3e 61 73 73 65 74 73 3c 2f 74 69 74 6c 65 3e 3c 70 61 74 68 20 64 3d 22 4d 34 34 2e 38 33 36 2c 34 2e 36 56 31 38 2e 34 68 2d 32 2e 34 56 37 2e 35 38 33 48 34 32 2e 34 4c 33 38 2e 31 31 39 2c 31 38 2e 34 48 33 36 2e 35 33 31 4c 33 32 2e 31 34 32 2c 37 2e 35 38 33 68 2d 2e 30 32 39 56 31 38 2e 34 48 32 39 2e 39 56 34 2e 36 68 33 2e 34 33 36 4c 33 37 2e 33 2c 31 34 2e 38 33 68 2e 30 35 38 4c 34 31 2e 35 34 35 2c 34 2e 36 5a 6d 32 2c 31 2e 30 34 39 61 31 2e 32 36 38 2c 31 2e 32 36 38 2c 30
                                      Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" width="108" height="24" viewBox="0 0 108 24"><title>assets</title><path d="M44.836,4.6V18.4h-2.4V7.583H42.4L38.119,18.4H36.531L32.142,7.583h-.029V18.4H29.9V4.6h3.436L37.3,14.83h.058L41.545,4.6Zm2,1.049a1.268,1.268,0


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      9192.168.2.22491755.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:00 UTC742OUTGET /ASSETS/img/m_.svg HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: no-cors
                                      Sec-Fetch-Dest: image
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:01 UTC233INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:01 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 3651
                                      Vary: Accept-Encoding
                                      Connection: close
                                      Content-Type: image/svg+xml
                                      2024-03-28 19:33:01 UTC3651INData Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 77 69 64 74 68 3d 22 31 30 38 22 20 68 65 69 67 68 74 3d 22 32 34 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 31 30 38 20 32 34 22 3e 3c 74 69 74 6c 65 3e 61 73 73 65 74 73 3c 2f 74 69 74 6c 65 3e 3c 70 61 74 68 20 64 3d 22 4d 34 34 2e 38 33 36 2c 34 2e 36 56 31 38 2e 34 68 2d 32 2e 34 56 37 2e 35 38 33 48 34 32 2e 34 4c 33 38 2e 31 31 39 2c 31 38 2e 34 48 33 36 2e 35 33 31 4c 33 32 2e 31 34 32 2c 37 2e 35 38 33 68 2d 2e 30 32 39 56 31 38 2e 34 48 32 39 2e 39 56 34 2e 36 68 33 2e 34 33 36 4c 33 37 2e 33 2c 31 34 2e 38 33 68 2e 30 35 38 4c 34 31 2e 35 34 35 2c 34 2e 36 5a 6d 32 2c 31 2e 30 34 39 61 31 2e 32 36 38 2c 31 2e 32 36 38 2c 30
                                      Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" width="108" height="24" viewBox="0 0 108 24"><title>assets</title><path d="M44.836,4.6V18.4h-2.4V7.583H42.4L38.119,18.4H36.531L32.142,7.583h-.029V18.4H29.9V4.6h3.436L37.3,14.83h.058L41.545,4.6Zm2,1.049a1.268,1.268,0


