Edit tour

Windows Analysis Report
http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34

Overview

General Information

Sample URL:	http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34
Analysis ID:	1430994
Infos:

Detection

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Antivirus / Scanner detection for submitted sample

Multi AV Scanner detection for dropped file

Downloads executable code via HTTP

Drops PE files

Drops files with a non-matching file extension (content does not match file extension)

PE file contains an invalid checksum

PE file contains executable resources (Code or Archives)

PE file contains sections with non-standard names

PE file does not import any functions

PE file overlay found

Classification

Process Tree

System is w10x64

chrome.exe (PID: 3196 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 3524 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2236 --field-trial-handle=2208,i,4406949674789423698,2697958066234429667,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6572 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5480 --field-trial-handle=2208,i,4406949674789423698,2697958066234429667,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6392 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

free-barcode-6.8.10-installer_c-RQoW1.exe (PID: 3604 cmdline: "C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe" MD5: 6144AC21E74CC0373B54BCFE210BAFC8)

free-barcode-6.8.10-installer_c-RQoW1.tmp (PID: 6500 cmdline: "C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp" /SL5="$A0076,837550,832512,C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe" MD5: 8A8ADFED91899D41DFB711744C8BE5E7)

cleanup

HTTP traffic detected: HTTP/1.1 200 OKContent-Type: application/octet-streamContent-Length: 1771184Connection: keep-aliveAccess-Control-Allow-Origin: *Cache-Control: private, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0Content-Disposition: attachment; filename="free-barcode-6.8.10-installer_c-RQoW1.exe"; filename*=UTF-8''free-barcode-6.8.10-installer_c-RQoW1.exeContent-Transfer-Encoding: binaryDate: Wed, 24 Apr 2024 10:42:45 GMTExpires: Mon, 26 Jul 1997 05:00:00 GMTPragma: publicX-Cache: Miss from cloudfrontVia: 1.1 912d83c7c9b4676eb19f09c9bfabda24.cloudfront.net (CloudFront)X-Amz-Cf-Pop: SFO5-P2X-Amz-Cf-Id: Q9u_XHooeKOYQ6RdaKkHziSNdHuVy0qxRIwRHEjD1uqTCW0jBkk1Vw==Age: 0Data Raw: 4d 5a 50 00 02 00 00 00 04 00 0f 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 1a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00 ba 10 00 0e 1f b4 09 cd 21 b8 01 4c cd 21 90 90 54 68 69 73 20 70 72 6f 67 72 61 6d 20 6d 75 73 74 20 62 65 20 72 75 6e 20 75 6e 64 65 72 20 57 69 6e 33 32 0d 0a 24 37 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 45 00 00 4c 01 0a 00 18 f2 ec 63 00 00 00 00 00 00 00 00 e0 00 8f 81 0b 01 02 19 00 52 0b 00 00 5e 01 00 00 00 00 00 ec 5e 0b 00 00 10 00 00 00 70 0b 00 00 00 40 00 00 10 00 00 00 02 00 00 06 00 01 00 06 00 00 00 06 00 01 00 00 00 00 00 00 80 0d 00 00 04 00 00 f1 9e 1b 00 02 00 40 81 00 00 10 00 00 40 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 40 0c 00 9a 00 00 00 00 20 0c 00 dc 0f 00 00 00 70 0c 00 00 10 01 00 00 00 00 00 00 00 00 00 90 de 1a 00 20 28 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60 0c 00 18 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f4 22 0c 00 54 02 00 00 00 30 0c 00 a4 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2e 74 65 78 74 00 00 00 e4 39 0b 00 00 10 00 00 00 3a 0b 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 60 2e 69 74 65 78 74 00 00 88 16 00 00 00 50 0b 00 00 18 00 00 00 3e 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 60 2e 64 61 74 Data Ascii: MZP@!L!This program must be run under Win32$7PELcR^^p@@@@ p (`"T0.text

Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 173.222.162.32
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 23.3.84.131
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	TCP traffic detected without corresponding DNS query: 52.165.165.26
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	HTTP traffic detected: GET /fs/windows/config.json HTTP/1.1Connection: Keep-AliveAccept: /Accept-Encoding: identityIf-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMTRange: bytes=0-2147483646User-Agent: Microsoft BITS/7.8Host: fs.microsoft.com
Source: global traffic	HTTP traffic detected: GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=y9H6zm9SFOtVZWe&MD=RvkHDuaf HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=y9H6zm9SFOtVZWe&MD=RvkHDuaf HTTP/1.1Connection: Keep-AliveAccept: /User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33Host: slscr.update.microsoft.com
Source: global traffic	HTTP traffic detected: GET /build/pl/v4.397.63.30.34 HTTP/1.1Host: d1isumqvmnq7jz.cloudfront.netConnection: keep-aliveUpgrade-Insecure-Requests: 1User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7Accept-Encoding: gzip, deflateAccept-Language: en-US,en;q=0.9

Source: unknown

DNS traffic detected: queries for: d1isumqvmnq7jz.cloudfront.net

Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://cacerts.digicert.com/DigiCertAssuredIDRootCA.crt0E
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crt0
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crt0
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://cacerts.digicert.com/DigiCertTrustedRootG4.crt0C
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://crl3.digicert.com/DigiCertAssuredIDRootCA.crl0
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://crl3.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0S
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://crl3.digicert.com/DigiCertTrustedG4RSA4096SHA256TimeStampingCA.crl0
Source: free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://crl3.digicert.com/DigiCertTrustedRootG4.crl0
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://crl4.digicert.com/DigiCertTrustedG4CodeSigningRSA4096SHA3842021CA1.crl0
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://ocsp.digicert.com0
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://ocsp.digicert.com0A
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://ocsp.digicert.com0C
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://ocsp.digicert.com0X
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FE35000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002958000.00000004.00001000.00020000.00000000.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: http://www.digicert.com/CPS0
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.00000000021CB000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: http://www.dk-soft.org/
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://d2cxd1qpd0dh21.cloudfront.net/f/
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://d2cxd1qpd0dh21.cloudfront.net/o
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://d2cxd1qpd0dh21.cloudfront.net/zbd
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000000.2477448761.0000000000401000.00000020.00000001.01000000.00000006.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr	String found in binary or memory: https://jrsoftware.org/ishelp/index.php?topic=setupcmdlineSetupU
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://risecodes.com/privacy
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	String found in binary or memory: https://risecodes.com/terms
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FB40000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002660000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000000.2486672634.0000000000401000.00000020.00000001.01000000.00000007.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: https://www.innosetup.com/
Source: free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FB40000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002660000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000000.2486672634.0000000000401000.00000020.00000001.01000000.00000007.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	String found in binary or memory: https://www.remobjects.com/ps

Source: unknown	Network traffic detected: HTTP traffic on port 49675 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49739
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49739 -> 443

Source: unknown	HTTPS traffic detected: 23.3.84.131:443 -> 192.168.2.4:49740 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 23.3.84.131:443 -> 192.168.2.4:49741 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.4:49742 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 52.165.165.26:443 -> 192.168.2.4:49747 version: TLS 1.2

Source: free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr

Static PE information: Resource name: RT_RCDATA type: PE32+ executable (console) x86-64, for MS Windows

Source: 5acd5e57-60dc-40cb-8ab4-5615a88e4ecf.tmp.0.dr

Static PE information: No import functions for PE file found

Source: 5acd5e57-60dc-40cb-8ab4-5615a88e4ecf.tmp.0.dr

Static PE information: Data appended to the last section found

Source: classification engine

Classification label: mal56.win@22/6@4/4

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\Downloads\5acd5e57-60dc-40cb-8ab4-5615a88e4ecf.tmp

Jump to behavior

Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe

File created: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp

Jump to behavior

Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Key opened: HKEY_CURRENT_USER\Software\Borland\Delphi\Locales	Jump to behavior
Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Key opened: HKEY_CURRENT_USER\Software\Borland\Delphi\Locales	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Key opened: HKEY_CURRENT_USER\Software\Borland\Delphi\Locales	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Key opened: HKEY_CURRENT_USER\Software\Borland\Delphi\Locales	Jump to behavior

Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe

Key opened: HKEY_CURRENT_USER\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers

Jump to behavior

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2236 --field-trial-handle=2208,i,4406949674789423698,2697958066234429667,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5480 --field-trial-handle=2208,i,4406949674789423698,2697958066234429667,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe "C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe"
Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Process created: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp "C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp" /SL5="$A0076,837550,832512,C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2236 --field-trial-handle=2208,i,4406949674789423698,2697958066234429667,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5480 --field-trial-handle=2208,i,4406949674789423698,2697958066234429667,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown	Jump to behavior
Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Process created: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp "C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp" /SL5="$A0076,837550,832512,C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe"	Jump to behavior

Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Section loaded: version.dll	Jump to behavior
Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Section loaded: netutils.dll	Jump to behavior
Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Section loaded: apphelp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: mpr.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: version.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: netapi32.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: winhttp.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: netutils.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: uxtheme.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: kernel.appcore.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: wtsapi32.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: winsta.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: textinputframework.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: coreuicomponents.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: coremessaging.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: ntmarta.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: wintypes.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: textshaping.dll	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Section loaded: dwmapi.dll	Jump to behavior

Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp

Window found: window name: TSelectLanguageForm

Jump to behavior

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: 5acd5e57-60dc-40cb-8ab4-5615a88e4ecf.tmp.0.dr

Static PE information: real checksum: 0x1b9ef1 should be: 0x11bd7

Source: 5acd5e57-60dc-40cb-8ab4-5615a88e4ecf.tmp.0.dr	Static PE information: section name: .didata
Source: Unconfirmed 806031.crdownload.0.dr	Static PE information: section name: .didata
Source: chromecache_44.2.dr	Static PE information: section name: .didata
Source: free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	Static PE information: section name: .didata

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: Chrome Cache Entry: 44	Jump to dropped file
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\Downloads\Unconfirmed 806031.crdownload	Jump to dropped file
Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	File created: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Jump to dropped file
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\Downloads\5acd5e57-60dc-40cb-8ab4-5615a88e4ecf.tmp	Jump to dropped file
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe (copy)	Jump to dropped file

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: Chrome Cache Entry: 44
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: Chrome Cache Entry: 44			Jump to dropped file

Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe	Process information set: FAILCRITICALERRORS \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Process information set: FAILCRITICALERRORS \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Process information set: FAILCRITICALERRORS \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Process information set: FAILCRITICALERRORS \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Process information set: FAILCRITICALERRORS \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Process information set: FAILCRITICALERRORS \| NOOPENFILEERRORBOX	Jump to behavior
Source: C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	Process information set: FAILCRITICALERRORS \| NOOPENFILEERRORBOX	Jump to behavior

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	1 DLL Side-Loading	1 Process Injection	11 Masquerading	OS Credential Dumping	1 Security Software Discovery	Remote Services	Data from Local System	1 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 DLL Side-Loading	1 Process Injection	LSASS Memory	1 System Information Discovery	Remote Desktop Protocol	Data from Removable Media	2 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	Logon Script (Windows)	1 DLL Side-Loading	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	13 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact
Employee Names	Virtual Private Server	Local Accounts	Cron	Login Hook	Login Hook	Binary Padding	NTDS	System Network Configuration Discovery	Distributed Component Object Model	Input Capture	11 Ingress Tool Transfer	Traffic Duplication	Data Destruction

Behavior Graph

Hide Legend

Legend:

Process
Signature
Created File
DNS/IP Info
Is Dropped
Is Windows Process
Number of created Registry Values
Number of created Files
Visual Basic
Delphi
Java
.Net C# or VB.NET
C, C++ or other language
Is malicious
Internet