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      10192.168.2.22491775.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:00 UTC746OUTGET /ASSETS/img/sig-op.svg HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: no-cors
                                      Sec-Fetch-Dest: image
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:01 UTC233INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:01 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 1592
                                      Vary: Accept-Encoding
                                      Connection: close
                                      Content-Type: image/svg+xml
                                      2024-03-28 19:33:01 UTC1592INData Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 77 69 64 74 68 3d 22 34 38 22 20 68 65 69 67 68 74 3d 22 34 38 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 34 38 20 34 38 22 3e 3c 64 65 66 73 3e 3c 73 74 79 6c 65 3e 2e 61 7b 66 69 6c 6c 3a 6e 6f 6e 65 3b 7d 2e 62 7b 66 69 6c 6c 3a 23 34 30 34 30 34 30 3b 7d 3c 2f 73 74 79 6c 65 3e 3c 2f 64 65 66 73 3e 3c 72 65 63 74 20 63 6c 61 73 73 3d 22 61 22 20 77 69 64 74 68 3d 22 34 38 22 20 68 65 69 67 68 74 3d 22 34 38 22 2f 3e 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 62 22 20 64 3d 22 4d 34 30 2c 33 32 2e 35 37 38 56 34 30 48 33 32 56 33 36 48 32 38 56 33 32 48 32 34 56 32 38 2e 37 36 36 41 31 30 2e 36 38 39 2c 31 30 2e 36 38 39 2c 30 2c 30 2c
                                      Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" width="48" height="48" viewBox="0 0 48 48"><defs><style>.a{fill:none;}.b{fill:#404040;}</style></defs><rect class="a" width="48" height="48"/><path class="b" d="M40,32.578V40H32V36H28V32H24V28.766A10.689,10.689,0,0,


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      11192.168.2.22491785.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:00 UTC772OUTGET /x/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf065 HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      sec-ch-ua: "Not_A Brand";v="99", "Google Chrome";v="109", "Chromium";v="109"
                                      sec-ch-ua-mobile: ?0
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      sec-ch-ua-platform: "Windows"
                                      Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
                                      Sec-Fetch-Site: same-origin
                                      Sec-Fetch-Mode: no-cors
                                      Sec-Fetch-Dest: image
                                      Referer: https://prident-group.com/77624fc8e83077b92433578af825365d6605c5e808f5dLOG77624fc8e83077b92433578af825365d6605c5e808f5e
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:01 UTC233INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:01 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 1864
                                      Vary: Accept-Encoding
                                      Connection: close
                                      Content-Type: image/svg+xml
                                      2024-03-28 19:33:01 UTC1864INData Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 77 69 64 74 68 3d 22 31 39 32 30 22 20 68 65 69 67 68 74 3d 22 31 30 38 30 22 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 3e 3c 67 20 6f 70 61 63 69 74 79 3d 22 2e 32 22 20 63 6c 69 70 2d 70 61 74 68 3d 22 75 72 6c 28 23 45 29 22 3e 3c 70 61 74 68 20 64 3d 22 4d 31 34 36 36 2e 34 20 31 37 39 35 2e 32 63 39 35 30 2e 33 37 20 30 20 31 37 32 30 2e 38 2d 36 32 37 2e 35 32 20 31 37 32 30 2e 38 2d 31 34 30 31 2e 36 53 32 34 31 36 2e 37 37 2d 31 30 30 38 20 31 34 36 36 2e 34 2d 31 30 30 38 2d 32 35 34 2e 34 2d 33 38 30 2e 34 38 32 2d 32 35 34 2e 34 20 33 39 33 2e 36 73 37 37 30 2e 34 32 38 20 31 34 30 31 2e 36 20 31 37 32 30 2e 38 20 31 34 30 31 2e 36
                                      Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" width="1920" height="1080" fill="none"><g opacity=".2" clip-path="url(#E)"><path d="M1466.4 1795.2c950.37 0 1720.8-627.52 1720.8-1401.6S2416.77-1008 1466.4-1008-254.4-380.482-254.4 393.6s770.428 1401.6 1720.8 1401.6