Source	Detection	Scanner	Label	Link
http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34	100%	Avira URL Cloud	malware

Dropped Files

Source	Detection	Scanner	Link
C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp	4%	Virustotal	Browse
C:\Users\user\Downloads\Unconfirmed 806031.crdownload	14%	Virustotal	Browse
C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe (copy)	14%	Virustotal	Browse
Chrome Cache Entry: 44	14%	Virustotal	Browse

Source	Detection	Scanner	Label	Link
https://www.remobjects.com/ps	0%	URL Reputation	safe
http://www.dk-soft.org/	0%	URL Reputation	safe
https://www.innosetup.com/	0%	Avira URL Cloud	safe
https://risecodes.com/privacy	0%	Avira URL Cloud	safe
https://risecodes.com/terms	0%	Avira URL Cloud	safe
https://risecodes.com/terms	0%	Virustotal		Browse
https://www.innosetup.com/	1%	Virustotal		Browse
https://risecodes.com/privacy	0%	Virustotal		Browse

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Antivirus Detection	Reputation
d1isumqvmnq7jz.cloudfront.net	108.139.9.151	true	false		high
www.google.com	142.250.101.147	true	false		high

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34	false		high

URLs from Memory and Binaries

Name	Source	Malicious	Antivirus Detection	Reputation
https://risecodes.com/privacy	free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	false	0%, Virustotal, Browse Avira URL Cloud: safe	unknown
https://jrsoftware.org/ishelp/index.php?topic=setupcmdlineSetupU	free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000000.2477448761.0000000000401000.00000020.00000001.01000000.00000006.sdmp, Unconfirmed 806031.crdownload.0.dr, chromecache_44.2.dr	false		high
https://risecodes.com/terms	free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	false	0%, Virustotal, Browse Avira URL Cloud: safe	unknown
https://d2cxd1qpd0dh21.cloudfront.net/o	free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	false		high
https://d2cxd1qpd0dh21.cloudfront.net/f/	free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	false		high
https://www.remobjects.com/ps	free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FB40000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002660000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000000.2486672634.0000000000401000.00000020.00000001.01000000.00000007.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	false	URL Reputation: safe	unknown
https://d2cxd1qpd0dh21.cloudfront.net/zbd	free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.0000000002231000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	false		high
https://www.innosetup.com/	free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2484669764.000000007FB40000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2481996833.0000000002660000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000000.2486672634.0000000000401000.00000020.00000001.01000000.00000007.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp.9.dr	false	1%, Virustotal, Browse Avira URL Cloud: safe	unknown
http://www.dk-soft.org/	free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000002.2547046677.00000000021CB000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.exe, 00000009.00000003.2478358740.0000000002520000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000002.2547723483.0000000002600000.00000004.00001000.00020000.00000000.sdmp, free-barcode-6.8.10-installer_c-RQoW1.tmp, 0000000A.00000003.2488850030.00000000035D0000.00000004.00001000.00020000.00000000.sdmp	false	URL Reputation: safe	unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
108.139.9.151	d1isumqvmnq7jz.cloudfront.net	United States	16509	AMAZON-02US	false
142.250.101.147	www.google.com	United States	15169	GOOGLEUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false

Private

IP
192.168.2.4

General Information

Joe Sandbox version:	40.0.0 Tourmaline
Analysis ID:	1430994
Start date and time:	2024-04-24 12:41:50 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:	0h 3m 47s
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	browseurl.jbs
Sample URL:	http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	12
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	EGA enabled AMSI enabled
Analysis Mode:	default
Analysis stop reason:	Timeout
Detection:	MAL
Classification:	mal56.win@22/6@4/4

Warnings

Exclude process from analysis (whitelisted): MpCmdRun.exe, WMIADAP.exe, SIHClient.exe, conhost.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 142.251.2.94, 142.251.2.102, 142.251.2.139, 142.251.2.100, 142.251.2.138, 142.251.2.101, 142.251.2.113, 142.251.2.84, 34.104.35.123, 199.232.210.172, 192.229.211.108
Excluded domains from analysis (whitelisted): fs.microsoft.com, clients2.google.com, ocsp.digicert.com, accounts.google.com, edgedl.me.gvt1.com, slscr.update.microsoft.com, update.googleapis.com, ctldl.windowsupdate.com, clientservices.googleapis.com, clients.l.google.com, fe3cr.delivery.mp.microsoft.com
HTTP raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
Not all processes where analyzed, report is missing behavior information
Report size getting too big, too many NtSetInformationFile calls found.

Process:	C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	3209760
Entropy (8bit):	6.33273210743014
Encrypted:	false
SSDEEP:	49152:BWGtLBcXqFpBR6SVb8kq4pgquLMMji4NYxtJpkxhGjIHTbQ333TY:DtLutqgwh4NYxtJpkxhGj333T
MD5:	8A8ADFED91899D41DFB711744C8BE5E7
SHA1:	9EC17CA8E400883669D6E2F54B5009D8BA7FC227
SHA-256:	FC513B2A786487740CB4B9E8718B74B5C7F2CD0A0C7365C8A1D161DD92BC4DDF
SHA-512:	CDF74402EF3E3A4031BDF8094CCA7E412410407B777507B3FE9084776BC511514695038A31BB0CD7F9C1EB94228EDDCA0D88BC9F5B46D229716525EED13C76C0
Malicious:	false
Antivirus:	Antivirus: Virustotal, Detection: 4%, Browse
Reputation:	low
Preview:	MZP.....................@.......................InUn....................!..L.!..This program must be run under Win32..$7........................................................................................................................................PE..L......c.................L,.........hf,......p,...@...........................1.......1...@......@....................-.......-..9....................0. (...........................................................-.......-......................text.... ,......",................. ..`.itext...(...@,.....&,............. ..`.data...X....p,......P,.............@....bss.....y....-..........................idata...9....-..:....,.............@....didata.......-.......-.............@....edata........-......-.............@..@.tls....L.....-..........................rdata..]............,-.............@..@.rsrc.................-.............@..@..............1.......0.............@..@........................................................

C:\Users\user\Downloads\5acd5e57-60dc-40cb-8ab4-5615a88e4ecf.tmp

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	12387
Entropy (8bit):	5.371186558132263
Encrypted:	false
SSDEEP:	192:n+fD9DtWmIrw0RHX7WFUrL5psxVc4B4DzCEUtFWuFoDT:+amCRRHr6uFpsxW4BBb7eT
MD5:	11D73D0FA4B3FBBC43F88D72727563B1
SHA1:	F68C8A16E3E8201F80127A59793EC55AACE4619B
SHA-256:	CB02EB644F43A62E04F631CE485475D1F6B17034F5FEDEAADCAB335D144D7276
SHA-512:	64DA073B54D60C620164ED74318407AF1A3B436161858BF162BB9DD845130FBA4A51DBB434ED85968507A18AABFC62778C3478405387D5CC3BE4AA8AD6DEB384
Malicious:	false
Reputation:	low
Preview:	MZP.....................@...............................................!..L.!..This program must be run under Win32..$7........................................................................................................................................PE..L......c.................R...^.......^.......p....@......................................@......@...................@....... .......p.................. (...................................`......................."..T....0.......................text....9.......:.................. ..`.itext.......P.......>.............. ..`.data....7...p...8...V..............@....bss.....m...............................idata....... ......................@....didata......0......................@....edata.......@......................@..@.tls.........P...........................rdata..]....`......................@..@.rsrc........p......................@..@....................................@..@........................................................

C:\Users\user\Downloads\Unconfirmed 806031.crdownload

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	1771184
Entropy (8bit):	7.462378632590688
Encrypted:	false
SSDEEP:	49152:8BuZrEULTksuh/Ev95g3qqrxJLAQ0nFq0:CkLcFlEvEaq1JMY
MD5:	6144AC21E74CC0373B54BCFE210BAFC8
SHA1:	6FF84F1DE37A0A0A14689C79795AB46478A93C17
SHA-256:	645D8251617DB27B66CF8FB0A499A7371B410B56946F9FF143951EA5BCD077AE
SHA-512:	FCFAA578001475FF35708EC55834FD0E91EA51F9F01FA2D21C3D7DEE407395B70EA395ACA78D7F89E9E5465F872319F7BCD8A43A35A014A66E70B3EA6E336200
Malicious:	true
Antivirus:	Antivirus: Virustotal, Detection: 14%, Browse
Reputation:	low
Preview:	MZP.....................@...............................................!..L.!..This program must be run under Win32..$7........................................................................................................................................PE..L......c.................R...^.......^.......p....@......................................@......@...................@....... .......p.................. (...................................`......................."..T....0.......................text....9.......:.................. ..`.itext.......P.......>.............. ..`.data....7...p...8...V..............@....bss.....m...............................idata....... ......................@....didata......0......................@....edata.......@......................@..@.tls.........P...........................rdata..]....`......................@..@.rsrc........p......................@..@....................................@..@........................................................

C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe (copy)

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	dropped
Size (bytes):	1771184
Entropy (8bit):	7.462378632590688
Encrypted:	false
SSDEEP:	49152:8BuZrEULTksuh/Ev95g3qqrxJLAQ0nFq0:CkLcFlEvEaq1JMY
MD5:	6144AC21E74CC0373B54BCFE210BAFC8
SHA1:	6FF84F1DE37A0A0A14689C79795AB46478A93C17
SHA-256:	645D8251617DB27B66CF8FB0A499A7371B410B56946F9FF143951EA5BCD077AE
SHA-512:	FCFAA578001475FF35708EC55834FD0E91EA51F9F01FA2D21C3D7DEE407395B70EA395ACA78D7F89E9E5465F872319F7BCD8A43A35A014A66E70B3EA6E336200
Malicious:	true
Antivirus:	Antivirus: Virustotal, Detection: 14%, Browse
Reputation:	low
Preview:	MZP.....................@...............................................!..L.!..This program must be run under Win32..$7........................................................................................................................................PE..L......c.................R...^.......^.......p....@......................................@......@...................@....... .......p.................. (...................................`......................."..T....0.......................text....9.......:.................. ..`.itext.......P.......>.............. ..`.data....7...p...8...V..............@....bss.....m...............................idata....... ......................@....didata......0......................@....edata.......@......................@..@.tls.........P...........................rdata..]....`......................@..@.rsrc........p......................@..@....................................@..@........................................................

Chrome Cache Entry: 44

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PE32 executable (GUI) Intel 80386, for MS Windows
Category:	downloaded
Size (bytes):	1771184
Entropy (8bit):	7.462378632590688
Encrypted:	false
SSDEEP:	49152:8BuZrEULTksuh/Ev95g3qqrxJLAQ0nFq0:CkLcFlEvEaq1JMY
MD5:	6144AC21E74CC0373B54BCFE210BAFC8
SHA1:	6FF84F1DE37A0A0A14689C79795AB46478A93C17
SHA-256:	645D8251617DB27B66CF8FB0A499A7371B410B56946F9FF143951EA5BCD077AE
SHA-512:	FCFAA578001475FF35708EC55834FD0E91EA51F9F01FA2D21C3D7DEE407395B70EA395ACA78D7F89E9E5465F872319F7BCD8A43A35A014A66E70B3EA6E336200
Malicious:	true
Antivirus:	Antivirus: Virustotal, Detection: 14%, Browse
Reputation:	low
URL:	http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34
Preview:	MZP.....................@...............................................!..L.!..This program must be run under Win32..$7........................................................................................................................................PE..L......c.................R...^.......^.......p....@......................................@......@...................@....... .......p.................. (...................................`......................."..T....0.......................text....9.......:.................. ..`.itext.......P.......>.............. ..`.data....7...p...8...V..............@....bss.....m...............................idata....... ......................@....didata......0......................@....edata.......@......................@..@.tls.........P...........................rdata..]....`......................@..@.rsrc........p......................@..@....................................@..@........................................................