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      12192.168.2.22491795.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:00 UTC394OUTGET /1 HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      Accept: */*
                                      Sec-Fetch-Site: none
                                      Sec-Fetch-Mode: cors
                                      Sec-Fetch-Dest: empty
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:01 UTC269INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:01 GMT
                                      Server: Apache
                                      Expires: Thu, 19 Nov 1981 08:52:00 GMT
                                      Cache-Control: no-store, no-cache, must-revalidate
                                      Pragma: no-cache
                                      Connection: close
                                      Transfer-Encoding: chunked
                                      Content-Type: text/html; charset=UTF-8
                                      2024-03-28 19:33:01 UTC7923INData Raw: 31 66 36 30 0d 0a 20 20 20 20 3c 68 74 6d 6c 20 64 69 72 3d 22 6c 74 72 22 20 63 6c 61 73 73 3d 22 64 39 32 37 61 61 65 33 39 33 33 64 62 66 30 30 33 61 63 34 66 66 38 62 39 62 38 65 61 35 63 61 36 36 30 35 63 35 65 64 32 33 31 30 33 22 20 6c 61 6e 67 3d 22 65 6e 22 3e 0a 20 20 20 20 3c 68 65 61 64 3e 0a 20 20 20 20 20 20 20 20 3c 74 69 74 6c 65 3e 0a 20 20 20 20 20 20 20 20 20 20 20 20 36 35 63 35 30 62 39 31 37 36 34 65 66 35 33 37 62 30 63 61 66 66 31 39 35 30 66 65 64 38 63 66 36 36 30 35 63 35 65 38 30 38 66 34 30 20 20 20 20 20 20 20 20 3c 2f 74 69 74 6c 65 3e 0a 20 20 20 20 20 20 20 20 3c 6d 65 74 61 20 68 74 74 70 2d 65 71 75 69 76 3d 22 43 6f 6e 74 65 6e 74 2d 54 79 70 65 22 20 63 6f 6e 74 65 6e 74 3d 22 74 65 78 74 2f 68 74 6d 6c 3b 20 63 68 61
                                      Data Ascii: 1f60 <html dir="ltr" class="d927aae3933dbf003ac4ff8b9b8ea5ca6605c5ed23103" lang="en"> <head> <title> 65c50b91764ef537b0caff1950fed8cf6605c5e808f40 </title> <meta http-equiv="Content-Type" content="text/html; cha
                                      2024-03-28 19:33:01 UTC115INData Raw: 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 64 3c 2f 73 70 61 6e 3e 72 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b
                                      Data Ascii: 0.03px; font-size: 0.02px;">d</span>r<span style="display: inline; color: rgba(26, 125, 117, 0); max-width: 0.01px;
                                      2024-03-28 19:33:01 UTC2INData Raw: 0d 0a
                                      Data Ascii:
                                      2024-03-28 19:33:01 UTC8192INData Raw: 31 66 66 38 0d 0a 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 64 3c 2f 73 70 61 6e 3e 65 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 64 3c 2f 73 70 61 6e 3e 73 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20
                                      Data Ascii: 1ff8 max-height: 0.03px; font-size: 0.02px;">d</span>e<span style="display: inline; color: rgba(26, 125, 117, 0); max-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">d</span>s<span style="display: inline; color: rgba(26, 125, 117, 0); max-width:
                                      2024-03-28 19:33:01 UTC6INData Raw: 31 66 66 38 0d 0a
                                      Data Ascii: 1ff8
                                      2024-03-28 19:33:01 UTC8184INData Raw: 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 46 3c 2f 73 70 61 6e 3e 6f 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 46 3c 2f 73 70 61 6e 3e 6e 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d
                                      Data Ascii: x-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">F</span>o<span style="display: inline; color: rgba(26, 125, 117, 0); max-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">F</span>n<span style="display: inline; color: rgba(26, 125, 117, 0); m
                                      2024-03-28 19:33:01 UTC2INData Raw: 0d 0a
                                      Data Ascii:
                                      2024-03-28 19:33:01 UTC5380INData Raw: 31 34 66 37 0d 0a 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 58 3c 2f 73 70 61 6e 3e 61 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78 2d 68 65 69 67 68 74 3a 20 30 2e 30 33 70 78 3b 20 66 6f 6e 74 2d 73 69 7a 65 3a 20 30 2e 30 32 70 78 3b 22 3e 58 3c 2f 73 70 61 6e 3e 67 3c 73 70 61 6e 20 73 74 79 6c 65 3d 22 64 69 73 70 6c 61 79 3a 20 69 6e 6c 69 6e 65 3b 20 63 6f 6c 6f 72 3a 20 72 67 62 61 28 32 36 2c 20 31 32 35 2c 20 31 31 37 2c 20 30 29 3b 20 6d 61 78 2d 77 69 64 74 68 3a 20 30 2e 30 31 70 78 3b 20 6d 61 78
                                      Data Ascii: 14f7: 0.03px; font-size: 0.02px;">X</span>a<span style="display: inline; color: rgba(26, 125, 117, 0); max-width: 0.01px; max-height: 0.03px; font-size: 0.02px;">X</span>g<span style="display: inline; color: rgba(26, 125, 117, 0); max-width: 0.01px; max