Static File Info

⊘No static file info

File Icon


Icon Hash:	b29a8a8e86868381

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Apr 24, 2024 12:42:36.765183926 CEST	49675	443	192.168.2.4	173.222.162.32
Apr 24, 2024 12:42:45.032219887 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.032622099 CEST	49736	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.204068899 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.204348087 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.204370975 CEST	80	49736	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.204433918 CEST	49736	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.204677105 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.377540112 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543112040 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543204069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543256998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543329000 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543350935 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.543374062 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.543399096 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543458939 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543509960 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543549061 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543566942 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.543585062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543596983 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.543622017 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543669939 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.543720961 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.545778990 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.545813084 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.545841932 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.562807083 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.562861919 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.562889099 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.565126896 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.565185070 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.565718889 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.565769911 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.565901995 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.570585012 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.570646048 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.570717096 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.575525045 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.575576067 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.575654030 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.580300093 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.580360889 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.580437899 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.585150957 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.639075041 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.715569973 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.715738058 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.715843916 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.717962980 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.718000889 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.718172073 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.722811937 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.722848892 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.722917080 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.727571011 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.727638006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.727705002 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.732403040 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.732459068 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.732534885 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.737241983 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.737289906 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.737365961 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.742156029 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.742212057 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.742280960 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.746953964 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.746992111 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.747055054 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.751773119 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.751864910 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.751930952 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.756628036 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.756665945 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.756737947 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.761518002 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.761728048 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.761800051 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.766237020 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.766311884 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.766371012 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.771087885 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.771251917 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.771331072 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.776020050 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.776081085 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.776144028 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.780828953 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.780890942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.780951023 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.785620928 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.785690069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.785748959 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.790740013 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.790946960 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.791009903 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.795329094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.795382977 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.795437098 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.800194025 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.800235033 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.800297976 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.804992914 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.805047989 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.805105925 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.809860945 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.809959888 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.810009956 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.814796925 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.814903021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.814977884 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.819571018 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.819623947 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.819688082 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.824503899 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.824558020 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.824623108 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.829262972 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.829431057 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.829488993 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.887829065 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.887926102 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.887985945 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.890032053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.890198946 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.890254974 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.894881964 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.894972086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.895034075 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.899578094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.899699926 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.899754047 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.904269934 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.904360056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.904419899 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.908770084 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.908879995 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.908957005 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.913300991 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.913337946 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.913407087 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.917830944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.917870045 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.917948961 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.922307014 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.922363043 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.922420979 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.926987886 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.927083969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.927153111 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.931257010 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.931406975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.931463003 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.935843945 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.935882092 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.935937881 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.940284967 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.940323114 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.940373898 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.944737911 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.944786072 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.944863081 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.949206114 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.949260950 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.949337959 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.953762054 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.953835011 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.953897953 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.958245993 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.958311081 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.958364010 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.962749004 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.962815046 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.962877035 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.967189074 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.967294931 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.967356920 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.971739054 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.971786976 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.971844912 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.975888014 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.975959063 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.976017952 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.979897976 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.979984999 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.980103016 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.983969927 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.984006882 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.984095097 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.988172054 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.988210917 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.988286018 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.991874933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.992046118 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.992109060 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.995604038 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.995667934 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.995731115 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:45.999316931 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.999353886 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:45.999420881 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.002947092 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.003030062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.003094912 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.006331921 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.006380081 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.006465912 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.010338068 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.010369062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.010584116 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.013228893 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.013302088 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.013360023 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.016706944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.016747952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.016812086 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.020157099 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.020215034 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.020276070 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.023535013 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.023623943 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.023694992 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.026930094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.026968002 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.027053118 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.030322075 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.030359983 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.030421972 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.033760071 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.033838034 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.033902884 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.037172079 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.037283897 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.037345886 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.040568113 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.040606022 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.040678024 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.044015884 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.044054031 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.044114113 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.047408104 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.047545910 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.047605991 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.050856113 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.050954103 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.051004887 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.054296017 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.054333925 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.054380894 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.057647943 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.057724953 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.057780027 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.061089993 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.061167955 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.061227083 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.064534903 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.064574003 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.064632893 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.067893028 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.067987919 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.068042994 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.070307016 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.070446014 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.070502996 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.072655916 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.072742939 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.072798967 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.074991941 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.075047970 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.075201035 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.077394962 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.077524900 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.077677011 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.079715967 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.079755068 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.079909086 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.082077026 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.082114935 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.082161903 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.084466934 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.084541082 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.084595919 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.086776018 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.086882114 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.086935997 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.089093924 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.089190006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.089237928 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.091495037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.091578960 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.091629028 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.093777895 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.093796015 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.093859911 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.096184015 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.096200943 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.096285105 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.098484039 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.098501921 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.098570108 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.100889921 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.100959063 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.101012945 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.103281975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.103310108 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.103374958 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.105420113 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.105442047 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.105493069 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.107727051 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.107747078 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.107812881 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.110055923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.110194921 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.110251904 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.112381935 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.112405062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.112490892 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.114682913 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.114701033 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.114762068 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.117019892 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.117096901 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.117152929 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.119246006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.119287014 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.119338989 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.121602058 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.121658087 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.121705055 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.123881102 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.123944998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.123999119 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.126269102 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.126317024 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.126368999 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.128376961 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.128426075 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.128478050 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.130738974 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.130835056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.130884886 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.133141041 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.133160114 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.133214951 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.135387897 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.135406017 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.135454893 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.137593031 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.137648106 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.137712955 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.139802933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.139842033 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.139909029 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.142081022 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.142121077 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.142283916 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.144462109 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.144520998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.144577026 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.146747112 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.146786928 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.146850109 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.148906946 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.148962021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.149020910 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.151350975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.151392937 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.151444912 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.153435946 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.153460979 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.153526068 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.155627966 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.155678034 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.155739069 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.157831907 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.157886028 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.157943964 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.160192013 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.160209894 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.160284996 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.162415981 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.162448883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.162519932 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.164565086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.164618969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.164671898 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.166759968 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.166805029 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.166853905 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.168931961 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.169003963 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.169051886 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.171137094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.171200037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.171251059 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.173533916 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.173615932 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.173665047 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.175678015 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.175728083 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.175776958 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.177730083 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.177786112 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.177839994 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.179949999 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.180001974 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.180056095 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.182076931 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.182180882 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.182231903 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.184170008 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.184245110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.184294939 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.186276913 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.186316013 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.186366081 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.188487053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.188544989 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.188596964 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.190561056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.190696955 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.190756083 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.192590952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.192667007 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.192715883 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.194670916 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.194756985 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.194818974 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.196758032 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.196795940 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.196871996 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.198801041 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.198837042 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.198893070 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.200854063 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.200984955 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.201035976 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.202888966 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.202971935 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.203023911 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.204786062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.204822063 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.204870939 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.206774950 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.206811905 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.206866026 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.208769083 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.208806038 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.208859921 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.210737944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.210772991 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.210824966 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.212590933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.212661982 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.212749004 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.214605093 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.214643002 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.214713097 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.216540098 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.216578007 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.216625929 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.218434095 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.218555927 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.218620062 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.220316887 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.220413923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.220464945 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.222245932 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.222431898 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.222482920 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.224149942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.224189043 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.224242926 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.225852013 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.225956917 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.226003885 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.227716923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.227755070 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.227801085 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.229630947 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.229669094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.229717970 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.231417894 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.231456041 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.231509924 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.233263969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.233319044 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.233371973 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.235069036 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.235109091 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.235179901 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.236891985 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.236929893 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.236984015 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.238778114 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.238815069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.238878012 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.240602970 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.240641117 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.240691900 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.242327929 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.242366076 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.242413044 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.244199991 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.244313955 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.244368076 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.245449066 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.245486021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.245534897 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.246824980 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.246861935 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.246929884 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.248295069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.248332977 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.248388052 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.249521971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.249629021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.249679089 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.250895023 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.250968933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.251019001 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.252240896 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.252315998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.252363920 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.253549099 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.253593922 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.253633022 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.254998922 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.255064011 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.255120039 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.256206036 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.256294012 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.256339073 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.257565975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.257612944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.257666111 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.258830070 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.258922100 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.258979082 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.260193110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.260243893 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.260288954 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.261468887 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.261645079 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.261687994 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.262628078 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.262681961 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.262737036 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.263916969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.263935089 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.263987064 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.265132904 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.265202999 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.265249968 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.266380072 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.266597033 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.266643047 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.267802000 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.267842054 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.267896891 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.269083023 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.269145966 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.269195080 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.270207882 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.270273924 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.270322084 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.271409035 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.271452904 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.271502972 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.272636890 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.272697926 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.272756100 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.273940086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.273993015 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.274039984 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.275122881 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.275173903 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.275218964 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.276283979 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.276382923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.276429892 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.277611971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.277705908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.277762890 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.278779984 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.278861046 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.278932095 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.279921055 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.279974937 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.280030012 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.281115055 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.281173944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.281239033 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.282310009 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.282349110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.282411098 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.283489943 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.283528090 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.283581018 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.284672976 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.284729004 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.284789085 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.285840034 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.285876989 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.285929918 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.287149906 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.287285089 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.287334919 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.288171053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.288209915 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.288259983 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.289356947 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.289494991 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.289541960 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.290416956 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.290455103 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.290503979 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.291507959 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.291625977 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.291682959 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.292592049 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.292629957 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.292678118 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.293756008 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.293833971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.293890953 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.294895887 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.294935942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.294984102 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.295989037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.296072006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.296125889 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.297102928 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.297141075 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.297188997 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.298187971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.298953056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.299009085 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.300244093 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.300282001 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.300328016 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.302632093 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.302669048 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.302717924 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.304891109 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.304929972 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.304979086 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.307255983 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.307338953 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.307385921 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.309619904 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.309737921 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.309791088 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.311742067 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.311800003 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.311851978 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.314152956 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.314292908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.314351082 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.316339016 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.316497087 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.316548109 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.319035053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.319250107 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.319303036 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.320883036 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.320957899 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.321007013 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.323206902 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.323287964 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.323347092 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.325274944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.325434923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.325491905 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.327423096 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.327580929 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.327645063 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.329711914 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.329750061 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.329809904 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.332087040 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.332209110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.332264900 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.334342003 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.334391117 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.334441900 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.336440086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.336477995 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.336525917 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.338669062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.338748932 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.338799953 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.340802908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.340890884 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.340945959 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.342993975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.343031883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.343089104 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.345674992 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.345714092 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.345777988 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.347642899 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.347695112 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.347752094 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.349602938 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.349662066 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.349708080 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.351921082 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.351986885 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.352031946 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.353966951 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.353988886 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.354029894 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.356087923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.356168985 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.356213093 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.358228922 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.358297110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.358376026 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.360373974 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.360450983 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.360497952 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.362550974 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.362708092 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.362752914 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.364577055 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.364674091 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.364718914 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.366683006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.366731882 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.366779089 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.368711948 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.368766069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.368823051 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.370697021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.370767117 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.370815039 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.372713089 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.372780085 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.372827053 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.373538971 CEST	49675	443	192.168.2.4	173.222.162.32