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      13192.168.2.22491815.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:01 UTC440OUTGET /o/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf419 HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      Accept: */*
                                      Sec-Fetch-Site: none
                                      Sec-Fetch-Mode: cors
                                      Sec-Fetch-Dest: empty
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:01 UTC233INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:01 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 3651
                                      Vary: Accept-Encoding
                                      Connection: close
                                      Content-Type: image/svg+xml
                                      2024-03-28 19:33:01 UTC3651INData Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 77 69 64 74 68 3d 22 31 30 38 22 20 68 65 69 67 68 74 3d 22 32 34 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 31 30 38 20 32 34 22 3e 3c 74 69 74 6c 65 3e 61 73 73 65 74 73 3c 2f 74 69 74 6c 65 3e 3c 70 61 74 68 20 64 3d 22 4d 34 34 2e 38 33 36 2c 34 2e 36 56 31 38 2e 34 68 2d 32 2e 34 56 37 2e 35 38 33 48 34 32 2e 34 4c 33 38 2e 31 31 39 2c 31 38 2e 34 48 33 36 2e 35 33 31 4c 33 32 2e 31 34 32 2c 37 2e 35 38 33 68 2d 2e 30 32 39 56 31 38 2e 34 48 32 39 2e 39 56 34 2e 36 68 33 2e 34 33 36 4c 33 37 2e 33 2c 31 34 2e 38 33 68 2e 30 35 38 4c 34 31 2e 35 34 35 2c 34 2e 36 5a 6d 32 2c 31 2e 30 34 39 61 31 2e 32 36 38 2c 31 2e 32 36 38 2c 30
                                      Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" width="108" height="24" viewBox="0 0 108 24"><title>assets</title><path d="M44.836,4.6V18.4h-2.4V7.583H42.4L38.119,18.4H36.531L32.142,7.583h-.029V18.4H29.9V4.6h3.436L37.3,14.83h.058L41.545,4.6Zm2,1.049a1.268,1.268,0


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      14192.168.2.22491825.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:01 UTC414OUTGET /ASSETS/img/sig-op.svg HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      Accept: */*
                                      Sec-Fetch-Site: none
                                      Sec-Fetch-Mode: cors
                                      Sec-Fetch-Dest: empty
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:02 UTC233INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:01 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 1592
                                      Vary: Accept-Encoding
                                      Connection: close
                                      Content-Type: image/svg+xml
                                      2024-03-28 19:33:02 UTC1592INData Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 77 69 64 74 68 3d 22 34 38 22 20 68 65 69 67 68 74 3d 22 34 38 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 34 38 20 34 38 22 3e 3c 64 65 66 73 3e 3c 73 74 79 6c 65 3e 2e 61 7b 66 69 6c 6c 3a 6e 6f 6e 65 3b 7d 2e 62 7b 66 69 6c 6c 3a 23 34 30 34 30 34 30 3b 7d 3c 2f 73 74 79 6c 65 3e 3c 2f 64 65 66 73 3e 3c 72 65 63 74 20 63 6c 61 73 73 3d 22 61 22 20 77 69 64 74 68 3d 22 34 38 22 20 68 65 69 67 68 74 3d 22 34 38 22 2f 3e 3c 70 61 74 68 20 63 6c 61 73 73 3d 22 62 22 20 64 3d 22 4d 34 30 2c 33 32 2e 35 37 38 56 34 30 48 33 32 56 33 36 48 32 38 56 33 32 48 32 34 56 32 38 2e 37 36 36 41 31 30 2e 36 38 39 2c 31 30 2e 36 38 39 2c 30 2c 30 2c
                                      Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" width="48" height="48" viewBox="0 0 48 48"><defs><style>.a{fill:none;}.b{fill:#404040;}</style></defs><rect class="a" width="48" height="48"/><path class="b" d="M40,32.578V40H32V36H28V32H24V28.766A10.689,10.689,0,0,