Apr 24, 2024 12:42:46.374744892 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.374799013 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.374850988 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.376676083 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.376775026 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.376827002 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.378779888 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.378819942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.378865004 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.380634069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.380672932 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.380726099 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.382643938 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.382707119 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.382765055 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.384522915 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.384557962 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.384601116 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.386672974 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.386693001 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.386737108 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.388554096 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.388890028 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.388942003 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.390669107 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.390733957 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.390779018 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.392234087 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.392307997 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.392360926 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.394309998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.394392967 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.394449949 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.396013021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.396186113 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.396255970 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.397747993 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.397851944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.397901058 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.399570942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.399684906 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.399733067 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.401670933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.401715994 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.401762962 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.403287888 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.403354883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.403400898 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.405097961 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.405174017 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.405235052 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.406995058 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.407051086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.407104015 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.409151077 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.409207106 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.409266949 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.410739899 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.410897017 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.410948992 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.412398100 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.412417889 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.412463903 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.414316893 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.414396048 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.414442062 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.416202068 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.416331053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.416387081 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.417506933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.417525053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.417623043 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.418832064 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.418910980 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.418961048 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.420070887 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.420178890 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.420227051 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.421715975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.421771049 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.421816111 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.422750950 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.422791958 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.422858000 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.424170971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.424187899 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.424257040 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.425465107 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.425519943 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.425582886 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.426971912 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.426990032 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.427056074 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.428191900 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.428283930 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.428333998 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.429435968 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.429582119 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.429636955 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.430938959 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.431078911 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.431123018 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.431969881 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.432014942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.432063103 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.433401108 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.433469057 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.433526039 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.434626102 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.434662104 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.434709072 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.435692072 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.435761929 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.435810089 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.437007904 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.437071085 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.437112093 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.438397884 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.438468933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.438534975 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.439611912 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.439711094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.439757109 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.441037893 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.441077948 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.441124916 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.441961050 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.441996098 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.442065001 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.443207026 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.443252087 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.443408012 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.444454908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.444514990 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.444561005 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.445749998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.445827961 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.445893049 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.446979046 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.446997881 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.447063923 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.448267937 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.448359013 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.448410988 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.449582100 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.449632883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.449676037 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.450858116 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.450931072 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.450988054 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.451832056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.451869965 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.451910019 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.451929092 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.454250097 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.454308033 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.454350948 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.454369068 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.454426050 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.455488920 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.455528975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.455548048 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.455575943 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.457879066 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.457942009 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.457946062 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.457988977 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.458033085 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.459182024 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.459252119 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.459304094 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.459314108 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.461304903 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.461322069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.461364031 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.461373091 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.461419106 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.462162018 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.462232113 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.462291002 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.462301970 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.464381933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.464430094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.464446068 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.464540958 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.464586020 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.465676069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.465769053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.465821028 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.465883017 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.467839003 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.467896938 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.467956066 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.467999935 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.468049049 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.468889952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.468935966 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.468981028 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.469000101 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.470849037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.470896959 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.470921040 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.471057892 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.471102953 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.471982002 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.474544048 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.474603891 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.474605083 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.474653006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.474706888 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.476867914 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.476944923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.477010965 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.477011919 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.479211092 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.479264975 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.479290009 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.479306936 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.479376078 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.479504108 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.479595900 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.479614019 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.479644060 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.480437994 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.480477095 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.480499983 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.480524063 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.480570078 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.481409073 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.481472969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.481520891 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.481595039 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.482259989 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.482314110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.482327938 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.482470989 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.482512951 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.483120918 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.483191013 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.483233929 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.483272076 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.484071016 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.484127998 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.484167099 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.484219074 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.484262943 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.485006094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.485071898 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.485111952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.485115051 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.486398935 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.486450911 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.486502886 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.486617088 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.486660957 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.486685038 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.486716986 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.486759901 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.486783981 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.487591982 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.487654924 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.487660885 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.487725019 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.487781048 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.488522053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.488698959 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.488744020 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.488864899 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.489360094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.489407063 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.489420891 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.489475965 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.489520073 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.490278959 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.490329981 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.490364075 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.490372896 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.491203070 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.491256952 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.491283894 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.491300106 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.491354942 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.491760969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.491837025 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.491853952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.491884947 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.492743969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.492762089 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.492794991 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.492805004 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.492851019 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.493633032 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.493716002 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.493767977 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.493784904 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.494538069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.494585991 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.494590044 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.494641066 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.494695902 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.495486975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.495548010 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.495594978 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.495615005 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.496279001 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.496325970 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.496331930 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.496387005 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.496433020 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.497315884 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.497375011 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.497427940 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.497452974 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.498148918 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.498193979 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.498207092 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.498296022 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.498339891 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.499077082 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.499095917 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.499150991 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.499176025 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.499835014 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.499886990 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.499924898 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.500016928 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.500063896 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.500720024 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.500879049 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.500925064 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.500946999 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.501653910 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.501703024 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.501784086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.501841068 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.501884937 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.502574921 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.502706051 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.502753973 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.502779961 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.503453970 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.503515005 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.503597975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.503669977 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.503710032 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.504280090 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.504336119 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.504367113 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.504379034 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.505213976 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.505259991 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.505263090 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.505311012 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.505353928 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.506078005 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.506198883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.506248951 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.506725073 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.506779909 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.506827116 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.506827116 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.507638931 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.507689953 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.507714033 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.507797956 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.507846117 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.508413076 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.508487940 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.508506060 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.508533001 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.509383917 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.509449959 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.509505033 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.509562969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.509619951 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.510205030 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.510263920 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.510308981 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.510329008 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.511138916 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.511197090 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.511220932 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.511303902 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.511352062 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.512044907 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.512128115 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.512191057 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.512231112 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.512932062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.512948990 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.512989044 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.513029099 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.513073921 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.513798952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.513870955 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.513889074 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.513916969 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.514709949 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.514730930 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.514760017 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.514815092 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.514863968 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.515753984 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.515846968 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.515901089 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.515938997 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.516499043 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.516544104 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.516685009 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.516776085 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.516840935 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.517451048 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.517515898 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.517560005 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.517579079 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.518286943 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.518320084 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.518336058 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.518374920 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.518419981 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.519197941 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.519264936 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.519306898 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.519320011 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.520044088 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.520092964 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.520114899 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.520148993 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.520195007 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.520958900 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.520977020 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.521038055 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.521562099 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.521606922 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.521651030 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.521673918 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.522427082 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.522488117 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.522491932 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.522605896 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.522653103 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.523426056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.523472071 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.523516893 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.523529053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.524238110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.524291992 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.524296045 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.524383068 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.524426937 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.525100946 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.525240898 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.525294065 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.525345087 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.526002884 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.526051044 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.526076078 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.526127100 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.526176929 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.526891947 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.526978016 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.527028084 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.527055979 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.527791977 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.527837038 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.527858973 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.527916908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.527967930 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.528649092 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.528721094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.528767109 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.528784037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.529553890 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.529608011 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.529617071 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.529656887 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.529697895 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.530438900 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.530500889 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.530546904 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.530631065 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.531409979 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.531461000 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.531491041 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.531507969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.531553030 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.532309055 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.532488108 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.532541037 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.532566071 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.533257961 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.533305883 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.533344984 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.533389091 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.533432007 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.534051895 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.534153938 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.534193993 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.534216881 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.535140038 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.535192966 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.535233021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.535331964 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.535398006 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.535845041 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.535862923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.535912037 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.536447048 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.536513090 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.536564112 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.536585093 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.537333965 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.537352085 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.537386894 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.537460089 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.537506104 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.538286924 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.538338900 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.538388968 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.538549900 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.539143085 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.539197922 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.539238930 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.539273977 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.539323092 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.540035963 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.540052891 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.540113926 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.540150881 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.540956974 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.540988922 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.541011095 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.541035891 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.541100979 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.541770935 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.541853905 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.541901112 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.541939974 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.542654991 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.542697906 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.542709112 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.542793036 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.542848110 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.543613911 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.543678999 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.543725967 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.543730021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.544488907 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.544507027 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.544539928 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.544553995 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.544600010 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.545320034 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.545388937 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.545444965 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.545449018 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.546255112 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.546308041 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.546330929 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.546395063 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.546447992 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.547137022 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.547183037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.547229052 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.547235966 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.548033953 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.548070908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.548085928 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.548167944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.548216105 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.548880100 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.548957109 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.549011946 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.549035072 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.549879074 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.549906969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.549937010 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.549976110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.550024033 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.550709963 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.550802946 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.550846100 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.551331043 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.551474094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.551517963 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.551556110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.552236080 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.552305937 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.552306890 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.552339077 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.552380085 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.553077936 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.553144932 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.553177118 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.553190947 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.553971052 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.554023981 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.554049015 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.554131985 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.554183006 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.554917097 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.554964066 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.555010080 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.555087090 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.555778027 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.555824995 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.555835962 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.555877924 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.555922985 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.556713104 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.556730032 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.556790113 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.556813955 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.557564020 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.557605028 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.557635069 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.557656050 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.557699919 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.558448076 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.558478117 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.558517933 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.558530092 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.559426069 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.559477091 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.559485912 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.559528112 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.559648991 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.560362101 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.560415983 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.560470104 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.560471058 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.561111927 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.561153889 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.561180115 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.561211109 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.561273098 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.562521935 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.562618971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.562663078 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.562748909 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.564013004 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.564047098 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.564066887 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.564199924 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.564244986 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.566129923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.566251040 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.566297054 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.567965031 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.568082094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.568139076 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.569602966 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.569678068 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.569720030 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.571494102 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.571569920 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.571625948 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.573523998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.575118065 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.575177908 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.575201988 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.575244904 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.575285912 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.576870918 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.576889992 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.576950073 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.576978922 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.578934908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.578952074 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.578994989 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.581082106 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.581151009 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.581181049 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.582709074 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.582763910 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.582789898 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.584150076 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.584208965 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.584211111 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.584295988 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.584338903 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.584558010 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.584604025 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.584647894 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.584661007 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.585477114 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.585536957 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.585539103 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.585599899 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.585652113 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.586389065 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.586461067 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.586507082 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.586512089 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.587241888 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.587286949 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.587299109 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.587362051 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.587414980 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.588175058 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.588191986 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.588232040 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.588274956 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.589104891 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.589162111 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.589178085 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.589227915 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.589286089 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.589986086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.590038061 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.590054989 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.590081930 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.590919018 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.590981007 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.591000080 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.591017008 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.591065884 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.591787100 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.591825962 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.591866970 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.591872931 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.592736006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.592768908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.592796087 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.592897892 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.592942953 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.593483925 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.593554020 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.593602896 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.593611002 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.594388962 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.594439030 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.594468117 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.594484091 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.594533920 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.594990969 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.595118999 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.595165968 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.595196009 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.595937014 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.595987082 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.596004009 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.596061945 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.596113920 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.596837044 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.596853971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.596906900 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.596920967 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.597728968 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.597744942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.597785950 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.597820997 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.597862959 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.598599911 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.598699093 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.598746061 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.598830938 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.599553108 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.599611998 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.599642992 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.599674940 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.599716902 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.600362062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.600435019 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.600470066 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.600507975 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.601324081 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.601377964 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.601449966 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.601500034 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.601552010 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.602236986 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.602313995 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.602363110 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.602365971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.603126049 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.603176117 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.603176117 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.603261948 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.603307009 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.603934050 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.603970051 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.604012966 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.604031086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.604846954 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.604878902 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.604899883 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.604927063 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.604970932 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.605798006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.605839968 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.605886936 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.605920076 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.606662035 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.606715918 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.606733084 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.606791019 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.606836081 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.607564926 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.607647896 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.607692003 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.607697964 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.608406067 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.608458042 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.608479977 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.608534098 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.608577013 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.609276056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.609330893 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.609379053 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.609899044 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.609982014 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.609999895 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.610025883 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.611303091 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.611367941 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.611368895 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.611437082 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.611485958 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.611650944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.611709118 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.611736059 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.611754894 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.612674952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.612730026 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.612756014 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.612788916 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.612834930 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.613442898 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.613507032 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.613557100 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.613560915 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.614360094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.614415884 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.614422083 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.614520073 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.614572048 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.615359068 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.615416050 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.615468025 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.615489006 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.616235971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.616307974 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.616332054 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.616364956 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.616417885 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.617096901 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.617153883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.617206097 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.617207050 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.618074894 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.618134022 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.618136883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.618155956 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.618196011 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.618952990 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.619055033 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.619103909 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.619113922 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.619755030 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.619812012 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.619906902 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.619966984 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.620012999 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.620836020 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.620876074 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.620934963 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.620945930 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.621573925 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.621592045 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.621632099 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.621658087 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.621705055 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.622423887 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.622514963 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.622584105 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.622675896 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.623348951 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.623402119 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.623425007 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.623456001 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.623501062 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.624217987 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.624298096 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.624357939 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.624798059 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.624838114 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.624886990 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.624927044 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.625694990 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.625739098 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.625751972 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.625777006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.625823975 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.626581907 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.626632929 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.626674891 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.626688004 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.627537966 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.627556086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.627597094 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.627604008 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.627648115 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.629471064 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.629514933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.629559994 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.629571915 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.629612923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.629662037 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.629704952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.629722118 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.629765034 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.630131960 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.630204916 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.630260944 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.630264044 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.631078005 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.631144047 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.631145954 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.631160975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.631213903 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.631911039 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.631982088 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.632026911 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.632035971 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.632807016 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.632824898 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.632863045 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.632889032 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.632942915 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.633725882 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.633788109 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.633805037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.633841991 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.634608984 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.634627104 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.634671926 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.634696960 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.634751081 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.635891914 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.636024952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.636074066 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.636616945 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.636707067 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.636753082 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.636761904 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.636841059 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.636888027 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.637336016 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.637479067 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.637523890 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.637528896 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.638298035 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.638351917 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.638453007 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.638504982 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.638549089 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.639220953 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.639395952 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.639446020 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.639627934 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.639677048 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.639724970 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.639761925 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.640544891 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.640593052 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.640605927 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.640621901 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.640671015 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.641436100 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.641529083 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.641575098 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.641661882 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.642376900 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.642416954 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.642436028 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.642472029 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.642528057 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.643250942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.643285990 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.643333912 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.643378973 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.644268990 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.644319057 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.644332886 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.644395113 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.644442081 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.645009995 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.645052910 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.645095110 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.645127058 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.645946026 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.645993948 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.646012068 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.646060944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.646111965 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.646877050 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.646941900 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.646996975 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.647000074 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.647749901 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.647780895 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.647804976 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.647821903 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.647872925 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.648587942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.648626089 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.648673058 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.648701906 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.649454117 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.649506092 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.649507999 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.649540901 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.649591923 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.650316954 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.650392056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.650408983 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.650444031 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.651180983 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.651237965 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.651252985 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.651284933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.651329041 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.652204037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.652259111 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.652312040 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.652338982 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.653017998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.653069019 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.653069019 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.653088093 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.653135061 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.653938055 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.654004097 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.654047012 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.654548883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.654642105 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.654692888 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.654751062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.655313015 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.655364037 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.655405998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.655448914 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.655498981 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.656253099 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.656306982 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.656357050 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.656379938 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.657087088 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.657144070 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.657171965 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.657188892 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.657242060 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.657852888 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.657957077 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.658006907 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.658031940 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.658765078 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.658821106 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.658844948 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.658947945 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.659003019 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.659590006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.659606934 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.659651041 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.659667015 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.660309076 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.660367012 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.660373926 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.660444975 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.660500050 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.661128044 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.661179066 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.661226034 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.661317110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.662105083 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.662153959 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.662162066 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.662204027 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.662250996 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.662887096 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.663098097 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.663146973 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.663156033 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.663515091 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.663532972 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.663573027 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.663613081 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.663667917 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.664269924 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.664330006 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.664378881 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.664385080 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.665057898 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.665112019 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.665122032 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.665163040 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.665222883 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.665813923 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.665869951 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.665919065 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.665923119 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.666559935 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.666611910 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.666615963 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.666685104 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.666731119 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.667347908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.667475939 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.667526960 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.667854071 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.667972088 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.668020010 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.668025970 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.668566942 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.668626070 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.668683052 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.668759108 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.668812037 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.669308901 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.669389009 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.669469118 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.669470072 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.670150995 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.670205116 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.670216084 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.670233965 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.670281887 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.670793056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.670850039 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.670902014 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.670909882 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.670994043 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.671040058 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.671755075 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.671962023 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.671979904 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.672015905 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.672056913 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.672111034 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.672738075 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.672802925 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.672856092 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.672923088 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.673012018 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.673053980 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.673619986 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.673659086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.673708916 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.673712015 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.673770905 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.673821926 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.674545050 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.674607992 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.674643993 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.674664974 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.674786091 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.674835920 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.675528049 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.675590038 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.675635099 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.675638914 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.675685883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.675734043 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.676436901 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.676497936 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.676544905 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.676551104 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.676593065 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.676645994 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.677350998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.677398920 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.677453041 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.677460909 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.677521944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.677568913 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.678227901 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.678267956 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.678323984 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.678333998 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.678385019 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.678431988 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.679147959 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.679193974 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.679245949 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.679579020 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.679663897 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.679713011 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.679733992 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.679750919 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.679802895 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.680495977 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.680540085 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.680588961 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.680593967 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.680639029 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.680694103 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.681411982 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.681471109 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.681488037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.681519985 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.681545973 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.681596994 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.682394028 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.682451963 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.682501078 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.682502031 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.682553053 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.682598114 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.683192968 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.683325052 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.683374882 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.683396101 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.683433056 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.683473110 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.683948040 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.684223890 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.684271097 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.684356928 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.684401989 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.684451103 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.684921026 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.685353994 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.685398102 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.685415983 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.685439110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.685486078 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.685611963 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.685682058 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.685729980 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.685734987 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.685816050 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.685864925 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.686527014 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.686579943 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.686628103 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.686641932 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.686659098 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.686708927 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.687680960 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.687750101 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.687800884 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.688605070 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.688792944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.688808918 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.688846111 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.689203978 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.689256907 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.689328909 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.689372063 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.689418077 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.689435005 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.689496994 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.689542055 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.689555883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.689574003 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.689627886 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.689996958 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.690078020 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.690126896 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.690144062 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.690196037 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.690244913 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.690265894 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.690383911 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.690429926 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.691313982 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.691375971 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.691430092 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.691483021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.691500902 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.691545010 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.691808939 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.691876888 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.691915989 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.691926003 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.691970110 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.692014933 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.692621946 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.692677021 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.692722082 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.692845106 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.692878008 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.692924976 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.693412066 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.693476915 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.693530083 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.693532944 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.693656921 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.693705082 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.694228888 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.694322109 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.694370985 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.694554090 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.694638968 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.694693089 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.694999933 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.695086956 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.695135117 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.695162058 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.695278883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.695327997 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.695751905 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.695786953 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.695832968 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.695858002 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.695875883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.695919991 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.695947886 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.696763039 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.696806908 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.696818113 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.696858883 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.696902037 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.696907997 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.696959972 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.697005033 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.697742939 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.697799921 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.697848082 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.697851896 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.697879076 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.697930098 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.698013067 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.698784113 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.698841095 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.698956966 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.698975086 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.699022055 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.699114084 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.699187994 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.699234009 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.699645996 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.699949026 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.700001001 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.700009108 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.700165033 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.700203896 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.700215101 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.700242996 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:42:46.700289965 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:42:46.890101910 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:46.890183926 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:46.890305042 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:46.890566111 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:46.890619993 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:47.258388996 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:47.259272099 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:47.259332895 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:47.261423111 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:47.261522055 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:47.266169071 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:47.266308069 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:47.310314894 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:47.310336113 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:47.357295036 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:48.640026093 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:48.640062094 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:48.640160084 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:48.642343044 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:48.642359972 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:48.982574940 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:48.982665062 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:48.988116980 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:48.988126993 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:48.989029884 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.029679060 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.044090033 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.084124088 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.289819956 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.289983988 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.290062904 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.290163040 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.290186882 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.290206909 CEST	49740	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.290215015 CEST	443	49740	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.332628965 CEST	49741	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.332725048 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.332837105 CEST	49741	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.333168030 CEST	49741	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.333188057 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.660693884 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.660784960 CEST	49741	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.662445068 CEST	49741	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.662466049 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.662817001 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.664485931 CEST	49741	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.708125114 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.979579926 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.979748011 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.979851961 CEST	49741	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.980923891 CEST	49741	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.980967045 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:49.981017113 CEST	49741	443	192.168.2.4	23.3.84.131
Apr 24, 2024 12:42:49.981033087 CEST	443	49741	23.3.84.131	192.168.2.4
Apr 24, 2024 12:42:57.282701969 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:57.282865047 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:57.282942057 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:57.906698942 CEST	49739	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:42:57.906735897 CEST	443	49739	142.250.101.147	192.168.2.4
Apr 24, 2024 12:42:59.085556030 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:42:59.085602999 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:42:59.085748911 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:42:59.087423086 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:42:59.087440968 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:42:59.705511093 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:42:59.705596924 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:42:59.711874962 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:42:59.711889029 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:42:59.712265015 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:42:59.763690948 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.479005098 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.520147085 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.887739897 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.887773037 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.887782097 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.887856960 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.887885094 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.887895107 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.887938976 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.887948036 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.887954950 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.887991905 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.888029099 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.888071060 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.888083935 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.888128996 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.888128996 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.920829058 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.920881033 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:00.920912027 CEST	49742	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:00.920933962 CEST	443	49742	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:15.377537966 CEST	80	49736	108.139.9.151	192.168.2.4
Apr 24, 2024 12:43:15.377722979 CEST	49736	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:43:15.906368017 CEST	49736	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:43:16.078387976 CEST	80	49736	108.139.9.151	192.168.2.4
Apr 24, 2024 12:43:31.701720953 CEST	49735	80	192.168.2.4	108.139.9.151
Apr 24, 2024 12:43:31.873898029 CEST	80	49735	108.139.9.151	192.168.2.4
Apr 24, 2024 12:43:37.862550974 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:37.862587929 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:37.862660885 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:37.863003969 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:37.863018990 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:38.473680973 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:38.473810911 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:38.477950096 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:38.477962017 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:38.478405952 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:38.487144947 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:38.528162956 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:39.067586899 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:39.067625999 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:39.067699909 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:39.067753077 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:39.067773104 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:39.067836046 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:39.067878962 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:39.067914963 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:39.067920923 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:39.067949057 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:39.068032026 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:39.071893930 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:39.071907997 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:39.071944952 CEST	49747	443	192.168.2.4	52.165.165.26
Apr 24, 2024 12:43:39.071953058 CEST	443	49747	52.165.165.26	192.168.2.4
Apr 24, 2024 12:43:46.795767069 CEST	49749	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:43:46.795852900 CEST	443	49749	142.250.101.147	192.168.2.4
Apr 24, 2024 12:43:46.795922041 CEST	49749	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:43:46.796158075 CEST	49749	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:43:46.796199083 CEST	443	49749	142.250.101.147	192.168.2.4
Apr 24, 2024 12:43:47.150031090 CEST	443	49749	142.250.101.147	192.168.2.4
Apr 24, 2024 12:43:47.150336981 CEST	49749	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:43:47.150397062 CEST	443	49749	142.250.101.147	192.168.2.4
Apr 24, 2024 12:43:47.150743008 CEST	443	49749	142.250.101.147	192.168.2.4
Apr 24, 2024 12:43:47.151283026 CEST	49749	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:43:47.151354074 CEST	443	49749	142.250.101.147	192.168.2.4
Apr 24, 2024 12:43:47.200843096 CEST	49749	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:43:57.195663929 CEST	443	49749	142.250.101.147	192.168.2.4
Apr 24, 2024 12:43:57.195744991 CEST	443	49749	142.250.101.147	192.168.2.4
Apr 24, 2024 12:43:57.195897102 CEST	49749	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:43:57.914047956 CEST	49749	443	192.168.2.4	142.250.101.147
Apr 24, 2024 12:43:57.914113998 CEST	443	49749	142.250.101.147	192.168.2.4