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      15192.168.2.22491835.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:01 UTC410OUTGET /ASSETS/img/m_.svg HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      Accept: */*
                                      Sec-Fetch-Site: none
                                      Sec-Fetch-Mode: cors
                                      Sec-Fetch-Dest: empty
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:02 UTC233INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:01 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 3651
                                      Vary: Accept-Encoding
                                      Connection: close
                                      Content-Type: image/svg+xml
                                      2024-03-28 19:33:02 UTC3651INData Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 77 69 64 74 68 3d 22 31 30 38 22 20 68 65 69 67 68 74 3d 22 32 34 22 20 76 69 65 77 42 6f 78 3d 22 30 20 30 20 31 30 38 20 32 34 22 3e 3c 74 69 74 6c 65 3e 61 73 73 65 74 73 3c 2f 74 69 74 6c 65 3e 3c 70 61 74 68 20 64 3d 22 4d 34 34 2e 38 33 36 2c 34 2e 36 56 31 38 2e 34 68 2d 32 2e 34 56 37 2e 35 38 33 48 34 32 2e 34 4c 33 38 2e 31 31 39 2c 31 38 2e 34 48 33 36 2e 35 33 31 4c 33 32 2e 31 34 32 2c 37 2e 35 38 33 68 2d 2e 30 32 39 56 31 38 2e 34 48 32 39 2e 39 56 34 2e 36 68 33 2e 34 33 36 4c 33 37 2e 33 2c 31 34 2e 38 33 68 2e 30 35 38 4c 34 31 2e 35 34 35 2c 34 2e 36 5a 6d 32 2c 31 2e 30 34 39 61 31 2e 32 36 38 2c 31 2e 32 36 38 2c 30
                                      Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" width="108" height="24" viewBox="0 0 108 24"><title>assets</title><path d="M44.836,4.6V18.4h-2.4V7.583H42.4L38.119,18.4H36.531L32.142,7.583h-.029V18.4H29.9V4.6h3.436L37.3,14.83h.058L41.545,4.6Zm2,1.049a1.268,1.268,0


                                      Session IDSource IPSource PortDestination IPDestination PortPIDProcess
                                      16192.168.2.22491845.42.65.394433828C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      TimestampBytes transferredDirectionData
                                      2024-03-28 19:33:01 UTC440OUTGET /x/c4cb7af9e3c7df1f0ade3b8159ba2d5b6605c5eadf065 HTTP/1.1
                                      Host: prident-group.com
                                      Connection: keep-alive
                                      User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
                                      Accept: */*
                                      Sec-Fetch-Site: none
                                      Sec-Fetch-Mode: cors
                                      Sec-Fetch-Dest: empty
                                      Accept-Encoding: gzip, deflate, br
                                      Accept-Language: en-US,en;q=0.9
                                      Cookie: PHPSESSID=526ff19b6be1f806b73e69f00479d29e
                                      2024-03-28 19:33:02 UTC233INHTTP/1.1 200 OK
                                      Date: Thu, 28 Mar 2024 19:33:02 GMT
                                      Server: Apache
                                      Last-Modified: Thu, 28 Mar 2024 10:52:10 GMT
                                      Accept-Ranges: bytes
                                      Content-Length: 1864
                                      Vary: Accept-Encoding
                                      Connection: close
                                      Content-Type: image/svg+xml
                                      2024-03-28 19:33:02 UTC1864INData Raw: 3c 73 76 67 20 78 6d 6c 6e 73 3d 22 68 74 74 70 3a 2f 2f 77 77 77 2e 77 33 2e 6f 72 67 2f 32 30 30 30 2f 73 76 67 22 20 77 69 64 74 68 3d 22 31 39 32 30 22 20 68 65 69 67 68 74 3d 22 31 30 38 30 22 20 66 69 6c 6c 3d 22 6e 6f 6e 65 22 3e 3c 67 20 6f 70 61 63 69 74 79 3d 22 2e 32 22 20 63 6c 69 70 2d 70 61 74 68 3d 22 75 72 6c 28 23 45 29 22 3e 3c 70 61 74 68 20 64 3d 22 4d 31 34 36 36 2e 34 20 31 37 39 35 2e 32 63 39 35 30 2e 33 37 20 30 20 31 37 32 30 2e 38 2d 36 32 37 2e 35 32 20 31 37 32 30 2e 38 2d 31 34 30 31 2e 36 53 32 34 31 36 2e 37 37 2d 31 30 30 38 20 31 34 36 36 2e 34 2d 31 30 30 38 2d 32 35 34 2e 34 2d 33 38 30 2e 34 38 32 2d 32 35 34 2e 34 20 33 39 33 2e 36 73 37 37 30 2e 34 32 38 20 31 34 30 31 2e 36 20 31 37 32 30 2e 38 20 31 34 30 31 2e 36
                                      Data Ascii: <svg xmlns="http://www.w3.org/2000/svg" width="1920" height="1080" fill="none"><g opacity=".2" clip-path="url(#E)"><path d="M1466.4 1795.2c950.37 0 1720.8-627.52 1720.8-1401.6S2416.77-1008 1466.4-1008-254.4-380.482-254.4 393.6s770.428 1401.6 1720.8 1401.6