UDP Packets

Timestamp	Source Port	Dest Port	Source IP	Dest IP
Apr 24, 2024 12:42:43.854012012 CEST	53	51967	1.1.1.1	192.168.2.4
Apr 24, 2024 12:42:43.915877104 CEST	53	52474	1.1.1.1	192.168.2.4
Apr 24, 2024 12:42:44.737217903 CEST	55957	53	192.168.2.4	1.1.1.1
Apr 24, 2024 12:42:44.737371922 CEST	56340	53	192.168.2.4	1.1.1.1
Apr 24, 2024 12:42:44.951944113 CEST	53	51698	1.1.1.1	192.168.2.4
Apr 24, 2024 12:42:45.031038046 CEST	53	56340	1.1.1.1	192.168.2.4
Apr 24, 2024 12:42:45.031080961 CEST	53	55957	1.1.1.1	192.168.2.4
Apr 24, 2024 12:42:46.734673977 CEST	57615	53	192.168.2.4	1.1.1.1
Apr 24, 2024 12:42:46.735131025 CEST	55763	53	192.168.2.4	1.1.1.1
Apr 24, 2024 12:42:46.887847900 CEST	53	57615	1.1.1.1	192.168.2.4
Apr 24, 2024 12:42:46.888446093 CEST	53	55763	1.1.1.1	192.168.2.4
Apr 24, 2024 12:43:02.493020058 CEST	53	62220	1.1.1.1	192.168.2.4
Apr 24, 2024 12:43:03.232112885 CEST	138	138	192.168.2.4	192.168.2.255
Apr 24, 2024 12:43:21.219207048 CEST	53	54732	1.1.1.1	192.168.2.4
Apr 24, 2024 12:43:42.847111940 CEST	53	52987	1.1.1.1	192.168.2.4
Apr 24, 2024 12:43:44.124032974 CEST	53	63927	1.1.1.1	192.168.2.4

DNS Queries

Timestamp	Source IP	Dest IP	Trans ID	OP Code	Name	Type	Class	DNS over HTTPS
Apr 24, 2024 12:42:44.737217903 CEST	192.168.2.4	1.1.1.1	0xaaf0	Standard query (0)	d1isumqvmnq7jz.cloudfront.net	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:44.737371922 CEST	192.168.2.4	1.1.1.1	0x81ae	Standard query (0)	d1isumqvmnq7jz.cloudfront.net	65	IN (0x0001)	false
Apr 24, 2024 12:42:46.734673977 CEST	192.168.2.4	1.1.1.1	0x46e1	Standard query (0)	www.google.com	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:46.735131025 CEST	192.168.2.4	1.1.1.1	0xcc1d	Standard query (0)	www.google.com	65	IN (0x0001)	false

DNS Answers

Timestamp	Source IP	Dest IP	Trans ID	Reply Code	Name	Address	Type	Class	DNS over HTTPS
Apr 24, 2024 12:42:45.031080961 CEST	1.1.1.1	192.168.2.4	0xaaf0	No error (0)	d1isumqvmnq7jz.cloudfront.net	108.139.9.151	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:45.031080961 CEST	1.1.1.1	192.168.2.4	0xaaf0	No error (0)	d1isumqvmnq7jz.cloudfront.net	108.139.9.104	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:45.031080961 CEST	1.1.1.1	192.168.2.4	0xaaf0	No error (0)	d1isumqvmnq7jz.cloudfront.net	108.139.9.106	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:45.031080961 CEST	1.1.1.1	192.168.2.4	0xaaf0	No error (0)	d1isumqvmnq7jz.cloudfront.net	108.139.9.35	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:46.887847900 CEST	1.1.1.1	192.168.2.4	0x46e1	No error (0)	www.google.com	142.250.101.147	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:46.887847900 CEST	1.1.1.1	192.168.2.4	0x46e1	No error (0)	www.google.com	142.250.101.103	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:46.887847900 CEST	1.1.1.1	192.168.2.4	0x46e1	No error (0)	www.google.com	142.250.101.99	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:46.887847900 CEST	1.1.1.1	192.168.2.4	0x46e1	No error (0)	www.google.com	142.250.101.105	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:46.887847900 CEST	1.1.1.1	192.168.2.4	0x46e1	No error (0)	www.google.com	142.250.101.106	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:46.887847900 CEST	1.1.1.1	192.168.2.4	0x46e1	No error (0)	www.google.com	142.250.101.104	A (IP address)	IN (0x0001)	false
Apr 24, 2024 12:42:46.888446093 CEST	1.1.1.1	192.168.2.4	0xcc1d	No error (0)	www.google.com		65	IN (0x0001)	false

HTTP Request Dependency Graph

fs.microsoft.com

slscr.update.microsoft.com

d1isumqvmnq7jz.cloudfront.net

HTTP Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
0	192.168.2.4	49735	108.139.9.151	80	3524	C:\Program Files\Google\Chrome\Application\chrome.exe

Timestamp	Bytes transferred	Direction	Data
Apr 24, 2024 12:42:45.204677105 CEST	468	OUT	GET /build/pl/v4.397.63.30.34 HTTP/1.1 Host: d1isumqvmnq7jz.cloudfront.net Connection: keep-alive Upgrade-Insecure-Requests: 1 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate Accept-Language: en-US,en;q=0.9
Apr 24, 2024 12:42:45.543112040 CEST	1289	IN	HTTP/1.1 200 OK Content-Type: application/octet-stream Content-Length: 1771184 Connection: keep-alive Access-Control-Allow-Origin: * Cache-Control: private, must-revalidate, proxy-revalidate, max-age=0, s-maxage=0 Content-Disposition: attachment; filename="free-barcode-6.8.10-installer_c-RQoW1.exe"; filename*=UTF-8''free-barcode-6.8.10-installer_c-RQoW1.exe Content-Transfer-Encoding: binary Date: Wed, 24 Apr 2024 10:42:45 GMT Expires: Mon, 26 Jul 1997 05:00:00 GMT Pragma: public X-Cache: Miss from cloudfront Via: 1.1 912d83c7c9b4676eb19f09c9bfabda24.cloudfront.net (CloudFront) X-Amz-Cf-Pop: SFO5-P2 X-Amz-Cf-Id: Q9u_XHooeKOYQ6RdaKkHziSNdHuVy0qxRIwRHEjD1uqTCW0jBkk1Vw== Age: 0 Data Raw: 4d 5a 50 00 02 00 00 00 04 00 0f 00 ff ff 00 00 b8 00 00 00 00 00 00 00 40 00 1a 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 01 00 00 ba 10 00 0e 1f b4 09 cd 21 b8 01 4c cd 21 90 90 54 68 69 73 20 70 72 6f 67 72 61 6d 20 6d 75 73 74 20 62 65 20 72 75 6e 20 75 6e 64 65 72 20 57 69 6e 33 32 0d 0a 24 37 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 50 45 00 00 4c 01 0a 00 18 f2 ec 63 00 00 00 00 00 00 00 00 e0 00 8f 81 0b 01 02 19 00 52 0b 00 00 5e 01 00 00 00 00 00 ec 5e 0b 00 00 10 00 00 00 70 0b 00 00 00 40 00 00 10 00 00 00 02 00 00 06 00 01 00 06 00 00 00 06 00 01 00 00 00 00 00 00 80 0d 00 00 04 00 00 f1 9e 1b 00 02 00 40 81 00 00 10 00 00 40 00 00 00 00 10 00 00 10 00 00 00 00 00 00 10 00 00 00 00 40 0c 00 9a 00 00 00 00 20 0c 00 dc 0f 00 00 00 70 0c 00 00 10 01 00 00 00 00 00 00 00 00 00 90 de 1a 00 20 28 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 60 0c 00 18 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 f4 22 0c 00 54 02 00 00 00 30 0c 00 a4 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 2e 74 65 78 74 00 00 00 e4 39 0b 00 00 10 00 00 00 3a 0b 00 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 60 2e 69 74 65 78 74 00 00 88 16 00 00 00 50 0b 00 00 18 00 00 00 3e 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 20 00 00 60 2e 64 61 74 Data Ascii: MZP@!L!This program must be run under Win32$7PELcR^^p@@@@ p (`"T0.text9: `.itextP> `.dat
Apr 24, 2024 12:42:45.543204069 CEST	1289	IN	Data Raw: 61 00 00 00 a4 37 00 00 00 70 0b 00 00 38 00 00 00 56 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 40 00 00 c0 2e 62 73 73 00 00 00 00 e8 6d 00 00 00 b0 0b 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 c0 2e 69 64 61 74 61 Data Ascii: a7p8V@.bssm.idata @.didata0@.edata@@@.tlsP.rdata
Apr 24, 2024 12:42:45.543256998 CEST	514	IN	Data Raw: 00 00 00 e4 10 40 00 00 00 00 00 02 02 44 31 02 00 cc 10 40 00 04 00 00 00 02 02 44 32 02 00 cc 10 40 00 06 00 00 00 02 02 44 33 02 00 00 00 00 00 08 00 00 00 02 02 44 34 02 00 02 00 05 00 0b f4 ca 40 00 0c 26 6f 70 5f 45 71 75 61 6c 69 74 79 00 Data Ascii: @D1@D2@D3D4@&op_Equality@@@Left@@Right\|K&op_Inequality@@@Left@@Right\|KEmpty@@\|KCreate@@Data@BigEndian\|K
Apr 24, 2024 12:42:45.543329000 CEST	1289	IN	Data Raw: 10 40 00 00 00 00 00 02 0a 45 6e 74 72 79 43 6f 75 6e 74 02 00 00 00 00 00 04 00 00 00 02 07 45 6e 74 72 69 65 73 02 00 02 00 00 00 00 88 15 40 00 0e 07 54 4d 65 74 68 6f 64 08 00 00 00 00 00 00 00 00 02 00 00 00 00 11 40 00 00 00 00 00 02 04 43 Data Ascii: @EntryCountEntries@TMethod@Code@Data\|K&op_Equality@@Left@Right\|K&op_Inequality@@Left@Right\|K&op_GreaterThan@
Apr 24, 2024 12:42:45.543399096 CEST	1289	IN	Data Raw: 69 7a 65 03 00 9c 10 40 00 08 00 01 00 00 00 00 00 00 00 04 53 65 6c 66 02 00 02 00 3c 00 f0 5f 40 00 0c 49 6e 68 65 72 69 74 73 46 72 6f 6d 03 00 00 10 40 00 08 00 02 00 00 00 00 00 00 00 04 53 65 6c 66 02 00 00 14 13 40 00 01 00 06 41 43 6c 61 Data Ascii: ize@Self<_@InheritsFrom@Self@AClass;a@MethodAddress@Self@Name;a@MethodAddress@Self@NameFa@MethodName@Sel
Apr 24, 2024 12:42:45.543458939 CEST	1289	IN	Data Raw: 72 6f 79 03 00 00 00 00 00 08 00 01 08 88 1f 40 00 00 00 04 53 65 6c 66 02 00 02 00 00 00 00 8c 1f 40 00 07 07 54 4f 62 6a 65 63 74 68 17 40 00 00 00 00 00 00 00 06 53 79 73 74 65 6d 00 00 00 00 02 00 00 00 00 00 08 20 40 00 00 00 00 00 00 00 00 Data Ascii: roy@Self@TObjecth@System @$ @ @ @@]@]@`@`@,`@0`@4`@(`@\@\@\@TCustomAttribute$ @TCustomAttribute @@System @
Apr 24, 2024 12:42:45.543509960 CEST	1289	IN	Data Raw: 00 00 00 00 00 00 0a 46 4c 6f 63 6b 43 6f 75 6e 74 0c 00 f8 21 40 00 b8 5c 40 00 00 00 9c 10 40 00 04 00 00 00 00 0f 46 52 65 63 75 72 73 69 6f 6e 43 6f 75 6e 74 02 00 e4 10 40 00 08 00 00 00 00 0d 46 4f 77 6e 69 6e 67 54 68 72 65 61 64 02 00 00 Data Ascii: FLockCount!@\@@FRecursionCount@FOwningThread@FLockEvent@FSpinCountd#@FWaitQueue#@FQueueLock\|KSetSpinCount@AObject@ASpinCount\|KEnte
Apr 24, 2024 12:42:45.543549061 CEST	1289	IN	Data Raw: 00 14 05 50 42 79 74 65 b4 10 40 00 02 00 00 00 00 90 29 40 00 14 06 50 49 6e 74 36 34 14 11 40 00 02 00 00 00 a4 29 40 00 14 09 50 45 78 74 65 6e 64 65 64 9c 11 40 00 02 00 00 00 00 bc 29 40 00 14 09 50 43 75 72 72 65 6e 63 79 d0 11 40 00 02 00 Data Ascii: PByte@)@PInt64@)@PExtended@)@PCurrency@)@PVariant@)@PPointer@)@TDateTime@TDate @TVarArrayBound@ElementCount@LowBound
Apr 24, 2024 12:42:45.543585062 CEST	695	IN	Data Raw: 57 43 68 61 72 09 74 6b 4c 53 74 72 69 6e 67 09 74 6b 57 53 74 72 69 6e 67 09 74 6b 56 61 72 69 61 6e 74 07 74 6b 41 72 72 61 79 08 74 6b 52 65 63 6f 72 64 0b 74 6b 49 6e 74 65 72 66 61 63 65 07 74 6b 49 6e 74 36 34 0a 74 6b 44 79 6e 41 72 72 61 Data Ascii: WChartkLStringtkWStringtkVarianttkArraytkRecordtkInterfacetkInt64tkDynArraytkUStringtkClassReftkPointertkProceduretkMRecordSystem/@TVarRec@VInteger@VBoolean0@VChar)@VE
Apr 24, 2024 12:42:45.543622017 CEST	1289	IN	Data Raw: 6e 66 6f 10 00 00 00 00 00 00 00 00 04 00 00 00 9c 10 40 00 00 00 00 00 02 09 54 79 70 65 43 6f 75 6e 74 02 00 f4 30 40 00 04 00 00 00 02 09 54 79 70 65 54 61 62 6c 65 02 00 9c 10 40 00 08 00 00 00 02 09 55 6e 69 74 43 6f 75 6e 74 02 00 34 29 40 Data Ascii: nfo@TypeCount0@TypeTable@UnitCount4)@UnitNames1@TArray<System.Byte>@System@1@TArray<System.Char>L@SystemL@2@TArray<System.Intege
Apr 24, 2024 12:42:45.543669939 CEST	139	IN	Data Raw: 4c 00 8b c0 ff 25 28 23 4c 00 8b c0 ff 25 40 24 4c 00 8b c0 ff 25 14 24 4c 00 8b c0 ff 25 f8 23 4c 00 8b c0 ff 25 b4 23 4c 00 8b c0 ff 25 94 23 4c 00 8b c0 ff 25 d4 23 4c 00 8b c0 ff 25 48 24 4c 00 8b c0 ff 25 50 23 4c 00 8b c0 ff 25 80 23 4c 00 Data Ascii: L%(#L%@$L%$L%#L%#L%#L%#L%H$L%P#L%#L%l#L%D$L%#L%d#L% #L%#L%@#L

HTTPS Proxied Packets

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
0	192.168.2.4	49740	23.3.84.131	443

Timestamp	Bytes transferred	Direction	Data
2024-04-24 10:42:49 UTC	161	OUT	HEAD /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-04-24 10:42:49 UTC	467	IN	HTTP/1.1 200 OK Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json Content-Type: application/octet-stream ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" Last-Modified: Tue, 16 May 2017 22:58:00 GMT Server: ECAcc (sac/2518) X-CID: 11 X-Ms-ApiVersion: Distribute 1.2 X-Ms-Region: prod-eus-z1 Cache-Control: public, max-age=246016 Date: Wed, 24 Apr 2024 10:42:49 GMT Connection: close X-CID: 2

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
1	192.168.2.4	49741	23.3.84.131	443

Timestamp	Bytes transferred	Direction	Data
2024-04-24 10:42:49 UTC	239	OUT	GET /fs/windows/config.json HTTP/1.1 Connection: Keep-Alive Accept: / Accept-Encoding: identity If-Unmodified-Since: Tue, 16 May 2017 22:58:00 GMT Range: bytes=0-2147483646 User-Agent: Microsoft BITS/7.8 Host: fs.microsoft.com
2024-04-24 10:42:49 UTC	531	IN	HTTP/1.1 200 OK Content-Type: application/octet-stream Last-Modified: Tue, 16 May 2017 22:58:00 GMT ETag: "0x64667F707FF07D62B733DBCB79EFE3855E6886C9975B0C0B467D46231B3FA5E7" ApiVersion: Distribute 1.1 Content-Disposition: attachment; filename=config.json; filename*=UTF-8''config.json X-Azure-Ref: 0Fz4RYwAAAACZW8dCTzveR7lI76J6Z2l5U0pDRURHRTA1MTgAY2VmYzI1ODMtYTliMi00NGE3LTk3NTUtYjc2ZDE3ZTA1Zjdm Cache-Control: public, max-age=246003 Date: Wed, 24 Apr 2024 10:42:49 GMT Content-Length: 55 Connection: close X-CID: 2
2024-04-24 10:42:49 UTC	55	IN	Data Raw: 7b 22 66 6f 6e 74 53 65 74 55 72 69 22 3a 22 66 6f 6e 74 73 65 74 2d 32 30 31 37 2d 30 34 2e 6a 73 6f 6e 22 2c 22 62 61 73 65 55 72 69 22 3a 22 66 6f 6e 74 73 22 7d Data Ascii: {"fontSetUri":"fontset-2017-04.json","baseUri":"fonts"}

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
2	192.168.2.4	49742	52.165.165.26	443

Timestamp	Bytes transferred	Direction	Data
2024-04-24 10:43:00 UTC	306	OUT	GET /SLS/%7B522D76A4-93E1-47F8-B8CE-07C937AD1A1E%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=y9H6zm9SFOtVZWe&MD=RvkHDuaf HTTP/1.1 Connection: Keep-Alive Accept: / User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33 Host: slscr.update.microsoft.com
2024-04-24 10:43:00 UTC	560	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: application/octet-stream Expires: -1 Last-Modified: Mon, 01 Jan 0001 00:00:00 GMT ETag: "XAopazV00XDWnJCwkmEWRv6JkbjRA9QSSZ2+e/3MzEk=_2880" MS-CorrelationId: 093c7871-9b09-48eb-a8c4-dd722cd4ccfc MS-RequestId: a70f2eb9-1288-413a-baa0-ce1fdcea10ed MS-CV: 2CRBEGubpUGnw5+B.0 X-Microsoft-SLSClientCache: 2880 Content-Disposition: attachment; filename=environment.cab X-Content-Type-Options: nosniff Date: Wed, 24 Apr 2024 10:43:00 GMT Connection: close Content-Length: 24490
2024-04-24 10:43:00 UTC	15824	IN	Data Raw: 4d 53 43 46 00 00 00 00 92 1e 00 00 00 00 00 00 44 00 00 00 00 00 00 00 03 01 01 00 01 00 04 00 23 d0 00 00 14 00 00 00 00 00 10 00 92 1e 00 00 18 41 00 00 00 00 00 00 00 00 00 00 64 00 00 00 01 00 01 00 e6 42 00 00 00 00 00 00 00 00 00 00 00 00 80 00 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 63 61 62 00 78 cf 8d 5c 26 1e e6 42 43 4b ed 5c 07 54 13 db d6 4e a3 f7 2e d5 d0 3b 4c 42 af 4a 57 10 e9 20 bd 77 21 94 80 88 08 24 2a 02 02 d2 55 10 a4 a8 88 97 22 8a 0a d2 11 04 95 ae d2 8b 20 28 0a 88 20 45 05 f4 9f 80 05 bd ed dd f7 ff 77 dd f7 bf 65 d6 4a 66 ce 99 33 67 4e d9 7b 7f fb db 7b 56 f4 4d 34 b4 21 e0 a7 03 0a d9 fc 68 6e 1d 20 70 28 14 02 85 20 20 ad 61 10 08 e3 66 0d ed 66 9b 1d 6a 90 af 1f 17 f0 4b 68 35 01 83 6c fb 44 42 5c 7d 83 3d 03 30 be 3e ae be 58 Data Ascii: MSCFD#AdBenvironment.cabx\&BCK\TN.;LBJW w!$*U" ( EweJf3gN{{VM4!hn p( affjKh5lDB\}=0>X
2024-04-24 10:43:00 UTC	8666	IN	Data Raw: 04 01 31 2f 30 2d 30 0a 02 05 00 e1 2b 8a 50 02 01 00 30 0a 02 01 00 02 02 12 fe 02 01 ff 30 07 02 01 00 02 02 11 e6 30 0a 02 05 00 e1 2c db d0 02 01 00 30 36 06 0a 2b 06 01 04 01 84 59 0a 04 02 31 28 30 26 30 0c 06 0a 2b 06 01 04 01 84 59 0a 03 02 a0 0a 30 08 02 01 00 02 03 07 a1 20 a1 0a 30 08 02 01 00 02 03 01 86 a0 30 0d 06 09 2a 86 48 86 f7 0d 01 01 05 05 00 03 81 81 00 0c d9 08 df 48 94 57 65 3e ad e7 f2 17 9c 1f ca 3d 4d 6c cd 51 e1 ed 9c 17 a5 52 35 0f fd de 4b bd 22 92 c5 69 e5 d7 9f 29 23 72 40 7a ca 55 9d 8d 11 ad d5 54 00 bb 53 b4 87 7b 72 84 da 2d f6 e3 2c 4f 7e ba 1a 58 88 6e d6 b9 6d 16 ae 85 5b b5 c2 81 a8 e0 ee 0a 9c 60 51 3a 7b e4 61 f8 c3 e4 38 bd 7d 28 17 d6 79 f0 c8 58 c6 ef 1f f7 88 65 b1 ea 0a c0 df f7 ee 5c 23 c2 27 fd 98 63 08 31 Data Ascii: 1/0-0+P000,06+Y1(0&0+Y0 00*HHWe>=MlQR5K"i)#r@zUTS{r-,O~Xnm[`Q:{a8}(yXe\#'c1

Session ID	Source IP	Source Port	Destination IP	Destination Port	PID	Process
3	192.168.2.4	49747	52.165.165.26	443