                                      Statistics

                                      CPU Usage

                                      Click to jump to process

                                      Memory Usage

                                      Click to jump to process

                                      High Level Behavior Distribution

                                      Click to dive into process behavior distribution

                                      Behavior

                                      Click to jump to process

                                      System Behavior

                                      General

                                      Target ID:0
                                      Start time:20:32:27
                                      Start date:28/03/2024
                                      Path:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
                                      Wow64 process (32bit):true
                                      Commandline:"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\user\Desktop\Vanderweil Engineers, LLP..pdf"
                                      Imagebase:0x1a0000
                                      File size:2'525'680 bytes
                                      MD5 hash:2F8D93826B8CBF9290BC57535C7A6817
                                      Has elevated privileges:true
                                      Has administrator privileges:true
                                      Programmed in:C, C++ or other language
                                      Reputation:high
                                      Has exited:true

                                      General

                                      Target ID:2
                                      Start time:20:32:31
                                      Start date:28/03/2024
                                      Path:C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
                                      Wow64 process (32bit):true
                                      Commandline:"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
                                      Imagebase:0x1240000
                                      File size:9'805'808 bytes
                                      MD5 hash:326A645391A97C760B60C558A35BB068
                                      Has elevated privileges:true
                                      Has administrator privileges:true
                                      Programmed in:C, C++ or other language
                                      Reputation:high
                                      Has exited:true

                                      General

                                      Target ID:4
                                      Start time:20:32:52
                                      Start date:28/03/2024
                                      Path:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      Wow64 process (32bit):false
                                      Commandline:"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --start-maximized "https://prident-group.com/"
                                      Imagebase:0x13f570000
                                      File size:3'151'128 bytes
                                      MD5 hash:FFA2B8E17F645BCC20F0E0201FEF83ED
                                      Has elevated privileges:true
                                      Has administrator privileges:true
                                      Programmed in:C, C++ or other language
                                      Reputation:moderate
                                      Has exited:false

                                      General

                                      Target ID:5
                                      Start time:20:32:53
                                      Start date:28/03/2024
                                      Path:C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
                                      Wow64 process (32bit):false
                                      Commandline:"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=1448 --field-trial-handle=1280,i,13602845175421175850,11116694525089090820,131072 /prefetch:8
                                      Imagebase:0x13f570000
                                      File size:3'151'128 bytes
                                      MD5 hash:FFA2B8E17F645BCC20F0E0201FEF83ED
                                      Has elevated privileges:true
                                      Has administrator privileges:true
                                      Programmed in:C, C++ or other language
                                      Reputation:moderate
                                      Has exited:false

                                      Disassembly

                                      No disassembly