Timestamp	Bytes transferred	Direction	Data
2024-04-24 10:43:38 UTC	306	OUT	GET /SLS/%7BE7A50285-D08D-499D-9FF8-180FDC2332BC%7D/x64/10.0.19045.2006/0?CH=700&L=en-GB&P=&PT=0x30&WUA=10.0.19041.1949&MK=y9H6zm9SFOtVZWe&MD=RvkHDuaf HTTP/1.1 Connection: Keep-Alive Accept: / User-Agent: Windows-Update-Agent/10.0.10011.16384 Client-Protocol/2.33 Host: slscr.update.microsoft.com
2024-04-24 10:43:39 UTC	560	IN	HTTP/1.1 200 OK Cache-Control: no-cache Pragma: no-cache Content-Type: application/octet-stream Expires: -1 Last-Modified: Mon, 01 Jan 0001 00:00:00 GMT ETag: "Mx1RoJH/qEwpWfKllx7sbsl28AuERz5IYdcsvtTJcgM=_2160" MS-CorrelationId: 75af5b90-170f-46cb-bd40-81fedd5b6260 MS-RequestId: 43c41d6f-2eed-428a-a02f-9166d61c4789 MS-CV: W81kiyRSUkm3MvhW.0 X-Microsoft-SLSClientCache: 2160 Content-Disposition: attachment; filename=environment.cab X-Content-Type-Options: nosniff Date: Wed, 24 Apr 2024 10:43:38 GMT Connection: close Content-Length: 25457
2024-04-24 10:43:39 UTC	15824	IN	Data Raw: 4d 53 43 46 00 00 00 00 51 22 00 00 00 00 00 00 44 00 00 00 00 00 00 00 03 01 01 00 01 00 04 00 db 8e 00 00 14 00 00 00 00 00 10 00 51 22 00 00 20 41 00 00 00 00 00 00 00 00 00 00 64 00 00 00 01 00 01 00 f3 43 00 00 00 00 00 00 00 00 00 00 00 00 80 00 65 6e 76 69 72 6f 6e 6d 65 6e 74 2e 63 61 62 00 0d 92 6f db e5 21 f3 43 43 4b ed 5a 09 38 55 5b df 3f 93 99 90 29 99 e7 29 ec 73 cc 4a 66 32 cf 84 32 64 c8 31 c7 11 52 38 87 90 42 66 09 99 87 32 0f 19 0a 09 51 a6 a8 08 29 53 86 4a 52 84 50 df 46 83 ba dd 7b df fb 7e ef 7d ee 7d bf ef 9e e7 d9 67 ef 35 ee b5 fe eb 3f ff b6 96 81 a2 0a 04 fc 31 40 21 5b 3f a5 ed 1b 04 0e 85 42 a0 10 04 64 12 6c a5 de aa a1 d8 ea f3 58 01 f2 f5 67 0b 5e 9b bd e8 a0 90 1d bf 40 88 9d eb 49 b4 87 9b ab 8b 9d 2b 46 c8 c7 c5 19 92 Data Ascii: MSCFQ"DQ" AdCenvironment.cabo!CCKZ8U[?))sJf22d1R8Bf2Q)SJRPF{~}}g5?1@![?BdlXg^@I+F
2024-04-24 10:43:39 UTC	9633	IN	Data Raw: 21 6f b3 eb a6 cc f5 31 be cf 05 e2 a9 fe fa 57 6d 19 30 b3 c2 c5 66 c9 6a df f5 e7 f0 78 bd c7 a8 9e 25 e3 f9 bc ed 6b 54 57 08 2b 51 82 44 12 fb b9 53 8c cc f4 60 12 8a 76 cc 40 40 41 9b dc 5c 17 ff 5c f9 5e 17 35 98 24 56 4b 74 ef 42 10 c8 af bf 7f c6 7f f2 37 7d 5a 3f 1c f2 99 79 4a 91 52 00 af 38 0f 17 f5 2f 79 81 65 d9 a9 b5 6b e4 c7 ce f6 ca 7a 00 6f 4b 30 44 24 22 3c cf ed 03 a5 96 8f 59 29 bc b6 fd 04 e1 70 9f 32 4a 27 fd 55 af 2f fe b6 e5 8e 33 bb 62 5f 9a db 57 40 e9 f1 ce 99 66 90 8c ff 6a 62 7f dd c5 4a 0b 91 26 e2 39 ec 19 4a 71 63 9d 7b 21 6d c3 9c a3 a2 3c fa 7f 7d 96 6a 90 78 a6 6d d2 e1 9c f9 1d fc 38 d8 94 f4 c6 a5 0a 96 86 a4 bd 9e 1a ae 04 42 83 b8 b5 80 9b 22 38 20 b5 25 e5 64 ec f7 f4 bf 7e 63 59 25 0f 7a 2e 39 57 76 a2 71 aa 06 8a Data Ascii: !o1Wm0fjx%kTW+QDS`v@@A\\^5$VKtB7}Z?yJR8/yekzoK0D$"<Y)p2J'U/3b_W@fjbJ&9Jqc{!m<}jxm8B"8 %d~cY%z.9Wvq

Target ID:	0
Start time:	12:42:40
Start date:	24/04/2024
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Imagebase:	0x7ff76e190000
File size:	3'242'272 bytes
MD5 hash:	45DE480806D1B5D462A7DDE4DCEFC4E4
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	false

Show Windows behavior

Target ID:	2
Start time:	12:42:41
Start date:	24/04/2024
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2236 --field-trial-handle=2208,i,4406949674789423698,2697958066234429667,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Imagebase:	0x7ff76e190000
File size:	3'242'272 bytes
MD5 hash:	45DE480806D1B5D462A7DDE4DCEFC4E4
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	false

Show Windows behavior

Target ID:	3
Start time:	12:42:44
Start date:	24/04/2024
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" "http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34"
Imagebase:	0x7ff76e190000
File size:	3'242'272 bytes
MD5 hash:	45DE480806D1B5D462A7DDE4DCEFC4E4
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	4
Start time:	12:42:45
Start date:	24/04/2024
Path:	C:\Program Files\Google\Chrome\Application\chrome.exe
Wow64 process (32bit):	false
Commandline:	"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --lang=en-US --service-sandbox-type=icon_reader --mojo-platform-channel-handle=5480 --field-trial-handle=2208,i,4406949674789423698,2697958066234429667,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Imagebase:	0x7ff76e190000
File size:	3'242'272 bytes
MD5 hash:	45DE480806D1B5D462A7DDE4DCEFC4E4
Has elevated privileges:	false
Has administrator privileges:	false
Programmed in:	C, C++ or other language
Reputation:	low
Has exited:	true

Show Windows behavior

Target ID:	9
Start time:	12:44:01
Start date:	24/04/2024
Path:	C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe"
Imagebase:	0x400000
File size:	1'771'184 bytes
MD5 hash:	6144AC21E74CC0373B54BCFE210BAFC8
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	Borland Delphi
Reputation:	low
Has exited:	false

Show Windows behavior

Target ID:	10
Start time:	12:44:02
Start date:	24/04/2024
Path:	C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp
Wow64 process (32bit):	true
Commandline:	"C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp" /SL5="$A0076,837550,832512,C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe"
Imagebase:	0x400000
File size:	3'209'760 bytes
MD5 hash:	8A8ADFED91899D41DFB711744C8BE5E7
Has elevated privileges:	true
Has administrator privileges:	true
Programmed in:	Borland Delphi
Antivirus matches:	Detection: 4%, Virustotal, Browse
Reputation:	low
Has exited:	false

Show Windows behavior

Chronological Activities

Disassembly

⊘No disassembly

Source: C:\Users\user\Downloads\Unconfirmed 806031.crdownload	Virustotal: Detection: 14%	Perma Link
Source: C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe (copy)	Virustotal: Detection: 14%	Perma Link
Source: Chrome Cache Entry: 44	Virustotal: Detection: 14%	Perma Link

Description:	Adversaries may execute their own malicious payloads by side-loading DLLs. Similar to DLL Search Order Hijacking , side-loading involves hijacking which DLL a program loads. But rather than just planting the DLL within the search order of a program then waiting for the victim application to be invoked, adversaries may directly side-load their payloads by planting then invoking a legitimate application that executes their payload(s).
Tactics:	Defense Evasion, Persistence, Privilege Escalation
Data Sources:	File: File Creation, File: File Modification, Module: Module Load, Process: Process Creation
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Process injection is a method of executing arbitrary code in the address space of a separate live process. Running code in the context of another process may allow access to the process's memory, system/network resources, and possibly elevated privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	File: File Metadata, File: File Modification, Module: Module Load, Process: OS API Execution, Process: Process Access, Process: Process Metadata, Process: Process Modification
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Metadata, File: File Modification, Image: Image Metadata, Process: OS API Execution, Process: Process Creation, Process: Process Metadata, Scheduled Job: Scheduled Job Metadata, Scheduled Job: Scheduled Job Modification, Service: Service Creation, Service: Service Metadata
Platforms:	Containers, Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to get a listing of security software, configurations, defensive tools, and sensors that are installed on a system or in a cloud environment. This may include things such as firewall rules and anti-virus. Adversaries may use the information from Security Software Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Firewall: Firewall Enumeration, Firewall: Firewall Metadata, Process: OS API Execution, Process: Process Creation
Platforms:	Azure AD, Google Workspace, IaaS, Linux, macOS, Office 365, SaaS, Windows
Url:	Open detailed description by Mitre

Description:	An adversary may attempt to get detailed information about the operating system and hardware, including version, patches, hotfixes, service packs, and architecture. Adversaries may use the information from System Information Discovery during automated discovery to shape follow-on behaviors, including whether or not the adversary fully infects the target and/or attempts specific actions.
Tactics:	Discovery
Data Sources:	Command: Command Execution, Process: OS API Execution, Process: Process Creation
Platforms:	IaaS, Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use an OSI non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using OSI application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may transfer tools or other files from an external system into a compromised environment. Tools or files may be copied from an external adversary-controlled system to the victim network through the command and control channel or through alternate protocols such as ftp . Once present, adversaries may also transfer/spread tools between victim devices within a compromised environment (i.e. Lateral Tool Transfer ).
Tactics:	Command and Control
Data Sources:	Command: Command Execution, File: File Creation, Network Traffic: Network Connection Creation, Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34

Overview

General Information

Detection

Signatures

Classification

Process Tree

Malware Configuration

Yara Signatures

Sigma Signatures

Snort Signatures

Joe Sandbox Signatures

AV Detection

Compliance

Networking

System Summary

Data Obfuscation

Persistence and Installation Behavior

Hooking and other Techniques for Hiding and Protection

Mitre Att&ck Matrix

Behavior Graph

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

URLs from Memory and Binaries

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

Simulations

Behavior and APIs

Joe Sandbox View / Context

IPs

Domains

ASNs

JA3 Fingerprints

Dropped Files

Created / dropped Files

C:\Users\user\AppData\Local\Temp\is-VUMNN.tmp\free-barcode-6.8.10-installer_c-RQoW1.tmp

C:\Users\user\Downloads\5acd5e57-60dc-40cb-8ab4-5615a88e4ecf.tmp

C:\Users\user\Downloads\Unconfirmed 806031.crdownload

C:\Users\user\Downloads\free-barcode-6.8.10-installer_c-RQoW1.exe (copy)

Chrome Cache Entry: 44

Static File Info

File Icon

Network Behavior

Network Port Distribution

TCP Packets

UDP Packets

DNS Queries

DNS Answers

HTTP Request Dependency Graph

HTTP Packets

HTTPS Proxied Packets

Statistics

CPU Usage

Memory Usage

High Level Behavior Distribution

back

Behavior

System Behavior

Analysis Process: chrome.exePID: 3196, Parent PID: 5448

General

Chronological Activities

Windows Analysis Report
http://d1isumqvmnq7jz.cloudfront.net/build/pl/v4.397.63.30.34